$ rpki-client -vvf rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft File: llSi8IRZeiuRrAAqdgfhPBXQlJE.mft (raw, json) Hash identifier: 58glhY9wBD7L2jp3+uA2wKm+kZg37zfKXm4JoE7RNjY= Subject key identifier: 84:6F:10:97:B6:B3:61:DF:8D:84:1A:28:29:F1:DA:AA:AC:31:87:FD Authority key identifier: 96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 Certificate issuer: /CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft Manifest number: 23 Signing time: Sun 15 Sep 2024 10:16:42 +0000 Manifest this update: Sun 15 Sep 2024 10:16:41 +0000 Manifest next update: Sun 22 Sep 2024 10:16:41 +0000 Files and hashes: 1: llSi8IRZeiuRrAAqdgfhPBXQlJE.crl (hash: vhtDnQcxnws+pi9ACrU61Qpl0k1/qn/0gALMsUGNeJ0=) 2: 29A436623FE111EFB5A50814C4F9AE02.roa (hash: i8BI9IvwuikO1+xMVefOXZH2ufnANITPzuMSdPax+Fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Validity Not Before: Sep 15 10:16:41 2024 GMT Not After : Sep 22 10:16:41 2024 GMT Subject: CN=66e6b40a-0fd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c4:5e:37:d2:d6:c6:43:01:9f:87:05:8b:f0: 0e:8a:48:54:6b:e1:36:1f:d4:c8:20:08:0d:e8:e7: 77:a8:39:ca:39:c2:3c:a3:83:a1:02:cd:98:a5:10: b7:d6:49:82:9c:ed:7d:86:3e:99:22:4c:27:3c:ba: 37:0e:a6:5f:d4:27:4a:35:56:ad:68:bf:10:72:40: d1:b3:cd:75:20:c0:8b:12:d8:5b:8c:93:03:45:f1: 72:41:65:44:3d:9c:30:92:db:7c:5d:93:d0:08:b9: 4c:68:b3:0e:9a:7b:3c:2d:71:d7:c6:9e:4e:4c:99: 87:af:b7:69:90:4b:e7:fc:59:3b:04:45:22:49:6c: 24:8a:e0:22:52:69:8c:53:a3:0a:1a:62:ee:c4:74: e3:77:e5:1a:7c:8e:cd:29:09:37:8d:18:87:fe:e8: b3:16:bb:d9:36:91:e3:4b:4f:1f:0d:4c:75:f4:6c: de:4f:91:cd:25:c5:86:a1:09:ad:d2:3b:c3:35:24: 9f:16:64:9e:dc:df:c9:13:40:b8:f8:e0:13:8d:f4: 4a:80:72:f7:05:ae:07:3f:83:f3:76:a1:7b:d4:c4: 60:79:e1:ce:3c:4d:25:17:aa:81:0c:c7:93:27:cb: 5a:e8:ae:7b:fc:02:ee:75:ea:b3:92:cd:9b:f8:b8: a4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:6F:10:97:B6:B3:61:DF:8D:84:1A:28:29:F1:DA:AA:AC:31:87:FD X509v3 Authority Key Identifier: keyid:96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:d7:3f:6f:85:f5:68:ac:cf:17:b5:24:8c:5c:72:5e:e8:06: a1:0c:51:2a:d6:69:66:59:4b:dc:0b:70:37:85:3a:38:2a:67: 6d:ce:c4:41:6d:3e:99:9c:58:02:db:ed:d2:ab:6c:8a:b1:0e: 9c:a3:cf:70:64:75:46:b5:48:c0:98:5b:14:30:47:88:87:16: 09:5e:9d:5f:09:c4:ee:ed:d3:cb:57:4f:1e:d3:55:5e:34:52: 95:63:95:a0:68:36:fe:b0:b7:b8:61:9d:6e:4b:55:42:ad:bf: 5c:e9:aa:e8:15:ef:bd:de:53:2f:93:7f:20:aa:60:e5:ee:71: bd:0b:c6:d7:1b:b3:c0:4e:7d:89:1b:cb:3c:40:16:c2:d0:df: 4f:9f:c8:ee:03:14:57:44:f7:80:81:ef:fa:75:17:3e:69:50: 44:1e:02:77:32:fa:e7:44:a2:49:e1:77:e9:17:2c:4a:19:f0: 6b:57:df:98:20:95:05:19:2f:ab:f0:29:a0:75:f7:14:00:53: 0d:b4:e5:40:2a:e2:6a:08:f8:5a:e9:cc:22:a1:87:0a:ea:dd: a3:9a:bd:aa:dc:26:65:14:66:aa:aa:08:98:bf:08:e4:24:4b: a7:2a:f2:0d:47:69:92:71:cd:4c:8d:45:5c:8f:7b:a4:19:eb: 6f:14:e5:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzMwMzExMC8GA1UEBRMoOTY1NEEyRjA4NDU5N0EyQjkxQUMwMDJBNzYwN0UxM0Mx NUQwOTQ5MTAeFw0yNDA5MTUxMDE2NDFaFw0yNDA5MjIxMDE2NDFaMBgxFjAUBgNV BAMTDTY2ZTZiNDBhLTBmZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcxF430tbGQwGfhwWL8A6KSFRr4TYf1MggCA3o53eoOco5wjyjg6ECzZilELfW SYKc7X2GPpkiTCc8ujcOpl/UJ0o1Vq1ovxByQNGzzXUgwIsS2FuMkwNF8XJBZUQ9 nDCS23xdk9AIuUxosw6aezwtcdfGnk5MmYevt2mQS+f8WTsERSJJbCSK4CJSaYxT owoaYu7EdON35Rp8js0pCTeNGIf+6LMWu9k2keNLTx8NTHX0bN5Pkc0lxYahCa3S O8M1JJ8WZJ7c38kTQLj44BON9EqAcvcFrgc/g/N2oXvUxGB54c48TSUXqoEMx5Mn y1rornv8Au516rOSzZv4uKS1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhG8Ql7az Yd+NhBooKfHaqqwxh/0wHwYDVR0jBBgwFoAUllSi8IRZeiuRrAAqdgfhPBXQlJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzMzAzLzgwQkYxQTYyM0ZF MDExRUY4NjM1RDcxMkM0RjlBRTAyL2xsU2k4SVJaZWl1UnJBQXFkZ2ZoUEJYUWxK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGxTaThJUlplaXVSckFBcWRnZmhQQlhRbEpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz MzAzLzgwQkYxQTYyM0ZFMDExRUY4NjM1RDcxMkM0RjlBRTAyL2xsU2k4SVJaZWl1 UnJBQXFkZ2ZoUEJYUWxKRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACvXP2+F9Wiszxe1JIxccl7oBqEMUSrWaWZZS9wLcDeFOjgqZ23OxEFt PpmcWALb7dKrbIqxDpyjz3BkdUa1SMCYWxQwR4iHFglenV8JxO7t08tXTx7TVV40 UpVjlaBoNv6wt7hhnW5LVUKtv1zpqugV773eUy+TfyCqYOXucb0Lxtcbs8BOfYkb yzxAFsLQ30+fyO4DFFdE94CB7/p1Fz5pUEQeAncy+udEoknhd+kXLEoZ8GtX35gg lQUZL6vwKaB19xQAUw205UAq4moI+FrpzCKhhwrq3aOavarcJmUUZqqqCJi/COQk S6cq8g1HaZJxzUyNRVyPe6QZ628U5Ys= -----END CERTIFICATE-----Generated at Sun Sep 15 12:30:33 2024 by rpki-client on console-ams.rpki-client.org