$ rpki-client -vvf rpki.apnic.net/member_repository/A914FD85/A8D4AFECD0E111EB95A1FF55C4F9AE02/Jkz8AvZxrKkvQFgusYzbbPlkT_U.mft File: Jkz8AvZxrKkvQFgusYzbbPlkT_U.mft (raw, json) Hash identifier: W2m42pbsI3jKaPQmOxbm2D0xN85VEYuDrjK2asErcEI= Subject key identifier: 13:83:AB:47:7C:5F:97:CC:B8:25:D0:54:62:A2:3E:3C:AD:90:4D:FE Authority key identifier: 26:4C:FC:02:F6:71:AC:A9:2F:40:58:2E:B1:8C:DB:6C:F9:64:4F:F5 Certificate issuer: /CN=A914FD85/serialNumber=264CFC02F671ACA92F40582EB18CDB6CF9644FF5 Certificate serial: 052C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jkz8AvZxrKkvQFgusYzbbPlkT_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FD85/A8D4AFECD0E111EB95A1FF55C4F9AE02/Jkz8AvZxrKkvQFgusYzbbPlkT_U.mft Manifest number: 0528 Signing time: Sun 20 Oct 2024 23:15:00 +0000 Manifest this update: Sun 20 Oct 2024 23:15:00 +0000 Manifest next update: Sun 27 Oct 2024 23:15:00 +0000 Files and hashes: 1: Jkz8AvZxrKkvQFgusYzbbPlkT_U.crl (hash: iDTLb+/5MnMgwQgK2Tz/8VSYdxKz9cDP58Wr1cbFIKg=) 2: 3DB4E04ED0E411EB9695B157C4F9AE02.roa (hash: qaeGdkz012FrKWtlkq0B4YBPdMLXCpKw3cBwXCpQET8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FD85/A8D4AFECD0E111EB95A1FF55C4F9AE02/Jkz8AvZxrKkvQFgusYzbbPlkT_U.crl rsync://rpki.apnic.net/member_repository/A914FD85/A8D4AFECD0E111EB95A1FF55C4F9AE02/Jkz8AvZxrKkvQFgusYzbbPlkT_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jkz8AvZxrKkvQFgusYzbbPlkT_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Oct 2024 17:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1324 (0x52c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FD85/serialNumber=264CFC02F671ACA92F40582EB18CDB6CF9644FF5 Validity Not Before: Oct 20 23:15:00 2024 GMT Not After : Oct 27 23:15:00 2024 GMT Subject: CN=67158ef4-7837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3b:82:76:57:6f:57:db:51:0d:81:1f:d2:2c: f6:ae:59:66:97:37:4c:f9:c8:86:a8:45:3a:6a:0b: 74:94:80:4e:97:c3:92:de:26:0d:51:b7:16:4f:ab: b1:11:d3:24:94:56:ec:85:3a:c7:0f:8f:39:4a:b8: fd:da:85:6e:c5:34:69:43:e2:7f:b7:41:d0:65:65: 4f:27:42:56:19:3e:1f:6d:b3:9f:83:e4:75:70:0c: 05:6a:d4:20:4b:f1:8f:fc:9f:83:43:92:04:59:7a: 91:f6:c1:9c:a7:36:40:90:4d:cb:f0:d8:ce:5f:b7: a3:b0:4b:5a:25:34:07:c9:c3:dc:05:34:e5:0f:1c: fb:64:2f:bf:5b:76:a6:d7:7e:12:b9:4e:56:e0:ab: ab:1f:97:ec:a9:82:66:dc:cf:75:53:1c:ed:90:bf: 45:69:78:f0:45:c8:0f:d0:d9:ca:d4:ad:5a:86:62: 59:32:f7:2d:0b:00:97:7c:34:a1:db:c8:a2:5d:09: 78:a2:41:03:14:6b:6f:2d:14:b0:f3:3d:03:e8:90: fb:ae:d3:89:d4:e1:22:2a:a2:b1:b0:d7:bb:b4:b2: dc:78:40:31:b5:ac:a5:a6:f5:d6:37:c2:8a:c8:5d: 09:e6:a4:57:70:31:f9:7d:16:03:9c:74:a3:33:c1: 9b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:83:AB:47:7C:5F:97:CC:B8:25:D0:54:62:A2:3E:3C:AD:90:4D:FE X509v3 Authority Key Identifier: keyid:26:4C:FC:02:F6:71:AC:A9:2F:40:58:2E:B1:8C:DB:6C:F9:64:4F:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FD85/A8D4AFECD0E111EB95A1FF55C4F9AE02/Jkz8AvZxrKkvQFgusYzbbPlkT_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jkz8AvZxrKkvQFgusYzbbPlkT_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FD85/A8D4AFECD0E111EB95A1FF55C4F9AE02/Jkz8AvZxrKkvQFgusYzbbPlkT_U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:57:ea:8e:96:dc:82:d9:d3:1d:00:c2:db:98:82:c6:81:c0: fe:0b:54:b1:06:78:28:c7:0a:92:d7:75:15:0f:b6:66:fb:31: e2:9c:df:2c:72:0a:4e:34:26:4d:b9:3d:3e:78:5d:bd:db:bb: 20:89:bb:f3:6a:2e:25:ce:b2:0e:f0:58:67:02:3a:29:aa:8b: 0a:9e:fd:9f:e7:e6:90:93:a9:48:23:c8:64:00:f8:46:70:15: b0:ec:45:a7:57:8a:c9:f0:0f:7d:47:b9:b1:ff:d0:11:09:32: 64:25:3c:20:03:54:9d:76:7c:09:0f:1f:83:99:90:68:fd:c3: db:87:f3:73:8c:1c:a0:a7:da:3e:6b:1d:2c:f6:98:95:68:34: e6:6e:2a:94:04:3b:eb:1d:3d:8a:a5:6a:ad:c6:0c:be:10:cf: e5:52:2f:6a:24:a0:ff:12:e4:74:30:c8:34:65:b2:ae:4e:f0: 04:38:ca:ec:25:f4:87:1e:eb:35:9a:9d:cc:96:12:6e:b6:ba: 7c:e9:da:e6:08:20:e9:fa:d4:c3:d9:54:9c:a7:1e:04:96:21: c1:c8:11:af:ab:f2:08:52:a1:82:ae:22:07:ba:86:27:84:0f: 48:3d:4d:e9:a3:cf:d2:f7:de:2d:09:9e:9f:7d:60:ab:55:ad: 6e:bf:fe:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZEODUxMTAvBgNVBAUTKDI2NENGQzAyRjY3MUFDQTkyRjQwNTgyRUIxOENEQjZD Rjk2NDRGRjUwHhcNMjQxMDIwMjMxNTAwWhcNMjQxMDI3MjMxNTAwWjAYMRYwFAYD VQQDEw02NzE1OGVmNC03ODM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDuCdldvV9tRDYEf0iz2rllmlzdM+ciGqEU6agt0lIBOl8OS3iYNUbcWT6ux EdMklFbshTrHD485Srj92oVuxTRpQ+J/t0HQZWVPJ0JWGT4fbbOfg+R1cAwFatQg S/GP/J+DQ5IEWXqR9sGcpzZAkE3L8NjOX7ejsEtaJTQHycPcBTTlDxz7ZC+/W3am 134SuU5W4KurH5fsqYJm3M91UxztkL9FaXjwRcgP0NnK1K1ahmJZMvctCwCXfDSh 28iiXQl4okEDFGtvLRSw8z0D6JD7rtOJ1OEiKqKxsNe7tLLceEAxtaylpvXWN8KK yF0J5qRXcDH5fRYDnHSjM8GbgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBODq0d8 X5fMuCXQVGKiPjytkE3+MB8GA1UdIwQYMBaAFCZM/AL2caypL0BYLrGM22z5ZE/1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkQ4NS9BOEQ0QUZFQ0Qw RTExMUVCOTVBMUZGNTVDNEY5QUUwMi9Ka3o4QXZaeHJLa3ZRRmd1c1l6YmJQbGtU X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0prejhBdlp4cktrdlFGZ3VzWXpiYlBsa1RfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkQ4NS9BOEQ0QUZFQ0QwRTExMUVCOTVBMUZGNTVDNEY5QUUwMi9Ka3o4QXZaeHJL a3ZRRmd1c1l6YmJQbGtUX1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaV+qOltyC2dMdAMLbmILGgcD+C1SxBngoxwqS13UVD7Zm+zHinN8s cgpONCZNuT0+eF2927sgibvzai4lzrIO8FhnAjopqosKnv2f5+aQk6lII8hkAPhG cBWw7EWnV4rJ8A99R7mx/9ARCTJkJTwgA1SddnwJDx+DmZBo/cPbh/NzjBygp9o+ ax0s9piVaDTmbiqUBDvrHT2KpWqtxgy+EM/lUi9qJKD/EuR0MMg0ZbKuTvAEOMrs JfSHHus1mp3MlhJutrp86drmCCDp+tTD2VScpx4EliHByBGvq/IIUqGCriIHuoYn hA9IPU3po8/S994tCZ6ffWCrVa1uv/74 -----END CERTIFICATE-----Generated at Mon Oct 21 02:17:37 2024 by rpki-client on console.sobornost.net