$ rpki-client -vvf rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft File: iH4RB6g_EXT_fj54CIjbVyO3kls.mft (raw, json) Hash identifier: 8/r6w2XOGIiYJT+1WQsYKfd+b5u+HWTAVkj2zX8ZPss= Subject key identifier: 82:A8:B9:F4:C7:7A:15:25:9B:E0:E1:91:7E:EE:7C:89:7F:8A:38:6C Authority key identifier: 88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B Certificate issuer: /CN=A9155806/serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft Manifest number: 20 Signing time: Wed 23 Oct 2024 06:37:45 +0000 Manifest this update: Wed 23 Oct 2024 06:37:44 +0000 Manifest next update: Wed 30 Oct 2024 06:37:44 +0000 Files and hashes: 1: iH4RB6g_EXT_fj54CIjbVyO3kls.crl (hash: mAWc+WZWhxF96GZrCR62VCDl/y7K6nCOvaAqJTTRMNQ=) 2: 10435EE8740511EF93658977C4F9AE02.roa (hash: xmMmx42YHDQ1ahK54oeYt43Mx+x7gEXdRkvJnhnT9V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155806/serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Validity Not Before: Oct 23 06:37:44 2024 GMT Not After : Oct 30 06:37:44 2024 GMT Subject: CN=671899b8-0b6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f9:5c:e6:73:42:ff:6d:38:8d:95:ab:4f:e5: 53:89:03:c1:30:04:a2:ef:89:8b:9b:9d:3f:4a:76: da:78:59:ce:c9:0d:bc:3d:b0:d7:97:e6:3f:52:65: 81:44:ba:e9:ea:c5:d8:f5:d1:71:2f:b3:56:d1:b3: d4:2b:f5:d0:22:81:c5:aa:bb:49:6e:27:cb:f5:b2: fd:d5:1e:6d:e5:90:e4:0f:eb:bf:4a:8a:b6:7c:1f: d1:81:7f:8f:97:f1:53:01:a4:ca:c8:12:d0:78:1a: b4:96:8f:a8:27:f3:2d:50:28:8b:ed:a6:fd:00:d2: 5d:76:3d:ae:bd:92:cf:e7:5d:27:6c:f0:21:4d:7c: fa:81:25:01:63:23:52:5e:26:a0:4e:40:75:b3:20: d4:a3:9e:ac:ad:74:5d:b3:d7:f8:ba:9d:3f:11:4a: cf:58:b1:f0:f1:1d:18:0e:15:41:b4:16:13:e3:29: ee:69:b9:d0:42:f7:89:d9:f2:62:fd:43:6f:d0:36: 5f:ea:0c:f9:c4:03:67:ea:2a:a2:a6:fe:f3:55:36: 1a:dd:bf:8b:7e:09:b7:0c:30:81:e6:62:25:c2:3f: c8:cd:20:bc:1f:70:31:87:08:74:f5:cc:4f:22:03: e4:fa:ee:d3:f7:32:71:8f:75:a1:49:47:32:e0:fe: 33:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A8:B9:F4:C7:7A:15:25:9B:E0:E1:91:7E:EE:7C:89:7F:8A:38:6C X509v3 Authority Key Identifier: keyid:88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:54:82:7a:97:89:75:4e:d1:fb:cb:cd:b0:24:33:c2:ea:8a: 61:1d:8e:ca:af:d1:95:c9:80:64:65:6c:fc:d2:b4:68:8e:05: 97:3e:6e:de:07:e5:8f:d6:1a:35:05:02:88:de:c2:70:af:ba: 81:e0:27:fa:dc:b6:48:b9:e6:ec:0b:d8:ac:b8:0f:07:f2:fa: 7e:42:47:52:db:1c:81:bf:df:d0:72:9d:ba:9a:20:83:58:dd: cd:5d:1c:f6:89:00:5d:91:c0:5b:78:dd:bd:04:b2:8e:d1:c6: 3a:5d:81:72:cf:d9:19:44:4b:2c:db:16:a5:21:30:25:2d:62: 96:38:be:55:53:6a:c2:c3:67:38:b9:c0:8d:21:61:60:d2:15: a8:5c:eb:31:fa:52:b8:7e:dd:5d:07:bf:92:b7:1c:e0:dd:20: 71:22:51:f1:e4:5f:f0:8f:e5:d5:ea:a0:96:fe:93:9b:74:cc: 42:a4:ad:07:87:e3:57:02:36:d1:cf:45:c8:07:47:8d:5a:17: 37:42:39:87:52:fe:94:c8:e4:95:2e:a8:bc:8b:64:60:18:9f: ca:5f:3c:7d:76:18:e4:8e:ee:c0:f8:eb:65:3b:a0:da:7c:3f: 7c:e3:c0:36:32:e6:14:3b:ed:6c:f5:44:f3:c9:b5:7e:50:7a: 1a:71:65:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTgwNjExMC8GA1UEBRMoODg3RTExMDdBODNGMTE3NEZGN0UzRTc4MDg4OERCNTcy M0I3OTI1QjAeFw0yNDEwMjMwNjM3NDRaFw0yNDEwMzAwNjM3NDRaMBgxFjAUBgNV BAMTDTY3MTg5OWI4LTBiNmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCY+Vzmc0L/bTiNlatP5VOJA8EwBKLviYubnT9Kdtp4Wc7JDbw9sNeX5j9SZYFE uunqxdj10XEvs1bRs9Qr9dAigcWqu0luJ8v1sv3VHm3lkOQP679KirZ8H9GBf4+X 8VMBpMrIEtB4GrSWj6gn8y1QKIvtpv0A0l12Pa69ks/nXSds8CFNfPqBJQFjI1Je JqBOQHWzINSjnqytdF2z1/i6nT8RSs9YsfDxHRgOFUG0FhPjKe5pudBC94nZ8mL9 Q2/QNl/qDPnEA2fqKqKm/vNVNhrdv4t+CbcMMIHmYiXCP8jNILwfcDGHCHT1zE8i A+T67tP3MnGPdaFJRzLg/jMNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgqi59Md6 FSWb4OGRfu58iX+KOGwwHwYDVR0jBBgwFoAUiH4RB6g/EXT/fj54CIjbVyO3klsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1ODA2L0M3MzlCQUVFNkU5 MTExRUZBNjJCNEMzRkM0RjlBRTAyL2lINFJCNmdfRVhUX2ZqNTRDSWpiVnlPM2ts cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaUg0UkI2Z19FWFRfZmo1NENJamJWeU8za2xzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 ODA2L0M3MzlCQUVFNkU5MTExRUZBNjJCNEMzRkM0RjlBRTAyL2lINFJCNmdfRVhU X2ZqNTRDSWpiVnlPM2tscy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ1UgnqXiXVO0fvLzbAkM8LqimEdjsqv0ZXJgGRlbPzStGiOBZc+bt4H 5Y/WGjUFAojewnCvuoHgJ/rctki55uwL2Ky4Dwfy+n5CR1LbHIG/39BynbqaIINY 3c1dHPaJAF2RwFt43b0Eso7RxjpdgXLP2RlESyzbFqUhMCUtYpY4vlVTasLDZzi5 wI0hYWDSFahc6zH6Urh+3V0Hv5K3HODdIHEiUfHkX/CP5dXqoJb+k5t0zEKkrQeH 41cCNtHPRcgHR41aFzdCOYdS/pTI5JUuqLyLZGAYn8pfPH12GOSO7sD462U7oNp8 P3zjwDYy5hQ77Wz1RPPJtX5QehpxZcg= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:53 2024 by rpki-client on console-ams.rpki-client.org