$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft File: c0XTOFGViQaITYcWQKS-0shG0U4.mft (raw, json) Hash identifier: nnu9+Kf9BqAWJi1KI6CRAHs8LBMeOiawfU7rk7BwTXg= Subject key identifier: A3:48:DF:26:90:F3:98:EC:3A:A1:CB:4C:F3:61:96:CD:E6:EC:09:4A Authority key identifier: 73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E Certificate issuer: /CN=A912F3B6/serialNumber=7345D33851958906884D871640A4BED2C846D14E Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft Manifest number: 1D Signing time: Sun 15 Sep 2024 10:23:20 +0000 Manifest this update: Sun 15 Sep 2024 10:23:20 +0000 Manifest next update: Sun 22 Sep 2024 10:23:20 +0000 Files and hashes: 1: c0XTOFGViQaITYcWQKS-0shG0U4.crl (hash: TLQSgE0latHZc5RrIdcV8HtH11GayPfZV1gqaSetiHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6/serialNumber=7345D33851958906884D871640A4BED2C846D14E Validity Not Before: Sep 15 10:23:20 2024 GMT Not After : Sep 22 10:23:20 2024 GMT Subject: CN=66e6b598-1a39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e8:ca:bd:f9:21:bc:2d:d3:38:ff:3d:b8:07: cc:25:b8:1d:34:03:25:38:1a:73:e0:25:9b:32:6f: 6f:58:67:74:e4:e4:b7:cd:9a:22:f3:e3:68:8c:d6: f6:c2:c4:7a:fb:44:39:0e:f3:92:c7:63:41:ff:55: 9f:35:ce:06:cb:db:0a:ae:92:32:b0:4d:b4:7d:8f: 71:23:5d:80:7e:96:ff:d3:22:d6:68:b8:d8:2f:36: 2a:86:4e:f6:20:9f:1c:c7:66:e0:72:51:e3:4d:54: ae:96:b4:c7:37:93:b9:fe:52:82:b3:57:f4:a3:d5: b6:9f:87:73:cb:e1:7d:f5:11:66:7d:0f:22:20:4a: c1:21:9b:bb:d6:87:f8:3b:65:30:5a:2d:40:40:9a: 2a:c5:c6:db:b9:65:3a:66:9f:38:cc:0c:6a:f1:97: 57:7b:06:78:33:dd:8f:0c:e3:04:9a:22:9b:e3:1c: 83:4e:ee:12:16:ea:7e:b2:c6:2e:f5:8f:55:57:69: 8d:6d:58:4c:57:32:89:fd:ef:1d:83:0b:d4:13:20: b9:e1:2d:fb:57:3d:7b:5e:b1:5f:a0:7d:80:e6:76: 96:cc:b6:90:47:8e:ac:72:1b:c0:fc:49:00:a0:fc: 17:82:70:cc:dc:22:b0:db:67:6c:75:cb:2e:e8:6e: d1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:48:DF:26:90:F3:98:EC:3A:A1:CB:4C:F3:61:96:CD:E6:EC:09:4A X509v3 Authority Key Identifier: keyid:73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:73:4c:1d:64:f9:a0:5d:7e:96:14:20:20:80:6b:29:61:f7: 1c:26:3a:0a:7c:27:cf:b2:d4:1f:55:0d:b7:ae:b8:a6:02:09: 4f:e0:64:e0:ea:dd:f7:ab:22:be:2b:d0:a3:3d:82:ec:40:df: 39:2f:0d:91:16:de:f2:e7:fc:d2:60:0c:08:97:16:01:dd:0b: 4d:12:6e:8f:4c:2c:72:82:5a:a6:ed:e8:ba:8b:74:99:96:ce: 1f:7c:39:88:e0:d8:8d:b6:b2:ce:cb:eb:6b:26:4b:b1:b4:ac: 2c:db:c2:26:6b:cf:a1:cd:69:da:f0:d3:33:09:7c:b4:1b:91: 05:61:8e:84:ba:9f:a9:80:91:e4:6e:7a:b7:58:fc:68:5d:81: 47:67:81:8a:b4:7d:10:d7:b1:3d:52:8b:ff:4e:9b:c3:1a:f7: fb:ae:f4:8b:90:ba:b5:b2:6d:6c:61:ee:a9:8e:8f:7c:d9:4e: c8:f2:5f:ff:65:8a:6d:44:f0:a0:bc:b1:5b:92:cd:f4:4b:99: 29:b7:d7:bb:ac:1b:e8:07:ae:ca:be:8b:c3:f6:d6:9f:b1:c2: 7b:63:72:48:5a:ca:e4:32:8e:4b:69:6f:b2:d4:b5:0f:5e:2e: 33:a0:1f:66:50:d9:12:96:86:b9:d2:d5:ac:b1:16:18:9b:a1: 1d:2a:61:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjNCNjExMC8GA1UEBRMoNzM0NUQzMzg1MTk1ODkwNjg4NEQ4NzE2NDBBNEJFRDJD ODQ2RDE0RTAeFw0yNDA5MTUxMDIzMjBaFw0yNDA5MjIxMDIzMjBaMBgxFjAUBgNV BAMTDTY2ZTZiNTk4LTFhMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCt6Mq9+SG8LdM4/z24B8wluB00AyU4GnPgJZsyb29YZ3Tk5LfNmiLz42iM1vbC xHr7RDkO85LHY0H/VZ81zgbL2wqukjKwTbR9j3EjXYB+lv/TItZouNgvNiqGTvYg nxzHZuByUeNNVK6WtMc3k7n+UoKzV/Sj1bafh3PL4X31EWZ9DyIgSsEhm7vWh/g7 ZTBaLUBAmirFxtu5ZTpmnzjMDGrxl1d7Bngz3Y8M4wSaIpvjHINO7hIW6n6yxi71 j1VXaY1tWExXMon97x2DC9QTILnhLftXPXtesV+gfYDmdpbMtpBHjqxyG8D8SQCg /BeCcMzcIrDbZ2x1yy7obtF/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUo0jfJpDz mOw6octM82GWzebsCUowHwYDVR0jBBgwFoAUc0XTOFGViQaITYcWQKS+0shG0U4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGM0I2LzU5QzRBRDRBNDhC QTExRUZCRDQ1MTYzREM0RjlBRTAyL2MwWFRPRkdWaVFhSVRZY1dRS1MtMHNoRzBV NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYzBYVE9GR1ZpUWFJVFljV1FLUy0wc2hHMFU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJG M0I2LzU5QzRBRDRBNDhCQTExRUZCRDQ1MTYzREM0RjlBRTAyL2MwWFRPRkdWaVFh SVRZY1dRS1MtMHNoRzBVNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABNzTB1k+aBdfpYUICCAaylh9xwmOgp8J8+y1B9VDbeuuKYCCU/gZODq 3ferIr4r0KM9guxA3zkvDZEW3vLn/NJgDAiXFgHdC00Sbo9MLHKCWqbt6LqLdJmW zh98OYjg2I22ss7L62smS7G0rCzbwiZrz6HNadrw0zMJfLQbkQVhjoS6n6mAkeRu erdY/GhdgUdngYq0fRDXsT1Si/9Om8Ma9/uu9IuQurWybWxh7qmOj3zZTsjyX/9l im1E8KC8sVuSzfRLmSm317usG+gHrsq+i8P21p+xwntjckhayuQyjktpb7LUtQ9e LjOgH2ZQ2RKWhrnS1ayxFhiboR0qYao= -----END CERTIFICATE-----Generated at Sun Sep 15 12:30:32 2024 by rpki-client on console-ams.rpki-client.org