$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft File: xPfznmL0ydeMXhL9wVGuTjK8mkI.mft (raw, json) Hash identifier: wvdFphuZXNAT9fm3ibtImu/rlhnkSQk2O3fJzJ8f76g= Subject key identifier: 14:BD:CB:B9:1B:4A:74:11:5D:16:95:EE:39:AA:1A:77:E1:D8:23:EC Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft Manifest number: 59 Signing time: Thu 17 Oct 2024 05:36:27 +0000 Manifest this update: Thu 17 Oct 2024 05:36:26 +0000 Manifest next update: Thu 24 Oct 2024 05:36:26 +0000 Files and hashes: 1: xPfznmL0ydeMXhL9wVGuTjK8mkI.crl (hash: kiq1nlqVJrElVnDXx0vimYRsFih0OJL5ZPFv5uUWHW0=) 2: 127604E20F8B11EF87FC5918C4F9AE02.roa (hash: 5edOTZ9WpkItw4RWOBwB3WoAQbD4XzuXBzAkLSr3s8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 05:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Validity Not Before: Oct 17 05:36:26 2024 GMT Not After : Oct 24 05:36:26 2024 GMT Subject: CN=6710a25a-3bd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:8b:fe:cc:e8:e7:ef:72:6c:8e:18:d5:28:09: 99:03:4e:49:bd:df:ac:f7:c6:86:64:9d:4d:af:2d: 7d:8a:cc:49:28:43:77:17:0b:d3:41:79:84:56:f4: cc:d4:18:b5:98:dd:8f:0a:81:f3:5a:29:78:7c:f0: b7:71:d3:88:60:0b:57:97:d0:bf:c1:eb:c7:dd:46: 18:06:ed:40:44:20:22:6e:c5:0e:a4:04:ee:6e:0d: e9:85:c2:38:69:b6:a4:2b:6e:06:60:4a:42:e2:d0: de:3b:dc:70:87:d7:e7:d1:fa:f6:92:56:36:39:30: 3b:2f:9a:94:5e:a9:9a:c5:f6:10:b9:73:1b:6c:a9: d1:53:4e:d0:59:7c:6c:2e:ef:bc:fb:30:c2:8a:c0: 1c:d7:b2:34:82:db:71:7c:49:3a:ac:4f:c6:26:51: 32:a5:1c:95:42:2b:4e:9a:bc:cf:80:3b:54:80:4f: 0f:eb:7b:9d:ae:60:35:06:d6:5d:e6:5b:94:37:96: b2:3c:80:b1:72:b8:2d:31:c4:39:23:40:8d:b3:b4: 9f:0f:76:dd:09:c8:fe:1a:b7:63:12:29:fd:c2:b7: d1:aa:5c:02:35:b4:61:9e:e8:20:7d:41:7d:2e:10: d5:11:6e:8c:e0:0b:9d:8f:00:54:eb:80:68:f5:01: a9:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:BD:CB:B9:1B:4A:74:11:5D:16:95:EE:39:AA:1A:77:E1:D8:23:EC X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:eb:fc:f6:82:ad:e0:87:dc:8f:bd:78:04:24:cc:98:f0:13: ed:ed:27:c8:72:ba:18:07:66:cd:c8:3e:cf:d6:5f:5f:1e:5b: f1:5a:58:5b:53:4b:f1:bf:5c:60:ec:77:99:bf:83:70:a8:3d: 23:62:10:49:4c:2f:29:f5:a8:4e:6b:e4:03:3c:76:dd:34:b2: 3f:66:be:d2:24:eb:8c:25:a9:64:46:81:ae:19:8b:ed:9a:09: 85:2a:98:d5:a6:33:58:d9:78:af:e3:02:c4:0d:39:bb:74:e9: 64:67:63:a3:ce:39:8f:f6:fb:4a:cc:8d:60:16:30:06:5a:25: bb:88:7b:c4:dd:ac:1f:f5:8e:b8:cd:f1:5e:0e:bb:f8:5b:8b: ed:6e:42:95:95:e4:7a:9f:df:58:81:f4:26:95:34:91:f1:9e: 72:43:d9:c2:c1:ca:a3:a9:66:40:cb:ec:9b:88:25:e5:2b:77: c9:09:be:de:76:82:95:a8:ec:52:c1:b8:54:8c:dd:92:b3:43: 79:be:d4:aa:ab:dd:b0:55:ad:05:b3:a7:86:19:8c:b8:0b:00: 98:ad:f1:7f:9b:97:72:bf:fd:75:e9:c0:85:66:56:c5:94:9e: f7:91:05:e1:0d:3f:e8:71:f2:2f:35:2e:0e:82:ee:fe:e9:94: 16:02:d0:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QjI5QjExMC8GA1UEBRMoQzRGN0YzOUU2MkY0QzlENzhDNUUxMkZEQzE1MUFFNEUz MkJDOUE0MjAeFw0yNDEwMTcwNTM2MjZaFw0yNDEwMjQwNTM2MjZaMBgxFjAUBgNV BAMTDTY3MTBhMjVhLTNiZDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDyi/7M6OfvcmyOGNUoCZkDTkm936z3xoZknU2vLX2KzEkoQ3cXC9NBeYRW9MzU GLWY3Y8KgfNaKXh88Ldx04hgC1eX0L/B68fdRhgG7UBEICJuxQ6kBO5uDemFwjhp tqQrbgZgSkLi0N473HCH1+fR+vaSVjY5MDsvmpReqZrF9hC5cxtsqdFTTtBZfGwu 77z7MMKKwBzXsjSC23F8STqsT8YmUTKlHJVCK06avM+AO1SATw/re52uYDUG1l3m W5Q3lrI8gLFyuC0xxDkjQI2ztJ8Pdt0JyP4at2MSKf3Ct9GqXAI1tGGe6CB9QX0u ENURbozgC52PAFTrgGj1AalfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFL3LuRtK dBFdFpXuOaoad+HYI+wwHwYDVR0jBBgwFoAUxPfznmL0ydeMXhL9wVGuTjK8mkIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRCMjlCLzhBM0UxRDFBMEY4 MjExRUY4MjY2RjA1RUM0RjlBRTAyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1r SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveFBmem5tTDB5ZGVNWGhMOXdWR3VUaks4bWtJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRC MjlCLzhBM0UxRDFBMEY4MjExRUY4MjY2RjA1RUM0RjlBRTAyL3hQZnpubUwweWRl TVhoTDl3Vkd1VGpLOG1rSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ/r/PaCreCH3I+9eAQkzJjwE+3tJ8hyuhgHZs3IPs/WX18eW/FaWFtT S/G/XGDsd5m/g3CoPSNiEElMLyn1qE5r5AM8dt00sj9mvtIk64wlqWRGga4Zi+2a CYUqmNWmM1jZeK/jAsQNObt06WRnY6POOY/2+0rMjWAWMAZaJbuIe8TdrB/1jrjN 8V4Ou/hbi+1uQpWV5Hqf31iB9CaVNJHxnnJD2cLByqOpZkDL7JuIJeUrd8kJvt52 gpWo7FLBuFSM3ZKzQ3m+1Kqr3bBVrQWzp4YZjLgLAJit8X+bl3K//XXpwIVmVsWU nveRBeENP+hx8i81Lg6C7v7plBYC0Ko= -----END CERTIFICATE-----Generated at Thu Oct 17 08:05:45 2024 by rpki-client on console-ams.rpki-client.org