$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft File: l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft (raw, json) Hash identifier: RmkC6cel0BfI/jEXiQUFuyf29sUgQeVcUKSuOMqaZDg= Subject key identifier: 38:A3:55:61:6F:4D:C7:CC:02:2F:9B:84:F8:B9:87:B4:4B:CE:0E:30 Authority key identifier: 97:D0:41:59:FB:B3:7E:A6:74:62:B8:96:97:6C:11:40:C9:59:E6:91 Certificate issuer: /CN=A913F2BD/serialNumber=97D04159FBB37EA67462B896976C1140C959E691 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft Manifest number: 27 Signing time: Sun 15 Sep 2024 10:11:16 +0000 Manifest this update: Sun 15 Sep 2024 10:11:15 +0000 Manifest next update: Sun 22 Sep 2024 10:11:15 +0000 Files and hashes: 1: l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl (hash: TErdEZ7eUezH+mulTesIjTsAGl0HzXtBMBnlNDoDhDM=) 2: 470E849A389E11EF83D66176C4F9AE02.roa (hash: I6wYLUXo9wiy4AQAxb2ubHia3GZFxKPK++eH7JKRPwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2BD/serialNumber=97D04159FBB37EA67462B896976C1140C959E691 Validity Not Before: Sep 15 10:11:15 2024 GMT Not After : Sep 22 10:11:15 2024 GMT Subject: CN=66e6b2c3-9507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:e4:f6:dd:1f:aa:71:c4:06:29:0c:6e:d5:3a: 69:a6:18:26:1e:6e:8f:fa:f9:e2:65:2d:d3:f9:5b: c2:d4:a8:5b:ce:69:26:3b:22:35:0f:52:d8:df:55: d2:9b:cc:55:6b:36:bb:0b:c8:48:0b:56:03:19:9d: de:e0:fc:fe:2b:5c:53:53:33:80:9e:3f:70:77:94: 8f:3b:0c:75:50:21:f3:7b:10:7a:ca:f6:d1:6e:01: 5e:6b:09:b5:00:ea:b3:bc:f6:39:8d:cf:48:a2:a1: 02:8e:d7:ef:53:d7:2b:3c:84:ba:a2:c1:1c:8b:38: c0:64:6c:b4:94:f7:d4:46:cd:e9:05:ae:fe:c1:0c: f3:47:8e:1a:0e:ce:78:4f:97:0d:7f:7b:da:47:a6: 50:df:ea:5f:59:35:64:37:e8:48:22:57:2e:4e:c8: bc:3f:28:46:5e:41:c2:49:e1:e1:8a:f9:d5:14:d8: 56:af:81:01:b8:16:bf:42:be:00:48:e9:60:99:49: 7c:2d:15:8d:2d:44:5c:2b:dd:e9:ad:45:ee:8d:0a: d1:85:d1:c4:a1:61:4e:b1:19:4a:cf:7e:74:78:33: e9:93:19:29:e5:61:f0:4b:c2:50:8f:36:f9:80:0e: ad:a0:72:b7:07:a4:67:f3:9e:54:af:64:0e:25:98: c0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A3:55:61:6F:4D:C7:CC:02:2F:9B:84:F8:B9:87:B4:4B:CE:0E:30 X509v3 Authority Key Identifier: keyid:97:D0:41:59:FB:B3:7E:A6:74:62:B8:96:97:6C:11:40:C9:59:E6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:24:a4:a1:ec:6a:30:1b:14:d1:72:75:9e:8a:1c:34:1b:6d: 67:ed:33:b8:07:0e:69:a7:f9:d5:79:56:8c:38:90:63:81:ca: 56:db:6b:2f:62:33:32:75:84:49:87:29:dc:ba:64:2b:d6:66: 19:38:e1:7f:c1:a1:45:d7:71:fe:1b:c9:75:17:03:94:4c:0b: 69:2d:5a:52:15:88:99:60:1f:52:17:a6:7c:63:2a:5b:8b:02: e1:2b:36:c6:22:2d:1e:16:80:c2:b4:0f:a9:d7:d4:d6:5d:8d: b7:09:56:46:da:1a:31:31:3d:9f:fc:12:8e:fd:a6:bc:1d:31: b1:1f:e3:fc:07:98:35:70:79:ea:7d:ad:f9:e2:40:22:ec:46: c6:74:ac:cc:c0:ea:86:93:0c:34:f2:6e:9d:2d:ee:af:73:6e: e8:22:18:ba:28:3d:12:04:b2:96:82:e8:d0:7e:d4:39:88:e0: 06:d5:2d:00:e7:e4:98:e9:63:8e:d6:86:b7:cd:15:d4:e4:3e: 78:31:36:c1:0c:8e:e2:5f:b3:a9:c0:7d:5f:87:5a:f7:ed:73: a5:3a:9a:42:70:57:2e:b0:df:9a:9c:48:d4:22:85:f7:b0:51: 55:eb:38:72:50:d0:7d:16:68:ff:60:72:05:1c:68:a0:18:b3: fe:ca:36:2d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RjJCRDExMC8GA1UEBRMoOTdEMDQxNTlGQkIzN0VBNjc0NjJCODk2OTc2QzExNDBD OTU5RTY5MTAeFw0yNDA5MTUxMDExMTVaFw0yNDA5MjIxMDExMTVaMBgxFjAUBgNV BAMTDTY2ZTZiMmMzLTk1MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD25PbdH6pxxAYpDG7VOmmmGCYebo/6+eJlLdP5W8LUqFvOaSY7IjUPUtjfVdKb zFVrNrsLyEgLVgMZnd7g/P4rXFNTM4CeP3B3lI87DHVQIfN7EHrK9tFuAV5rCbUA 6rO89jmNz0iioQKO1+9T1ys8hLqiwRyLOMBkbLSU99RGzekFrv7BDPNHjhoOznhP lw1/e9pHplDf6l9ZNWQ36EgiVy5OyLw/KEZeQcJJ4eGK+dUU2FavgQG4Fr9CvgBI 6WCZSXwtFY0tRFwr3emtRe6NCtGF0cShYU6xGUrPfnR4M+mTGSnlYfBLwlCPNvmA Dq2gcrcHpGfznlSvZA4lmMB1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOKNVYW9N x8wCL5uE+LmHtEvODjAwHwYDVR0jBBgwFoAUl9BBWfuzfqZ0YriWl2wRQMlZ5pEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNGMkJELzQ3ODQ0MjAwMzg5 NjExRUY5RURFODEzNkM0RjlBRTAyL2w5QkJXZnV6ZnFaMFlyaVdsMndSUU1sWjVw RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbDlCQldmdXpmcVowWXJpV2wyd1JRTWxaNXBFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNG MkJELzQ3ODQ0MjAwMzg5NjExRUY5RURFODEzNkM0RjlBRTAyL2w5QkJXZnV6ZnFa MFlyaVdsMndSUU1sWjVwRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJEkpKHsajAbFNFydZ6KHDQbbWftM7gHDmmn+dV5Vow4kGOBylbbay9i MzJ1hEmHKdy6ZCvWZhk44X/BoUXXcf4byXUXA5RMC2ktWlIViJlgH1IXpnxjKluL AuErNsYiLR4WgMK0D6nX1NZdjbcJVkbaGjExPZ/8Eo79prwdMbEf4/wHmDVweep9 rfniQCLsRsZ0rMzA6oaTDDTybp0t7q9zbugiGLooPRIEspaC6NB+1DmI4AbVLQDn 5JjpY47WhrfNFdTkPngxNsEMjuJfs6nAfV+HWvftc6U6mkJwVy6w35qcSNQihfew UVXrOHJQ0H0WaP9gcgUcaKAYs/7KNi0= -----END CERTIFICATE-----Generated at Sun Sep 15 13:42:41 2024 by rpki-client on console-fra.rpki-client.org