$ rpki-client -vvf rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft File: AtoTJ_UsQCOjghrIeFDJF9joNSc.mft (raw, json) Hash identifier: lmYnL1d0cXhW4SJ+As0Zls2k9JPmPLZ6LZwwqgAR+1E= Subject key identifier: D3:01:72:B9:BE:33:62:EC:D8:0D:C5:D8:5E:8C:01:E2:8B:D8:60:81 Authority key identifier: 02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 Certificate issuer: /CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft Manifest number: 1F Signing time: Wed 23 Oct 2024 06:32:37 +0000 Manifest this update: Wed 23 Oct 2024 06:32:37 +0000 Manifest next update: Wed 30 Oct 2024 06:32:37 +0000 Files and hashes: 1: AtoTJ_UsQCOjghrIeFDJF9joNSc.crl (hash: KEMNa8pcjpbfuJvT8UIG6sw+222wjDfVTYZ/Sy2Ot8w=) 2: CE1E14AE64DC11EFBE5A023AC4F9AE02.roa (hash: TL1SnZ/gVu4gXR6fktiVjS67hjGfn2PQM4oWEdnN0mQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Validity Not Before: Oct 23 06:32:37 2024 GMT Not After : Oct 30 06:32:37 2024 GMT Subject: CN=67189885-1d3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8d:1b:be:5e:96:33:c9:e7:df:c7:09:dc:5b: f1:58:2a:57:c1:0d:9e:5f:68:73:f1:3a:9f:ed:8b: a0:3a:00:8d:d8:76:84:90:39:34:8c:ad:f1:1a:86: 70:a0:4d:c5:b7:4e:05:e9:6c:56:0d:86:fb:33:32: d5:39:76:61:d1:a6:0f:1e:58:68:5c:8c:75:e3:8e: 2b:be:ad:40:80:1c:f7:a6:d2:7e:c4:fd:9b:fb:24: 08:41:2a:33:1d:5f:d2:0d:8d:09:49:c4:75:69:4b: 49:ba:0d:ef:7f:b9:03:8a:aa:39:77:b2:69:48:eb: 72:92:0f:e5:20:81:47:57:51:48:f7:e4:fa:e9:0c: 54:99:f6:b0:08:f5:d8:8d:0e:fc:6b:c0:a7:21:7a: 91:03:4e:ff:d7:1b:3d:55:63:2d:89:0f:81:50:31: 8e:d1:af:a5:8b:5d:57:c6:e6:5a:a8:b3:92:64:4c: 30:22:1a:94:c3:5a:ff:aa:fa:b4:18:52:34:01:17: a9:c3:8a:96:6f:63:58:d0:77:9a:00:7c:39:35:ce: 5a:89:04:21:d1:63:55:d4:b2:6d:6e:15:96:60:1a: 2d:2d:02:cb:49:47:40:da:71:56:1e:63:8e:2c:ae: b4:44:d9:67:77:bc:d6:d7:c3:6a:12:e3:18:d8:8d: 04:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:01:72:B9:BE:33:62:EC:D8:0D:C5:D8:5E:8C:01:E2:8B:D8:60:81 X509v3 Authority Key Identifier: keyid:02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:38:3e:b5:ba:7e:eb:74:34:7d:b8:f8:be:fa:1c:5f:c0:7e: ee:0a:87:07:3d:28:db:3b:d4:5c:f7:36:a1:08:71:c0:a5:e5: a3:59:11:21:6e:0a:f1:3a:29:c6:38:fb:2e:65:1c:a9:d3:71: 4f:e8:26:d5:5c:4e:f7:5c:e5:94:b7:69:3a:60:1c:d3:44:cd: ab:a9:53:be:2d:e3:25:01:f1:eb:91:cb:68:b2:51:62:4c:81: e0:9f:3a:26:ef:42:00:11:a6:4a:8c:a7:c9:af:aa:61:ff:a0: b1:08:d9:45:32:8d:e9:a6:16:4e:fe:4a:fa:ef:9e:da:d2:2b: fe:c1:08:34:8b:ed:d8:b5:15:f5:bb:30:61:26:2f:b1:22:a7: 86:6a:a7:c2:cb:74:53:8f:66:de:3c:71:36:b7:c9:73:35:d9: 61:45:2f:f9:7d:8f:1c:ed:8e:21:a1:fe:fe:45:c4:14:17:ac: bc:8c:27:1f:55:80:b0:d1:86:6f:79:df:4f:12:f6:68:1e:83: d4:e6:fc:27:8f:e4:00:25:ec:a3:75:f8:7f:ea:6d:c6:00:27: 89:09:8d:bc:ee:98:3c:3d:a7:c0:02:12:99:09:9f:1d:8b:ec: b4:70:18:d4:51:ea:92:48:64:d7:84:76:f8:d8:33:0f:fe:c3: 3e:3c:30:8d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 REI3RTExMC8GA1UEBRMoMDJEQTEzMjdGNTJDNDAyM0EzODIxQUM4Nzg1MEM5MTdE OEU4MzUyNzAeFw0yNDEwMjMwNjMyMzdaFw0yNDEwMzAwNjMyMzdaMBgxFjAUBgNV BAMTDTY3MTg5ODg1LTFkM2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcjRu+XpYzyeffxwncW/FYKlfBDZ5faHPxOp/ti6A6AI3YdoSQOTSMrfEahnCg TcW3TgXpbFYNhvszMtU5dmHRpg8eWGhcjHXjjiu+rUCAHPem0n7E/Zv7JAhBKjMd X9INjQlJxHVpS0m6De9/uQOKqjl3smlI63KSD+UggUdXUUj35PrpDFSZ9rAI9diN DvxrwKchepEDTv/XGz1VYy2JD4FQMY7Rr6WLXVfG5lqos5JkTDAiGpTDWv+q+rQY UjQBF6nDipZvY1jQd5oAfDk1zlqJBCHRY1XUsm1uFZZgGi0tAstJR0DacVYeY44s rrRE2Wd3vNbXw2oS4xjYjQTRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0wFyub4z YuzYDcXYXowB4ovYYIEwHwYDVR0jBBgwFoAUAtoTJ/UsQCOjghrIeFDJF9joNScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEQjdFLzlDM0ZFQ0RDNjRE QzExRUZCMzFFQTgzOUM0RjlBRTAyL0F0b1RKX1VzUUNPamdockllRkRKRjlqb05T Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQXRvVEpfVXNRQ09qZ2hySWVGREpGOWpvTlNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThE QjdFLzlDM0ZFQ0RDNjREQzExRUZCMzFFQTgzOUM0RjlBRTAyL0F0b1RKX1VzUUNP amdockllRkRKRjlqb05TYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFg4PrW6fut0NH24+L76HF/Afu4Khwc9KNs71Fz3NqEIccCl5aNZESFu CvE6KcY4+y5lHKnTcU/oJtVcTvdc5ZS3aTpgHNNEzaupU74t4yUB8euRy2iyUWJM geCfOibvQgARpkqMp8mvqmH/oLEI2UUyjemmFk7+SvrvntrSK/7BCDSL7di1FfW7 MGEmL7Eip4Zqp8LLdFOPZt48cTa3yXM12WFFL/l9jxztjiGh/v5FxBQXrLyMJx9V gLDRhm95308S9mgeg9Tm/CeP5AAl7KN1+H/qbcYAJ4kJjbzumDw9p8ACEpkJnx2L 7LRwGNRR6pJIZNeEdvjYMw/+wz48MI0= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:22 2024 by rpki-client on console-fra.rpki-client.org