$ rpki-client -vvf rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft File: K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft (raw, json) Hash identifier: TBYrxAy1AI91F1FhBLgqivLQ0DErbWuJhPZl4OFHXrI= Subject key identifier: FA:82:DF:2E:88:10:86:0F:20:55:93:5B:ED:6B:6C:4C:4C:2C:EF:B3 Authority key identifier: 2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D Certificate issuer: /CN=A9144DEA/serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft Manifest number: 14 Signing time: Thu 19 Sep 2024 06:16:54 +0000 Manifest this update: Thu 19 Sep 2024 06:16:54 +0000 Manifest next update: Thu 26 Sep 2024 06:16:54 +0000 Files and hashes: 1: K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl (hash: 1QQXzaRCjRlk1LHf2QbCiiQ8N1Q9TQPB0egcGGd7BZ4=) 2: 7490D0DE5AE111EFAD7EB82CC4F9AE02.roa (hash: t2Ij9WmOv285Qe1IPpwSlpXmYjCDJzDV9cm4X0fPj98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144DEA/serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Validity Not Before: Sep 19 06:16:54 2024 GMT Not After : Sep 26 06:16:54 2024 GMT Subject: CN=66ebc1d6-e586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6e:06:f2:fa:0e:61:bc:cf:72:eb:b3:d7:67: 45:53:07:a5:63:94:e3:3a:08:ff:49:40:a9:fa:05: 1f:cd:1e:0c:c8:2b:73:4f:c9:50:52:68:94:ce:e6: fa:80:b6:98:b2:ab:10:c5:ba:fe:6b:65:7e:55:6b: 17:6f:5c:cd:5c:2d:7c:1c:82:0b:cb:a0:d0:da:63: 20:e8:f4:e9:76:f7:22:6d:7e:de:1e:e8:20:06:4c: bb:de:bf:8b:c7:94:bc:d6:cd:37:57:43:81:08:51: 9a:99:ea:97:c0:f1:c8:a6:e3:5e:70:48:57:96:b0: 68:87:03:ee:bf:a1:d3:c9:75:9a:1d:be:e8:f0:1f: 30:c8:11:10:8c:7e:c4:b0:db:cb:64:db:84:e7:18: 77:29:e4:c6:1a:90:88:f9:3a:01:04:d5:ce:9b:68: 09:54:5b:bf:e6:4f:3c:da:c1:bb:a1:4c:85:1b:82: d3:5f:41:42:8e:c9:88:53:41:8c:07:0f:a8:1e:29: ec:55:f0:e1:1c:19:d0:cc:c0:2f:69:cd:5c:7d:4a: 82:93:06:88:10:40:d2:2d:7f:f0:5c:13:06:da:e5: 5b:d4:41:05:0d:a1:bd:89:3c:37:a2:c4:22:3c:f4: f7:a4:b9:82:0a:29:9e:d5:c1:ec:d2:3f:fd:6f:34: 6e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:82:DF:2E:88:10:86:0F:20:55:93:5B:ED:6B:6C:4C:4C:2C:EF:B3 X509v3 Authority Key Identifier: keyid:2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:36:57:84:57:94:93:22:5d:07:a0:17:f8:39:45:36:3a:5b: 34:e5:10:b3:8e:ab:a2:94:0b:0a:2f:71:65:34:70:c8:63:c4: c5:a2:7e:56:3c:3c:37:4f:28:5b:ec:9b:26:f9:57:af:91:1f: 99:6a:56:a7:fc:6a:d5:bd:d1:f7:0c:2f:ed:00:75:3c:6b:d3: 9c:62:37:f9:ed:11:28:05:3d:87:ab:1c:67:1e:a2:4a:ed:33: c8:a1:ff:b1:ab:3f:a5:25:4d:c4:ad:78:72:98:db:79:2e:6f: a7:91:9a:ae:48:ce:eb:a0:60:cf:40:eb:dd:bc:5a:47:d5:df: 87:88:75:4a:66:89:97:f3:0c:d6:67:8b:2b:a4:f2:4e:2b:70: 45:05:aa:62:29:ea:88:38:58:45:49:76:db:39:10:e6:14:54: ad:09:8a:0f:ec:94:93:fa:5f:82:fc:21:fa:df:b5:80:19:bb: 81:0d:8b:13:46:6f:aa:c6:64:b9:8e:40:9d:92:97:03:ea:85: 90:80:74:e0:ac:8c:23:0c:ac:cb:37:f1:5d:ee:eb:d6:59:9f: c5:d5:e6:ab:9c:3a:f2:5e:af:21:72:c9:30:d4:6f:e0:2e:ad: a8:8e:55:c2:a2:a2:b0:db:83:ef:15:15:1f:f0:e6:03:83:ed: 24:1b:5d:88 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NERFQTExMC8GA1UEBRMoMkJDQUNGNjE2NUI1ODc0MDU5MEU1OTcxODQzM0Q4MTgz RkY5NDY2RDAeFw0yNDA5MTkwNjE2NTRaFw0yNDA5MjYwNjE2NTRaMBgxFjAUBgNV BAMTDTY2ZWJjMWQ2LWU1ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0bgby+g5hvM9y67PXZ0VTB6VjlOM6CP9JQKn6BR/NHgzIK3NPyVBSaJTO5vqA tpiyqxDFuv5rZX5VaxdvXM1cLXwcggvLoNDaYyDo9Ol29yJtft4e6CAGTLvev4vH lLzWzTdXQ4EIUZqZ6pfA8cim415wSFeWsGiHA+6/odPJdZodvujwHzDIERCMfsSw 28tk24TnGHcp5MYakIj5OgEE1c6baAlUW7/mTzzawbuhTIUbgtNfQUKOyYhTQYwH D6geKexV8OEcGdDMwC9pzVx9SoKTBogQQNItf/BcEwba5VvUQQUNob2JPDeixCI8 9PekuYIKKZ7VwezSP/1vNG7pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+oLfLogQ hg8gVZNb7WtsTEws77MwHwYDVR0jBBgwFoAUK8rPYWW1h0BZDllxhDPYGD/5Rm0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0REVBLzNCRjVGMkUwNUFF MTExRUZBNzU2M0MyQ0M0RjlBRTAyL0s4clBZV1cxaDBCWkRsbHhoRFBZR0RfNVJt MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSzhyUFlXVzFoMEJaRGxseGhEUFlHRF81Um0wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 REVBLzNCRjVGMkUwNUFFMTExRUZBNzU2M0MyQ0M0RjlBRTAyL0s4clBZV1cxaDBC WkRsbHhoRFBZR0RfNVJtMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJk2V4RXlJMiXQegF/g5RTY6WzTlELOOq6KUCwovcWU0cMhjxMWiflY8 PDdPKFvsmyb5V6+RH5lqVqf8atW90fcML+0AdTxr05xiN/ntESgFPYerHGceokrt M8ih/7GrP6UlTcSteHKY23kub6eRmq5IzuugYM9A6928WkfV34eIdUpmiZfzDNZn iyuk8k4rcEUFqmIp6og4WEVJdts5EOYUVK0Jig/slJP6X4L8IfrftYAZu4ENixNG b6rGZLmOQJ2SlwPqhZCAdOCsjCMMrMs38V3u69ZZn8XV5qucOvJeryFyyTDUb+Au raiOVcKiorDbg+8VFR/w5gOD7SQbXYg= -----END CERTIFICATE-----Generated at Thu Sep 19 07:13:47 2024 by rpki-client on console-fra.rpki-client.org