$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: Qm81XYRSnS011edmOJUnp2qI87Magqw2IGOgsK03jwM= Subject key identifier: 9B:BF:70:0B:38:10:C3:0D:34:A7:C4:55:96:2B:81:58:79:BF:37:54 Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: 17 Signing time: Thu 19 Sep 2024 06:15:45 +0000 Manifest this update: Thu 19 Sep 2024 06:15:45 +0000 Manifest next update: Thu 26 Sep 2024 06:15:45 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: tNl+tjC1WzhLqP0VcCTKyCD87TtQKGuGd3jGhBQseNI=) 2: 335E880A5A1811EFB08E4F38C4F9AE02.roa (hash: uB7Em80PKGY4uO2oMYJtskRF61M8oMXLAmFb1PjEp7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: Sep 19 06:15:45 2024 GMT Not After : Sep 26 06:15:45 2024 GMT Subject: CN=66ebc191-215e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4d:7e:e0:c6:8f:0b:0a:b7:30:50:8b:b8:06: 49:18:9c:8e:1f:1c:2a:19:5d:fd:8d:3a:4c:4b:08: 22:9a:8d:3c:93:b2:02:67:2b:2f:ea:e0:b3:25:2a: 2f:e2:4b:80:70:6e:4b:41:d0:3d:8f:2f:5d:66:85: bb:21:c0:84:96:0d:78:6f:62:4f:e0:81:66:7f:72: 35:ea:f1:0b:64:eb:0f:44:80:44:37:c4:cf:32:c4: 9d:88:02:75:52:56:5a:63:68:a1:e4:e3:b3:a8:23: 86:aa:b8:b9:42:0a:ae:0a:98:af:f1:67:b6:d7:c9: c2:30:7c:3c:ee:2b:2f:d9:0a:f4:ad:e1:20:41:34: b5:6a:2c:b4:74:99:42:0b:37:cb:fe:96:70:79:24: 29:70:63:8f:72:b6:93:87:66:73:2c:4b:74:15:2e: 5c:92:a1:5d:69:2f:46:2c:2a:c7:40:b1:fd:07:d1: 72:ae:c2:e1:9f:69:b9:0c:91:f0:76:8e:83:ff:ba: c0:a5:c7:01:b1:a0:f6:f2:f3:01:ab:25:bf:23:4d: 22:ce:fe:27:14:8d:6d:12:88:76:a7:0a:d5:e3:d8: 6a:88:76:c9:3a:bf:81:e3:ed:68:de:21:60:51:31: 54:9b:8c:35:b5:21:e2:a8:ec:a8:0d:66:13:5b:0f: c3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:BF:70:0B:38:10:C3:0D:34:A7:C4:55:96:2B:81:58:79:BF:37:54 X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:21:b5:1c:f2:87:51:d4:b2:1c:02:85:ac:a0:6b:f1:15:40: 4e:8f:b6:1c:67:67:c2:fe:67:8b:0f:4b:d1:ca:73:3f:ac:83: ce:38:39:1e:31:f7:91:a0:36:17:8a:08:9f:f0:a4:c2:a1:1a: b2:74:9a:09:b7:da:b2:28:7f:aa:7c:1c:ac:ca:74:a5:bb:e8: 27:87:5a:0a:ce:bc:32:97:b6:94:99:58:76:bf:2c:12:83:d5: fd:91:d7:10:ff:0e:7d:9e:41:18:8c:02:1a:92:74:bc:0e:03: dc:b7:78:b8:dc:53:ab:27:c9:56:a9:a4:48:6d:2a:81:87:78: d0:ca:07:37:1c:ba:80:b6:75:56:52:38:ad:41:fb:75:22:c9: 37:e9:f9:c6:9a:ea:7c:38:d6:0f:0c:09:1c:a6:55:08:7d:cd: 62:c9:c7:db:1c:c0:66:35:21:c8:6c:4f:3e:7e:85:7a:8c:b2: 33:d1:22:07:aa:9d:b3:80:e0:43:79:0c:54:79:e8:28:b2:8c: 53:a9:0b:7f:38:f7:d6:bf:87:bf:f1:7b:e7:94:cd:d8:34:cc: e4:31:a6:b2:6a:91:de:1b:48:3e:fd:dc:a5:f5:f2:ad:43:86: db:b3:df:02:e4:f1:ee:fd:3f:7b:bc:a4:10:a3:21:b4:36:69: 5a:58:a0:6e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzVFMDExMC8GA1UEBRMoMDc4QjRBODBEMURGRTZDMDUyNTMzQUFEQjE5NTM0QUM1 OUEzOTU0QjAeFw0yNDA5MTkwNjE1NDVaFw0yNDA5MjYwNjE1NDVaMBgxFjAUBgNV BAMTDTY2ZWJjMTkxLTIxNWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClTX7gxo8LCrcwUIu4BkkYnI4fHCoZXf2NOkxLCCKajTyTsgJnKy/q4LMlKi/i S4BwbktB0D2PL11mhbshwISWDXhvYk/ggWZ/cjXq8Qtk6w9EgEQ3xM8yxJ2IAnVS VlpjaKHk47OoI4aquLlCCq4KmK/xZ7bXycIwfDzuKy/ZCvSt4SBBNLVqLLR0mUIL N8v+lnB5JClwY49ytpOHZnMsS3QVLlySoV1pL0YsKsdAsf0H0XKuwuGfabkMkfB2 joP/usClxwGxoPby8wGrJb8jTSLO/icUjW0SiHanCtXj2GqIdsk6v4Hj7WjeIWBR MVSbjDW1IeKo7KgNZhNbD8MtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUm79wCzgQ ww00p8RVliuBWHm/N1QwHwYDVR0jBBgwFoAUB4tKgNHf5sBSUzqtsZU0rFmjlUsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDNUUwLzg3MjBBQjE4NUEx NzExRUZBQTIyQTcyOUM0RjlBRTAyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxV cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQjR0S2dOSGY1c0JTVXpxdHNaVTByRm1qbFVzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD NUUwLzg3MjBBQjE4NUExNzExRUZBQTIyQTcyOUM0RjlBRTAyL0I0dEtnTkhmNXNC U1V6cXRzWlUwckZtamxVcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAohtRzyh1HUshwChayga/EVQE6PthxnZ8L+Z4sPS9HKcz+sg844OR4x 95GgNheKCJ/wpMKhGrJ0mgm32rIof6p8HKzKdKW76CeHWgrOvDKXtpSZWHa/LBKD 1f2R1xD/Dn2eQRiMAhqSdLwOA9y3eLjcU6snyVappEhtKoGHeNDKBzccuoC2dVZS OK1B+3UiyTfp+caa6nw41g8MCRymVQh9zWLJx9scwGY1IchsTz5+hXqMsjPRIgeq nbOA4EN5DFR56CiyjFOpC38499a/h7/xe+eUzdg0zOQxprJqkd4bSD793KX18q1D htuz3wLk8e79P3u8pBCjIbQ2aVpYoG4= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:14 2024 by rpki-client on console-ams.rpki-client.org