$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: kvKMTnXxzZf1mDCpR/UcT/vGnzOwyM7WXKzlRGyQWsE= Subject key identifier: B8:4B:70:20:BD:C3:E3:B2:C3:93:A1:F9:EC:9A:95:7C:0B:63:F5:6D Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: 3B Signing time: Tue 22 Oct 2024 23:50:07 +0000 Manifest this update: Tue 22 Oct 2024 23:50:06 +0000 Manifest next update: Tue 29 Oct 2024 23:50:06 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: VzzzwKJXA5L2qdOh+FQq54d6ML2o7n8TOmjLtAL7FQ4=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: kyChUBrK7l3YN4vwLMgx+ZZf43nxmdSV9d2PzrRyBN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 23:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Oct 22 23:50:06 2024 GMT Not After : Oct 29 23:50:06 2024 GMT Subject: CN=67183a2f-6432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:22:06:0f:f6:75:7b:22:68:98:ee:5e:c9:d2: 99:cb:71:cb:63:67:53:1c:3c:13:ff:c3:7a:74:89: 33:8d:8d:14:84:76:b5:cf:08:c2:22:ea:7c:58:35: 3c:53:be:8b:2d:b8:42:00:eb:4d:22:53:4b:a0:d3: b2:42:bf:94:8b:9c:76:8c:09:c1:60:99:20:84:cd: 2f:c2:34:e7:9c:8c:9a:a1:f2:f5:46:6a:00:cb:7d: dd:1f:8d:55:6f:79:cc:00:1d:15:0c:0c:e1:52:26: a1:3b:12:6d:5d:5a:e6:70:f6:6e:bb:26:41:80:7a: 0c:fa:3b:08:bb:36:6c:6d:2a:7b:d8:a2:bb:57:a9: 9c:93:6e:f0:9e:59:8e:97:4e:6d:a4:86:df:79:63: 0f:b8:d5:96:4e:fa:88:4e:a5:b2:4e:c9:7b:de:49: df:62:97:0e:be:95:5d:c5:9c:90:8c:74:7a:1d:98: 68:bc:e9:85:e3:c7:01:a8:fd:32:a7:34:43:58:01: 90:c5:c3:e2:7a:4f:0b:7c:ca:ba:cc:2d:4e:3f:15: 5e:ef:9d:49:10:06:3e:99:9e:f2:ad:5e:85:f0:ba: 4a:13:d2:69:fb:e6:de:d7:f2:c8:83:57:fa:de:69: 07:59:cb:44:b7:e8:ad:9d:c5:34:ee:4c:04:4f:bb: dd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:4B:70:20:BD:C3:E3:B2:C3:93:A1:F9:EC:9A:95:7C:0B:63:F5:6D X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:ed:8c:6b:74:c4:41:92:0e:d6:8c:fb:7b:a7:b8:80:93:65: 03:14:2d:da:2c:e2:0e:95:78:a8:ea:49:3c:21:aa:3d:fb:48: 92:c5:dc:95:80:5c:9c:a7:c2:4b:f5:23:bc:6f:97:0c:e9:2d: 37:ea:3b:b5:a2:b8:99:12:a5:78:70:5a:77:e7:a2:bb:0c:46: 4e:15:2c:f2:d3:7b:30:2e:dc:5e:10:7f:f8:db:ae:07:f6:e7: d2:f1:00:45:be:b4:de:8b:77:76:59:06:b0:e5:d2:2e:ad:db: b3:e8:b0:2a:d0:74:22:81:38:b2:89:e5:71:3c:2d:b3:81:3e: 9d:a9:0b:1f:f8:a6:aa:1c:c1:7f:11:ff:47:64:6d:5e:38:39: d7:97:80:53:6e:d6:43:33:23:db:45:f5:2b:7f:fb:fa:07:74: 95:7f:52:2a:1a:02:74:fd:c6:ae:ef:9f:08:8c:05:b6:44:f8: 68:50:1a:a8:74:c5:cf:3d:02:4a:f6:fa:8b:52:ce:95:91:0a: 5c:91:17:17:1e:81:aa:09:6f:67:3d:29:45:5f:bb:e5:71:1b: 8e:50:84:4d:be:a4:05:2f:a4:7b:c8:af:30:80:47:91:a1:0f: a3:7d:2a:84:4e:b5:3e:e3:49:48:23:2d:69:21:de:05:2a:82: f0:62:1a:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OUVDRDExMC8GA1UEBRMoRDk1REExMTcxNDEyMzAwQUI1M0IzRTQ4NzBGMkY0NDFG MDZDODEyNDAeFw0yNDEwMjIyMzUwMDZaFw0yNDEwMjkyMzUwMDZaMBgxFjAUBgNV BAMTDTY3MTgzYTJmLTY0MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtIgYP9nV7ImiY7l7J0pnLcctjZ1McPBP/w3p0iTONjRSEdrXPCMIi6nxYNTxT vostuEIA600iU0ug07JCv5SLnHaMCcFgmSCEzS/CNOecjJqh8vVGagDLfd0fjVVv ecwAHRUMDOFSJqE7Em1dWuZw9m67JkGAegz6Owi7NmxtKnvYortXqZyTbvCeWY6X Tm2kht95Yw+41ZZO+ohOpbJOyXveSd9ilw6+lV3FnJCMdHodmGi86YXjxwGo/TKn NENYAZDFw+J6Twt8yrrMLU4/FV7vnUkQBj6ZnvKtXoXwukoT0mn75t7X8siDV/re aQdZy0S36K2dxTTuTARPu93LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuEtwIL3D 47LDk6H57JqVfAtj9W0wHwYDVR0jBBgwFoAU2V2hFxQSMAq1Oz5IcPL0QfBsgSQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5RUNEL0VGNjM4M0UyM0Q5 RjExRUY5OTAzMzc2OEM0RjlBRTAyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dT US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMlYyaEZ4UVNNQXExT3o1SWNQTDBRZkJzZ1NRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5 RUNEL0VGNjM4M0UyM0Q5RjExRUY5OTAzMzc2OEM0RjlBRTAyLzJWMmhGeFFTTUFx MU96NUljUEwwUWZCc2dTUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABLtjGt0xEGSDtaM+3unuICTZQMULdos4g6VeKjqSTwhqj37SJLF3JWA XJynwkv1I7xvlwzpLTfqO7WiuJkSpXhwWnfnorsMRk4VLPLTezAu3F4Qf/jbrgf2 59LxAEW+tN6Ld3ZZBrDl0i6t27PosCrQdCKBOLKJ5XE8LbOBPp2pCx/4pqocwX8R /0dkbV44OdeXgFNu1kMzI9tF9St/+/oHdJV/UioaAnT9xq7vnwiMBbZE+GhQGqh0 xc89Akr2+otSzpWRClyRFxcegaoJb2c9KUVfu+VxG45QhE2+pAUvpHvIrzCAR5Gh D6N9KoROtT7jSUgjLWkh3gUqgvBiGng= -----END CERTIFICATE-----Generated at Wed Oct 23 00:38:30 2024 by rpki-client on console-fra.rpki-client.org