$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: +kI2lcaOY7tVLbclqSu0IArDUUgD/MJKK34ozT9rfdQ= Subject key identifier: B3:99:C7:C6:C6:A6:14:BE:FB:F9:45:B3:9A:AA:51:9A:4A:6A:26:23 Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 0336 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 0331 Signing time: Sat 23 Nov 2024 00:41:38 +0000 Manifest this update: Sat 23 Nov 2024 00:41:38 +0000 Manifest next update: Sat 30 Nov 2024 00:41:38 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: XJ/qWHzWZ/JFqBMq4oaKrX/WG3XaecD4X7HrsK8NjXc=) 2: 44FBB466A03911EC9AD2F840C4F9AE02.roa (hash: u8Y2qHn4dP492v5Q3muwggQyuBR/yx2lsL2jNNDR8KY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 822 (0x336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: Nov 23 00:41:38 2024 GMT Not After : Nov 30 00:41:38 2024 GMT Subject: CN=674124c2-5d16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5e:ce:b9:3c:a8:c1:9b:ae:d9:60:ec:62:cb: 30:68:a3:e9:50:20:f9:3b:56:61:9c:f1:c2:dc:d8: 71:87:41:1a:1b:b2:04:8b:a2:c7:55:6a:29:ec:4b: a2:71:a7:65:4a:50:75:f9:18:25:98:cc:67:9c:3d: bd:78:f9:f0:6f:7d:7c:e7:ba:17:4d:61:03:8f:e8: 02:2c:2d:97:82:b6:02:6b:c4:9b:ca:88:f3:4c:da: 55:c7:41:e4:e1:84:8d:2d:88:a0:16:11:0e:f9:34: 08:9b:c7:d6:7c:c9:e1:bf:74:a5:60:c2:7c:56:87: 0e:b7:20:db:38:19:eb:45:6e:77:6b:3b:b3:1c:1a: 69:f2:91:a3:c4:58:66:3d:00:7d:ab:96:ac:b8:00: 38:2e:64:db:f7:8b:8f:7d:6b:76:69:4d:a2:51:c0: 88:86:42:78:ba:e3:e1:b2:7f:6f:51:37:7d:93:4e: c2:76:fa:bd:d7:d8:34:50:a9:62:0f:75:c5:5f:a6: 6f:0c:74:3a:e7:30:5c:b5:d3:3c:ee:c8:02:e0:f8: 92:a1:27:63:3b:3e:73:e7:8c:ee:50:47:48:07:4b: 7b:bf:70:84:fa:e8:b5:54:bd:bb:1e:66:f6:0c:f8: 9d:93:46:9a:d3:a2:a7:5d:74:4e:73:ca:c4:e4:12: 18:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:99:C7:C6:C6:A6:14:BE:FB:F9:45:B3:9A:AA:51:9A:4A:6A:26:23 X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:a8:e7:6e:a6:5a:9b:d8:ff:f9:4e:62:8f:80:12:8c:f0:43: a3:ba:58:b4:98:0a:8b:2c:a8:7a:59:b1:78:f3:23:34:ce:c2: 5b:a7:df:d0:c0:dd:42:79:57:79:bc:8c:f2:00:46:bd:aa:c2: 93:cd:b0:85:d6:10:86:78:87:e2:0d:4b:d6:39:33:2c:b6:1e: 1b:de:e9:27:e8:92:9a:5d:c8:02:6f:4d:6c:de:08:c1:b8:62: 54:04:8e:39:68:22:af:89:3f:b9:a4:47:e7:12:cc:1c:9d:ad: 48:88:97:23:16:95:e5:4b:97:cc:9d:10:ca:61:b0:01:bf:7d: d7:13:5a:b7:fa:8b:92:65:25:39:4d:ce:88:64:64:ed:55:e0: 38:cf:6b:73:18:72:62:55:88:55:c4:b6:3d:f3:67:c5:97:0c: 29:b3:02:32:68:68:3d:0d:11:c4:28:22:d4:8f:62:5c:fd:73: 12:69:a4:44:46:a1:e6:ef:b9:5a:59:78:f2:0f:dc:cf:af:26: 89:58:e0:0a:a8:f6:46:a8:5d:83:ce:8f:5e:ef:36:e0:58:21: 69:31:36:1f:e3:f1:ce:b7:53:d9:59:46:e2:f5:92:07:68:f4: 4a:8d:cc:2c:d5:1a:2c:41:94:3f:30:a3:a7:2b:63:aa:0a:0d: 6d:36:50:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjQxMTIzMDA0MTM4WhcNMjQxMTMwMDA0MTM4WjAYMRYwFAYD VQQDEw02NzQxMjRjMi01ZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyV7OuTyowZuu2WDsYsswaKPpUCD5O1ZhnPHC3Nhxh0EaG7IEi6LHVWop7Eui cadlSlB1+RglmMxnnD29ePnwb31857oXTWEDj+gCLC2XgrYCa8SbyojzTNpVx0Hk 4YSNLYigFhEO+TQIm8fWfMnhv3SlYMJ8VocOtyDbOBnrRW53azuzHBpp8pGjxFhm PQB9q5asuAA4LmTb94uPfWt2aU2iUcCIhkJ4uuPhsn9vUTd9k07Cdvq919g0UKli D3XFX6ZvDHQ65zBctdM87sgC4PiSoSdjOz5z54zuUEdIB0t7v3CE+ui1VL27Hmb2 DPidk0aa06KnXXROc8rE5BIYRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOZx8bG phS++/lFs5qqUZpKaiYjMB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOqOduplqb2P/5TmKPgBKM8EOjuli0mAqLLKh6WbF48yM0zsJbp9/Q wN1CeVd5vIzyAEa9qsKTzbCF1hCGeIfiDUvWOTMsth4b3ukn6JKaXcgCb01s3gjB uGJUBI45aCKviT+5pEfnEswcna1IiJcjFpXlS5fMnRDKYbABv33XE1q3+ouSZSU5 Tc6IZGTtVeA4z2tzGHJiVYhVxLY982fFlwwpswIyaGg9DRHEKCLUj2Jc/XMSaaRE RqHm77laWXjyD9zPryaJWOAKqPZGqF2Dzo9e7zbgWCFpMTYf4/HOt1PZWUbi9ZIH aPRKjcws1RosQZQ/MKOnK2OqCg1tNlCj -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:34 2024 by rpki-client on console-fra.rpki-client.org