$ rpki-client -vvf rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft File: sgBZBkA-medoWaqrsdy92uRCBvY.mft (raw, json) Hash identifier: Pm90Bis5FO1jnaT95A7pWgeTRf/hkBvdEDg+wEJaygw= Subject key identifier: 0C:36:F8:2D:E9:2F:76:FB:D9:73:1B:6F:22:B8:2E:E0:25:17:FC:D6 Authority key identifier: B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 Certificate issuer: /CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft Manifest number: 21 Signing time: Sun 15 Sep 2024 10:17:39 +0000 Manifest this update: Sun 15 Sep 2024 10:17:38 +0000 Manifest next update: Sun 22 Sep 2024 10:17:38 +0000 Files and hashes: 1: sgBZBkA-medoWaqrsdy92uRCBvY.crl (hash: gszGbQX+ZbNoAl8u3oSUBaJPn2pEw2FTePM2Gi+wBFU=) 2: 0B7CF64642B211EF82734679C4F9AE02.roa (hash: SLWE2DPVkEquMfz8hHroSU4zXY18AR0tkk1tXcWxdMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Validity Not Before: Sep 15 10:17:38 2024 GMT Not After : Sep 22 10:17:38 2024 GMT Subject: CN=66e6b443-13bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:87:ca:67:fb:e7:a9:1a:49:8a:53:59:8d:02: e5:4e:72:a9:ef:f6:3b:56:3e:b2:64:3f:59:3f:6a: de:eb:53:4e:4f:49:34:26:60:c7:02:d2:80:39:7a: 43:fc:7e:03:45:01:2e:28:ee:67:2e:25:65:29:44: 5b:66:f5:c3:2b:cf:ca:f0:03:20:96:b9:32:a3:52: 50:34:83:cb:0d:54:36:c0:a9:08:61:89:ef:14:4a: 64:a7:03:c9:17:d3:c4:10:05:31:97:f8:60:77:db: 72:91:e8:34:a4:19:e8:ed:51:42:ba:39:e9:eb:51: 5c:6b:1d:e8:e9:68:2c:8e:42:ba:f3:5c:ca:21:69: be:47:5b:95:4c:c8:d1:0c:51:e6:e4:a6:90:33:c9: 8d:d1:95:47:78:a8:e5:10:fc:ec:ab:71:e2:ce:6e: 80:4e:bc:39:bd:86:ae:ea:b1:06:f6:75:5c:e3:cc: a1:0a:b0:19:18:52:1b:15:37:53:62:e1:b1:ba:df: 40:dc:f1:6a:c0:2d:d2:5a:a6:bc:6d:e4:02:61:49: 76:dd:26:63:c9:2c:06:08:e8:be:0b:df:14:09:5f: 62:25:90:3d:2d:2f:65:09:3c:91:8f:a1:03:ad:8c: c1:31:ed:2d:49:b3:ae:4b:e8:cc:91:e7:cb:d3:68: 6b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:36:F8:2D:E9:2F:76:FB:D9:73:1B:6F:22:B8:2E:E0:25:17:FC:D6 X509v3 Authority Key Identifier: keyid:B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:65:b9:71:31:5b:bc:18:ff:67:cb:8e:53:60:30:e8:7d:9f: cf:b6:37:b8:aa:8d:d9:6f:5c:e0:08:0b:9a:01:38:04:c3:9d: 8e:d3:00:81:bb:6f:07:f0:03:30:b6:64:e8:70:50:a8:df:32: 6c:4a:fd:21:84:e6:d7:74:e8:11:2c:dd:61:3e:9f:98:a3:77: bf:d8:a4:ef:c8:67:9d:92:04:fc:7f:f5:69:2d:a6:e9:eb:11: 1e:b1:ca:2b:27:03:50:6a:61:7f:55:9b:69:15:c8:00:85:00: 5c:12:b4:6e:bc:c2:b6:72:8e:04:5b:bd:90:c4:88:f0:ec:e4: d6:0d:71:5b:59:a3:7b:66:9e:5a:72:cd:4f:62:29:d4:7c:50: b3:78:84:1a:f3:be:e6:16:05:91:9e:b3:f8:14:1c:81:55:7a: 04:db:4e:dc:e0:c6:6e:73:c6:45:b4:c0:dd:9d:80:24:5c:41: 99:76:fc:47:65:d9:6e:69:0b:a1:16:f0:f5:b1:46:1b:e9:76: ec:8c:75:38:9e:66:12:30:9a:d5:4b:e3:7d:79:ea:a1:87:8e: e5:3b:c7:b1:85:ab:3d:18:05:c2:e3:ba:51:34:ae:e9:53:51: 12:28:be:fa:08:e3:fd:08:95:ae:7e:5f:3e:82:a7:cf:17:5b: ed:37:1a:43 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QTc0ODExMC8GA1UEBRMoQjIwMDU5MDY0MDNFOTlFNzY4NTlBQUFCQjFEQ0JEREFF NDQyMDZGNjAeFw0yNDA5MTUxMDE3MzhaFw0yNDA5MjIxMDE3MzhaMBgxFjAUBgNV BAMTDTY2ZTZiNDQzLTEzYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1h8pn++epGkmKU1mNAuVOcqnv9jtWPrJkP1k/at7rU05PSTQmYMcC0oA5ekP8 fgNFAS4o7mcuJWUpRFtm9cMrz8rwAyCWuTKjUlA0g8sNVDbAqQhhie8USmSnA8kX 08QQBTGX+GB323KR6DSkGejtUUK6OenrUVxrHejpaCyOQrrzXMohab5HW5VMyNEM UebkppAzyY3RlUd4qOUQ/OyrceLOboBOvDm9hq7qsQb2dVzjzKEKsBkYUhsVN1Ni 4bG630Dc8WrALdJaprxt5AJhSXbdJmPJLAYI6L4L3xQJX2IlkD0tL2UJPJGPoQOt jMEx7S1Js65L6MyR58vTaGuZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDDb4Lekv dvvZcxtvIrgu4CUX/NYwHwYDVR0jBBgwFoAUsgBZBkA+medoWaqrsdy92uRCBvYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNBNzQ4L0FBQ0QxM0E4NDJC MTExRUY5MkU1NjU3OEM0RjlBRTAyL3NnQlpCa0EtbWVkb1dhcXJzZHk5MnVSQ0J2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2dCWkJrQS1tZWRvV2FxcnNkeTkydVJDQnZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNB NzQ4L0FBQ0QxM0E4NDJCMTExRUY5MkU1NjU3OEM0RjlBRTAyL3NnQlpCa0EtbWVk b1dhcXJzZHk5MnVSQ0J2WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALBluXExW7wY/2fLjlNgMOh9n8+2N7iqjdlvXOAIC5oBOATDnY7TAIG7 bwfwAzC2ZOhwUKjfMmxK/SGE5td06BEs3WE+n5ijd7/YpO/IZ52SBPx/9Wktpunr ER6xyisnA1BqYX9Vm2kVyACFAFwStG68wrZyjgRbvZDEiPDs5NYNcVtZo3tmnlpy zU9iKdR8ULN4hBrzvuYWBZGes/gUHIFVegTbTtzgxm5zxkW0wN2dgCRcQZl2/Edl 2W5pC6EW8PWxRhvpduyMdTieZhIwmtVL43156qGHjuU7x7GFqz0YBcLjulE0rulT URIovvoI4/0Ila5+Xz6Cp88XW+03GkM= -----END CERTIFICATE-----Generated at Sun Sep 15 12:30:32 2024 by rpki-client on console-ams.rpki-client.org