$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft File: 8iz473at_fLPnv7b7BITSIY1b00.mft (raw, json) Hash identifier: JXiQ9fboGUg7e4gWUkBDnJ/LFCwKd+5/t688rO1H4gY= Subject key identifier: B9:E3:B6:F5:E2:6F:99:64:DC:9C:62:FB:0D:A1:E6:EB:2D:FB:0B:98 Authority key identifier: F2:2C:F8:EF:76:AD:FD:F2:CF:9E:FE:DB:EC:12:13:48:86:35:6F:4D Certificate issuer: /CN=A91E1604/serialNumber=F22CF8EF76ADFDF2CF9EFEDBEC12134886356F4D Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft Manifest number: 2A Signing time: Thu 19 Sep 2024 06:02:01 +0000 Manifest this update: Thu 19 Sep 2024 06:02:01 +0000 Manifest next update: Thu 26 Sep 2024 06:02:01 +0000 Files and hashes: 1: 8iz473at_fLPnv7b7BITSIY1b00.crl (hash: 1wleMOwgnKMJwupLA9UdO3jqs5jkizYYwUsKEQQo+b0=) 2: E36214403D0011EFAD623342C4F9AE02.roa (hash: 420VAJueRLeEIyuOExcHcsg4aUQyw3PTMA6zp5xTQ8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.crl rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604/serialNumber=F22CF8EF76ADFDF2CF9EFEDBEC12134886356F4D Validity Not Before: Sep 19 06:02:01 2024 GMT Not After : Sep 26 06:02:01 2024 GMT Subject: CN=66ebbe59-625f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5f:7c:71:2d:74:e4:51:cf:89:7b:4c:b6:47: 44:f6:fd:2a:ed:7f:18:54:46:97:d5:26:4f:8c:fc: 49:f8:8e:e7:06:a0:e3:9a:ea:01:73:ec:c6:a0:98: a7:31:52:78:75:19:6d:fe:20:77:c8:b0:e3:a2:04: dd:7e:0a:55:18:12:5d:a1:42:a9:21:a4:61:65:e8: 4a:39:aa:ae:b8:f8:6e:65:9b:63:75:41:70:a3:f6: a6:dc:be:b0:eb:c8:84:14:90:4a:a4:97:aa:3d:27: 78:dc:81:d5:dc:91:3a:27:aa:9c:73:6e:02:24:ff: 6a:4e:ba:54:ff:f6:ad:19:c1:b0:74:b7:6c:08:45: 0a:17:69:ae:3f:57:05:99:9d:4d:57:0a:e6:b3:3e: d3:b7:f2:a9:37:38:f2:3c:1d:bf:96:fa:c9:66:92: c4:77:8a:bd:ed:10:29:d1:39:2c:cd:6b:e0:70:7c: 31:bf:93:5f:32:c5:d1:a7:9a:7d:e6:bf:1b:af:d0: f7:aa:a0:73:9a:10:a8:15:5a:d1:fb:d5:8a:58:c6: 7c:c7:a3:e6:39:01:ef:55:b1:f4:b9:64:f8:23:7e: 96:e5:66:9c:ef:84:a6:a6:2c:80:63:80:13:7d:a1: 3f:3f:4d:ad:83:75:c7:14:0c:0f:8e:6a:72:7d:3b: d2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:E3:B6:F5:E2:6F:99:64:DC:9C:62:FB:0D:A1:E6:EB:2D:FB:0B:98 X509v3 Authority Key Identifier: keyid:F2:2C:F8:EF:76:AD:FD:F2:CF:9E:FE:DB:EC:12:13:48:86:35:6F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:16:5f:ec:c1:8e:04:42:13:f8:75:0c:d4:8a:8e:14:3e:b8: a5:c9:a4:4f:4b:93:43:e7:79:a0:51:be:41:05:17:d1:83:34: b8:82:29:3c:f1:d9:f1:fd:ba:02:a8:bd:60:57:7c:7d:26:5b: f0:13:72:c7:31:01:60:a8:40:18:20:44:97:05:5b:62:95:99: 43:06:7b:ea:5b:b7:89:29:83:f8:76:59:ca:6e:cb:0f:62:c3: ee:a8:a6:51:e4:de:7f:df:44:44:fe:3a:31:70:6f:67:b3:28: 5c:7c:21:3c:6e:26:48:a2:1a:ea:7a:4c:bd:f9:c2:37:d2:93: 6a:10:b2:04:8a:88:40:65:c5:98:f5:19:8c:b5:d9:99:45:3e: 67:99:1c:fd:b9:08:0e:e3:1f:35:4a:ca:62:6e:73:d5:4e:9a: ee:e6:cd:e1:eb:f7:67:8b:fe:6e:5c:2c:70:a9:0c:fb:32:01: 67:bd:66:eb:ea:9d:7b:9b:47:45:3a:03:c0:88:4d:54:55:00: 04:a8:3e:a9:40:a7:97:10:2d:08:ff:83:3c:65:4a:60:fb:9a: 72:bc:a3:85:3b:4f:5c:9e:98:af:01:73:18:77:1c:da:bc:c3: f7:32:55:57:81:ba:86:d6:ba:c0:f9:c1:6e:27:f9:6b:e6:78: 7e:91:a7:85 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTYwNDExMC8GA1UEBRMoRjIyQ0Y4RUY3NkFERkRGMkNGOUVGRURCRUMxMjEzNDg4 NjM1NkY0RDAeFw0yNDA5MTkwNjAyMDFaFw0yNDA5MjYwNjAyMDFaMBgxFjAUBgNV BAMTDTY2ZWJiZTU5LTYyNWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIX3xxLXTkUc+Je0y2R0T2/SrtfxhURpfVJk+M/En4jucGoOOa6gFz7MagmKcx Unh1GW3+IHfIsOOiBN1+ClUYEl2hQqkhpGFl6Eo5qq64+G5lm2N1QXCj9qbcvrDr yIQUkEqkl6o9J3jcgdXckTonqpxzbgIk/2pOulT/9q0ZwbB0t2wIRQoXaa4/VwWZ nU1XCuazPtO38qk3OPI8Hb+W+slmksR3ir3tECnROSzNa+BwfDG/k18yxdGnmn3m vxuv0PeqoHOaEKgVWtH71YpYxnzHo+Y5Ae9VsfS5ZPgjfpblZpzvhKamLIBjgBN9 oT8/Ta2DdccUDA+OanJ9O9JVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUueO29eJv mWTcnGL7DaHm6y37C5gwHwYDVR0jBBgwFoAU8iz473at/fLPnv7b7BITSIY1b00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxNjA0LzA5QTExMjM0M0NF QjExRUY5NEUyNEY1OUM0RjlBRTAyLzhpejQ3M2F0X2ZMUG52N2I3QklUU0lZMWIw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOGl6NDczYXRfZkxQbnY3YjdCSVRTSVkxYjAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx NjA0LzA5QTExMjM0M0NFQjExRUY5NEUyNEY1OUM0RjlBRTAyLzhpejQ3M2F0X2ZM UG52N2I3QklUU0lZMWIwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAMWX+zBjgRCE/h1DNSKjhQ+uKXJpE9Lk0PneaBRvkEFF9GDNLiCKTzx 2fH9ugKovWBXfH0mW/ATcscxAWCoQBggRJcFW2KVmUMGe+pbt4kpg/h2Wcpuyw9i w+6oplHk3n/fRET+OjFwb2ezKFx8ITxuJkiiGup6TL35wjfSk2oQsgSKiEBlxZj1 GYy12ZlFPmeZHP25CA7jHzVKymJuc9VOmu7mzeHr92eL/m5cLHCpDPsyAWe9Zuvq nXubR0U6A8CITVRVAASoPqlAp5cQLQj/gzxlSmD7mnK8o4U7T1yemK8Bcxh3HNq8 w/cyVVeBuobWusD5wW4n+WvmeH6Rp4U= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:57 2024 by rpki-client on console-ams.rpki-client.org