$ rpki-client -vvf rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft File: dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft (raw, json) Hash identifier: O7LY4Yim6lu1kyMeNtLkrXeuxX9QSVTnm+a4qUILyBk= Subject key identifier: 30:3A:24:88:8B:E7:3E:6D:F7:90:EE:D7:55:95:2B:35:5E:DD:CB:04 Authority key identifier: 74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 Certificate issuer: /CN=A9178424/serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft Manifest number: 2A Signing time: Thu 19 Sep 2024 05:59:58 +0000 Manifest this update: Thu 19 Sep 2024 05:59:57 +0000 Manifest next update: Thu 26 Sep 2024 05:59:57 +0000 Files and hashes: 1: dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl (hash: 5tCt0HXlcGBPPx+BBf2aYmd4bL4/feWpVfvXKQrBWDk=) 2: D672BC9638E411EF8BF0C15EC4F9AE02.roa (hash: mPNOr/g01ocSR7SG8vAUHcTHz7gj62GKEpE8JvyEYfM=) 3: C7821E3038E311EF94CEFA33C4F9AE02.roa (hash: CYRhwTR2JfGYLXjzwYpN6txEE5fhtvaH0LDwpY9BCRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178424/serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Validity Not Before: Sep 19 05:59:57 2024 GMT Not After : Sep 26 05:59:57 2024 GMT Subject: CN=66ebbddd-1ab1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5a:fb:fc:8d:fe:af:1a:43:18:98:b5:cd:1e: 5f:0d:44:67:85:6b:72:f1:f3:58:43:14:6f:0b:b3: af:e5:f3:da:61:91:96:8c:35:6e:15:f2:df:51:d9: cc:b1:ad:63:43:95:ca:ae:7e:88:7b:d0:b6:c4:b6: af:82:32:86:16:88:c9:cd:0d:f6:90:ec:94:e8:6d: 49:42:67:82:06:65:a1:c7:15:5d:95:1c:2c:86:90: 24:0d:09:7d:7e:be:2c:48:cf:d5:a9:23:ea:3a:df: a9:8d:f0:91:3b:a2:88:4d:b7:f9:31:d1:23:11:87: 5e:37:39:45:17:2d:a8:8f:2f:20:8a:65:26:83:92: 57:bf:68:4e:ab:f9:65:c2:a6:c1:05:46:a5:e5:a9: f6:e4:1c:82:ff:27:a1:37:05:c0:42:04:10:ae:b2: 8c:a8:3a:60:70:b4:62:7a:2a:18:d3:c9:70:ec:3a: ab:61:18:57:64:6d:79:2a:c1:91:20:bd:7d:c7:fa: 6a:12:13:88:30:2d:cb:54:96:c4:e9:01:34:03:ca: 2c:0c:50:62:86:36:4b:13:f9:bb:50:08:14:30:72: 77:c8:04:39:68:49:62:ca:6b:36:f8:89:0e:c1:fb: ad:25:e8:60:d8:78:b4:55:db:77:fd:37:ff:dc:3d: 38:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:3A:24:88:8B:E7:3E:6D:F7:90:EE:D7:55:95:2B:35:5E:DD:CB:04 X509v3 Authority Key Identifier: keyid:74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:8c:75:a8:ee:68:b3:3b:cd:ef:c8:be:1d:1c:17:47:b4:15: fc:b5:ed:f0:df:bb:65:43:64:be:63:34:aa:05:a2:96:72:e7: d8:6f:1f:06:27:f3:43:3b:1e:95:11:31:87:22:1d:43:c0:a8: 61:72:8f:1d:54:03:50:33:36:c4:91:f2:01:80:58:cb:ab:9e: a8:6c:05:e5:36:d6:7e:24:12:91:7c:54:65:61:47:6f:2e:60: 9c:0e:a9:3f:84:ae:46:e5:75:88:93:9e:d8:08:07:e6:86:1c: ce:9e:a3:53:77:92:82:34:0f:b2:fc:d4:86:c0:5a:24:7b:61: 3f:8d:b1:02:51:c8:90:fd:76:00:5f:e4:09:48:d5:58:68:44: 79:90:f2:bd:1f:b6:dc:95:99:ad:b9:3d:d1:82:39:26:53:c7: 6f:82:ed:bf:18:00:7f:76:3e:fe:0b:de:fa:6a:35:87:93:6f: a3:30:65:cc:29:57:5d:06:f7:0a:71:90:05:62:c2:d8:51:3a: bc:52:56:31:82:f3:df:16:0c:57:6a:29:70:84:b9:d6:a2:f4: 01:8b:39:3f:f3:c8:a4:89:99:7e:b7:05:c1:db:23:f4:8b:92: b4:69:fe:a1:53:f6:15:47:3f:0e:71:4d:27:91:77:5d:04:be: ba:1b:6b:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 ODQyNDExMC8GA1UEBRMoNzRBMTE2NjlDNDNFNTNCMEYyMUQ0QjQxM0Y5MkQ5RUE5 MTMxNTUwMzAeFw0yNDA5MTkwNTU5NTdaFw0yNDA5MjYwNTU5NTdaMBgxFjAUBgNV BAMTDTY2ZWJiZGRkLTFhYjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4Wvv8jf6vGkMYmLXNHl8NRGeFa3Lx81hDFG8Ls6/l89phkZaMNW4V8t9R2cyx rWNDlcqufoh70LbEtq+CMoYWiMnNDfaQ7JTobUlCZ4IGZaHHFV2VHCyGkCQNCX1+ vixIz9WpI+o636mN8JE7oohNt/kx0SMRh143OUUXLaiPLyCKZSaDkle/aE6r+WXC psEFRqXlqfbkHIL/J6E3BcBCBBCusoyoOmBwtGJ6KhjTyXDsOqthGFdkbXkqwZEg vX3H+moSE4gwLctUlsTpATQDyiwMUGKGNksT+btQCBQwcnfIBDloSWLKazb4iQ7B +60l6GDYeLRV23f9N//cPTjjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMDokiIvn Pm33kO7XVZUrNV7dywQwHwYDVR0jBBgwFoAUdKEWacQ+U7DyHUtBP5LZ6pExVQMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4NDI0Lzc5M0VBNkRBMzhF MzExRUY5MTRCMkYzM0M0RjlBRTAyL2RLRVdhY1EtVTdEeUhVdEJQNUxaNnBFeFZR TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZEtFV2FjUS1VN0R5SFV0QlA1TFo2cEV4VlFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4 NDI0Lzc5M0VBNkRBMzhFMzExRUY5MTRCMkYzM0M0RjlBRTAyL2RLRVdhY1EtVTdE eUhVdEJQNUxaNnBFeFZRTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE6MdajuaLM7ze/Ivh0cF0e0Ffy17fDfu2VDZL5jNKoFopZy59hvHwYn 80M7HpURMYciHUPAqGFyjx1UA1AzNsSR8gGAWMurnqhsBeU21n4kEpF8VGVhR28u YJwOqT+ErkbldYiTntgIB+aGHM6eo1N3koI0D7L81IbAWiR7YT+NsQJRyJD9dgBf 5AlI1VhoRHmQ8r0fttyVma25PdGCOSZTx2+C7b8YAH92Pv4L3vpqNYeTb6MwZcwp V10G9wpxkAViwthROrxSVjGC898WDFdqKXCEudai9AGLOT/zyKSJmX63BcHbI/SL krRp/qFT9hVHPw5xTSeRd10Evroba8A= -----END CERTIFICATE-----Generated at Thu Sep 19 07:13:52 2024 by rpki-client on console-fra.rpki-client.org