$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: 7xBDtBYFRhXxAACnzWRgm7vqFf8nVXOGVz0W4IsgGiU= Subject key identifier: D9:DB:BF:31:2B:12:0C:DD:A9:7F:08:A5:51:A0:A2:01:92:E4:EF:8A Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: 17 Signing time: Wed 23 Oct 2024 06:39:01 +0000 Manifest this update: Wed 23 Oct 2024 06:39:00 +0000 Manifest next update: Wed 30 Oct 2024 06:39:00 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: bWUxraW3Fkxppr0SU+FzcCC0Jv5VRUm/xnyzVkuUpJk=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: aci5Spv/e6z609EwzRrCe3VebaHTH23V/kyd6t5TMtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Oct 23 06:39:00 2024 GMT Not After : Oct 30 06:39:00 2024 GMT Subject: CN=67189a04-e605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:af:60:a4:34:8e:de:e6:21:94:6a:7f:67:71: 88:87:dc:47:85:d7:45:7b:99:67:f8:09:a9:27:16: c7:2f:e1:bc:7b:72:01:c0:11:88:d4:d3:8a:43:5e: 63:90:06:1a:8a:00:52:2b:14:83:b6:c4:0f:31:db: c4:08:99:20:ee:4c:45:bf:3d:dd:f1:ab:5c:49:74: db:be:8a:2b:48:29:82:77:df:ce:16:b8:33:80:38: 8c:a0:41:55:8c:7e:f7:e3:97:4e:5f:38:a3:d2:26: 63:a7:59:8a:25:b3:cd:e4:90:0f:ca:f9:12:00:7b: 57:a8:35:7b:32:64:da:bb:d4:30:c0:5f:c3:2b:94: c0:9d:a6:d6:65:60:59:a1:95:4a:50:03:90:92:cd: b1:d8:e7:7c:f0:e4:ee:2a:e9:35:1d:6b:34:88:57: da:56:96:3c:db:5e:37:d9:ea:da:e6:0a:89:b5:31: 8d:ec:98:18:3c:d8:bd:68:71:af:6f:e3:ef:ba:0c: 69:b6:ef:a5:a0:23:14:e3:3c:61:ee:0a:57:6b:1b: 82:84:bb:1b:2f:f7:32:19:a1:87:90:13:21:d4:52: 7a:2a:2e:e2:bb:ad:8b:38:c9:de:3d:74:4c:6f:af: c2:15:cd:4c:73:38:70:6f:3d:3c:15:68:fe:35:52: 8d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:DB:BF:31:2B:12:0C:DD:A9:7F:08:A5:51:A0:A2:01:92:E4:EF:8A X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:7d:c9:25:e1:c5:3a:59:53:54:7a:8f:45:00:17:9b:7f:bd: ee:1a:d4:91:ba:23:a0:c6:bf:43:73:68:e7:32:95:9f:2d:06: c6:7b:99:d7:f6:1d:5a:3e:06:a0:3a:b6:e0:ec:c2:a0:6f:8f: 4e:29:eb:d6:e4:65:e5:a1:bb:e5:7e:d6:94:8d:01:a9:b5:58: 2b:09:ed:5a:3f:01:58:57:7d:ac:9e:7f:b5:8f:92:b2:4a:24: 83:0d:66:cc:55:1a:04:4e:c2:d8:b9:ae:78:19:bc:36:f8:a6: 28:96:b2:03:42:06:32:30:29:ed:cf:71:3f:38:28:e2:4e:30: 9c:a3:ea:82:32:07:bc:d0:a9:52:ce:a6:69:92:82:f1:23:1a: 37:00:50:76:67:97:83:ba:b7:b0:6a:cd:c2:17:26:2a:e6:b3: 70:8c:19:6c:bd:3f:1b:58:e1:f9:e9:43:00:6a:21:00:9c:8c: 1c:3b:e6:5a:ff:4a:b8:35:d4:e0:8a:f3:2c:1d:cf:af:4b:58: 39:8d:73:e9:23:10:59:3a:0c:1a:4b:a2:8f:6b:6f:cb:2d:11: 0d:eb:b4:fc:b5:95:b9:d3:7d:65:b6:99:22:c2:12:b8:6e:27: 64:8e:cb:a6:49:30:d0:72:77:e8:00:30:08:87:16:48:06:99: 6f:a0:c3:2b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkE1QjExMC8GA1UEBRMoOEI0ODZBQ0NBRjEyQTY3QTk1Njg4RThEMTFCRDY1OEMw NDFDMTI1QTAeFw0yNDEwMjMwNjM5MDBaFw0yNDEwMzAwNjM5MDBaMBgxFjAUBgNV BAMTDTY3MTg5YTA0LWU2MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzr2CkNI7e5iGUan9ncYiH3EeF10V7mWf4CaknFscv4bx7cgHAEYjU04pDXmOQ BhqKAFIrFIO2xA8x28QImSDuTEW/Pd3xq1xJdNu+iitIKYJ3384WuDOAOIygQVWM fvfjl05fOKPSJmOnWYols83kkA/K+RIAe1eoNXsyZNq71DDAX8MrlMCdptZlYFmh lUpQA5CSzbHY53zw5O4q6TUdazSIV9pWljzbXjfZ6trmCom1MY3smBg82L1oca9v 4++6DGm276WgIxTjPGHuCldrG4KEuxsv9zIZoYeQEyHUUnoqLuK7rYs4yd49dExv r8IVzUxzOHBvPTwVaP41Uo2LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2du/MSsS DN2pfwilUaCiAZLk74owHwYDVR0jBBgwFoAUi0hqzK8SpnqVaI6NEb1ljAQcElow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCQTVCLzREN0NFNjZBNzBF NzExRUZCNDQ0QUY3MEM0RjlBRTAyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vs by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaTBocXpLOFNwbnFWYUk2TkViMWxqQVFjRWxvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC QTVCLzREN0NFNjZBNzBFNzExRUZCNDQ0QUY3MEM0RjlBRTAyL2kwaHF6SzhTcG5x VmFJNk5FYjFsakFRY0Vsby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACB9ySXhxTpZU1R6j0UAF5t/ve4a1JG6I6DGv0NzaOcylZ8tBsZ7mdf2 HVo+BqA6tuDswqBvj04p69bkZeWhu+V+1pSNAam1WCsJ7Vo/AVhXfayef7WPkrJK JIMNZsxVGgROwti5rngZvDb4piiWsgNCBjIwKe3PcT84KOJOMJyj6oIyB7zQqVLO pmmSgvEjGjcAUHZnl4O6t7BqzcIXJirms3CMGWy9PxtY4fnpQwBqIQCcjBw75lr/ Srg11OCK8ywdz69LWDmNc+kjEFk6DBpLoo9rb8stEQ3rtPy1lbnTfWW2mSLCErhu J2SOy6ZJMNByd+gAMAiHFkgGmW+gwys= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:03 2024 by rpki-client on console-ams.rpki-client.org