$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: u0EsXpbeM/v5dSF12Ct68GWLN+h/s1kqjIWRv1+VXvA= Subject key identifier: 9A:97:12:2A:64:C9:EC:02:B8:34:3F:A7:E9:D8:D5:1D:7E:11:B8:64 Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0C43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0C37 Signing time: Fri 22 Nov 2024 18:11:30 +0000 Manifest this update: Fri 22 Nov 2024 18:11:29 +0000 Manifest next update: Fri 29 Nov 2024 18:11:29 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: EslPwgGECvtxZpzWAgbitzdCNlk5l4f1HM8F4pFxfg0=) 2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: hSO23qhSJreuhOLk9R8p+4DtFYxsss4sjYdKljRJK2k=) 3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: 7iLE2NbcVEE13k7k5xb5wiFVYhBSAES33qNPZQmTZqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3139 (0xc43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Nov 22 18:11:29 2024 GMT Not After : Nov 29 18:11:29 2024 GMT Subject: CN=6740c952-e4fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:88:4f:05:cf:bd:d4:b1:64:a6:9b:7a:0c:6d: 6d:c8:b0:a3:e0:35:27:2d:61:85:5b:eb:1a:7f:aa: 92:fa:97:71:c5:c1:4e:76:ef:ff:f9:b8:db:7e:2b: 06:9e:86:84:93:e6:f0:17:e8:a9:c0:80:4b:f9:f8: ec:9a:7d:33:40:0d:64:c8:7d:a0:79:49:55:c4:2e: e7:eb:b7:b6:b5:86:6a:fb:c7:f0:ec:ee:15:1d:72: 14:c4:3a:06:92:d6:e0:63:34:0e:5a:e3:93:97:7f: 20:3d:ed:fa:ba:64:fa:70:1b:f2:9f:95:2f:90:a9: 18:d9:29:d5:00:69:91:c1:33:46:6c:81:8e:b8:34: ac:07:43:df:72:dc:77:ef:67:32:41:0c:0a:25:a5: 33:1e:79:e8:cd:6f:e8:66:bc:af:7b:8f:4b:d8:74: cb:19:be:dc:46:b7:a3:7c:23:3e:d7:4f:0b:ed:0b: 47:39:fe:8c:49:5e:f7:76:18:9f:25:59:ea:fd:74: 5c:d1:76:77:32:fe:48:14:10:df:bc:0d:21:c9:4e: 8f:dc:74:42:ec:5e:1a:2d:4f:31:36:05:49:52:a9: 2c:2b:9f:23:e5:44:11:4a:63:e2:40:52:87:f7:46: 07:51:58:f3:d2:75:74:bc:ad:b4:75:1f:2d:a9:67: 49:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:97:12:2A:64:C9:EC:02:B8:34:3F:A7:E9:D8:D5:1D:7E:11:B8:64 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:be:22:15:9f:9a:82:96:40:95:23:0d:62:71:e1:f7:48:1b: 37:98:be:82:b7:43:9a:b7:a2:46:10:5b:cd:a6:9e:3d:a4:b1: 51:d0:60:35:db:1c:ce:04:5c:80:91:7c:ec:da:34:58:a5:cb: 7c:d9:1a:4d:4e:a3:24:97:a0:a7:4a:c9:6b:87:63:b3:43:b8: cd:14:a2:72:a5:b6:96:3f:dc:52:bb:bb:40:b4:60:ca:d5:1f: 66:46:eb:ca:5d:62:15:5c:fe:ad:4d:67:19:c4:7f:0b:bd:91: a3:59:fe:ab:bc:cc:40:8e:59:42:3d:39:b5:19:41:3d:8f:a6: 5e:ae:2d:cd:13:d5:ac:b0:25:8b:9d:3a:d2:96:40:5a:1c:7c: 4c:64:bb:a4:a4:1b:84:84:30:70:39:eb:f3:75:48:e4:eb:38: 46:31:2d:eb:63:1d:86:60:e2:10:bd:39:50:85:e3:61:79:bd: 72:56:e2:21:42:80:4b:af:39:f0:51:84:d1:f6:b4:df:e5:1d: 2c:ec:13:b2:31:88:3b:95:03:f1:81:d3:53:3d:b1:8f:8a:9f: 7f:b2:48:5c:ae:2b:f8:f4:35:0d:9c:41:01:5b:33:62:07:08: 05:79:6f:30:65:53:16:ab:ad:fb:84:f7:ad:13:ae:e1:cb:66: c9:44:06:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjQxMTIyMTgxMTI5WhcNMjQxMTI5MTgxMTI5WjAYMRYwFAYD VQQDEw02NzQwYzk1Mi1lNGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ohPBc+91LFkppt6DG1tyLCj4DUnLWGFW+saf6qS+pdxxcFOdu//+bjbfisG noaEk+bwF+ipwIBL+fjsmn0zQA1kyH2geUlVxC7n67e2tYZq+8fw7O4VHXIUxDoG ktbgYzQOWuOTl38gPe36umT6cBvyn5UvkKkY2SnVAGmRwTNGbIGOuDSsB0Pfctx3 72cyQQwKJaUzHnnozW/oZryve49L2HTLGb7cRrejfCM+108L7QtHOf6MSV73dhif JVnq/XRc0XZ3Mv5IFBDfvA0hyU6P3HRC7F4aLU8xNgVJUqksK58j5UQRSmPiQFKH 90YHUVjz0nV0vK20dR8tqWdJcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqXEipk yewCuDQ/p+nY1R1+EbhkMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAviIVn5qClkCVIw1iceH3SBs3mL6Ct0Oat6JGEFvNpp49pLFR0GA1 2xzOBFyAkXzs2jRYpct82RpNTqMkl6CnSslrh2OzQ7jNFKJypbaWP9xSu7tAtGDK 1R9mRuvKXWIVXP6tTWcZxH8LvZGjWf6rvMxAjllCPTm1GUE9j6Zeri3NE9WssCWL nTrSlkBaHHxMZLukpBuEhDBwOevzdUjk6zhGMS3rYx2GYOIQvTlQheNheb1yVuIh QoBLrznwUYTR9rTf5R0s7BOyMYg7lQPxgdNTPbGPip9/skhcriv49DUNnEEBWzNi BwgFeW8wZVMWq637hPetE67hy2bJRAby -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org