$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: nwGq+J/lBBDpz6FItm9PNTqSMyo6UXxoxNbHQQdOc14= Subject key identifier: 55:44:10:A4:92:17:B0:58:B6:66:54:18:E5:44:4F:8A:F6:16:13:CE Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: 30 Signing time: Thu 21 Nov 2024 05:44:40 +0000 Manifest this update: Thu 21 Nov 2024 05:44:40 +0000 Manifest next update: Thu 28 Nov 2024 05:44:40 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: TDtng+sxuZuJLK+4VuOUutec0Y4dgAs9KGbZyCJyouk=) 2: 6BD5C90A647C11EF9BA53B64C4F9AE02.roa (hash: gZZzxWZWc17nIbYko/2au0DsO+Bhzyn2xAf0VZf3CAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Nov 21 05:44:40 2024 GMT Not After : Nov 28 05:44:40 2024 GMT Subject: CN=673ec8c8-5e38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c0:20:03:9d:2b:dd:b3:2a:25:cd:7b:1f:d9: 9b:f6:a0:df:0e:29:cb:c9:6c:f1:9a:d9:4e:ad:cc: 87:ff:09:4e:6c:39:c7:46:71:e3:ec:ca:49:2c:33: e0:95:cb:c3:20:05:98:8f:c5:a8:bb:6c:36:8b:89: 36:40:b1:92:1d:d3:d9:b4:ce:49:d1:1d:46:15:cb: a8:9b:ca:52:3d:37:d9:bc:15:45:95:4b:d5:8e:1a: 35:89:1e:80:f4:90:9a:36:7c:53:2d:1b:af:75:03: e5:45:c2:f2:97:9b:69:d7:4a:6c:90:14:da:25:ce: 94:f7:f7:05:b0:41:0d:3d:92:73:aa:82:60:9d:13: ed:ff:8f:8c:00:c4:35:58:90:77:39:fa:e7:43:4c: 9f:be:ba:be:d9:0b:0b:58:6a:8e:b5:01:ff:52:2d: cd:56:bb:98:9d:dd:91:3e:c3:6d:4b:de:82:2e:bc: bb:a6:d3:e0:eb:ce:c0:ca:36:ae:a4:51:ec:13:7d: 47:39:e4:0b:09:10:b3:ea:14:70:0a:09:0a:d1:5c: 0c:0c:a3:a9:18:19:d0:ba:13:89:db:12:20:0e:4b: ae:52:5f:2b:db:5c:7c:83:7b:7f:c7:22:a1:cc:8f: 5e:ec:cf:98:55:5b:10:b7:f0:c7:40:f6:65:f0:9a: 51:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:44:10:A4:92:17:B0:58:B6:66:54:18:E5:44:4F:8A:F6:16:13:CE X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:55:27:86:41:6c:34:0c:35:91:57:9f:5d:eb:ad:de:71:27: 49:9a:17:53:3f:5a:58:15:cf:8e:b0:cb:13:e1:d9:c7:0b:70: 1a:36:28:9e:4f:67:a9:d8:fe:39:67:36:0c:9c:2c:b4:5e:40: 7e:fb:5d:b8:30:f6:f3:ad:5e:8b:1a:98:47:6a:ac:f9:99:0d: 94:f9:16:45:da:b8:62:83:c2:5a:65:cd:20:af:2c:d8:b5:2b: 77:ae:37:a1:ad:5c:2f:ca:06:1b:c6:92:a8:56:92:ef:0a:1f: 9b:d7:36:e6:24:d3:f7:9e:44:e5:b5:9a:b7:d7:14:4e:1c:c4: e2:ba:3e:8f:28:3d:73:f0:7e:d1:7b:b7:d2:3c:ae:7a:2e:fd: 99:d3:6c:45:e3:06:4a:b2:17:7a:d6:11:cc:5a:f0:b4:48:d5: c1:b2:5c:d8:1c:22:88:14:aa:e5:45:12:68:93:21:f4:e7:9e: ee:d2:b1:d7:99:29:11:29:42:ac:8c:bc:41:4b:e7:6c:f0:03: 8b:9b:ef:76:ce:6e:7b:e7:a8:47:88:d2:48:7c:53:6b:01:f1: 65:ee:6b:69:31:e8:ea:4b:4d:99:40:6b:f9:d4:d6:51:ab:0a: c8:80:fd:72:64:e4:2e:14:94:96:8a:20:ae:7d:4e:75:d8:53: 8d:99:7d:70 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OEY4RDExMC8GA1UEBRMoMkEwMUM4RkU5Njc5Njk0NDc4MzFFQzAxQzAyQkM0RTlD QjlBQ0UyQzAeFw0yNDExMjEwNTQ0NDBaFw0yNDExMjgwNTQ0NDBaMBgxFjAUBgNV BAMTDTY3M2VjOGM4LTVlMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzwCADnSvdsyolzXsf2Zv2oN8OKcvJbPGa2U6tzIf/CU5sOcdGcePsykksM+CV y8MgBZiPxai7bDaLiTZAsZId09m0zknRHUYVy6ibylI9N9m8FUWVS9WOGjWJHoD0 kJo2fFMtG691A+VFwvKXm2nXSmyQFNolzpT39wWwQQ09knOqgmCdE+3/j4wAxDVY kHc5+udDTJ++ur7ZCwtYao61Af9SLc1Wu5id3ZE+w21L3oIuvLum0+DrzsDKNq6k UewTfUc55AsJELPqFHAKCQrRXAwMo6kYGdC6E4nbEiAOS65SXyvbXHyDe3/HIqHM j17sz5hVWxC38MdA9mXwmlHRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVUQQpJIX sFi2ZlQY5URPivYWE84wHwYDVR0jBBgwFoAUKgHI/pZ5aUR4MewBwCvE6cuaziww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4RjhEL0ExNzlFNTNDNjQ3 NzExRUZBODJERTkzREM0RjlBRTAyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXpp dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2dISV9wWjVhVVI0TWV3QndDdkU2Y3Vheml3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 RjhEL0ExNzlFNTNDNjQ3NzExRUZBODJERTkzREM0RjlBRTAyL0tnSElfcFo1YVVS NE1ld0J3Q3ZFNmN1YXppdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA1VJ4ZBbDQMNZFXn13rrd5xJ0maF1M/WlgVz46wyxPh2ccLcBo2KJ5P Z6nY/jlnNgycLLReQH77Xbgw9vOtXosamEdqrPmZDZT5FkXauGKDwlplzSCvLNi1 K3euN6GtXC/KBhvGkqhWku8KH5vXNuYk0/eeROW1mrfXFE4cxOK6Po8oPXPwftF7 t9I8rnou/ZnTbEXjBkqyF3rWEcxa8LRI1cGyXNgcIogUquVFEmiTIfTnnu7SsdeZ KREpQqyMvEFL52zwA4ub73bObnvnqEeI0kh8U2sB8WXua2kx6OpLTZlAa/nU1lGr CsiA/XJk5C4UlJaKIK59TnXYU42ZfXA= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:16 2024 by rpki-client on console-fra.rpki-client.org