$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft File: BD435E3ED6FEEC26F879A0542F609A272CC71307.mft (raw, json) Hash identifier: ksjlen1bPBLIROk97Z8ZPCArJHPHqQlL/L7pOjhT0HY= Subject key identifier: 8A:2F:9D:AE:B3:80:A3:26:41:EF:6B:A3:E6:5A:0A:A3:49:BF:20:18 Authority key identifier: BD:43:5E:3E:D6:FE:EC:26:F8:79:A0:54:2F:60:9A:27:2C:C7:13:07 Certificate issuer: /CN=A917447B0000/serialNumber=BD435E3ED6FEEC26F879A0542F609A272CC71307 Certificate serial: 1DA77CB9CB764F3F374BB9E4701D50F1E95FD4D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft Manifest number: 28 Signing time: Wed 23 Oct 2024 23:20:03 +0000 Manifest this update: Wed 23 Oct 2024 23:15:03 +0000 Manifest next update: Fri 25 Oct 2024 01:37:03 +0000 Files and hashes: 1: 3136302e3138372e3132342e302f32332d3234203d3e20313533333436.roa (hash: g2WPQKmcG8F9BNMuoo0qRMIr0xGyZZKzcqG6wAbcjO8=) 2: BD435E3ED6FEEC26F879A0542F609A272CC71307.crl (hash: ETmoB1qyk3fYGrtCtV3W3icWnn3otopjnpCTudCLbFg=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Oct 2024 01:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:a7:7c:b9:cb:76:4f:3f:37:4b:b9:e4:70:1d:50:f1:e9:5f:d4:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000/serialNumber=BD435E3ED6FEEC26F879A0542F609A272CC71307 Validity Not Before: Oct 23 23:15:03 2024 GMT Not After : Oct 25 01:37:03 2024 GMT Subject: CN=8A2F9DAEB380A32641EF6BA3E65A0AA349BF2018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4c:e5:1d:27:d7:fc:99:21:6f:0e:90:df:92: 9e:f1:f8:d2:98:01:93:61:32:58:2f:39:7a:fe:c3: 82:cc:14:c3:e3:0b:af:07:dc:7c:4b:33:29:05:ff: ea:f8:b3:3a:99:3e:c2:12:1f:32:0f:42:87:2b:8e: b5:c1:bd:2e:be:15:77:b1:60:b1:ee:64:2c:37:cf: 19:65:f6:4d:f6:00:05:40:c5:c4:fc:94:a6:f3:44: ed:83:75:d1:11:90:c3:e8:82:a4:5f:c3:67:1b:c3: ba:ec:34:04:6b:d5:94:5b:1a:b8:24:95:36:83:17: 87:ca:c0:8b:53:1f:e7:49:99:76:ed:82:18:41:39: bd:00:d0:e6:08:4f:e6:2f:9d:f8:b8:9e:d6:14:fc: d5:e0:6f:db:2e:1c:06:d6:b4:bf:99:21:5f:a3:0d: 6e:4d:fe:a4:11:06:07:93:69:40:ce:0e:85:a4:be: 6a:88:f7:a0:ed:7f:92:a6:aa:6e:a2:45:38:f6:39: 66:6c:3b:4f:76:89:7a:c8:3a:ee:84:9a:fb:f1:f1: c4:7a:a1:3c:fc:67:55:53:c1:c7:88:b1:50:f3:b7: e1:62:53:0e:6c:5d:62:39:10:11:f4:18:48:68:8a: 68:e5:65:44:b3:8d:0d:71:a8:b2:a6:e8:1e:ec:04: bf:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:2F:9D:AE:B3:80:A3:26:41:EF:6B:A3:E6:5A:0A:A3:49:BF:20:18 X509v3 Authority Key Identifier: keyid:BD:43:5E:3E:D6:FE:EC:26:F8:79:A0:54:2F:60:9A:27:2C:C7:13:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:57:60:36:fc:9f:46:90:41:37:91:08:c1:80:59:8f:74:e6: c9:45:c3:48:2c:87:81:e8:90:ef:eb:bf:e7:41:2f:bf:56:db: a2:fe:26:13:04:c0:1f:0e:cd:c1:f1:a1:8a:9b:65:aa:f9:cc: 69:2b:6b:32:6b:65:ae:f3:3c:93:87:48:87:5f:5a:94:b6:c2: d0:c7:47:f4:c8:cb:6b:bf:df:bc:25:6e:51:b2:71:25:4a:66: e5:b4:6c:1e:da:31:b5:e7:b2:f7:6a:bd:c2:05:cd:94:a2:39: d5:83:37:fd:2b:a7:8b:7e:6b:8a:b7:b8:5a:21:41:70:52:91: 47:42:03:55:e5:d6:cf:83:b5:79:ff:c1:1a:2f:d3:a3:27:6f: c5:d4:71:f9:9d:7f:d4:77:56:9c:af:09:a7:9a:a8:6d:a9:81: 89:9b:0a:96:35:2e:9d:0a:39:4c:98:e0:53:5a:07:40:29:1b: d7:1e:3e:3e:05:8e:34:ad:50:ff:20:5d:f4:cf:5c:f6:d3:9a: 86:c0:3e:5f:d3:75:92:16:dd:58:d7:9d:0a:72:1f:3d:2e:93: 9e:96:d7:be:9b:4a:dd:78:16:dd:70:c1:d2:73:18:7e:74:15: 7c:9e:4a:06:5c:a9:fe:00:13:cf:70:f3:ed:93:d3:a6:59:fd: da:21:72:37 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHad8uct2Tz83S7nkcB1Q8elf1NkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEyhCRDQzNUUzRUQ2 RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3MB4XDTI0MTAyMzIzMTUwM1oX DTI0MTAyNTAxMzcwM1owMzExMC8GA1UEAxMoOEEyRjlEQUVCMzgwQTMyNjQxRUY2 QkEzRTY1QTBBQTM0OUJGMjAxODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMdM5R0n1/yZIW8OkN+SnvH40pgBk2EyWC85ev7DgswUw+MLrwfcfEszKQX/ 6vizOpk+whIfMg9ChyuOtcG9Lr4Vd7Fgse5kLDfPGWX2TfYABUDFxPyUpvNE7YN1 0RGQw+iCpF/DZxvDuuw0BGvVlFsauCSVNoMXh8rAi1Mf50mZdu2CGEE5vQDQ5ghP 5i+d+Lie1hT81eBv2y4cBta0v5khX6MNbk3+pBEGB5NpQM4OhaS+aoj3oO1/kqaq bqJFOPY5Zmw7T3aJesg67oSa+/HxxHqhPPxnVVPBx4ixUPO34WJTDmxdYjkQEfQY SGiKaOVlRLONDXGosqboHuwEv10CAwEAAaOCAhswggIXMB0GA1UdDgQWBBSKL52u s4CjJkHva6PmWgqjSb8gGDAfBgNVHSMEGDAWgBS9Q14+1v7sJvh5oFQvYJonLMcT BzAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMC9CRDQzNUUz RUQ2RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi92VU5lUHRiLTdD YjRlYUJVTDJDYUp5ekhFd2MuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3 QjAwMDAvMC9CRDQzNUUzRUQ2RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3 Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAIVdgNvyfRpBBN5EIwYBZj3TmyUXDSCyHgeiQ7+u/50Evv1bb ov4mEwTAHw7NwfGhiptlqvnMaStrMmtlrvM8k4dIh19alLbC0MdH9MjLa7/fvCVu UbJxJUpm5bRsHtoxteey92q9wgXNlKI51YM3/Suni35rire4WiFBcFKRR0IDVeXW z4O1ef/BGi/ToydvxdRx+Z1/1HdWnK8Jp5qobamBiZsKljUunQo5TJjgU1oHQCkb 1x4+PgWONK1Q/yBd9M9c9tOahsA+X9N1khbdWNedCnIfPS6TnpbXvptK3XgW3XDB 0nMYfnQVfJ5KBlyp/gATz3Dz7ZPTpln92iFyNw== -----END CERTIFICATE-----Generated at Thu Oct 24 02:04:59 2024 by rpki-client on console-fra.rpki-client.org