$ rpki-client -vvf rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft File: JthkXujuOl0esdLfl5uFSbh2Hio.mft (raw, json) Hash identifier: PPeCEemUbEEkSduThM5s+XcntnGhe6aPiTbaGCn+0Mg= Subject key identifier: 75:EC:C6:5F:9B:48:76:E5:02:7A:70:FC:6F:56:FC:A7:6E:09:4C:52 Authority key identifier: 26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A Certificate issuer: /CN=A916D6C1/serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft Manifest number: 15 Signing time: Wed 23 Oct 2024 06:42:20 +0000 Manifest this update: Wed 23 Oct 2024 06:42:20 +0000 Manifest next update: Wed 30 Oct 2024 06:42:20 +0000 Files and hashes: 1: JthkXujuOl0esdLfl5uFSbh2Hio.crl (hash: fHjbrPR5ukgkGoxrar8AsRFpiQnt2T8MtAL2rzAIofo=) 2: B0D54166830311EFBF66FC21C4F9AE02.roa (hash: tZx4V13WdS1YqkwOo/f+c5fdIh0lni7XzhM0Rn3v6tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D6C1/serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Validity Not Before: Oct 23 06:42:20 2024 GMT Not After : Oct 30 06:42:20 2024 GMT Subject: CN=67189acc-d92f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:20:16:87:b3:3d:e5:2b:75:8d:35:67:91:da: d3:b5:21:56:01:48:62:37:c5:18:e2:52:4d:6c:f4: d0:2f:86:ac:48:de:fb:01:cd:63:08:f6:d7:bb:84: 4a:c0:20:d0:64:4f:46:80:b2:95:11:b8:88:94:9a: 1d:42:32:54:76:d3:b4:be:7d:92:cd:0e:a5:4a:a4: b2:23:1f:74:63:b5:18:07:0a:db:b0:03:15:b6:6f: ff:15:d8:74:10:e8:9d:79:9f:9a:af:ec:80:8b:dd: 4d:53:c1:f1:06:e9:06:13:2e:3e:41:54:47:83:27: 40:2c:b2:69:62:ae:ca:c9:7f:d8:b0:73:ab:59:de: 20:72:1b:ca:ee:c8:7b:47:f7:29:9c:21:51:19:e2: 4b:51:62:c1:f8:ab:5b:e4:0b:b3:5b:a8:6d:65:4a: 30:87:d4:98:2e:e6:b7:c0:0c:80:02:47:89:10:1a: f4:8e:c2:96:d3:a1:3d:73:70:98:b4:0d:5f:83:ee: 59:81:21:c2:97:1d:10:7d:ae:bd:a7:0c:2a:e7:6a: a9:04:4c:38:4b:52:e7:bc:24:1d:04:f6:fb:23:a3: 37:5d:63:b5:99:e7:f1:1d:7e:83:f7:18:d2:69:a7: 08:ca:4f:63:e4:a9:27:de:88:dd:59:0f:a7:25:2d: 69:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:EC:C6:5F:9B:48:76:E5:02:7A:70:FC:6F:56:FC:A7:6E:09:4C:52 X509v3 Authority Key Identifier: keyid:26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:7a:e4:26:15:4c:98:d8:3a:62:9c:c5:18:3f:be:95:72:45: 24:5a:16:2b:56:27:ab:df:d8:c3:4d:49:26:14:c2:71:47:50: 85:64:0b:5c:a8:ed:1a:11:ae:04:fa:71:d3:66:f0:2c:ba:e3: a5:98:63:c1:20:a7:38:9e:15:0a:cd:4e:41:40:0e:27:15:27: 11:10:31:42:9d:3c:e0:aa:ff:7c:80:f2:9f:76:51:f7:2f:1d: 49:38:b3:07:aa:a7:96:e1:2b:cd:ff:e1:bd:a7:48:0b:a8:07: 06:d5:35:e8:57:47:be:57:da:53:3a:3c:bd:7c:f2:4a:34:75: 52:79:df:5d:72:27:b3:ba:4e:1f:86:9b:75:81:47:46:d2:e6: a0:96:be:64:89:01:55:6a:e2:47:9a:b0:ba:26:ad:bf:20:5b: 0c:ce:43:03:e9:d9:bd:4b:dc:1e:db:a1:be:98:24:ba:fc:45: 0e:22:15:89:5b:e8:48:b1:ea:3e:3e:a1:14:0e:aa:42:67:e5: a0:0d:be:2a:e6:9f:7c:e1:b7:f1:be:ad:ec:9a:4d:34:8a:bf: 51:46:1f:52:d0:d7:0a:ac:da:15:b2:fb:02:55:b9:26:c1:f9: 2b:e1:1a:b1:eb:71:a1:d8:26:fa:70:42:0e:ee:82:3a:5c:4f: 51:cf:50:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RDZDMTExMC8GA1UEBRMoMjZEODY0NUVFOEVFM0E1RDFFQjFEMkRGOTc5Qjg1NDlC ODc2MUUyQTAeFw0yNDEwMjMwNjQyMjBaFw0yNDEwMzAwNjQyMjBaMBgxFjAUBgNV BAMTDTY3MTg5YWNjLWQ5MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkIBaHsz3lK3WNNWeR2tO1IVYBSGI3xRjiUk1s9NAvhqxI3vsBzWMI9te7hErA INBkT0aAspURuIiUmh1CMlR207S+fZLNDqVKpLIjH3RjtRgHCtuwAxW2b/8V2HQQ 6J15n5qv7ICL3U1TwfEG6QYTLj5BVEeDJ0AssmlirsrJf9iwc6tZ3iByG8ruyHtH 9ymcIVEZ4ktRYsH4q1vkC7NbqG1lSjCH1Jgu5rfADIACR4kQGvSOwpbToT1zcJi0 DV+D7lmBIcKXHRB9rr2nDCrnaqkETDhLUue8JB0E9vsjozddY7WZ5/EdfoP3GNJp pwjKT2PkqSfeiN1ZD6clLWm/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdezGX5tI duUCenD8b1b8p24JTFIwHwYDVR0jBBgwFoAUJthkXujuOl0esdLfl5uFSbh2Hiow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZENkMxL0RCNzA0NEUyN0Ey NjExRUZBRjA3QjY1NUM0RjlBRTAyL0p0aGtYdWp1T2wwZXNkTGZsNXVGU2JoMkhp by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSnRoa1h1anVPbDBlc2RMZmw1dUZTYmgySGlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZE NkMxL0RCNzA0NEUyN0EyNjExRUZBRjA3QjY1NUM0RjlBRTAyL0p0aGtYdWp1T2ww ZXNkTGZsNXVGU2JoMkhpby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJh65CYVTJjYOmKcxRg/vpVyRSRaFitWJ6vf2MNNSSYUwnFHUIVkC1yo 7RoRrgT6cdNm8Cy646WYY8EgpzieFQrNTkFADicVJxEQMUKdPOCq/3yA8p92Ufcv HUk4sweqp5bhK83/4b2nSAuoBwbVNehXR75X2lM6PL188ko0dVJ5311yJ7O6Th+G m3WBR0bS5qCWvmSJAVVq4keasLomrb8gWwzOQwPp2b1L3B7bob6YJLr8RQ4iFYlb 6Eix6j4+oRQOqkJn5aANvirmn3zht/G+reyaTTSKv1FGH1LQ1wqs2hWy+wJVuSbB +SvhGrHrcaHYJvpwQg7ugjpcT1HPUCg= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:54 2024 by rpki-client on console-ams.rpki-client.org