$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft File: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft (raw, json) Hash identifier: Orj8SoQaWeJ0AYO2QOUi3CAQsZJAtqKUwLPVFigI1bE= Subject key identifier: 05:B1:E4:6A:3F:E2:E2:9F:57:31:A8:5B:9D:45:15:4C:B3:7D:F6:76 Authority key identifier: ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 Certificate issuer: /CN=A9152787/serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft Manifest number: 03 Signing time: Wed 23 Oct 2024 06:54:22 +0000 Manifest this update: Wed 23 Oct 2024 06:54:22 +0000 Manifest next update: Wed 30 Oct 2024 06:54:22 +0000 Files and hashes: 1: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl (hash: pYgDVdh1KGdVJQdYbhuLsLSPCUO55dV+NorZ+I63ilE=) 2: 45D37CC28F8111EFB699FB63C4F9AE02.roa (hash: 559cCrhl2gmU3vGuvWQWRr1GfQBHKWRfQIAknTBhv8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787/serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Validity Not Before: Oct 23 06:54:22 2024 GMT Not After : Oct 30 06:54:22 2024 GMT Subject: CN=67189d9e-8839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:54:ba:8e:58:2d:6e:be:23:a8:83:6d:f4:f1: 6f:5d:b8:89:4f:d2:63:20:87:88:c3:cf:bb:62:b6: b2:b8:3e:f6:b1:74:1d:0c:9b:69:8e:41:5c:83:cc: 6f:5f:9c:f4:a3:4d:61:7f:6a:c6:37:2a:6f:b5:fa: 43:f5:57:48:88:d2:81:cb:70:3f:75:77:2b:1e:c8: ec:41:62:aa:45:6d:8e:80:7d:79:3a:62:f4:4f:d4: 0f:5f:ae:07:1a:82:3f:76:28:d6:0c:c2:be:e6:ad: a8:bb:eb:d5:c3:8d:3d:d0:85:d6:f6:27:9f:33:89: af:26:53:01:b9:ff:7d:19:e4:9f:8b:42:14:6c:d4: 2e:53:18:30:e1:cb:5f:3a:9b:5f:3f:e9:e6:9d:5b: 9b:aa:48:9c:ee:ab:cc:05:cf:00:51:4b:78:01:ce: 45:61:16:9d:aa:da:89:73:96:d9:a4:4d:a6:7e:4d: df:1c:89:bd:58:8b:9f:8b:13:5c:e7:51:2e:df:b3: 6a:38:10:5c:ec:54:c3:c7:c1:c2:3e:95:b9:f7:f3: 75:a1:f8:89:7e:83:68:83:c5:cc:05:ed:be:24:db: 54:22:c7:b6:35:f6:e7:4f:7a:ca:ae:3e:79:40:bd: 6b:b5:a5:9c:5f:06:64:13:99:64:ff:13:59:03:6d: ad:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:B1:E4:6A:3F:E2:E2:9F:57:31:A8:5B:9D:45:15:4C:B3:7D:F6:76 X509v3 Authority Key Identifier: keyid:ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:b7:65:66:7a:0f:8b:06:e0:47:46:51:e6:ad:f4:e2:ed:a8: 16:d2:80:07:ef:9d:4f:69:d3:2f:8e:9c:d0:03:44:42:06:76: f3:73:25:21:70:4a:95:73:cd:9c:fb:72:e2:8a:f7:07:5b:df: ef:57:00:f9:5e:e8:1b:8d:d8:a9:bd:91:a5:53:34:e4:cd:6f: 3a:e7:d0:16:94:f7:cc:bc:6e:ae:a6:01:b7:29:c0:cf:ae:4b: 7e:5f:96:b8:10:8c:d9:e2:57:4f:0b:5a:2c:6e:fb:d5:49:21: 8f:a8:04:5e:fb:0d:56:e7:c1:c9:8b:d6:b0:b5:c8:56:8f:5c: fc:6c:70:96:74:63:05:09:3a:1d:4c:f9:01:ab:40:ff:e3:5f: 2e:b4:3b:e4:35:67:00:7a:5c:55:3a:91:14:ce:30:84:03:74: 3f:a3:44:9d:ff:2d:50:ab:4c:4b:08:c5:b6:65:c0:9d:ee:b2: 24:f8:f1:62:fd:a5:22:d0:54:fd:61:39:4a:b4:9f:6d:ab:7c: 72:d9:74:4f:c0:e1:7c:0f:d3:0f:0d:51:b7:ae:16:12:77:e7: 22:98:37:76:ff:17:ce:93:9e:23:8e:36:f2:34:6d:6e:bd:ef: 88:f7:a4:2c:23:a7:1c:7f:7a:a2:70:c1:8d:7c:37:3b:bf:e5: 77:c3:75:49 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mjc4NzExMC8GA1UEBRMoRUQ4MkEyRkQ3REUxNDc1MjdDRkNDNDI0N0EyNTZDMUEw RURCNEVEMzAeFw0yNDEwMjMwNjU0MjJaFw0yNDEwMzAwNjU0MjJaMBgxFjAUBgNV BAMTDTY3MTg5ZDllLTg4MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOVLqOWC1uviOog2308W9duIlP0mMgh4jDz7titrK4PvaxdB0Mm2mOQVyDzG9f nPSjTWF/asY3Km+1+kP1V0iI0oHLcD91dyseyOxBYqpFbY6AfXk6YvRP1A9frgca gj92KNYMwr7mrai769XDjT3Qhdb2J58zia8mUwG5/30Z5J+LQhRs1C5TGDDhy186 m18/6eadW5uqSJzuq8wFzwBRS3gBzkVhFp2q2olzltmkTaZ+Td8cib1Yi5+LE1zn US7fs2o4EFzsVMPHwcI+lbn383Wh+Il+g2iDxcwF7b4k21Qix7Y19udPesquPnlA vWu1pZxfBmQTmWT/E1kDba17AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBbHkaj/i 4p9XMahbnUUVTLN99nYwHwYDVR0jBBgwFoAU7YKi/X3hR1J8/MQkeiVsGg7bTtMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyNzg3LzJCMUM0N0ZFOEY3 OTExRUY5MkFDNzgxRUM0RjlBRTAyLzdZS2lfWDNoUjFKOF9NUWtlaVZzR2c3YlR0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1lLaV9YM2hSMUo4X01Ra2VpVnNHZzdiVHRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy Nzg3LzJCMUM0N0ZFOEY3OTExRUY5MkFDNzgxRUM0RjlBRTAyLzdZS2lfWDNoUjFK OF9NUWtlaVZzR2c3YlR0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADO3ZWZ6D4sG4EdGUeat9OLtqBbSgAfvnU9p0y+OnNADREIGdvNzJSFw SpVzzZz7cuKK9wdb3+9XAPle6BuN2Km9kaVTNOTNbzrn0BaU98y8bq6mAbcpwM+u S35flrgQjNniV08LWixu+9VJIY+oBF77DVbnwcmL1rC1yFaPXPxscJZ0YwUJOh1M +QGrQP/jXy60O+Q1ZwB6XFU6kRTOMIQDdD+jRJ3/LVCrTEsIxbZlwJ3usiT48WL9 pSLQVP1hOUq0n22rfHLZdE/A4XwP0w8NUbeuFhJ35yKYN3b/F86TniOONvI0bW69 74j3pCwjpxx/eqJwwY18Nzu/5XfDdUk= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:53 2024 by rpki-client on console-ams.rpki-client.org