$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft File: 05hHRxQle77zpal12QzQ3GW92-8.mft (raw, json) Hash identifier: mLM3zfRYuXuUows4JQPS9NBtXt7KdmA+Zo9h4wKvWhg= Subject key identifier: 6A:EC:D8:F1:F5:B3:1B:76:1A:14:D2:FD:B8:28:1C:B1:82:B1:EA:2A Authority key identifier: D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF Certificate issuer: /CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft Manifest number: 14 Signing time: Thu 19 Sep 2024 06:20:42 +0000 Manifest this update: Thu 19 Sep 2024 06:20:42 +0000 Manifest next update: Thu 26 Sep 2024 06:20:42 +0000 Files and hashes: 1: 05hHRxQle77zpal12QzQ3GW92-8.crl (hash: 4itocqpDpB0zITbU4hcAoeq5wfQL68VC6wn/yINV5tc=) 2: E1EF913A5DF011EFAC9CA43BC4F9AE02.roa (hash: HnEUHlw9gil+mYxp63GxFhUGPoOAuwCoKZnzCLBninA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Validity Not Before: Sep 19 06:20:42 2024 GMT Not After : Sep 26 06:20:42 2024 GMT Subject: CN=66ebc2ba-d2f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:81:ec:a5:70:3e:f7:7f:30:42:b0:a8:6d:01: a5:51:b3:44:5a:43:c1:4e:7a:e2:4b:2b:29:f9:3b: 9a:95:a0:7c:86:b5:da:86:ee:81:6a:41:b6:1f:ae: 68:e3:eb:46:18:a4:48:84:3e:dc:27:0d:06:71:bc: ce:e1:3c:82:06:53:ad:ea:f1:71:9f:b5:d4:9b:f0: ca:d6:33:ab:88:01:04:07:84:de:27:70:a8:71:31: 17:18:e1:d1:be:e7:53:8f:75:9d:f5:2c:91:26:6a: 49:f8:d8:4e:17:e1:eb:1d:75:32:b5:5d:fd:0e:b7: 19:54:81:ab:61:94:1e:24:aa:14:74:46:bd:a7:07: b1:dc:97:86:c4:da:e0:5f:33:8b:f8:e0:43:aa:64: 88:79:23:fc:f5:3e:c7:bf:cd:a9:0f:e6:fc:91:ac: 1b:2d:13:73:32:bf:53:09:8d:13:05:48:b1:fe:e0: f0:fa:3b:10:32:69:6c:ac:4a:b3:e8:25:df:98:20: f4:da:10:26:6c:be:25:0f:20:de:5f:51:8c:de:7e: 64:83:dc:a3:d9:67:d4:80:7c:e0:b2:d9:22:2b:a6: a8:81:31:b4:ee:5e:89:ba:bc:50:00:4b:8a:77:d3: a8:d6:5d:2f:58:13:81:08:cf:5d:f2:02:c2:4c:88: ae:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:EC:D8:F1:F5:B3:1B:76:1A:14:D2:FD:B8:28:1C:B1:82:B1:EA:2A X509v3 Authority Key Identifier: keyid:D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:a8:d8:9f:65:7c:54:fc:a2:be:69:58:02:0f:11:8b:7e:75: 3f:b0:5e:74:4a:fb:6b:6d:7e:34:e7:d3:f4:08:67:66:e5:fb: be:3c:86:59:9a:fb:e2:57:30:0a:99:36:50:32:fb:67:52:8b: 96:10:5d:a0:fa:3a:2f:50:1c:35:08:ca:0e:46:d5:81:9d:72: ef:c1:b0:8e:2e:6e:d6:77:aa:5f:ba:0a:f7:d5:9f:82:c1:75: 8d:32:2d:28:9c:00:f2:91:c0:fa:0b:e1:45:81:b7:5d:84:e4: 1d:15:00:45:a8:16:67:b8:64:b8:97:43:bf:94:3d:36:68:fd: 5f:c6:d4:38:c8:6a:c1:ac:53:0e:d5:fe:3e:36:a1:ad:6b:7d: cd:ba:c1:63:09:26:d7:a3:49:b7:a8:b7:b5:be:4a:f0:78:07: 32:e2:e2:14:c0:14:3d:6b:46:af:c7:e6:35:87:e6:33:9e:95: de:d9:d0:7c:a2:10:b8:ed:99:6a:0e:05:93:c6:8f:d0:3b:72: 4d:ad:3e:d4:84:6f:49:cf:a3:46:dd:56:1a:da:09:08:1e:bb: 0b:af:9c:5d:3a:2f:f6:1b:c7:84:00:85:b8:5c:c0:fa:47:74: d1:00:19:19:89:b8:36:71:a1:16:37:cf:e7:96:3b:40:9d:db: 94:46:25:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0NCQzExMC8GA1UEBRMoRDM5ODQ3NDcxNDI1N0JCRUYzQTVBOTc1RDkwQ0QwREM2 NUJEREJFRjAeFw0yNDA5MTkwNjIwNDJaFw0yNDA5MjYwNjIwNDJaMBgxFjAUBgNV BAMTDTY2ZWJjMmJhLWQyZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzgeylcD73fzBCsKhtAaVRs0RaQ8FOeuJLKyn5O5qVoHyGtdqG7oFqQbYfrmjj 60YYpEiEPtwnDQZxvM7hPIIGU63q8XGftdSb8MrWM6uIAQQHhN4ncKhxMRcY4dG+ 51OPdZ31LJEmakn42E4X4esddTK1Xf0OtxlUgathlB4kqhR0Rr2nB7Hcl4bE2uBf M4v44EOqZIh5I/z1Pse/zakP5vyRrBstE3Myv1MJjRMFSLH+4PD6OxAyaWysSrPo Jd+YIPTaECZsviUPIN5fUYzefmSD3KPZZ9SAfOCy2SIrpqiBMbTuXom6vFAAS4p3 06jWXS9YE4EIz13yAsJMiK6HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUauzY8fWz G3YaFNL9uCgcsYKx6iowHwYDVR0jBBgwFoAU05hHRxQle77zpal12QzQ3GW92+8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3Q0JDLzk1MkJBRTJFNURG MDExRUZBQzcwRUQwQUM0RjlBRTAyLzA1aEhSeFFsZTc3enBhbDEyUXpRM0dXOTIt OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDVoSFJ4UWxlNzd6cGFsMTJRelEzR1c5Mi04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 Q0JDLzk1MkJBRTJFNURGMDExRUZBQzcwRUQwQUM0RjlBRTAyLzA1aEhSeFFsZTc3 enBhbDEyUXpRM0dXOTItOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADWo2J9lfFT8or5pWAIPEYt+dT+wXnRK+2ttfjTn0/QIZ2bl+748hlma ++JXMAqZNlAy+2dSi5YQXaD6Oi9QHDUIyg5G1YGdcu/BsI4ubtZ3ql+6CvfVn4LB dY0yLSicAPKRwPoL4UWBt12E5B0VAEWoFme4ZLiXQ7+UPTZo/V/G1DjIasGsUw7V /j42oa1rfc26wWMJJtejSbeot7W+SvB4BzLi4hTAFD1rRq/H5jWH5jOeld7Z0Hyi ELjtmWoOBZPGj9A7ck2tPtSEb0nPo0bdVhraCQgeuwuvnF06L/Ybx4QAhbhcwPpH dNEAGRmJuDZxoRY3z+eWO0Cd25RGJXs= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:50 2024 by rpki-client on console-ams.rpki-client.org