$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: 02VBhZq+/N18ox0A+rS5U0DcG/z3o3Gj2EA4z2ZBeP0= Subject key identifier: A2:25:D7:DB:00:7E:1B:8B:C9:49:53:9F:30:64:97:57:6F:17:74:1E Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: 36 Signing time: Thu 17 Oct 2024 05:57:47 +0000 Manifest this update: Thu 17 Oct 2024 05:57:47 +0000 Manifest next update: Thu 24 Oct 2024 05:57:47 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: bZ6T1v5PxYNKZO8upBpXGnfs6yBvzHXaQbPFqltbbfA=) 2: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: LrQNetWX/kWMMJz247yWUJ25L5V6W9haJZqldtz3j0Y=) 3: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: KlwexvDGFQzb3abuiXQPF43ztld2Pg+xYp8Fr2ZD2ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 03:23:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Oct 17 05:57:47 2024 GMT Not After : Oct 24 05:57:47 2024 GMT Subject: CN=6710a75b-aa18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7c:ec:e2:24:f4:90:e7:26:94:02:54:56:63: 67:6a:04:a7:9e:40:c0:bc:58:41:1c:4a:61:c8:ae: a7:e3:04:e6:99:f8:76:cf:84:3d:c5:a9:1e:c0:f7: 7b:c4:7f:f2:82:8b:d1:5f:2d:4b:fc:c0:01:03:74: 1e:84:30:14:0b:1a:e2:c1:51:c6:8f:43:0c:12:e3: 6c:8a:5d:1a:df:cd:d4:d7:9b:eb:ad:ae:d2:c8:9a: 31:97:21:db:ed:18:b6:dd:89:03:55:b7:93:c1:ed: df:ec:2e:64:12:ce:4a:3d:8c:5b:7e:4e:e2:77:77: 98:f9:55:ca:5d:bc:ae:3c:05:d7:83:b4:b1:0d:96: c4:4d:8d:4f:71:b9:91:af:82:1f:e9:d9:28:71:28: 6d:b5:ba:79:91:13:92:d3:a6:19:37:eb:f8:ec:9e: 1e:fd:d3:0c:ab:cf:cc:f8:6b:1f:f2:ac:e9:71:6d: 7a:1a:57:1f:ea:35:de:fc:e8:35:91:01:84:42:5d: a6:f3:21:cf:92:34:b4:62:ef:f8:1e:27:43:4d:d0: e9:e4:f3:4e:be:60:a0:fe:a8:3a:4c:cf:2b:1f:46: d0:3c:2a:33:b6:2f:54:8f:b2:fb:46:5e:f0:2e:c9: 56:2b:99:23:9f:d5:ff:dd:71:eb:5d:60:64:5a:2d: aa:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:25:D7:DB:00:7E:1B:8B:C9:49:53:9F:30:64:97:57:6F:17:74:1E X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:2e:65:47:ab:f7:e9:42:e2:34:b1:65:55:94:1b:8a:de:f0: da:48:2e:c0:4c:95:2c:08:66:29:62:f7:48:e3:e1:4f:c2:c3: d9:a3:d4:c0:64:e7:b8:00:0a:6e:55:16:98:9d:bc:1b:85:83: 4b:b3:8f:24:5d:6a:4b:62:40:d3:1d:6c:e0:ca:96:71:61:37: ba:16:51:35:03:43:f2:55:85:07:76:02:87:d7:76:3a:d1:37: 2f:1b:27:74:89:42:97:92:a4:53:89:fb:c0:3b:05:53:43:f5: fa:2b:f8:60:60:a5:30:68:0b:77:4e:4f:35:41:b4:27:f5:e1: ef:06:c2:86:bb:b8:38:49:f7:99:d4:29:a4:4f:1d:8b:11:46: eb:ac:b6:5b:b2:20:a9:6d:a5:5b:1b:dc:e7:b5:95:e9:aa:06: 2d:1e:f6:5b:07:77:fc:8e:9c:89:c8:43:29:25:72:f2:ab:28: 65:d6:b3:ac:48:0a:7f:ff:02:b9:c1:40:8f:3d:92:4d:55:25: 91:f2:03:ef:43:ff:67:2d:df:89:38:51:4a:b0:83:a4:ea:70: a1:8e:bc:df:a9:3e:a2:7c:4c:77:87:58:fe:26:82:fa:11:02: 74:bd:ec:4a:ce:53:11:e7:30:2d:56:98:53:00:33:a9:35:70: cf:c4:1d:27 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MUY3MzExMC8GA1UEBRMoQjQzQzRFM0QzMkY5NUI1MDU1RDA0RkRDMDFGODUxOTYz N0M4OUE2RjAeFw0yNDEwMTcwNTU3NDdaFw0yNDEwMjQwNTU3NDdaMBgxFjAUBgNV BAMTDTY3MTBhNzViLWFhMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8fOziJPSQ5yaUAlRWY2dqBKeeQMC8WEEcSmHIrqfjBOaZ+HbPhD3FqR7A93vE f/KCi9FfLUv8wAEDdB6EMBQLGuLBUcaPQwwS42yKXRrfzdTXm+utrtLImjGXIdvt GLbdiQNVt5PB7d/sLmQSzko9jFt+TuJ3d5j5VcpdvK48BdeDtLENlsRNjU9xuZGv gh/p2ShxKG21unmRE5LTphk36/jsnh790wyrz8z4ax/yrOlxbXoaVx/qNd786DWR AYRCXabzIc+SNLRi7/geJ0NN0Onk806+YKD+qDpMzysfRtA8KjO2L1SPsvtGXvAu yVYrmSOf1f/dcetdYGRaLaqXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoiXX2wB+ G4vJSVOfMGSXV28XdB4wHwYDVR0jBBgwFoAUtDxOPTL5W1BV0E/cAfhRljfImm8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxRjczLzZERjBFMTA4M0Qw NzExRUZCNUM5RUMyNEM0RjlBRTAyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1t OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdER4T1BUTDVXMUJWMEVfY0FmaFJsamZJbW04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx RjczLzZERjBFMTA4M0QwNzExRUZCNUM5RUMyNEM0RjlBRTAyL3REeE9QVEw1VzFC VjBFX2NBZmhSbGpmSW1tOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE8uZUer9+lC4jSxZVWUG4re8NpILsBMlSwIZili90jj4U/Cw9mj1MBk 57gACm5VFpidvBuFg0uzjyRdaktiQNMdbODKlnFhN7oWUTUDQ/JVhQd2AofXdjrR Ny8bJ3SJQpeSpFOJ+8A7BVND9for+GBgpTBoC3dOTzVBtCf14e8Gwoa7uDhJ95nU KaRPHYsRRuustluyIKltpVsb3Oe1lemqBi0e9lsHd/yOnInIQyklcvKrKGXWs6xI Cn//ArnBQI89kk1VJZHyA+9D/2ct34k4UUqwg6TqcKGOvN+pPqJ8THeHWP4mgvoR AnS97ErOUxHnMC1WmFMAM6k1cM/EHSc= -----END CERTIFICATE-----Generated at Thu Oct 17 08:05:46 2024 by rpki-client on console-ams.rpki-client.org