$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: 7Qnt+PsUc4aNSoqReXyqW6CsIgyrLLDgQUkZTk/LTYA= Subject key identifier: 52:44:8F:ED:7F:B2:BA:24:3E:7E:01:AA:22:80:28:79:8A:42:9B:59 Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: 0B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: 0A Signing time: Wed 23 Oct 2024 06:49:10 +0000 Manifest this update: Wed 23 Oct 2024 06:49:09 +0000 Manifest next update: Wed 30 Oct 2024 06:49:09 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: 2cusdRy0BhvwosG/MAzqGvjCVnIpz4kx8iYXopeSNaI=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: Yh+9ZtLGM0yeId0yqsUGDk1PUuIX4Mo5I7LLnDotARk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Oct 23 06:49:09 2024 GMT Not After : Oct 30 06:49:09 2024 GMT Subject: CN=67189c66-8bbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:f7:2f:30:05:27:0f:5c:1a:b6:91:bb:a0:97: d2:e8:b0:56:f3:ce:11:9d:42:5f:fe:1f:82:64:6a: 04:8e:c1:c0:9d:7d:d5:da:b0:a2:ba:53:6a:6a:bd: d1:9b:f4:26:31:ae:10:cd:ff:d5:4d:62:f8:97:90: 00:ef:3a:27:98:9d:69:1a:d5:f9:8b:bf:55:fb:ee: 37:8a:f2:e5:70:79:9a:58:70:3e:ac:b2:db:fc:2a: 58:32:9f:f7:9f:6a:68:f3:90:63:07:cf:20:65:da: 19:57:3c:2d:a9:04:df:47:65:dc:ec:d5:43:6e:25: fe:f1:a0:f2:b8:d6:0f:da:b3:37:38:02:d2:53:4c: 80:60:24:de:b3:ff:e2:20:be:c6:fb:88:cf:c3:43: 82:cb:5b:f5:9a:82:71:57:e8:6e:64:5e:31:0a:21: 06:da:5d:3a:df:b7:db:7c:de:29:53:b2:1a:4e:8b: e4:60:f7:04:3b:91:90:ab:c3:44:f4:5e:a0:74:49: 5e:03:fb:14:6f:91:68:28:d8:22:e9:bb:0a:57:a9: 64:81:5e:23:e1:f2:81:b8:42:77:3e:ab:88:2c:01: d3:86:92:0e:54:d2:5f:e1:07:6d:e6:d5:32:7e:6a: 21:35:46:75:8b:4a:7a:0d:79:fe:40:16:83:16:51: 9d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:44:8F:ED:7F:B2:BA:24:3E:7E:01:AA:22:80:28:79:8A:42:9B:59 X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:6e:bf:f1:92:68:e5:56:e0:19:25:67:74:ff:24:3b:2d:cb: bc:8e:ab:92:dd:24:49:5b:2c:6a:de:0c:d3:ce:80:c3:bb:f7: 18:d6:5a:47:f9:4d:07:89:f3:38:fe:51:df:b5:2d:95:81:ab: 12:c7:8f:7b:a5:07:53:64:6f:2c:7f:ab:a6:85:93:c1:ab:e3: 2a:13:53:cd:d1:09:a3:90:ca:84:eb:12:1a:8d:14:8c:61:a0: 5c:38:df:a3:01:38:86:72:47:69:ed:9e:3a:04:36:db:4a:1b: 81:49:e6:f2:4d:4c:7f:f2:c6:c7:00:96:cb:72:dc:72:06:df: df:06:b2:90:ac:2b:68:4a:f2:5c:dd:c8:37:ee:cf:a1:47:6e: a0:86:75:1b:a8:f3:11:5d:c1:e3:fe:cd:4c:52:73:0a:10:e2: 41:6d:23:28:19:23:70:05:f9:6a:c4:fb:f2:8f:c4:68:55:00: a5:03:da:b9:f7:bd:20:cf:89:5b:cc:ac:30:38:95:65:47:e8: 52:ea:1d:85:f6:6f:70:31:1b:ce:8c:fa:ae:f9:e9:06:3d:0b: 6a:fe:73:61:59:e5:2d:3c:c7:10:a1:aa:68:61:9d:86:8e:d3: a3:db:3c:3d:40:10:f4:75:d6:5d:6f:6a:cc:ba:2e:ac:f9:6c: d7:ff:f0:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjQ3RjExMC8GA1UEBRMoNDY0MTkwN0ZFNUY0NzNGMTg5MDZENDZBQTIwMzA3RURF REExOUM5RDAeFw0yNDEwMjMwNjQ5MDlaFw0yNDEwMzAwNjQ5MDlaMBgxFjAUBgNV BAMTDTY3MTg5YzY2LThiYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDt9y8wBScPXBq2kbugl9LosFbzzhGdQl/+H4JkagSOwcCdfdXasKK6U2pqvdGb 9CYxrhDN/9VNYviXkADvOieYnWka1fmLv1X77jeK8uVweZpYcD6sstv8Klgyn/ef amjzkGMHzyBl2hlXPC2pBN9HZdzs1UNuJf7xoPK41g/aszc4AtJTTIBgJN6z/+Ig vsb7iM/DQ4LLW/WagnFX6G5kXjEKIQbaXTrft9t83ilTshpOi+Rg9wQ7kZCrw0T0 XqB0SV4D+xRvkWgo2CLpuwpXqWSBXiPh8oG4Qnc+q4gsAdOGkg5U0l/hB23m1TJ+ aiE1RnWLSnoNef5AFoMWUZ2hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUkSP7X+y uiQ+fgGqIoAoeYpCm1kwHwYDVR0jBBgwFoAURkGQf+X0c/GJBtRqogMH7e2hnJ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2NDdGL0I5MUFBQTc0ODZE QjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5K MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUmtHUWYtWDBjX0dKQnRScW9nTUg3ZTJobkowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 NDdGL0I5MUFBQTc0ODZEQjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgwY19H SkJ0UnFvZ01IN2UyaG5KMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEhuv/GSaOVW4BklZ3T/JDsty7yOq5LdJElbLGreDNPOgMO79xjWWkf5 TQeJ8zj+Ud+1LZWBqxLHj3ulB1Nkbyx/q6aFk8Gr4yoTU83RCaOQyoTrEhqNFIxh oFw436MBOIZyR2ntnjoENttKG4FJ5vJNTH/yxscAlsty3HIG398GspCsK2hK8lzd yDfuz6FHbqCGdRuo8xFdweP+zUxScwoQ4kFtIygZI3AF+WrE+/KPxGhVAKUD2rn3 vSDPiVvMrDA4lWVH6FLqHYX2b3AxG86M+q756QY9C2r+c2FZ5S08xxChqmhhnYaO 06PbPD1AEPR11l1vasy6Lqz5bNf/8CQ= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:19 2024 by rpki-client on console-fra.rpki-client.org