$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: yDQuYGB6f34oITVXnEdm53NNlS7LAwktJk/0myJ4Vz4= Subject key identifier: 21:52:DA:4F:1B:1E:0A:58:6A:CF:32:35:3A:1E:F7:54:55:5A:6D:E0 Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 0F86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 0F7B Signing time: Sun 24 Nov 2024 17:22:49 +0000 Manifest this update: Sun 24 Nov 2024 17:22:49 +0000 Manifest next update: Sun 01 Dec 2024 17:22:49 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: Z99zwR6GbeVbTqs6TTfRpWwMAkPOVB9Y131eisNPvEY=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: M4kuuW3GF+4cw4z3e2X8np8DXjwWrvLRqULDvRRViYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3974 (0xf86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Nov 24 17:22:49 2024 GMT Not After : Dec 1 17:22:49 2024 GMT Subject: CN=674360e9-79a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:df:df:7b:51:7e:06:7e:77:cd:2b:fb:fa:72: 84:b1:fe:44:b0:0b:b2:f6:84:c3:2f:32:d7:1a:dd: 0e:89:c9:0e:38:27:05:48:5d:9c:0f:82:b3:c4:7e: 1a:ca:c0:50:82:6f:45:ef:96:e7:4b:f5:94:66:27: 23:67:af:25:20:2d:7f:fe:12:83:fb:21:f5:09:a5: b0:0e:d3:aa:f2:80:f1:9e:16:d6:7b:d3:11:29:2a: 24:a5:1f:13:b7:88:44:4e:4c:38:dd:40:90:41:d0: 3d:83:52:10:e7:ef:7f:0f:b6:6e:61:29:8e:61:c8: 9c:0d:c5:c1:e2:ac:da:54:52:de:76:7a:a1:86:de: 41:40:88:fe:0b:9c:72:ce:8c:be:d9:0a:20:e5:86: b7:bc:6a:51:6a:f1:94:f8:49:a7:ab:f5:0d:e4:6b: fa:73:b5:b6:b9:5f:6c:f8:c3:4e:52:78:9a:9d:87: e6:bb:58:bc:e7:f6:0f:0f:2f:c8:c7:7a:80:67:b0: 02:7d:5f:b2:23:61:b5:64:b4:f1:38:e6:5a:4e:2f: bb:65:8e:9b:83:3e:c5:44:78:a5:7a:42:1c:57:b5: 0b:8f:f0:1b:a7:d6:15:93:c5:40:d8:3f:e0:96:31: c3:c0:56:a9:03:0a:d9:30:39:9c:bb:c8:74:d3:38: 76:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:52:DA:4F:1B:1E:0A:58:6A:CF:32:35:3A:1E:F7:54:55:5A:6D:E0 X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:10:1a:02:97:80:a6:ed:d1:34:db:ba:a4:7a:1e:c3:c3:d6: 40:48:2c:a7:7b:56:d6:e9:c4:d9:7e:7b:ae:d4:31:a2:d1:c3: 44:c8:c1:d1:cb:77:32:11:ca:a6:19:06:b1:5b:d4:39:99:44: 83:8e:a7:55:68:7d:55:7d:67:bc:9a:dd:f8:0e:6d:bb:d9:f0: fa:9a:f6:82:c1:6d:31:74:4d:e5:ce:76:33:9d:e5:6f:8e:64: e4:57:b3:44:ab:aa:07:06:42:11:c9:5b:ae:c8:41:cb:61:fc: 22:21:d5:87:7c:b6:a7:d1:d2:58:66:15:42:2e:19:f7:c9:47: c4:02:94:44:17:cf:0d:fa:86:1a:f7:9b:a4:fb:d0:c0:27:54: 73:d6:a4:c7:22:81:e8:c4:d9:9b:f2:8b:15:3f:cb:c5:31:e1: 0b:d4:23:8b:ad:c7:37:b7:64:7a:54:1d:11:a2:07:8c:74:50: df:bd:26:58:9f:ae:de:f6:f7:6d:c8:46:52:ec:1e:54:80:3f: fe:89:9f:c0:e0:d5:dc:c9:c5:fd:0b:fd:da:d3:31:09:6b:12: 54:0b:dc:39:56:91:38:c5:8a:29:7f:e5:d8:49:42:70:d8:15: f4:03:d0:cf:ec:88:55:12:e6:b9:f5:fa:24:8a:7d:79:d0:35: f3:e1:43:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjQxMTI0MTcyMjQ5WhcNMjQxMjAxMTcyMjQ5WjAYMRYwFAYD VQQDEw02NzQzNjBlOS03OWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqN/fe1F+Bn53zSv7+nKEsf5EsAuy9oTDLzLXGt0OickOOCcFSF2cD4KzxH4a ysBQgm9F75bnS/WUZicjZ68lIC1//hKD+yH1CaWwDtOq8oDxnhbWe9MRKSokpR8T t4hETkw43UCQQdA9g1IQ5+9/D7ZuYSmOYcicDcXB4qzaVFLednqhht5BQIj+C5xy zoy+2Qog5Ya3vGpRavGU+Emnq/UN5Gv6c7W2uV9s+MNOUnianYfmu1i85/YPDy/I x3qAZ7ACfV+yI2G1ZLTxOOZaTi+7ZY6bgz7FRHilekIcV7ULj/Abp9YVk8VA2D/g ljHDwFapAwrZMDmcu8h00zh2twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFS2k8b HgpYas8yNToe91RVWm3gMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChEBoCl4Cm7dE027qkeh7Dw9ZASCyne1bW6cTZfnuu1DGi0cNEyMHR y3cyEcqmGQaxW9Q5mUSDjqdVaH1VfWe8mt34Dm272fD6mvaCwW0xdE3lznYzneVv jmTkV7NEq6oHBkIRyVuuyEHLYfwiIdWHfLan0dJYZhVCLhn3yUfEApREF88N+oYa 95uk+9DAJ1Rz1qTHIoHoxNmb8osVP8vFMeEL1COLrcc3t2R6VB0RogeMdFDfvSZY n67e9vdtyEZS7B5UgD/+iZ/A4NXcycX9C/3a0zEJaxJUC9w5VpE4xYopf+XYSUJw 2BX0A9DP7IhVEua59fokin150DXz4UOJ -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:08 2024 by rpki-client on console-ams.rpki-client.org