$ rpki-client -vvf rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft File: kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft (raw, json) Hash identifier: N/ipbjIC6a8rNPbuoi8i3KgIMLQ7S+J2EzU2aIhdC/s= Subject key identifier: 30:5B:BD:84:B1:0C:3B:EA:AB:F6:50:06:6E:F4:4F:0D:62:47:F8:DE Authority key identifier: 93:15:9C:9B:61:33:F4:80:6F:BB:28:C6:22:5E:94:39:63:A6:B0:01 Certificate issuer: /CN=A912EDB7/serialNumber=93159C9B6133F4806FBB28C6225E943963A6B001 Certificate serial: 0C0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft Manifest number: 0C02 Signing time: Fri 22 Nov 2024 18:17:04 +0000 Manifest this update: Fri 22 Nov 2024 18:17:03 +0000 Manifest next update: Fri 29 Nov 2024 18:17:03 +0000 Files and hashes: 1: kxWcm2Ez9IBvuyjGIl6UOWOmsAE.crl (hash: 7LBHPjVkwXWhrM5E6uAjjtXj4SlmU6Sth1GEPTHn4Vk=) 2: 18CA7386E35511EDA63D5182C4F9AE02.roa (hash: jUh9HWgqHcHUh3GM/0jd6GB19NzGhJzgRvV+zQaL17o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.crl rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:17:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3082 (0xc0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912EDB7/serialNumber=93159C9B6133F4806FBB28C6225E943963A6B001 Validity Not Before: Nov 22 18:17:03 2024 GMT Not After : Nov 29 18:17:03 2024 GMT Subject: CN=6740caa0-886a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e2:e2:67:0e:1e:dd:08:60:d0:ca:9d:b0:f7: 1b:b9:1f:ac:83:53:dc:a3:9a:b2:83:f4:ba:3c:8a: 38:c3:85:a0:05:6b:7d:c0:13:05:84:99:41:77:58: 36:58:9f:58:67:ca:f3:8f:ec:c0:30:c9:00:3e:82: 3a:5e:fe:10:5b:66:60:69:15:5e:19:dd:92:8b:2f: d8:62:67:4f:df:69:88:29:74:c9:1d:79:a8:1b:45: 70:a3:94:c6:b9:e0:92:ba:3c:5c:63:ce:a5:81:d2: 51:d9:00:a0:4b:ba:a7:ed:6b:bb:6e:ed:04:c4:01: 8a:19:34:5a:83:55:f0:e0:2b:95:a0:58:98:64:e4: 67:88:d1:11:ee:60:82:74:30:07:32:e4:d3:65:ad: 87:de:39:f7:48:c5:c2:a1:79:71:7d:aa:f0:1c:6e: 82:ed:81:d4:8a:77:38:2a:5e:e5:df:9d:d4:95:20: 2c:7b:95:26:d5:1b:f8:18:5f:ac:c5:98:a8:5a:6b: 3b:c8:43:05:34:c6:50:c0:45:e8:fd:1a:23:39:f1: e4:a0:0b:91:50:b5:30:c0:58:28:2e:ce:8c:60:04: 35:dc:de:81:2a:23:3f:0c:56:3a:aa:d6:3b:73:31: 4f:d9:e2:0a:bc:2e:57:3d:ed:59:26:8e:35:c3:26: 58:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:5B:BD:84:B1:0C:3B:EA:AB:F6:50:06:6E:F4:4F:0D:62:47:F8:DE X509v3 Authority Key Identifier: keyid:93:15:9C:9B:61:33:F4:80:6F:BB:28:C6:22:5E:94:39:63:A6:B0:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:56:ec:74:9c:1f:7d:c9:ab:44:ea:ff:d3:6c:ea:ea:21:d8: f3:12:c1:ca:14:28:9a:d0:6d:d4:f8:ee:ba:2a:04:78:a9:6b: 13:dd:71:0d:f6:df:b5:72:55:15:da:11:d0:4a:da:ae:c9:70: 95:12:cf:35:e6:32:89:87:fe:12:1f:a1:30:94:d9:3d:97:07: ee:d0:ee:e8:47:c0:77:19:c8:28:a2:72:37:92:65:7b:00:73: 0d:7c:a0:56:18:5d:96:7c:63:8d:3a:69:10:d3:58:e3:5e:e9: 4d:0f:54:11:5a:ad:50:db:b0:ea:bc:41:96:15:6f:e9:19:df: b2:f3:0f:51:dd:a9:a1:fe:1a:28:5a:2d:10:1b:20:ac:e3:26: 97:27:9e:5f:81:38:d3:5d:22:1e:20:86:44:4b:aa:50:f7:e9: ef:0a:c0:85:d5:2f:e8:4a:a5:c2:3e:83:eb:82:60:e0:86:84: ae:86:71:a8:c2:b6:7c:aa:60:7f:f4:63:d2:ef:3a:f5:46:e2: 2c:ac:49:cd:90:f5:de:e5:c3:31:b0:1b:fc:3b:22:4f:35:8c: d6:cb:64:94:6e:72:b9:59:6b:fc:17:b6:85:a6:fe:09:1e:88: 8e:e5:dc:3d:f3:6c:d9:1b:14:72:e2:7b:20:5f:2d:98:6d:d7: 71:f5:c0:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVEQjcxMTAvBgNVBAUTKDkzMTU5QzlCNjEzM0Y0ODA2RkJCMjhDNjIyNUU5NDM5 NjNBNkIwMDEwHhcNMjQxMTIyMTgxNzAzWhcNMjQxMTI5MTgxNzAzWjAYMRYwFAYD VQQDEw02NzQwY2FhMC04ODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmeLiZw4e3Qhg0MqdsPcbuR+sg1Pco5qyg/S6PIo4w4WgBWt9wBMFhJlBd1g2 WJ9YZ8rzj+zAMMkAPoI6Xv4QW2ZgaRVeGd2Siy/YYmdP32mIKXTJHXmoG0Vwo5TG ueCSujxcY86lgdJR2QCgS7qn7Wu7bu0ExAGKGTRag1Xw4CuVoFiYZORniNER7mCC dDAHMuTTZa2H3jn3SMXCoXlxfarwHG6C7YHUinc4Kl7l353UlSAse5Um1Rv4GF+s xZioWms7yEMFNMZQwEXo/RojOfHkoAuRULUwwFgoLs6MYAQ13N6BKiM/DFY6qtY7 czFP2eIKvC5XPe1ZJo41wyZYMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBbvYSx DDvqq/ZQBm70Tw1iR/jeMB8GA1UdIwQYMBaAFJMVnJthM/SAb7soxiJelDljprAB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRURCNy80NjE2MkFEQUZF RDIxMUU5ODdGRkMyMTdDNEY5QUUwMi9reFdjbTJFejlJQnZ1eWpHSWw2VU9XT21z QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t4V2NtMkV6OUlCdnV5akdJbDZVT1dPbXNBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RURCNy80NjE2MkFEQUZFRDIxMUU5ODdGRkMyMTdDNEY5QUUwMi9reFdjbTJFejlJ QnZ1eWpHSWw2VU9XT21zQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwVux0nB99yatE6v/TbOrqIdjzEsHKFCia0G3U+O66KgR4qWsT3XEN 9t+1clUV2hHQStquyXCVEs815jKJh/4SH6EwlNk9lwfu0O7oR8B3GcgoonI3kmV7 AHMNfKBWGF2WfGONOmkQ01jjXulND1QRWq1Q27DqvEGWFW/pGd+y8w9R3amh/hoo Wi0QGyCs4yaXJ55fgTjTXSIeIIZES6pQ9+nvCsCF1S/oSqXCPoPrgmDghoSuhnGo wrZ8qmB/9GPS7zr1RuIsrEnNkPXe5cMxsBv8OyJPNYzWy2SUbnK5WWv8F7aFpv4J HoiO5dw982zZGxRy4nsgXy2Ybddx9cD0 -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org