$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft File: rs-kglLctVxfHrOBKIztw-b4YnQ.mft (raw, json) Hash identifier: +m26WTW1Y2KiBMC3x7MCcX9x7EVe7bYDAktb9hgdMCs= Subject key identifier: BC:46:F1:38:BD:5A:5B:16:9B:3A:33:D3:FB:75:9A:D1:1F:F1:0D:65 Authority key identifier: AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 Certificate issuer: /CN=A91356BA/serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft Manifest number: 2F Signing time: Sat 23 Nov 2024 05:38:40 +0000 Manifest this update: Sat 23 Nov 2024 05:38:39 +0000 Manifest next update: Sat 30 Nov 2024 05:38:39 +0000 Files and hashes: 1: rs-kglLctVxfHrOBKIztw-b4YnQ.crl (hash: S9ooLAe/64fQ/OoLeasgp6Ix8XF/ARv5WXfUTSz9uhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BA/serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Validity Not Before: Nov 23 05:38:39 2024 GMT Not After : Nov 30 05:38:39 2024 GMT Subject: CN=67416a5f-e8d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e0:45:48:db:a9:69:41:3b:c6:2a:ee:c8:62: bf:12:8e:bb:3f:04:e6:2a:df:9e:6f:db:80:c0:23: c1:f8:f3:34:51:e4:d9:60:5f:56:95:9b:9f:be:2e: e9:56:4b:cc:a7:d0:a0:53:75:2a:d8:99:62:d4:43: 30:d0:10:04:43:b9:f4:ff:73:a3:6a:b0:e6:e0:00: 3f:66:e9:ff:c2:9b:be:ec:ed:37:f4:e2:ff:42:e3: c6:4a:1f:f2:e9:bc:3a:5e:ee:8a:07:a1:8f:2e:2e: 07:63:a7:ff:50:23:bc:7e:0e:06:68:fa:21:09:4b: 5d:21:57:12:3c:8a:7d:3f:8e:1d:99:11:6d:d4:1b: 4d:ce:01:f6:cf:0b:3c:3e:45:d2:cc:b7:09:5b:08: fd:fc:f3:78:25:2d:ba:de:2c:c3:8f:22:67:90:b8: 76:f1:12:8a:e8:39:a8:bd:89:be:c9:14:6f:1c:30: 05:88:68:9d:28:79:9b:22:7c:e8:5a:76:e3:1d:43: 6c:94:c7:10:02:d8:43:1e:ad:b6:d9:7f:9a:20:7e: 07:00:5b:e2:a9:b4:2d:26:76:82:1e:25:ae:87:64: eb:4f:fe:4a:07:c4:b9:10:f9:76:f8:c7:03:37:25: 2d:66:16:73:9d:3e:5e:73:7a:27:1a:20:03:8f:c3: b0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:46:F1:38:BD:5A:5B:16:9B:3A:33:D3:FB:75:9A:D1:1F:F1:0D:65 X509v3 Authority Key Identifier: keyid:AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:2d:f4:fc:f5:61:0b:50:12:6e:7a:05:ab:ec:69:99:91:89: 60:b4:9e:95:a7:c2:35:8a:97:bc:46:7b:d5:b2:82:94:53:9b: 25:64:64:7b:02:12:aa:e4:b1:a4:e6:e0:00:99:0f:9e:d3:ac: da:27:7c:51:14:38:d2:54:9f:a0:32:0b:86:b9:01:10:3f:d8: 80:24:de:7f:3c:7f:18:a2:c1:ac:63:be:a7:a5:9b:2b:f5:f5: 66:08:af:38:08:e6:eb:9b:e4:45:c1:bd:17:a6:47:07:61:3b: c6:c8:ee:51:db:63:e7:05:ce:db:89:68:13:c4:63:ec:61:f2: 4a:f3:d8:df:8e:72:b9:b0:8b:71:b0:59:6a:ef:91:8d:eb:e0: 2a:8f:46:ee:ca:3e:ed:65:59:73:76:b4:4a:13:29:16:3f:c9: 79:50:48:b1:2b:dd:af:c2:47:f2:d6:b6:70:ee:9f:f3:28:85: de:ac:7e:b6:1e:9f:8b:7c:72:76:9a:18:6b:d1:f4:83:56:db: e6:41:d8:55:e6:b0:54:63:78:ba:15:2e:c2:1b:6a:21:e7:7f: 4f:ad:17:7c:d8:bc:0b:4d:4b:fd:ac:1b:e4:a0:41:54:dc:5d: a2:b3:70:01:27:0a:d3:f2:b5:7d:f8:71:f9:dd:a1:4e:22:8e: d3:fe:e3:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NTZCQTExMC8GA1UEBRMoQUVDRkE0ODI1MkRDQjU1QzVGMUVCMzgxMjg4Q0VEQzNF NkY4NjI3NDAeFw0yNDExMjMwNTM4MzlaFw0yNDExMzAwNTM4MzlaMBgxFjAUBgNV BAMTDTY3NDE2YTVmLWU4ZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP4EVI26lpQTvGKu7IYr8Sjrs/BOYq355v24DAI8H48zRR5NlgX1aVm5++LulW S8yn0KBTdSrYmWLUQzDQEARDufT/c6NqsObgAD9m6f/Cm77s7Tf04v9C48ZKH/Lp vDpe7ooHoY8uLgdjp/9QI7x+DgZo+iEJS10hVxI8in0/jh2ZEW3UG03OAfbPCzw+ RdLMtwlbCP3883glLbreLMOPImeQuHbxEoroOai9ib7JFG8cMAWIaJ0oeZsifOha duMdQ2yUxxAC2EMerbbZf5ogfgcAW+KptC0mdoIeJa6HZOtP/koHxLkQ+Xb4xwM3 JS1mFnOdPl5zeicaIAOPw7D3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvEbxOL1a WxabOjPT+3Wa0R/xDWUwHwYDVR0jBBgwFoAUrs+kglLctVxfHrOBKIztw+b4YnQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1NkJBLzI2NDUyMUQyNjkw NTExRUZBRDIzMDQ2NEM0RjlBRTAyL3JzLWtnbExjdFZ4ZkhyT0JLSXp0dy1iNFlu US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcnMta2dsTGN0VnhmSHJPQktJenR3LWI0WW5RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1 NkJBLzI2NDUyMUQyNjkwNTExRUZBRDIzMDQ2NEM0RjlBRTAyL3JzLWtnbExjdFZ4 ZkhyT0JLSXp0dy1iNFluUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFUt9Pz1YQtQEm56BavsaZmRiWC0npWnwjWKl7xGe9WygpRTmyVkZHsC EqrksaTm4ACZD57TrNonfFEUONJUn6AyC4a5ARA/2IAk3n88fxiiwaxjvqelmyv1 9WYIrzgI5uub5EXBvRemRwdhO8bI7lHbY+cFztuJaBPEY+xh8krz2N+Ocrmwi3Gw WWrvkY3r4CqPRu7KPu1lWXN2tEoTKRY/yXlQSLEr3a/CR/LWtnDun/Mohd6sfrYe n4t8cnaaGGvR9INW2+ZB2FXmsFRjeLoVLsIbaiHnf0+tF3zYvAtNS/2sG+SgQVTc XaKzcAEnCtPytX34cfndoU4ijtP+43U= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org