$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: OiBDK9ltDWZQph+W3fK9QaYgkiZUGAjiZL8eNZpmp2o= Subject key identifier: FF:23:2D:E7:65:45:93:80:88:E1:3A:C0:9A:C4:55:B8:45:2E:D4:93 Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 1063 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 2313 Signing time: Fri 22 Nov 2024 17:04:05 +0000 Manifest this update: Fri 22 Nov 2024 17:04:05 +0000 Manifest next update: Fri 29 Nov 2024 17:04:05 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: aHR/pooRpK0lIdYEINvjdgAMsjJokSOVg83tQxOd8mU=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: BqRiYiKR+dnXs8JO0fznQNab+fZpSZjQtALTInUxNfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4195 (0x1063) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: Nov 22 17:04:05 2024 GMT Not After : Nov 29 17:04:05 2024 GMT Subject: CN=6740b985-10f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cf:3a:ef:dd:14:2e:c4:aa:e8:25:6f:e6:ca: 9d:b5:31:30:df:42:0b:eb:42:b3:b7:fc:74:90:91: 49:31:3a:4f:8f:f3:c7:35:f6:fb:1d:cb:18:ef:04: fe:d5:58:61:3f:2e:29:6a:df:9f:f4:6c:49:f4:2a: fb:c3:30:19:fa:70:f8:60:64:5e:9c:78:11:76:b9: b1:99:07:af:14:8a:3c:80:75:68:61:b3:75:82:b0: ba:44:2f:9a:5f:7a:9a:b9:da:ac:b3:00:37:a2:ec: 0f:54:74:b9:75:9b:70:43:b3:5b:a3:fe:bc:7e:31: 26:c3:da:2e:6d:fd:09:6c:59:98:b6:a6:f3:25:6b: de:42:71:43:94:37:2e:25:52:41:99:9e:76:bc:19: 09:02:5e:11:38:43:f8:ea:39:ec:55:19:30:a4:d9: 2d:6d:19:3b:71:17:89:9c:3b:30:b4:df:be:8c:a0: 0c:62:c3:19:dc:90:db:56:8c:b3:a9:f9:9a:6c:4a: 6a:43:46:10:3d:bb:4e:8d:04:32:ca:81:11:22:f3: b2:c8:d5:a3:4c:a9:3b:f4:4f:64:61:50:c7:d3:d0: ae:e2:fa:8d:6f:57:b7:a0:36:bf:e6:8d:af:52:3c: ea:8e:b5:19:cb:9d:f3:41:87:16:97:9a:80:7d:6a: 56:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:23:2D:E7:65:45:93:80:88:E1:3A:C0:9A:C4:55:B8:45:2E:D4:93 X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:f7:30:81:da:f2:3f:57:71:e7:8a:01:4c:6b:c7:5b:47:93: 9f:a2:33:81:e7:0a:05:6d:ab:cf:9f:f8:13:a1:1c:f4:a4:72: 9c:39:75:ac:ac:53:ae:c0:1f:76:c6:06:3b:f8:ee:dd:04:d2: 67:9c:5c:53:ee:00:4d:3d:09:39:8c:e6:db:c9:42:a3:c7:67: 2d:05:b5:4c:83:b0:02:8f:42:82:bb:fa:83:59:11:d0:f4:be: 32:93:57:91:f7:6c:c2:8d:a5:8d:d2:e9:22:9b:c0:3c:57:8c: fc:0b:a8:87:7b:32:64:0d:8d:67:d8:f7:e8:56:ec:6e:89:d2: 2f:7a:28:a1:7a:75:ec:e8:b6:f7:bf:1e:6f:e0:8e:90:0c:0d: 11:33:76:db:d3:c4:5d:59:7c:64:c4:92:ba:51:cf:86:ea:fe: 26:72:4b:24:23:51:67:6d:0c:db:ba:7d:0a:24:e3:cc:89:78: 01:aa:fe:bc:85:0e:ae:67:06:f8:e0:82:4b:18:a8:ed:d4:72: fb:ed:d6:b6:8a:ac:bc:e7:f9:b3:f8:b1:73:2a:7e:23:4e:d9: c4:6a:45:66:13:8e:35:0a:77:7e:b0:39:b6:1a:d8:03:d3:97: ce:fe:21:be:20:a9:d1:91:bd:e3:56:a6:df:7e:2e:fc:f7:25: 63:23:96:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjQxMTIyMTcwNDA1WhcNMjQxMTI5MTcwNDA1WjAYMRYwFAYD VQQDEw02NzQwYjk4NS0xMGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0c86790ULsSq6CVv5sqdtTEw30IL60Kzt/x0kJFJMTpPj/PHNfb7HcsY7wT+ 1VhhPy4pat+f9GxJ9Cr7wzAZ+nD4YGRenHgRdrmxmQevFIo8gHVoYbN1grC6RC+a X3qaudqsswA3ouwPVHS5dZtwQ7Nbo/68fjEmw9oubf0JbFmYtqbzJWveQnFDlDcu JVJBmZ52vBkJAl4ROEP46jnsVRkwpNktbRk7cReJnDswtN++jKAMYsMZ3JDbVoyz qfmabEpqQ0YQPbtOjQQyyoERIvOyyNWjTKk79E9kYVDH09Cu4vqNb1e3oDa/5o2v UjzqjrUZy53zQYcWl5qAfWpWKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8jLedl RZOAiOE6wJrEVbhFLtSTMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA9zCB2vI/V3HnigFMa8dbR5OfojOB5woFbavPn/gToRz0pHKcOXWs rFOuwB92xgY7+O7dBNJnnFxT7gBNPQk5jObbyUKjx2ctBbVMg7ACj0KCu/qDWRHQ 9L4yk1eR92zCjaWN0ukim8A8V4z8C6iHezJkDY1n2PfoVuxuidIveiihenXs6Lb3 vx5v4I6QDA0RM3bb08RdWXxkxJK6Uc+G6v4mckskI1FnbQzbun0KJOPMiXgBqv68 hQ6uZwb44IJLGKjt1HL77da2iqy85/mz+LFzKn4jTtnEakVmE441Cnd+sDm2GtgD 05fO/iG+IKnRkb3jVqbffi789yVjI5al -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:47 2024 by rpki-client on console-fra.rpki-client.org