$ rpki-client -vvf rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft File: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft (raw, json) Hash identifier: eaC29BDxatDnhYERiAnzPhOo+f8FlAiV7accyjE8nyM= Subject key identifier: 98:35:4E:2C:EF:8A:30:76:12:47:22:74:85:2F:EA:45:3F:89:F9:11 Authority key identifier: 28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 Certificate issuer: /CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Certificate serial: 0615 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft Manifest number: 0610 Signing time: Fri 22 Nov 2024 22:11:52 +0000 Manifest this update: Fri 22 Nov 2024 22:11:52 +0000 Manifest next update: Fri 29 Nov 2024 22:11:52 +0000 Files and hashes: 1: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl (hash: +xdwilLUx4hFIj0w+76kSFFM1XD9EpQLYa69OIlIX/8=) 2: 7883418E943A11EBB6706530C4F9AE02.roa (hash: JnE8YOt8k5stLHGvhUXv9i++NuiB7eRDBXg4yo9a9/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1557 (0x615) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Validity Not Before: Nov 22 22:11:52 2024 GMT Not After : Nov 29 22:11:52 2024 GMT Subject: CN=674101a8-9679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b7:49:ca:26:67:1b:ab:1d:7f:66:48:30:47: 0e:5d:ee:11:94:d1:ae:68:ca:ad:57:b4:55:c5:cb: 81:44:b4:ce:d4:72:70:a4:43:37:7d:4b:92:44:81: a3:37:9c:ec:b5:a8:95:a4:a2:a9:b9:fd:b8:93:82: aa:73:dc:e7:ba:18:c8:e5:e5:ff:2b:36:38:a3:36: 4c:dc:ff:75:fe:8f:3f:0a:57:dd:93:4a:f5:81:27: 0d:5a:03:0e:e0:61:fd:bc:c5:d4:a2:c4:ac:09:38: 3b:f0:c3:e4:aa:ed:24:94:79:dd:fd:23:db:c6:f2: 51:e1:d0:95:8a:2e:8d:8f:a0:22:c7:17:5b:f3:7b: a0:eb:40:1e:34:52:64:68:dc:a2:eb:7c:0f:6b:41: cb:6c:a8:2f:75:d9:a3:8b:f9:49:2d:f2:20:9a:87: 39:5a:f3:49:21:4d:38:4a:3d:63:9f:95:c3:0b:af: b8:03:dc:37:4d:ee:70:d4:8e:57:04:ef:59:a8:90: 3a:7c:7b:2d:58:47:97:d2:61:ca:86:6e:33:f0:8f: 49:a8:13:a1:83:72:83:56:f4:05:b7:a4:21:b8:62: e0:02:96:24:ae:75:4a:e4:e9:95:98:7f:f9:12:ff: b8:3c:0e:9e:15:57:29:c9:8a:3b:a8:6a:f0:1e:71: 77:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:35:4E:2C:EF:8A:30:76:12:47:22:74:85:2F:EA:45:3F:89:F9:11 X509v3 Authority Key Identifier: keyid:28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:6b:09:73:b9:ad:14:c2:88:17:3d:c7:8d:a3:3f:94:19:fc: 2a:ec:b3:70:b9:e7:5b:0d:f4:7b:1c:35:7b:59:9f:56:4e:55: fa:cd:63:41:45:01:9b:79:25:f1:d2:59:40:b3:e2:40:dc:e2: a6:a4:df:97:c0:f3:4c:4a:25:79:c6:ac:1d:04:5d:18:55:65: 6e:3f:97:8e:c3:c4:16:e1:19:78:c5:77:40:a1:0a:fb:c7:54: a3:72:3b:1a:76:b0:e5:0a:ac:b8:62:51:bc:71:75:c8:3d:86: 9b:a0:33:b5:4e:a4:3c:8f:f8:b8:73:91:0d:53:a2:18:c8:e9: e6:ac:94:46:9b:d3:11:56:4b:1d:29:0b:b0:05:90:16:9f:04: cc:91:fd:24:49:9d:0b:eb:dc:c1:bc:82:57:0f:bd:80:65:20: 8e:b6:08:8f:e9:78:78:bb:a4:52:c7:ac:3b:ab:36:06:60:d3: 7f:3e:a0:69:46:3d:92:56:62:b5:10:be:3e:8c:b7:d2:c2:33: 30:9e:ef:30:0f:6c:17:b3:55:08:f6:e3:f5:d0:b7:e9:31:ac: 9d:71:f5:69:22:44:31:1f:cf:3c:23:10:98:16:43:9e:a2:2f: fd:6a:86:b7:93:9c:8c:53:8b:27:10:6d:e5:4c:50:95:07:df: 04:ff:87:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyRUQxMTAvBgNVBAUTKDI4NzUyOURDMjBDQTBFQ0U5NUE3QTU1NkUxMEJDREZE NzIzN0Q4RDgwHhcNMjQxMTIyMjIxMTUyWhcNMjQxMTI5MjIxMTUyWjAYMRYwFAYD VQQDEw02NzQxMDFhOC05Njc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrdJyiZnG6sdf2ZIMEcOXe4RlNGuaMqtV7RVxcuBRLTO1HJwpEM3fUuSRIGj N5zstaiVpKKpuf24k4Kqc9znuhjI5eX/KzY4ozZM3P91/o8/Clfdk0r1gScNWgMO 4GH9vMXUosSsCTg78MPkqu0klHnd/SPbxvJR4dCVii6Nj6Aixxdb83ug60AeNFJk aNyi63wPa0HLbKgvddmji/lJLfIgmoc5WvNJIU04Sj1jn5XDC6+4A9w3Te5w1I5X BO9ZqJA6fHstWEeX0mHKhm4z8I9JqBOhg3KDVvQFt6QhuGLgApYkrnVK5OmVmH/5 Ev+4PA6eFVcpyYo7qGrwHnF37wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJg1Tizv ijB2EkcidIUv6kU/ifkRMB8GA1UdIwQYMBaAFCh1Kdwgyg7OlaelVuELzf1yN9jY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJFRC8xNjdCQzYzQzdD MUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0RzNlZwNlZXNFF2Tl9YSTMy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIVXAzQ0RLRHM2VnA2Vlc0UXZOX1hJMzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJFRC8xNjdCQzYzQzdDMUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0Rz NlZwNlZXNFF2Tl9YSTMyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGawlzua0UwogXPceNoz+UGfwq7LNwuedbDfR7HDV7WZ9WTlX6zWNB RQGbeSXx0llAs+JA3OKmpN+XwPNMSiV5xqwdBF0YVWVuP5eOw8QW4Rl4xXdAoQr7 x1SjcjsadrDlCqy4YlG8cXXIPYaboDO1TqQ8j/i4c5ENU6IYyOnmrJRGm9MRVksd KQuwBZAWnwTMkf0kSZ0L69zBvIJXD72AZSCOtgiP6Xh4u6RSx6w7qzYGYNN/PqBp Rj2SVmK1EL4+jLfSwjMwnu8wD2wXs1UI9uP10LfpMaydcfVpIkQxH888IxCYFkOe oi/9aoa3k5yMU4snEG3lTFCVB98E/4cl -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:41 2024 by rpki-client on console-ams.rpki-client.org