$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: 4KWDESkzDvstJ9un1srrz/6jjuYAkAflOvGMgWCLyBc= Subject key identifier: E3:C8:68:38:20:64:96:1B:37:50:CC:15:9C:97:CC:8E:C4:44:7B:11 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: 0B Signing time: Wed 23 Oct 2024 06:47:42 +0000 Manifest this update: Wed 23 Oct 2024 06:47:41 +0000 Manifest next update: Wed 30 Oct 2024 06:47:41 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: 2JCkXvkL8zUBA1SEnHjnHruGdEULUM/2Rsd6bo7Du34=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: RrqE2FvhQsWooo2STNcNmbHYOAPrQ1yGVEmXNwdzve4=) 3: E9AB8256861011EFAAE9845AC4F9AE02.roa (hash: TAibHCWzblKHdLqREdrug0sl41Cq4DjCYp4R2g2bse4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Oct 23 06:47:41 2024 GMT Not After : Oct 30 06:47:41 2024 GMT Subject: CN=67189c0e-d249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:56:d9:c1:46:d9:6a:dc:6b:3e:61:37:ad:a6: 7c:cb:6c:2f:dc:d3:7f:88:76:e2:66:67:c4:2b:cf: 9a:06:33:2a:c0:c0:4d:59:72:b9:6b:e8:5f:c3:ba: 6a:be:fe:f4:0d:f4:92:79:e7:f8:80:d5:10:95:23: c6:c3:e5:15:cb:4d:a3:c6:c8:46:b3:ef:ce:3a:5d: 24:74:3e:73:9a:b1:36:61:80:85:b6:bf:5b:44:a8: ed:25:c3:07:6a:1a:4f:53:9f:80:26:fe:d7:a2:65: 10:ff:be:57:0a:47:79:bb:6c:e6:18:b9:91:fc:59: 84:fc:24:0e:f7:8f:34:2b:ff:3a:90:f8:7e:44:59: 45:f5:92:5e:d7:6b:74:a8:3c:b5:f8:37:b7:64:45: 1e:ab:f1:cc:bd:c8:a0:f7:5f:c2:3a:92:9a:8a:ac: 66:62:d0:b6:23:5b:74:86:33:ad:5e:63:9a:9c:8b: f0:16:69:55:18:35:40:ba:50:8d:7d:65:26:de:4c: 6b:5d:86:60:3e:88:f0:f9:f3:45:93:3c:3c:d9:4a: 50:0c:7e:e3:7e:4a:fe:5e:5f:d6:fc:ba:50:8f:63: 93:76:ae:23:ca:c3:3e:5e:a0:11:16:0c:7f:24:9a: 4f:5f:50:42:19:01:5f:e4:78:25:b0:17:5a:62:b5: 9a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:C8:68:38:20:64:96:1B:37:50:CC:15:9C:97:CC:8E:C4:44:7B:11 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:b8:1c:1f:91:bd:51:88:d4:60:75:92:cd:a2:b9:16:af:8a: 26:1f:ad:3c:47:8f:61:ab:46:17:b7:f6:be:7e:9d:db:ba:6b: cb:cb:1c:7a:6f:58:1b:e5:97:44:a5:3c:28:d0:3b:fb:99:fc: 19:39:b6:a0:7b:0f:79:ef:18:e8:f7:f9:4f:f9:fa:bc:ba:32: 77:62:2f:1f:ce:f7:fc:b9:10:22:35:85:7a:5e:d0:8b:74:7a: a9:53:27:05:7e:c9:34:21:4b:e2:67:85:95:2b:1e:62:51:c2: f9:6d:1b:56:3e:0e:01:4a:a9:c7:0e:2d:db:fa:f8:fd:e3:ca: fe:21:0a:38:44:e6:fb:ae:a9:7e:cc:63:e4:c9:82:ff:27:e1: b8:ae:8f:8c:f6:55:31:fa:90:68:5c:2e:ef:9e:a1:23:1d:0c: 76:67:6a:14:cb:49:ec:85:62:df:97:be:bf:ca:73:13:f2:3f: 2d:00:c1:d1:b2:58:77:0f:bf:cd:1b:1d:36:14:e8:2d:5c:ac: 7c:d5:76:d7:44:49:08:8b:2b:8f:be:2d:62:3e:b4:25:26:df: 00:74:d7:40:be:e9:8e:36:d9:46:70:3e:aa:ee:d4:d6:99:dd: 8b:c3:4e:82:80:f6:4e:9f:1f:58:9e:bb:24:8b:d0:1d:9d:2a: 31:6b:dd:cd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEVFRDExMC8GA1UEBRMoNjkxOEFBNzFGMzZCMDQ2MzUzQTY1Q0MwODk3OEIxOEVG RkI5RjVDNjAeFw0yNDEwMjMwNjQ3NDFaFw0yNDEwMzAwNjQ3NDFaMBgxFjAUBgNV BAMTDTY3MTg5YzBlLWQyNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5VtnBRtlq3Gs+YTetpnzLbC/c03+IduJmZ8Qrz5oGMyrAwE1Zcrlr6F/Dumq+ /vQN9JJ55/iA1RCVI8bD5RXLTaPGyEaz7846XSR0PnOasTZhgIW2v1tEqO0lwwdq Gk9Tn4Am/teiZRD/vlcKR3m7bOYYuZH8WYT8JA73jzQr/zqQ+H5EWUX1kl7Xa3So PLX4N7dkRR6r8cy9yKD3X8I6kpqKrGZi0LYjW3SGM61eY5qci/AWaVUYNUC6UI19 ZSbeTGtdhmA+iPD580WTPDzZSlAMfuN+Sv5eX9b8ulCPY5N2riPKwz5eoBEWDH8k mk9fUEIZAV/keCWwF1pitZq1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU48hoOCBk lhs3UMwVnJfMjsREexEwHwYDVR0jBBgwFoAUaRiqcfNrBGNTplzAiXixjv+59cYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRUVELzM3NDAyQURFODUz QjExRUZBMzA3MjM0OUM0RjlBRTAyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTlj WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYVJpcWNmTnJCR05UcGx6QWlYaXhqdi01OWNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RUVELzM3NDAyQURFODUzQjExRUZBMzA3MjM0OUM0RjlBRTAyL2FSaXFjZk5yQkdO VHBsekFpWGl4anYtNTljWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIi4HB+RvVGI1GB1ks2iuRaviiYfrTxHj2GrRhe39r5+ndu6a8vLHHpv WBvll0SlPCjQO/uZ/Bk5tqB7D3nvGOj3+U/5+ry6MndiLx/O9/y5ECI1hXpe0It0 eqlTJwV+yTQhS+JnhZUrHmJRwvltG1Y+DgFKqccOLdv6+P3jyv4hCjhE5vuuqX7M Y+TJgv8n4biuj4z2VTH6kGhcLu+eoSMdDHZnahTLSeyFYt+Xvr/KcxPyPy0AwdGy WHcPv80bHTYU6C1crHzVdtdESQiLK4++LWI+tCUm3wB010C+6Y422UZwPqru1NaZ 3YvDToKA9k6fH1ieuySL0B2dKjFr3c0= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:55 2024 by rpki-client on console-ams.rpki-client.org