$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft File: CKtUearwyEilFC1v5NyZFitFwzc.mft (raw, json) Hash identifier: cHan/vcysqdaLKyj4UHiCUfQ4kBMbGQXPnP1l52A75I= Subject key identifier: 90:8A:59:F7:AC:66:86:D0:AB:41:ED:C3:D9:78:A2:74:70:E3:98:E4 Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 Certificate issuer: /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft Manifest number: 2A Signing time: Wed 23 Oct 2024 01:13:55 +0000 Manifest this update: Wed 23 Oct 2024 01:13:54 +0000 Manifest next update: Wed 30 Oct 2024 01:13:54 +0000 Files and hashes: 1: CKtUearwyEilFC1v5NyZFitFwzc.crl (hash: L0Z8UKnaCftqxgKjqHBLiKI4F2FiFHJhnEYcp8T8lFE=) 2: 710957A8559411EFA07E1C5AC4F9AE02.roa (hash: Mlxt5emszaeJ3fsjQmXEkAwHWwex3p02yZAD82J2nVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 23:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Validity Not Before: Oct 23 01:13:54 2024 GMT Not After : Oct 30 01:13:54 2024 GMT Subject: CN=67184dd2-d9f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:79:94:bd:18:99:06:6a:c2:f3:ea:e5:9e:d8: dc:be:0a:e5:2b:ce:e6:2f:bf:f8:e4:9b:29:c3:a9: 28:51:cf:0f:82:ff:b8:9b:ef:90:57:6c:b1:4e:5d: 2f:dc:b5:cb:97:51:91:db:a0:f3:20:10:d0:f9:8f: d2:fe:34:de:d5:97:ce:a5:91:7e:6b:61:f9:bb:82: e3:7d:d2:1d:97:6b:8c:2f:99:8c:de:89:52:bc:fa: 4c:46:5b:47:a2:49:31:26:c7:17:2c:be:4a:49:41: 5d:77:e0:f2:05:ac:1c:f0:ae:1f:c7:1e:4f:e7:e9: 06:14:65:94:01:80:c1:ba:4f:a8:b8:08:57:7c:eb: a8:22:ec:a8:34:86:c1:2f:15:3f:0f:98:2f:f6:38: ee:55:e0:7b:cf:d7:1c:8b:9e:f6:00:54:42:a9:34: 16:8f:d0:70:32:17:10:a9:98:ab:1b:a2:12:0b:35: 78:49:4b:9a:8f:9f:ae:a8:d0:39:7f:9b:42:9d:aa: 40:43:d0:b3:ed:7e:e8:e0:e2:e7:e7:fc:d7:b0:ee: 50:5a:b4:23:d4:12:59:4b:d0:c8:16:4e:5f:7c:e7: 25:a9:74:22:f5:39:64:47:a5:5f:24:1f:16:dc:86: 3b:ba:1f:cd:87:8e:ca:db:f4:ee:04:43:e4:80:34: 6c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:8A:59:F7:AC:66:86:D0:AB:41:ED:C3:D9:78:A2:74:70:E3:98:E4 X509v3 Authority Key Identifier: keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:ca:de:c5:f4:97:cd:29:3d:25:d0:ad:c1:43:c6:08:fc:5d: 15:02:0a:bb:e1:f9:a2:d1:cf:7b:94:4d:75:ea:35:2c:0e:fd: cb:27:a7:4c:a1:46:c1:b4:cd:dc:47:54:b8:ab:a7:f3:7d:96: 41:f2:ee:1c:93:27:4b:12:84:57:c0:c8:be:6f:c2:65:db:92: 69:a8:5f:a5:1c:1b:0a:73:0f:ee:cc:36:c8:ce:cc:74:e7:61: 8d:4c:fd:71:29:ee:24:63:73:ef:df:1f:9b:99:c4:8d:c8:af: 67:f1:31:5f:a3:e8:19:9d:46:9f:7f:8a:3e:cb:27:48:1f:29: 10:c7:3c:62:f5:1a:ad:a7:19:fd:69:7c:6a:c8:d9:2c:7a:58: 94:53:9c:52:a9:ae:72:af:a2:f3:35:91:5a:1d:6b:5b:88:01: a5:26:f5:4e:7b:02:65:bb:b1:4a:cf:1f:93:51:d9:d2:86:70: 4a:2c:53:29:83:a2:94:76:f0:59:7e:a7:5c:b9:61:91:fd:5f: 35:25:8b:fe:dc:5e:77:1d:c4:2c:04:8a:5f:6a:c4:a1:61:5b: 3d:56:38:cd:78:e8:19:60:32:48:fa:b1:23:8c:ba:dd:51:42: d1:64:39:4f:80:5a:b0:9e:80:16:51:f7:37:4b:6e:ce:b0:76: 78:aa:b5:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 REM3QzExMC8GA1UEBRMoMDhBQjU0NzlBQUYwQzg0OEE1MTQyRDZGRTREQzk5MTYy QjQ1QzMzNzAeFw0yNDEwMjMwMTEzNTRaFw0yNDEwMzAwMTEzNTRaMBgxFjAUBgNV BAMTDTY3MTg0ZGQyLWQ5ZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEeZS9GJkGasLz6uWe2Ny+CuUrzuYvv/jkmynDqShRzw+C/7ib75BXbLFOXS/c tcuXUZHboPMgEND5j9L+NN7Vl86lkX5rYfm7guN90h2Xa4wvmYzeiVK8+kxGW0ei STEmxxcsvkpJQV134PIFrBzwrh/HHk/n6QYUZZQBgMG6T6i4CFd866gi7Kg0hsEv FT8PmC/2OO5V4HvP1xyLnvYAVEKpNBaP0HAyFxCpmKsbohILNXhJS5qPn66o0Dl/ m0KdqkBD0LPtfujg4ufn/New7lBatCPUEllL0MgWTl985yWpdCL1OWRHpV8kHxbc hju6H82Hjsrb9O4EQ+SANGxTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkIpZ96xm htCrQe3D2XiidHDjmOQwHwYDVR0jBBgwFoAUCKtUearwyEilFC1v5NyZFitFwzcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZEQzdDL0E0QzE0NjI4NTU0 OTExRUY4MkI1RDM2RkM0RjlBRTAyL0NLdFVlYXJ3eUVpbEZDMXY1TnlaRml0Rnd6 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0t0VWVhcnd5RWlsRkMxdjVOeVpGaXRGd3pjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZE QzdDL0E0QzE0NjI4NTU0OTExRUY4MkI1RDM2RkM0RjlBRTAyL0NLdFVlYXJ3eUVp bEZDMXY1TnlaRml0Rnd6Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIzK3sX0l80pPSXQrcFDxgj8XRUCCrvh+aLRz3uUTXXqNSwO/csnp0yh RsG0zdxHVLirp/N9lkHy7hyTJ0sShFfAyL5vwmXbkmmoX6UcGwpzD+7MNsjOzHTn YY1M/XEp7iRjc+/fH5uZxI3Ir2fxMV+j6BmdRp9/ij7LJ0gfKRDHPGL1Gq2nGf1p fGrI2Sx6WJRTnFKprnKvovM1kVoda1uIAaUm9U57AmW7sUrPH5NR2dKGcEosUymD opR28Fl+p1y5YZH9XzUli/7cXncdxCwEil9qxKFhWz1WOM146BlgMkj6sSOMut1R QtFkOU+AWrCegBZR9zdLbs6wdniqtU0= -----END CERTIFICATE-----Generated at Wed Oct 23 02:16:35 2024 by rpki-client on console-fra.rpki-client.org