$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft File: iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json) Hash identifier: 9wAlsj0PdAcYYcanRPmvLwUzc9gp6p6+vqdCAdztImA= Subject key identifier: 5C:2A:31:C7:35:D6:E7:78:76:80:46:D3:FA:2C:C2:1D:43:9E:C3:EF Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 Certificate issuer: /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft Manifest number: 38 Signing time: Thu 19 Sep 2024 05:49:53 +0000 Manifest this update: Thu 19 Sep 2024 05:49:52 +0000 Manifest next update: Thu 26 Sep 2024 05:49:52 +0000 Files and hashes: 1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: PGenV8A7ZkaT2k8EFGe+MfJIP+cJAexonqchnvXZlA8=) 2: D055D382225711EF975F6747C4F9AE02.roa (hash: vSUF8UhOaMH+V+SNryLP4jUhOyX0+t5vpdmlCLCB3Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Validity Not Before: Sep 19 05:49:52 2024 GMT Not After : Sep 26 05:49:52 2024 GMT Subject: CN=66ebbb81-a635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ef:d9:47:9a:d0:4e:9c:c0:25:93:50:f7:87: 36:95:60:73:0a:5e:89:59:ee:c2:16:50:61:e3:0e: 7d:17:5a:12:32:c8:b5:b5:5a:4a:89:08:22:e2:bc: 06:de:7f:fb:15:79:14:51:8b:7e:0f:e2:0e:80:13: c1:85:35:ab:85:9c:dd:fd:4a:2d:b7:5c:4e:a1:ef: 65:cc:e7:28:37:63:93:c5:dd:fa:ea:b4:13:57:5a: 67:01:36:ab:a6:b0:6a:5e:24:8a:cf:2a:91:13:87: d1:75:56:be:4f:16:53:e2:b4:6d:34:87:91:a2:9a: 4f:2b:9e:bc:12:e6:f5:40:0c:f7:fd:11:90:92:37: c1:d1:6c:b0:4b:94:d4:0f:97:9e:42:f2:0c:49:fe: d5:e5:e7:9b:81:57:d4:08:4c:c1:61:56:56:4f:b4: f4:ab:8a:7f:a2:64:a7:fb:72:65:b4:65:76:f4:9e: 28:54:65:e2:60:ed:1f:d9:5f:b2:de:61:8e:c0:04: 03:92:8c:96:32:ca:05:5e:2a:42:a3:7c:57:8f:6e: f4:00:f2:2b:71:06:d8:b6:fe:11:c1:86:9c:d4:48: ed:d4:81:ca:b7:50:b4:c7:ee:fd:66:c4:72:5d:37: 9a:94:1b:bc:a0:50:b9:8e:b6:f0:fc:dc:66:ba:4c: 97:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:2A:31:C7:35:D6:E7:78:76:80:46:D3:FA:2C:C2:1D:43:9E:C3:EF X509v3 Authority Key Identifier: keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:f0:09:99:88:26:3c:be:8e:6b:bb:4e:06:39:5f:e6:17:30: 04:9a:fb:45:b5:b8:d9:13:bc:2d:b9:53:af:ea:57:4e:d0:6b: 79:80:60:e2:61:5b:e5:14:f2:b1:53:57:26:06:c7:e6:06:a0: 30:e7:4b:67:73:bc:72:92:87:fb:4e:25:00:25:4e:0f:b5:30: 7f:b7:50:c3:7e:5f:d0:1e:65:d3:70:b7:7b:90:c9:23:76:70: 2d:bf:fd:f9:0b:5a:f7:cf:3e:42:52:f5:70:f3:59:94:a2:c2: 78:4b:f3:5f:27:e5:f7:e7:e0:a1:e0:43:1a:19:de:fa:31:d3: 1a:6a:ff:ce:c3:f7:02:e9:21:bf:89:79:4e:20:4c:34:a6:40: c4:82:0a:7e:bb:16:f7:bc:28:85:ad:05:10:76:f2:09:f2:78: 14:eb:33:da:a5:66:48:c0:a3:1a:1a:21:b1:c0:9a:ed:1d:33: 10:98:f7:31:0e:78:92:a6:99:c3:23:1c:08:9b:50:9b:13:00: 46:11:c7:c3:e4:a8:01:3e:ec:ba:23:4f:3f:77:28:e9:c0:81: 8b:0a:49:13:d2:cd:91:6c:03:a2:04:ac:d9:3b:6b:49:16:65: d5:ad:a1:45:e4:49:80:24:e2:ea:58:54:08:7c:6b:4f:ac:bc: d0:b4:09:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0NCNTExMC8GA1UEBRMoOEFFNUFFRUYyQTkxRjNERjg2NjAzRURDNTRGRTg0QzVC QjU3OUMxNTAeFw0yNDA5MTkwNTQ5NTJaFw0yNDA5MjYwNTQ5NTJaMBgxFjAUBgNV BAMTDTY2ZWJiYjgxLWE2MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCq79lHmtBOnMAlk1D3hzaVYHMKXolZ7sIWUGHjDn0XWhIyyLW1WkqJCCLivAbe f/sVeRRRi34P4g6AE8GFNauFnN39Si23XE6h72XM5yg3Y5PF3frqtBNXWmcBNqum sGpeJIrPKpETh9F1Vr5PFlPitG00h5Gimk8rnrwS5vVADPf9EZCSN8HRbLBLlNQP l55C8gxJ/tXl55uBV9QITMFhVlZPtPSrin+iZKf7cmW0ZXb0nihUZeJg7R/ZX7Le YY7ABAOSjJYyygVeKkKjfFePbvQA8itxBti2/hHBhpzUSO3Ugcq3ULTH7v1mxHJd N5qUG7ygULmOtvD83Ga6TJf9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXCoxxzXW 53h2gEbT+izCHUOew+8wHwYDVR0jBBgwFoAUiuWu7yqR89+GYD7cVP6ExbtXnBUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3Q0I1L0VGRDQ3RDU0MjI1 NjExRUZCNzU2MUY0NkM0RjlBRTAyL2l1V3U3eXFSODktR1lEN2NWUDZFeGJ0WG5C VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaXVXdTd5cVI4OS1HWUQ3Y1ZQNkV4YnRYbkJVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 Q0I1L0VGRDQ3RDU0MjI1NjExRUZCNzU2MUY0NkM0RjlBRTAyL2l1V3U3eXFSODkt R1lEN2NWUDZFeGJ0WG5CVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABDwCZmIJjy+jmu7TgY5X+YXMASa+0W1uNkTvC25U6/qV07Qa3mAYOJh W+UU8rFTVyYGx+YGoDDnS2dzvHKSh/tOJQAlTg+1MH+3UMN+X9AeZdNwt3uQySN2 cC2//fkLWvfPPkJS9XDzWZSiwnhL818n5ffn4KHgQxoZ3vox0xpq/87D9wLpIb+J eU4gTDSmQMSCCn67Fve8KIWtBRB28gnyeBTrM9qlZkjAoxoaIbHAmu0dMxCY9zEO eJKmmcMjHAibUJsTAEYRx8PkqAE+7LojTz93KOnAgYsKSRPSzZFsA6IErNk7a0kW ZdWtoUXkSYAk4upYVAh8a0+svNC0CWg= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:12 2024 by rpki-client on console-ams.rpki-client.org