$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft File: 09eD7kxpu1Bj-1z1smKLx77DdIo.mft (raw, json) Hash identifier: japT6yr9oUCoIwJeyxRui2yHl4kGp9zbRn8YOxbqtbA= Subject key identifier: EB:F8:46:43:90:6B:77:6D:2A:F7:77:F5:C9:39:94:0B:07:88:2C:7E Authority key identifier: D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A Certificate issuer: /CN=A91B9A77/serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft Manifest number: 11 Signing time: Wed 23 Oct 2024 01:59:17 +0000 Manifest this update: Wed 23 Oct 2024 01:59:16 +0000 Manifest next update: Wed 30 Oct 2024 01:59:16 +0000 Files and hashes: 1: 09eD7kxpu1Bj-1z1smKLx77DdIo.crl (hash: iHUlQv4yPxmWcuRAgoshFi2N5+9GnGyWd8npuqzx3Go=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 01:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9A77/serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A Validity Not Before: Oct 23 01:59:16 2024 GMT Not After : Oct 30 01:59:16 2024 GMT Subject: CN=67185874-c9c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c8:55:71:72:2a:99:2f:7d:33:26:80:bb:0e: 45:f9:2b:41:5b:16:2e:1f:e8:6c:ef:21:89:b5:af: 8b:76:16:86:35:ed:d3:cd:4e:87:c8:7a:ad:a4:04: 6e:1a:13:d0:10:bc:3e:88:75:f6:6f:62:16:8e:de: d1:b8:9e:e4:25:d3:36:22:42:98:80:7d:8c:77:b8: 02:b1:5e:cc:6a:e0:fa:87:a1:e3:44:f6:14:64:89: f0:8e:4a:16:3e:72:38:ec:aa:c5:53:6e:b9:63:77: 9d:db:77:9b:3a:7f:71:3e:00:8e:0d:cb:c8:2a:f7: bd:51:2d:8f:e3:63:ed:7c:19:e5:76:4c:87:a6:5f: c4:a7:66:98:26:33:55:cb:ee:7a:7e:e3:b3:fa:48: fe:d2:0c:4f:f3:76:07:e5:dc:3a:1f:c1:31:8a:40: b3:9a:09:c3:32:22:2b:30:ac:f0:f5:1b:22:5c:42: 4f:da:24:d9:cb:0a:2c:1c:e2:14:56:28:bd:20:41: 8d:8b:82:07:10:e0:89:1f:ff:07:88:88:57:56:27: f1:6d:fd:d7:d5:0c:8d:a6:dc:7c:bd:a1:7c:2b:b7: 2b:c5:06:20:fc:2d:94:d2:66:90:2e:36:1a:04:3f: 6e:1d:05:61:42:93:67:65:d5:9f:e1:c0:d2:db:7c: bb:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F8:46:43:90:6B:77:6D:2A:F7:77:F5:C9:39:94:0B:07:88:2C:7E X509v3 Authority Key Identifier: keyid:D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:08:39:9c:d8:87:f6:f7:b0:5f:7b:68:e9:03:67:dc:e6:06: a7:b8:4d:27:73:1c:9f:11:6e:d0:62:17:84:5b:58:c4:43:18: 4f:51:e0:37:60:a9:85:89:77:74:56:f4:bb:b6:67:e8:a7:df: f6:e7:46:3c:31:5b:60:6c:fe:4d:5f:7c:85:21:3b:53:d7:67: 27:f0:16:1e:85:e3:29:5a:a3:32:b2:2a:26:3a:18:06:d3:12: 10:c6:2d:42:2a:99:2f:3d:b5:11:08:c2:92:2f:a5:2a:73:a3: dd:29:5a:74:bb:3e:1a:b0:a4:25:a6:f7:4e:85:4a:e4:bb:31: 66:42:48:4b:68:6b:48:ff:5a:c5:c3:7f:41:68:0a:53:05:98: ff:d9:a3:f8:15:c6:20:0a:ef:c2:1f:8f:f5:d2:59:69:08:08: 1b:ed:ce:48:a1:36:7e:61:0c:69:9d:f4:78:1e:00:55:c1:6f: 2e:dc:5a:a4:5f:dc:04:5f:f3:7b:d6:85:6b:91:36:f2:7e:39: 5f:33:3f:fa:71:8b:3c:21:ce:41:ae:8e:9e:96:76:14:44:a7: 1b:4a:7d:3f:f8:97:8c:56:ba:ac:70:94:ec:c0:e5:59:45:f0: 85:a5:df:63:30:32:87:4f:c2:12:ab:d8:d9:e9:15:eb:a0:4b: 64:f5:09:0b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUE3NzExMC8GA1UEBRMoRDNENzgzRUU0QzY5QkI1MDYzRkI1Q0Y1QjI2MjhCQzdC RUMzNzQ4QTAeFw0yNDEwMjMwMTU5MTZaFw0yNDEwMzAwMTU5MTZaMBgxFjAUBgNV BAMTDTY3MTg1ODc0LWM5YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVyFVxciqZL30zJoC7DkX5K0FbFi4f6GzvIYm1r4t2FoY17dPNTofIeq2kBG4a E9AQvD6IdfZvYhaO3tG4nuQl0zYiQpiAfYx3uAKxXsxq4PqHoeNE9hRkifCOShY+ cjjsqsVTbrljd53bd5s6f3E+AI4Ny8gq971RLY/jY+18GeV2TIemX8SnZpgmM1XL 7np+47P6SP7SDE/zdgfl3DofwTGKQLOaCcMyIiswrPD1GyJcQk/aJNnLCiwc4hRW KL0gQY2LggcQ4Ikf/weIiFdWJ/Ft/dfVDI2m3Hy9oXwrtyvFBiD8LZTSZpAuNhoE P24dBWFCk2dl1Z/hwNLbfLsxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6/hGQ5Br d20q93f1yTmUCweILH4wHwYDVR0jBBgwFoAU09eD7kxpu1Bj+1z1smKLx77DdIow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QTc3L0FCODUzNDQwN0Ez RjExRUZBMUMwRTAxNkM0RjlBRTAyLzA5ZUQ3a3hwdTFCai0xejFzbUtMeDc3RGRJ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDllRDdreHB1MUJqLTF6MXNtS0x4NzdEZElvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 QTc3L0FCODUzNDQwN0EzRjExRUZBMUMwRTAxNkM0RjlBRTAyLzA5ZUQ3a3hwdTFC ai0xejFzbUtMeDc3RGRJby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL8IOZzYh/b3sF97aOkDZ9zmBqe4TSdzHJ8RbtBiF4RbWMRDGE9R4Ddg qYWJd3RW9Lu2Z+in3/bnRjwxW2Bs/k1ffIUhO1PXZyfwFh6F4ylaozKyKiY6GAbT EhDGLUIqmS89tREIwpIvpSpzo90pWnS7PhqwpCWm906FSuS7MWZCSEtoa0j/WsXD f0FoClMFmP/Zo/gVxiAK78Ifj/XSWWkICBvtzkihNn5hDGmd9HgeAFXBby7cWqRf 3ARf83vWhWuRNvJ+OV8zP/pxizwhzkGujp6WdhREpxtKfT/4l4xWuqxwlOzA5VlF 8IWl32MwModPwhKr2NnpFeugS2T1CQs= -----END CERTIFICATE-----Generated at Wed Oct 23 04:41:46 2024 by rpki-client on console-ams.rpki-client.org