$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft File: Kz24XvlSI40ZLc8XDua-scjbA6k.mft (raw, json) Hash identifier: 6jt1bv/bUK7CyWxQOuz1aj9y1Bbw1CCSdBlfPjVhzaI= Subject key identifier: C9:46:12:92:72:FF:86:E3:39:F8:23:78:C1:27:74:9F:B7:5A:74:8C Authority key identifier: 2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 Certificate issuer: /CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft Manifest number: 0E Signing time: Wed 23 Oct 2024 06:47:33 +0000 Manifest this update: Wed 23 Oct 2024 06:47:32 +0000 Manifest next update: Wed 30 Oct 2024 06:47:32 +0000 Files and hashes: 1: Kz24XvlSI40ZLc8XDua-scjbA6k.crl (hash: gW0Q0K8/bg39Aj53fD/JLAhZdxlGFNblgDH4DBx1sHI=) 2: 4AFF817484EF11EFBDCD721DC4F9AE02.roa (hash: yCZMfZ6NfluzN2Ky52xSRjoZCp2FkkrWLhsmfBj/nsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Validity Not Before: Oct 23 06:47:32 2024 GMT Not After : Oct 30 06:47:32 2024 GMT Subject: CN=67189c04-abf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9b:e5:2c:55:67:3e:73:95:d1:9a:30:e6:c4: 05:c3:a0:cb:60:65:a1:5e:d7:df:cb:0b:7a:99:79: 2d:49:b0:47:27:e0:67:92:25:0f:fc:37:b1:0b:d4: 83:9a:ea:a3:3c:7c:cc:76:f4:b1:0e:34:5e:52:f4: 42:4b:a9:84:5f:3f:99:63:93:dd:69:fe:57:6b:ab: 6b:08:02:35:d6:ab:ca:8f:c9:d7:36:45:06:5d:4f: ee:ab:df:d2:51:fa:70:45:78:37:c8:82:48:11:9c: 4c:33:e6:92:d6:23:1e:eb:e4:c4:cc:f4:4c:43:ea: 9e:3e:20:df:51:0d:d5:f4:5e:b6:4a:7e:c1:a3:1b: 1c:9a:39:6f:c6:37:54:2d:e8:74:2a:fe:0b:f2:ed: 2c:e0:dc:de:9c:cb:e4:5f:7b:6d:12:9f:2b:91:9e: 0b:df:bf:fb:87:43:6f:3e:0e:ac:7f:bb:93:14:bd: 39:9e:c8:27:b2:48:df:a0:a9:40:e2:58:8d:fa:91: bd:22:08:ac:49:30:fd:18:bc:d1:eb:e3:63:db:45: 78:0c:5d:3f:65:1e:29:f7:57:8e:ea:e4:cb:51:5b: f7:d0:51:d9:07:e3:7d:21:a5:be:73:7f:92:63:17: 07:76:75:5d:16:2f:ba:05:e0:ab:98:24:0f:6c:a9: 62:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:46:12:92:72:FF:86:E3:39:F8:23:78:C1:27:74:9F:B7:5A:74:8C X509v3 Authority Key Identifier: keyid:2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:06:5d:7a:d5:b6:e5:8a:ec:f7:83:21:22:f3:01:08:91:c7: f9:11:09:10:21:4c:e9:09:da:9b:de:85:6b:21:43:af:42:9c: 3a:9d:5a:e8:c1:0c:fb:41:f9:cb:dd:c8:db:83:68:82:47:23: 49:37:6f:06:7a:6e:ba:3b:18:d8:ad:6d:44:b7:60:44:88:49: ea:12:19:af:c5:83:a6:f5:a5:1f:60:7d:71:46:a8:41:0b:60: db:a1:98:09:07:52:a8:b7:9b:40:6a:9d:8a:dd:ef:27:a6:90: 12:76:f4:04:4c:0a:76:74:bd:68:36:5f:95:42:23:a4:af:ab: 4a:f3:e7:7a:bb:d1:3c:f8:2e:24:ed:b4:76:aa:e8:0b:33:3c: 98:79:aa:90:79:5c:9d:cc:e6:b2:09:8c:12:fe:88:f1:03:72: 31:d6:6f:cd:92:34:c9:12:fe:9f:60:67:a0:e3:db:ee:5b:8d: f6:4b:ec:47:3e:37:fe:fa:34:94:6b:71:ed:c7:b6:f7:45:a8: 75:fb:76:46:ce:d4:e8:f3:52:b0:91:2c:99:39:66:fc:7e:56: 84:5f:47:70:8a:be:29:7f:36:30:79:17:a6:15:4e:c1:1d:34: ac:8f:53:2f:9e:d6:f3:dd:76:f2:5b:b1:3e:42:eb:dc:07:e9: bc:c6:46:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RjUyNTExMC8GA1UEBRMoMkIzREI4NUVGOTUyMjM4RDE5MkRDRjE3MEVFNkJFQjFD OERCMDNBOTAeFw0yNDEwMjMwNjQ3MzJaFw0yNDEwMzAwNjQ3MzJaMBgxFjAUBgNV BAMTDTY3MTg5YzA0LWFiZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBm+UsVWc+c5XRmjDmxAXDoMtgZaFe19/LC3qZeS1JsEcn4GeSJQ/8N7EL1IOa 6qM8fMx29LEONF5S9EJLqYRfP5ljk91p/ldrq2sIAjXWq8qPydc2RQZdT+6r39JR +nBFeDfIgkgRnEwz5pLWIx7r5MTM9ExD6p4+IN9RDdX0XrZKfsGjGxyaOW/GN1Qt 6HQq/gvy7Szg3N6cy+Rfe20SnyuRngvfv/uHQ28+Dqx/u5MUvTmeyCeySN+gqUDi WI36kb0iCKxJMP0YvNHr42PbRXgMXT9lHin3V47q5MtRW/fQUdkH430hpb5zf5Jj Fwd2dV0WL7oF4KuYJA9sqWJjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyUYSknL/ huM5+CN4wSd0n7dadIwwHwYDVR0jBBgwFoAUKz24XvlSI40ZLc8XDua+scjbA6kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGNTI1L0UxODcxNzc2ODRF RDExRUZCOUZGMkQ1QUM0RjlBRTAyL0t6MjRYdmxTSTQwWkxjOFhEdWEtc2NqYkE2 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3oyNFh2bFNJNDBaTGM4WER1YS1zY2piQTZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlG NTI1L0UxODcxNzc2ODRFRDExRUZCOUZGMkQ1QUM0RjlBRTAyL0t6MjRYdmxTSTQw WkxjOFhEdWEtc2NqYkE2ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA4GXXrVtuWK7PeDISLzAQiRx/kRCRAhTOkJ2pvehWshQ69CnDqdWujB DPtB+cvdyNuDaIJHI0k3bwZ6bro7GNitbUS3YESISeoSGa/Fg6b1pR9gfXFGqEEL YNuhmAkHUqi3m0BqnYrd7yemkBJ29ARMCnZ0vWg2X5VCI6Svq0rz53q70Tz4LiTt tHaq6AszPJh5qpB5XJ3M5rIJjBL+iPEDcjHWb82SNMkS/p9gZ6Dj2+5bjfZL7Ec+ N/76NJRrce3HtvdFqHX7dkbO1OjzUrCRLJk5Zvx+VoRfR3CKvil/NjB5F6YVTsEd NKyPUy+e1vPddvJbsT5C69wH6bzGRmI= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:23 2024 by rpki-client on console-fra.rpki-client.org