$ rpki-client -vvf rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft File: JCq5H6fHpkrOd9m09mHijAsVuOA.mft (raw, json) Hash identifier: COViu0QpL2LmhvQpo3f2zL18IQu5XzsHf1cl23H9QmM= Subject key identifier: FC:69:F4:17:43:DC:4F:CA:E0:EB:AF:AB:11:16:6B:7F:B7:62:12:F8 Authority key identifier: 24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0 Certificate issuer: /CN=A911B22E/serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft Manifest number: 2A Signing time: Thu 19 Sep 2024 05:58:53 +0000 Manifest this update: Thu 19 Sep 2024 05:58:53 +0000 Manifest next update: Thu 26 Sep 2024 05:58:53 +0000 Files and hashes: 1: JCq5H6fHpkrOd9m09mHijAsVuOA.crl (hash: uBO4OOnQdaX8Y3kRc47vv2ewgFvyOJ8HgLoo02hwdM0=) 2: 95C79E36379611EF87CBA24DC4F9AE02.roa (hash: VSLP0SurFYr7NQK9R5lJWuMTjXBESVuwKDdrtUvBsXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:58:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B22E/serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0 Validity Not Before: Sep 19 05:58:53 2024 GMT Not After : Sep 26 05:58:53 2024 GMT Subject: CN=66ebbd9d-4810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:af:02:87:70:74:ea:fe:6e:96:0a:58:c4:b2: 77:84:b0:a8:3a:cd:2f:e9:20:d0:96:67:57:4d:cd: 57:97:7c:54:4f:6e:8c:90:e2:8b:c2:47:95:0f:6c: 37:0c:76:a6:16:74:35:3d:6c:5b:af:9b:68:2b:b4: ef:4b:09:ff:d0:db:7c:c0:18:32:b3:b4:85:79:e5: 49:8f:cc:90:09:46:e1:66:17:5a:a7:90:e3:e4:bf: be:d6:6d:72:93:06:4e:bc:0c:04:6c:1b:ca:c2:ff: 5c:31:d1:6f:8b:33:04:54:37:77:d3:3a:ca:07:e9: e6:f9:c4:57:bd:c8:4d:b1:70:9f:52:52:23:58:e9: 5c:5d:84:93:2e:9d:50:81:69:50:c8:ce:cd:9a:42: 8f:0e:9d:57:e4:97:9c:09:c8:22:aa:b2:ae:35:4d: 8a:8e:92:cc:0c:3b:91:03:bf:c6:0e:16:b7:15:65: 2c:4d:f7:15:de:be:9a:06:0c:d1:6a:96:57:e2:36: f5:ed:96:eb:8f:9e:c9:2a:20:d3:a0:ac:b1:7b:b2: 65:85:91:e6:0c:03:67:d4:03:bd:05:ba:5f:57:08: 05:0e:0d:be:f0:36:25:54:c7:ba:18:43:d1:87:5f: 8a:74:74:87:59:34:b9:24:e9:5d:f1:21:6a:bd:33: f5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:69:F4:17:43:DC:4F:CA:E0:EB:AF:AB:11:16:6B:7F:B7:62:12:F8 X509v3 Authority Key Identifier: keyid:24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:b7:96:80:7c:dd:2c:bf:3d:da:eb:a3:42:2c:e8:9e:3a:bf: bc:89:b3:47:0e:13:eb:39:6b:54:6e:56:e9:05:00:39:9a:58: e2:13:a2:75:be:d7:32:85:7b:ea:a2:76:04:64:c5:cc:6f:d0: 73:35:02:93:20:52:30:8b:6f:bd:26:a7:5b:aa:56:82:83:b7: 09:66:37:31:06:c3:4b:74:da:f2:f3:f7:8b:89:62:55:14:d2: 27:d3:96:93:84:9f:e1:be:e8:93:c0:c9:0c:6c:2f:6d:b0:38: 89:83:cc:f5:e2:78:91:fc:27:0e:77:28:0f:ed:c6:13:74:1d: 0e:43:16:25:f6:e8:2b:61:72:45:92:2a:3a:06:06:81:b3:43: 28:89:a6:a9:b5:85:9c:b3:34:9f:9f:3f:76:c2:b4:e3:e3:61: 3b:06:98:6b:d6:c7:08:a6:72:d7:50:88:f4:e1:80:5f:e2:a5: d7:aa:b4:3a:da:20:83:05:71:1d:93:65:41:cd:5f:74:24:63: 06:ad:e0:29:93:0b:df:e0:67:7d:c6:ed:a1:dd:51:68:0b:f1: 2b:78:8c:c2:0d:7b:db:ea:0f:75:14:27:83:0d:4b:ba:bd:a6: b7:5d:cc:6a:76:27:ad:55:ba:d6:4c:fb:da:d1:cf:51:67:02: 51:e3:89:bc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QjIyRTExMC8GA1UEBRMoMjQyQUI5MUZBN0M3QTY0QUNFNzdEOUI0RjY2MUUyOEMw QjE1QjhFMDAeFw0yNDA5MTkwNTU4NTNaFw0yNDA5MjYwNTU4NTNaMBgxFjAUBgNV BAMTDTY2ZWJiZDlkLTQ4MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqrwKHcHTq/m6WCljEsneEsKg6zS/pINCWZ1dNzVeXfFRPboyQ4ovCR5UPbDcM dqYWdDU9bFuvm2grtO9LCf/Q23zAGDKztIV55UmPzJAJRuFmF1qnkOPkv77WbXKT Bk68DARsG8rC/1wx0W+LMwRUN3fTOsoH6eb5xFe9yE2xcJ9SUiNY6VxdhJMunVCB aVDIzs2aQo8OnVfkl5wJyCKqsq41TYqOkswMO5EDv8YOFrcVZSxN9xXevpoGDNFq llfiNvXtluuPnskqINOgrLF7smWFkeYMA2fUA70Ful9XCAUODb7wNiVUx7oYQ9GH X4p0dIdZNLkk6V3xIWq9M/U5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/Gn0F0Pc T8rg66+rERZrf7diEvgwHwYDVR0jBBgwFoAUJCq5H6fHpkrOd9m09mHijAsVuOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFCMjJFLzgzNDE1QjM2Mzc5 NTExRUY4N0NGRDY0QkM0RjlBRTAyL0pDcTVINmZIcGtyT2Q5bTA5bUhpakFzVnVP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSkNxNUg2Zkhwa3JPZDltMDltSGlqQXNWdU9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFC MjJFLzgzNDE1QjM2Mzc5NTExRUY4N0NGRDY0QkM0RjlBRTAyL0pDcTVINmZIcGty T2Q5bTA5bUhpakFzVnVPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIe3loB83Sy/Pdrro0Is6J46v7yJs0cOE+s5a1RuVukFADmaWOITonW+ 1zKFe+qidgRkxcxv0HM1ApMgUjCLb70mp1uqVoKDtwlmNzEGw0t02vLz94uJYlUU 0ifTlpOEn+G+6JPAyQxsL22wOImDzPXieJH8Jw53KA/txhN0HQ5DFiX26CthckWS KjoGBoGzQyiJpqm1hZyzNJ+fP3bCtOPjYTsGmGvWxwimctdQiPThgF/ipdeqtDra IIMFcR2TZUHNX3QkYwat4CmTC9/gZ33G7aHdUWgL8St4jMINe9vqD3UUJ4MNS7q9 prddzGp2J61VutZM+9rRz1FnAlHjibw= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:03 2024 by rpki-client on console-ams.rpki-client.org