$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: LWBaF8gU31/Vu/fifb49CikuiCwFNg7eH3OHTxq4wkE= Subject key identifier: 46:18:03:29:68:3F:31:1D:F6:C2:B5:C0:62:93:F4:CA:71:EF:A2:0F Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: 34 Signing time: Sun 15 Sep 2024 10:02:48 +0000 Manifest this update: Sun 15 Sep 2024 10:02:47 +0000 Manifest next update: Sun 22 Sep 2024 10:02:47 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: wcihv7bmUsvZfjaopCDWAWUsfFiLeTDUNjhK+u+J8Ng=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: 1IspOhl6gwbhdZvL5rloqYpEEE+IPoe5ali+fyL8EWw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Sep 15 10:02:47 2024 GMT Not After : Sep 22 10:02:47 2024 GMT Subject: CN=66e6b0c8-b5bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d0:32:21:d1:a2:85:cd:e9:dd:be:f9:d7:52: af:f0:4d:78:03:6d:9e:9c:6e:2d:ef:0a:84:63:cc: 25:48:65:08:df:21:33:ea:ed:75:b8:87:65:b9:62: e4:ed:eb:65:39:27:01:43:b1:3f:61:7f:9b:40:2a: 07:52:ac:6b:2a:f7:fc:a5:b1:77:a4:3a:d5:87:1d: c9:d2:e8:f6:b9:77:4c:1c:61:7a:3e:4f:56:cf:db: 33:5d:92:c6:87:b9:36:d6:34:86:73:c7:cc:b3:eb: cd:38:e4:c9:08:71:f0:e0:56:7d:10:f0:04:cf:40: b7:a9:ea:91:10:2e:9f:b1:d2:93:f2:94:e1:a5:96: fe:90:ba:3f:4f:3a:ae:03:4f:af:30:c8:3c:14:41: ab:66:46:7a:d4:26:91:5f:e1:57:99:78:1c:7e:02: 22:7a:b8:d6:fe:01:ad:5a:a3:71:9f:f6:22:c7:08: 46:04:76:13:ef:aa:18:d6:dc:75:ad:8c:72:74:b9: f7:78:5c:15:a6:3c:82:4a:a8:8a:98:9a:9d:98:a3: f4:f0:32:2e:9f:8a:0a:ec:01:d9:63:6c:2b:6e:a3: f2:99:40:f0:9c:cd:f8:3f:e1:00:35:8e:a9:a6:ff: 64:45:68:14:8f:9c:05:c4:c6:1d:79:b2:3f:6e:02: fc:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:18:03:29:68:3F:31:1D:F6:C2:B5:C0:62:93:F4:CA:71:EF:A2:0F X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:9b:8e:7a:86:42:45:75:44:c3:88:b9:ee:92:8e:a2:1d:14: 58:02:f0:53:a5:f6:53:b9:7f:3a:cf:90:a9:16:0f:2b:c3:49: ca:37:65:8e:ad:00:c1:ec:89:a4:39:7c:49:b8:4e:92:4e:a5: d8:39:68:bc:92:13:2a:f3:17:e0:0a:2b:a3:7c:ba:69:e6:7e: 11:c2:44:fe:ef:99:46:05:40:83:06:62:ba:33:e4:f5:3d:aa: 57:97:9e:c0:3c:4b:9a:b0:c7:65:0f:8a:ea:a1:0f:ca:cc:8f: 06:94:64:8c:c0:6f:63:5b:e3:1f:42:ce:be:85:e4:c3:a1:c6: 06:bd:03:22:a1:0d:ce:51:90:41:c7:eb:5e:6b:a5:02:5b:bb: 14:b2:d7:65:ef:8a:42:04:bf:6d:34:3a:4a:42:0f:c6:3f:14: c8:94:82:f1:b7:07:c9:a5:56:9e:d8:8e:87:a3:af:24:5c:19: 6c:e8:77:b3:81:07:a2:38:52:36:c9:12:3f:9e:5a:b1:2a:ea: d7:07:b1:2a:3d:f8:20:0e:71:41:88:63:a5:df:7b:d4:25:7d: 4e:ec:85:6a:31:7f:18:1f:8e:3d:d5:5c:67:2c:5d:27:63:34: d6:9b:bf:93:c5:b1:2a:bd:aa:79:96:52:ef:8d:ff:59:14:91: 85:ca:c5:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QTkwOTExMC8GA1UEBRMoOTA4REIzRjlCNzQ2RjUyMEJCQjlBODRDODUzRjY5MjZD MTVFQjlCRDAeFw0yNDA5MTUxMDAyNDdaFw0yNDA5MjIxMDAyNDdaMBgxFjAUBgNV BAMTDTY2ZTZiMGM4LWI1YmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC10DIh0aKFzendvvnXUq/wTXgDbZ6cbi3vCoRjzCVIZQjfITPq7XW4h2W5YuTt 62U5JwFDsT9hf5tAKgdSrGsq9/ylsXekOtWHHcnS6Pa5d0wcYXo+T1bP2zNdksaH uTbWNIZzx8yz68045MkIcfDgVn0Q8ATPQLep6pEQLp+x0pPylOGllv6Quj9POq4D T68wyDwUQatmRnrUJpFf4VeZeBx+AiJ6uNb+Aa1ao3Gf9iLHCEYEdhPvqhjW3HWt jHJ0ufd4XBWmPIJKqIqYmp2Yo/TwMi6figrsAdljbCtuo/KZQPCczfg/4QA1jqmm /2RFaBSPnAXExh15sj9uAvyDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURhgDKWg/ MR32wrXAYpP0ynHvog8wHwYDVR0jBBgwFoAUkI2z+bdG9SC7uahMhT9pJsFeub0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBOTA5LzIwOUVERENFMkEz MzExRUZCRTlBQTg1OUM0RjlBRTAyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXVi MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0kyei1iZEc5U0M3dWFoTWhUOXBKc0ZldWIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlB OTA5LzIwOUVERENFMkEzMzExRUZCRTlBQTg1OUM0RjlBRTAyL2tJMnotYmRHOVND N3VhaE1oVDlwSnNGZXViMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACmbjnqGQkV1RMOIue6SjqIdFFgC8FOl9lO5fzrPkKkWDyvDSco3ZY6t AMHsiaQ5fEm4TpJOpdg5aLySEyrzF+AKK6N8umnmfhHCRP7vmUYFQIMGYroz5PU9 qleXnsA8S5qwx2UPiuqhD8rMjwaUZIzAb2Nb4x9Czr6F5MOhxga9AyKhDc5RkEHH 615rpQJbuxSy12XvikIEv200OkpCD8Y/FMiUgvG3B8mlVp7YjoejryRcGWzod7OB B6I4UjbJEj+eWrEq6tcHsSo9+CAOcUGIY6Xfe9QlfU7shWoxfxgfjj3VXGcsXSdj NNabv5PFsSq9qnmWUu+N/1kUkYXKxfE= -----END CERTIFICATE-----Generated at Sun Sep 15 12:30:35 2024 by rpki-client on console-ams.rpki-client.org