$ rpki-client -vvf rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft File: sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft (raw, json) Hash identifier: V2XDM4iDQpnra3t1BjtVWWI3rI+3pXHLBL4AnQHKwkI= Subject key identifier: D1:38:B6:D0:45:53:98:DF:DB:27:28:A4:45:6E:35:D5:77:AA:FD:B9 Authority key identifier: B0:01:4A:83:06:C5:2E:40:4F:67:CA:2F:8E:58:6F:9B:86:8E:8C:AB Certificate issuer: /CN=A914FA25/serialNumber=B0014A8306C52E404F67CA2F8E586F9B868E8CAB Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft Manifest number: 0C3E Signing time: Sat 14 Sep 2024 20:15:07 +0000 Manifest this update: Sat 14 Sep 2024 20:15:07 +0000 Manifest next update: Sat 21 Sep 2024 20:15:07 +0000 Files and hashes: 1: sAFKgwbFLkBPZ8ovjlhvm4aOjKs.crl (hash: NbMUuuGGljV25BGWfBkD+ymXXSxvXbzkNKC7p+GqM58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.crl rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 19:55:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FA25/serialNumber=B0014A8306C52E404F67CA2F8E586F9B868E8CAB Validity Not Before: Sep 14 20:15:07 2024 GMT Not After : Sep 21 20:15:07 2024 GMT Subject: CN=66e5eecb-468f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:60:6e:05:07:5a:1f:31:31:92:54:37:9b:8a: bb:46:ed:50:58:d3:30:73:ff:c5:32:72:91:d7:c7: 1f:7c:1b:84:4a:9f:5f:37:28:e0:76:d7:8e:40:53: eb:5b:00:74:75:5e:0f:cd:16:d1:18:93:ec:09:7f: 90:24:99:2f:3f:24:39:40:41:c6:6e:9d:93:9d:0d: 27:4e:d3:d3:52:87:3f:2e:92:c3:df:9f:2b:1f:c1: ed:c6:39:a0:db:ca:31:92:7a:50:75:cf:00:1c:73: 00:2e:8f:68:02:31:1f:b6:88:42:fa:27:27:ed:65: 6e:36:1d:29:68:f3:50:85:ba:f3:d2:45:77:99:c4: 80:8d:ca:60:5f:e3:e8:9a:be:d4:17:32:96:11:18: 9c:d1:05:14:b9:54:df:af:f4:08:d8:33:35:8d:0e: 3c:25:a2:02:fe:97:d6:36:93:4f:7c:27:f4:6e:57: 20:c5:0d:af:be:2f:55:3f:ea:50:67:61:80:da:e9: e1:33:82:b9:c0:3c:df:d6:15:83:61:fb:a9:e4:45: d4:d7:ff:2d:9a:fa:7d:9c:23:9b:7c:60:4c:be:c1: aa:3f:c4:1b:d1:27:37:f5:de:c5:23:20:ba:21:0f: 35:86:7f:3c:a2:21:20:c1:ef:c7:f0:6a:06:f6:eb: 9b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:38:B6:D0:45:53:98:DF:DB:27:28:A4:45:6E:35:D5:77:AA:FD:B9 X509v3 Authority Key Identifier: keyid:B0:01:4A:83:06:C5:2E:40:4F:67:CA:2F:8E:58:6F:9B:86:8E:8C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:4d:c2:40:5d:c9:e7:ea:d7:a9:3c:18:dc:a8:43:ab:fb:3e: b8:78:a6:89:66:8b:1f:2f:3f:b0:10:24:16:5b:4d:24:a8:77: 26:4d:c1:72:a2:27:f6:d6:8b:2c:16:c0:47:78:0f:da:b4:d4: 40:38:d8:36:52:2f:e0:50:2f:bf:ad:3c:e7:a9:3e:33:e0:f8: c1:ba:4e:c7:d8:ef:1f:8b:bb:6f:67:43:4e:c5:ed:0e:76:df: 62:1a:2c:2a:93:dd:bc:05:df:3c:fa:7d:ea:94:ba:0b:fc:ac: 47:2b:84:64:38:ff:84:00:15:46:2d:d6:c1:29:f5:d3:11:25: 5d:9b:43:bb:09:be:19:c9:b9:7a:3a:f5:35:68:f0:0c:d5:cd: cd:f2:b6:86:54:ee:9c:f1:d9:b0:3f:30:e1:0b:64:eb:0b:85: 06:b9:80:58:df:ce:6e:2e:96:2e:fb:9b:bf:48:07:5d:c0:ef: 97:99:2f:0b:5a:0a:f4:d9:ae:26:74:84:21:d7:d7:5e:ce:1d: 12:99:97:2e:c0:c7:e7:06:ce:89:85:12:f0:f0:0d:6f:4d:37: 99:11:25:c2:08:6b:98:6c:44:9d:69:f9:11:4d:b0:4d:62:58: ae:08:1d:76:be:b4:86:3b:f0:b8:b3:27:a7:0f:ed:b0:8e:c7: 04:97:2d:d4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RkEyNTExMC8GA1UEBRMoQjAwMTRBODMwNkM1MkU0MDRGNjdDQTJGOEU1ODZGOUI4 NjhFOENBQjAeFw0yNDA5MTQyMDE1MDdaFw0yNDA5MjEyMDE1MDdaMBgxFjAUBgNV BAMTDTY2ZTVlZWNiLTQ2OGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvYG4FB1ofMTGSVDebirtG7VBY0zBz/8UycpHXxx98G4RKn183KOB2145AU+tb AHR1Xg/NFtEYk+wJf5AkmS8/JDlAQcZunZOdDSdO09NShz8uksPfnysfwe3GOaDb yjGSelB1zwAccwAuj2gCMR+2iEL6JyftZW42HSlo81CFuvPSRXeZxICNymBf4+ia vtQXMpYRGJzRBRS5VN+v9AjYMzWNDjwlogL+l9Y2k098J/RuVyDFDa++L1U/6lBn YYDa6eEzgrnAPN/WFYNh+6nkRdTX/y2a+n2cI5t8YEy+wao/xBvRJzf13sUjILoh DzWGfzyiISDB78fwagb265sDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0Ti20EVT mN/bJyikRW411Xeq/bkwHwYDVR0jBBgwFoAUsAFKgwbFLkBPZ8ovjlhvm4aOjKsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGQTI1LzJCQkNCQ0FBMURB QzExRUFBRjRBMzc2M0M0RjlBRTAyL3NBRktnd2JGTGtCUFo4b3ZqbGh2bTRhT2pL cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0FGS2d3YkZMa0JQWjhvdmpsaHZtNGFPaktzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRG QTI1LzJCQkNCQ0FBMURBQzExRUFBRjRBMzc2M0M0RjlBRTAyL3NBRktnd2JGTGtC UFo4b3ZqbGh2bTRhT2pLcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGdNwkBdyefq16k8GNyoQ6v7Prh4polmix8vP7AQJBZbTSSodyZNwXKi J/bWiywWwEd4D9q01EA42DZSL+BQL7+tPOepPjPg+MG6TsfY7x+Lu29nQ07F7Q52 32IaLCqT3bwF3zz6feqUugv8rEcrhGQ4/4QAFUYt1sEp9dMRJV2bQ7sJvhnJuXo6 9TVo8AzVzc3ytoZU7pzx2bA/MOELZOsLhQa5gFjfzm4uli77m79IB13A75eZLwta CvTZriZ0hCHX117OHRKZly7Ax+cGzomFEvDwDW9NN5kRJcIIa5hsRJ1p+RFNsE1i WK4IHXa+tIY78LizJ6cP7bCOxwSXLdQ= -----END CERTIFICATE-----Generated at Sat Sep 14 21:34:49 2024 by rpki-client on console-fra.rpki-client.org