$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: Vx/2mrQlXKCjptINnBj0NUeE3ZKQz/6o7mM457RqifA= Subject key identifier: 15:F8:14:D3:FF:C2:73:ED:F2:26:02:B5:EF:CF:01:40:B9:0A:F9:9F Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: 36 Signing time: Sun 15 Sep 2024 09:58:30 +0000 Manifest this update: Sun 15 Sep 2024 09:58:30 +0000 Manifest next update: Sun 22 Sep 2024 09:58:30 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: uZtnYacpakblZ5wgpU4rS3rQPVprmaK2v7SIm3pabcU=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: 8wJfVmwicvQp5ybkXyvh/U8tiFP/mOR8lTRB18DXQ0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Sep 15 09:58:30 2024 GMT Not After : Sep 22 09:58:30 2024 GMT Subject: CN=66e6afc6-6d7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:39:cf:2b:ab:3b:9e:b5:40:8c:20:ea:2e:85: 0e:1e:9a:9d:ad:d1:8c:59:e1:c3:cd:bb:a9:f1:99: 02:07:9b:55:a5:41:95:32:59:d5:3a:38:64:ff:90: 05:51:4e:2e:cd:50:fc:6c:b5:2a:5f:de:1a:ea:f0: 95:c5:a4:6a:61:bb:1d:73:ef:8b:8e:94:a4:42:65: 81:cc:ef:b4:56:31:2d:f4:07:c4:87:58:df:e6:c5: 81:21:b0:4e:d4:58:4d:01:44:9f:13:47:30:a4:3a: d6:92:29:ab:3c:2c:8a:5a:72:50:e7:89:0d:24:1e: 40:32:51:34:a5:13:7f:18:9e:2a:de:2e:12:b1:54: fe:30:fc:1a:c1:6b:06:e2:da:4e:9d:85:bf:cf:13: 93:ca:94:ac:aa:2a:cb:20:7e:f0:9a:70:31:a3:ca: 85:e1:35:a3:79:e2:13:77:74:34:61:9d:b0:60:65: 9f:4a:34:7b:45:b6:7f:95:07:f9:05:19:3f:02:3b: cf:01:41:4b:ac:87:c8:35:2f:53:8c:a7:9a:71:9f: ba:39:70:56:ca:5a:9d:ec:b3:88:17:c6:2d:18:31: db:48:73:9a:f3:72:a3:f8:af:54:02:14:85:a0:0d: 98:5a:7e:42:18:12:4a:01:69:a6:98:e7:76:75:00: d2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F8:14:D3:FF:C2:73:ED:F2:26:02:B5:EF:CF:01:40:B9:0A:F9:9F X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:d5:16:3d:2d:c4:dd:2a:9a:66:29:af:7f:c4:78:96:ba:72: cb:15:75:36:71:a9:b6:8d:a7:b0:08:f9:15:ef:64:4c:59:ab: 33:5e:e0:55:43:67:a0:b5:a3:d0:45:f0:a4:1e:73:e8:95:4c: e6:7e:8d:ad:31:d8:15:26:7e:25:0f:6a:a7:37:29:68:50:9d: 93:5d:47:f3:18:4b:af:7e:20:e9:92:07:f0:42:22:83:00:b6: 8e:5f:bc:ee:15:fa:26:34:78:b6:ac:db:4c:e5:0f:de:d5:0b: 7f:46:65:4b:5c:f5:96:16:a8:82:79:1e:85:05:1e:cf:1f:29: 1b:0b:70:5d:d1:ff:36:31:ee:28:b0:8c:d7:a4:05:6e:a0:70: 23:18:fb:83:02:bf:46:df:9a:91:ef:bb:c2:95:84:13:58:6f: a6:76:d7:7f:f5:66:9f:67:5e:a8:4a:fa:ef:8f:41:1f:cf:c3: 24:ec:0a:34:eb:02:a7:ae:67:31:30:f9:65:07:28:d5:94:70: b5:55:cb:9c:d7:fe:6b:5b:0f:29:bb:27:b0:b9:bb:51:5a:10: dd:81:a6:d5:2b:13:9b:8d:9c:91:23:e6:5d:81:b6:d6:59:5f: a3:dc:17:44:ff:1d:a3:50:dc:09:60:34:66:96:9a:9e:69:23: bf:0b:e7:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0NCNTExMC8GA1UEBRMoRkE4MTFGNTJFNTE5NUE0MjlENzA2RDE5QzAwMzIzN0Mz MjA5QUEzNzAeFw0yNDA5MTUwOTU4MzBaFw0yNDA5MjIwOTU4MzBaMBgxFjAUBgNV BAMTDTY2ZTZhZmM2LTZkN2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVOc8rqzuetUCMIOouhQ4emp2t0YxZ4cPNu6nxmQIHm1WlQZUyWdU6OGT/kAVR Ti7NUPxstSpf3hrq8JXFpGphux1z74uOlKRCZYHM77RWMS30B8SHWN/mxYEhsE7U WE0BRJ8TRzCkOtaSKas8LIpaclDniQ0kHkAyUTSlE38YnireLhKxVP4w/BrBawbi 2k6dhb/PE5PKlKyqKssgfvCacDGjyoXhNaN54hN3dDRhnbBgZZ9KNHtFtn+VB/kF GT8CO88BQUush8g1L1OMp5pxn7o5cFbKWp3ss4gXxi0YMdtIc5rzcqP4r1QCFIWg DZhafkIYEkoBaaaY53Z1ANL/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFfgU0//C c+3yJgK1788BQLkK+Z8wHwYDVR0jBBgwFoAU+oEfUuUZWkKdcG0ZwAMjfDIJqjcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3Q0I1L0ZBMzdDNjNFMjI1 NjExRUZCNzU2MUY0NkM0RjlBRTAyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFq Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLW9FZlV1VVpXa0tkY0cwWndBTWpmRElKcWpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 Q0I1L0ZBMzdDNjNFMjI1NjExRUZCNzU2MUY0NkM0RjlBRTAyLy1vRWZVdVVaV2tL ZGNHMFp3QU1qZkRJSnFqYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAATVFj0txN0qmmYpr3/EeJa6cssVdTZxqbaNp7AI+RXvZExZqzNe4FVD Z6C1o9BF8KQec+iVTOZ+ja0x2BUmfiUPaqc3KWhQnZNdR/MYS69+IOmSB/BCIoMA to5fvO4V+iY0eLas20zlD97VC39GZUtc9ZYWqIJ5HoUFHs8fKRsLcF3R/zYx7iiw jNekBW6gcCMY+4MCv0bfmpHvu8KVhBNYb6Z213/1Zp9nXqhK+u+PQR/PwyTsCjTr AqeuZzEw+WUHKNWUcLVVy5zX/mtbDym7J7C5u1FaEN2BptUrE5uNnJEj5l2BttZZ X6PcF0T/HaNQ3AlgNGaWmp5pI78L50E= -----END CERTIFICATE-----Generated at Sun Sep 15 12:30:34 2024 by rpki-client on console-ams.rpki-client.org