$ rpki-client -vvf rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft File: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft (raw, json) Hash identifier: RyEcZkpxIn27e9hLLv29WjK+KJIj1miCqfdivAMlp+0= Subject key identifier: 4B:DD:B2:77:26:AB:24:CC:DD:DA:DC:D5:BD:21:5F:0F:FA:5D:5F:25 Authority key identifier: F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 Certificate issuer: /CN=A915AA2E/serialNumber=F5802D903DA10CD03FCF3E8E1655F521C1D85783 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft Manifest number: 14 Signing time: Thu 19 Sep 2024 06:17:27 +0000 Manifest this update: Thu 19 Sep 2024 06:17:26 +0000 Manifest next update: Thu 26 Sep 2024 06:17:26 +0000 Files and hashes: 1: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl (hash: si0ORG+b00i3TNQ+OCmPiXx7TirFcs+Y/iuSQJ4fVJc=) 2: BBC65AEC5AE511EFBC1FAA45C4F9AE02.roa (hash: CYoYt6wBIqW4kxGlCvmdsw3Z4h48n3n1jRKAweSiZh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AA2E/serialNumber=F5802D903DA10CD03FCF3E8E1655F521C1D85783 Validity Not Before: Sep 19 06:17:26 2024 GMT Not After : Sep 26 06:17:26 2024 GMT Subject: CN=66ebc1f7-d008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f4:e4:71:d4:f5:23:a3:f1:ec:8e:72:8f:6f: ff:ee:f5:50:f5:5d:69:b9:a9:93:dc:0e:11:c0:f6: 50:23:bd:16:77:9c:c1:a0:27:46:76:0d:10:03:06: 83:2b:ba:8b:41:80:93:1a:b5:e0:c4:67:f5:b6:20: 51:ef:03:c0:ae:27:52:3f:70:9e:38:b7:77:0f:f8: 0e:9f:20:18:df:32:59:5c:84:d7:1d:d2:11:cc:d6: fc:7c:22:c6:d7:da:2d:58:f7:8d:cc:35:87:e3:7d: 90:61:0a:f9:b0:ed:98:6d:a6:f6:10:a1:6d:cd:ab: 87:62:c4:a2:7d:fc:46:0f:8f:a8:82:91:f9:02:68: ac:d9:39:f9:f7:6d:f8:7f:ff:b7:1b:ce:36:18:1e: 72:d7:2b:12:f4:4f:ca:f7:a0:6c:a2:87:d2:53:5d: 5e:e9:a7:52:95:d0:62:42:77:66:78:11:49:f4:24: a4:10:bd:1d:cb:e8:5c:43:b3:e6:f2:f4:8f:12:7e: c1:44:86:d2:b5:a7:57:e3:65:96:7f:1c:93:da:eb: 7f:b2:3d:b4:75:35:75:a8:ef:47:c6:27:08:f4:8f: 4c:df:df:89:31:01:39:0c:3c:18:b8:e3:59:a7:2b: 52:82:5f:e1:b4:74:58:50:67:6e:26:31:f1:28:ce: ba:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:DD:B2:77:26:AB:24:CC:DD:DA:DC:D5:BD:21:5F:0F:FA:5D:5F:25 X509v3 Authority Key Identifier: keyid:F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:8d:e5:35:69:16:45:1e:4e:f9:cc:27:53:77:0f:9d:08:25: 5f:b5:ee:19:a2:a1:7c:c5:53:bc:ed:be:c9:ec:a1:4f:de:4d: c0:9b:13:4e:16:bf:cc:84:dd:80:de:6b:be:5a:a0:6e:ba:97: f8:91:d7:05:82:f6:b2:10:9b:36:44:1e:c8:de:89:0b:39:16: f5:20:16:73:a4:e2:28:ac:66:09:26:85:c5:6f:f1:cb:c2:1f: 04:87:a8:72:79:1a:15:93:3e:f6:62:ed:64:42:02:51:13:36: e8:25:6a:20:de:8d:53:3e:d4:09:3d:81:dd:71:57:49:24:cd: e0:84:3f:1a:d0:12:b0:96:bd:d3:e5:f7:41:7e:5c:03:ad:49: 52:34:8f:e6:90:47:28:65:48:82:25:97:f3:13:3d:ef:94:2d: 05:7b:ef:71:9d:c9:9b:d7:a0:81:31:c3:eb:4d:20:4c:39:e3: 38:24:89:e0:62:39:03:14:93:26:60:69:c9:95:f8:3c:14:28: 87:ac:8e:2a:77:8c:f8:49:45:16:61:f3:74:fe:d4:17:71:ca: ef:be:d2:37:16:9e:17:39:ef:ea:4e:4e:e6:c3:eb:72:f7:c8: e8:83:ce:a8:74:1a:50:a2:a9:ca:3a:c5:fa:29:28:1d:3d:9b: bb:a7:4c:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QUEyRTExMC8GA1UEBRMoRjU4MDJEOTAzREExMENEMDNGQ0YzRThFMTY1NUY1MjFD MUQ4NTc4MzAeFw0yNDA5MTkwNjE3MjZaFw0yNDA5MjYwNjE3MjZaMBgxFjAUBgNV BAMTDTY2ZWJjMWY3LWQwMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDb9ORx1PUjo/HsjnKPb//u9VD1XWm5qZPcDhHA9lAjvRZ3nMGgJ0Z2DRADBoMr uotBgJMateDEZ/W2IFHvA8CuJ1I/cJ44t3cP+A6fIBjfMllchNcd0hHM1vx8IsbX 2i1Y943MNYfjfZBhCvmw7ZhtpvYQoW3Nq4dixKJ9/EYPj6iCkfkCaKzZOfn3bfh/ /7cbzjYYHnLXKxL0T8r3oGyih9JTXV7pp1KV0GJCd2Z4EUn0JKQQvR3L6FxDs+by 9I8SfsFEhtK1p1fjZZZ/HJPa63+yPbR1NXWo70fGJwj0j0zf34kxATkMPBi441mn K1KCX+G0dFhQZ24mMfEozrrXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUS92ydyar JMzd2tzVvSFfD/pdXyUwHwYDVR0jBBgwFoAU9YAtkD2hDNA/zz6OFlX1IcHYV4Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBQTJFLzdBRkM5REYwNUFF NTExRUZCMTFDNDk0NUM0RjlBRTAyLzlZQXRrRDJoRE5BX3p6Nk9GbFgxSWNIWVY0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOVlBdGtEMmhETkFfeno2T0ZsWDFJY0hZVjRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB QTJFLzdBRkM5REYwNUFFNTExRUZCMTFDNDk0NUM0RjlBRTAyLzlZQXRrRDJoRE5B X3p6Nk9GbFgxSWNIWVY0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAWN5TVpFkUeTvnMJ1N3D50IJV+17hmioXzFU7ztvsnsoU/eTcCbE04W v8yE3YDea75aoG66l/iR1wWC9rIQmzZEHsjeiQs5FvUgFnOk4iisZgkmhcVv8cvC HwSHqHJ5GhWTPvZi7WRCAlETNuglaiDejVM+1Ak9gd1xV0kkzeCEPxrQErCWvdPl 90F+XAOtSVI0j+aQRyhlSIIll/MTPe+ULQV773GdyZvXoIExw+tNIEw54zgkieBi OQMUkyZgacmV+DwUKIesjip3jPhJRRZh83T+1Bdxyu++0jcWnhc57+pOTubD63L3 yOiDzqh0GlCiqco6xfopKB09m7unTJI= -----END CERTIFICATE-----Generated at Thu Sep 19 07:13:49 2024 by rpki-client on console-fra.rpki-client.org