$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft File: kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft (raw, json) Hash identifier: eXc86WxA73bLnlhiOEK4q464obeInNqgJ+cr4KCiks4= Subject key identifier: CD:10:CA:3A:10:4D:BA:C3:E6:B5:5E:0D:39:24:5F:2C:2C:A4:3E:AE Authority key identifier: 91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07 Certificate issuer: /CN=A917F4D3/serialNumber=9126EFE50D5E3B531FEEE4549AB30BFE7A545507 Certificate serial: 017D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft Manifest number: 017B Signing time: Sat 23 Nov 2024 02:03:07 +0000 Manifest this update: Sat 23 Nov 2024 02:03:07 +0000 Manifest next update: Sat 30 Nov 2024 02:03:07 +0000 Files and hashes: 1: kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl (hash: CDnShFKllYIFPMKMFuMFHmceyYcxBKabs2FWWDekEL0=) 2: 32091726626D11ED87BDAC82C4F9AE02.roa (hash: YCTx3a6GU8sg0t3UcD+tdyKtqXQS9S/9RJvSQktGPYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4D3/serialNumber=9126EFE50D5E3B531FEEE4549AB30BFE7A545507 Validity Not Before: Nov 23 02:03:07 2024 GMT Not After : Nov 30 02:03:07 2024 GMT Subject: CN=674137db-1d2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:44:75:fc:8c:f0:3f:30:a5:98:d0:8e:00:7c: 28:f8:59:de:6d:67:c1:4d:ae:67:c6:97:1f:f1:c6: ec:3b:6f:ce:80:33:c5:83:22:b6:fa:c2:d0:fd:95: 81:a0:10:58:8a:0b:50:f3:a7:0f:c8:26:80:e7:9a: 9c:49:e5:f6:d0:16:37:9e:cd:9e:f8:4f:34:d0:ce: 24:85:50:9c:e0:97:1f:ad:3e:bb:1b:30:b4:cb:84: 26:84:70:ac:d3:b2:b9:47:00:ca:bd:44:c7:54:23: af:33:92:2c:ea:b5:1b:15:30:35:94:dc:e2:fd:5b: fe:83:47:0d:b8:f2:ac:c3:65:1e:7c:0b:a0:88:21: 33:b0:74:1a:df:79:33:74:92:f6:3c:df:82:4a:ed: 94:0f:6d:3b:2b:a2:63:3c:32:50:95:f4:fd:f4:70: de:7a:3b:f7:6f:25:97:a7:32:40:b4:a0:58:b9:ae: f0:d3:96:9f:36:4f:09:8d:bd:ba:69:c5:92:98:e6: f9:6c:f9:35:1f:c0:3c:90:25:08:a7:1c:39:06:5a: 67:dc:09:1f:1c:59:59:98:ec:78:af:50:5d:04:f8: b1:bc:e9:e9:0c:70:6b:59:fc:0a:7a:6b:28:d3:aa: a7:fa:b9:67:62:b3:f6:c4:25:dd:4d:81:4c:d0:9a: 3e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:10:CA:3A:10:4D:BA:C3:E6:B5:5E:0D:39:24:5F:2C:2C:A4:3E:AE X509v3 Authority Key Identifier: keyid:91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:42:03:77:c9:26:32:63:86:07:61:29:9b:d9:89:58:d7:c2: c2:ab:7e:f1:34:db:cf:c1:5e:10:17:15:15:5b:d9:7c:9d:81: fa:0a:53:2c:39:f0:93:17:85:9f:fb:29:e7:92:75:7b:37:1d: 63:2e:83:62:4e:7f:82:21:77:09:53:4c:a4:3b:af:aa:32:59: 01:61:13:b4:65:e4:b4:d6:fd:d3:04:ae:6e:2f:71:a5:0d:55: 30:36:b1:4b:ca:6b:78:43:3d:37:eb:47:33:b3:02:61:ba:f5: be:ae:a7:97:44:15:b9:b1:78:80:bb:e7:be:04:95:78:74:d7: ee:55:ab:d8:d5:9d:a9:8c:1c:4b:22:35:18:cd:0e:a1:d9:9f: 12:26:46:ff:28:8a:b7:b1:e7:46:86:ab:cd:fd:a6:bb:0f:d8: 66:5f:b3:ff:5e:c5:36:45:71:e1:4a:d2:df:09:3e:7f:b9:68: fe:1d:48:63:34:93:0a:4b:3b:8c:9f:fc:02:1c:1c:f4:3d:10: 86:44:5c:7b:a9:97:10:d7:20:19:00:c4:71:b2:47:7c:0b:b4: 59:f6:d6:f2:1b:b7:c4:c3:15:f3:bf:d9:5c:17:c5:79:5c:c3: 02:dc:18:67:8a:ed:31:26:a9:8a:1e:dc:36:a3:71:43:5a:f9: 33:e1:ef:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RDMxMTAvBgNVBAUTKDkxMjZFRkU1MEQ1RTNCNTMxRkVFRTQ1NDlBQjMwQkZF N0E1NDU1MDcwHhcNMjQxMTIzMDIwMzA3WhcNMjQxMTMwMDIwMzA3WjAYMRYwFAYD VQQDEw02NzQxMzdkYi0xZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0R1/IzwPzClmNCOAHwo+FnebWfBTa5nxpcf8cbsO2/OgDPFgyK2+sLQ/ZWB oBBYigtQ86cPyCaA55qcSeX20BY3ns2e+E800M4khVCc4JcfrT67GzC0y4QmhHCs 07K5RwDKvUTHVCOvM5Is6rUbFTA1lNzi/Vv+g0cNuPKsw2UefAugiCEzsHQa33kz dJL2PN+CSu2UD207K6JjPDJQlfT99HDeejv3byWXpzJAtKBYua7w05afNk8Jjb26 acWSmOb5bPk1H8A8kCUIpxw5Blpn3AkfHFlZmOx4r1BdBPixvOnpDHBrWfwKemso 06qn+rlnYrP2xCXdTYFM0Jo+cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0QyjoQ TbrD5rVeDTkkXywspD6uMB8GA1UdIwQYMBaAFJEm7+UNXjtTH+7kVJqzC/56VFUH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjREMy82ODAzNEM2ODYy NjYxMUVEODI0MkM3ODZDNEY5QUUwMi9rU2J2NVExZU8xTWY3dVJVbXJNTF9ucFVW UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTYnY1UTFlTzFNZjd1UlVtck1MX25wVVZRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjREMy82ODAzNEM2ODYyNjYxMUVEODI0MkM3ODZDNEY5QUUwMi9rU2J2NVExZU8x TWY3dVJVbXJNTF9ucFVWUWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8QgN3ySYyY4YHYSmb2YlY18LCq37xNNvPwV4QFxUVW9l8nYH6ClMs OfCTF4Wf+ynnknV7Nx1jLoNiTn+CIXcJU0ykO6+qMlkBYRO0ZeS01v3TBK5uL3Gl DVUwNrFLymt4Qz0360czswJhuvW+rqeXRBW5sXiAu+e+BJV4dNfuVavY1Z2pjBxL IjUYzQ6h2Z8SJkb/KIq3sedGhqvN/aa7D9hmX7P/XsU2RXHhStLfCT5/uWj+HUhj NJMKSzuMn/wCHBz0PRCGRFx7qZcQ1yAZAMRxskd8C7RZ9tbyG7fEwxXzv9lcF8V5 XMMC3Bhniu0xJqmKHtw2o3FDWvkz4e+f -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:44 2024 by rpki-client on console-ams.rpki-client.org