$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: +bR3G0dz9tSLjfgdFGUmdZnMJ4c/zXryBdmKWEz6NdA= Subject key identifier: 93:C6:BB:C7:DE:11:57:9C:FD:45:CA:D9:B5:4E:19:90:A8:07:F4:CE Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: DF Signing time: Sat 23 Nov 2024 03:37:49 +0000 Manifest this update: Sat 23 Nov 2024 03:37:48 +0000 Manifest next update: Sat 30 Nov 2024 03:37:48 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: QyI8ApIlfY3zdsDU3g8Yu2n5uNMp4/+Yibo9+wGmv4o=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: Pojppps22r3xRUUOYA4Lq5WqJQ1e2Svo0KKFdlUH1VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: Nov 23 03:37:48 2024 GMT Not After : Nov 30 03:37:48 2024 GMT Subject: CN=67414e0c-101d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7a:89:94:77:0b:d0:41:12:1f:82:72:19:c0: 53:a2:8e:af:62:40:7b:38:a4:f9:da:42:6f:43:81: 2d:b5:a9:09:5f:97:d8:f6:7d:89:42:6a:07:27:87: a2:40:13:0f:d5:99:91:fc:aa:da:b8:2f:bf:d1:eb: bf:79:a0:dc:ae:15:42:61:26:68:de:37:5a:21:b1: 98:4d:31:5e:ae:5f:51:84:f3:9b:90:7b:f2:3d:23: d1:4c:4b:66:78:ef:03:cf:9e:f0:63:da:af:9f:90: d1:a0:b8:d5:d8:4e:0a:4a:e8:f5:62:25:50:5e:e5: a2:61:d2:86:f4:4f:5d:67:75:3e:25:43:6a:52:72: 92:a2:55:9a:25:e3:5b:01:07:ac:6d:e5:72:8f:34: 6e:0a:e1:dc:0b:b6:21:6c:24:22:be:3c:67:07:7f: e9:70:50:9e:ba:30:de:85:cb:24:f0:a5:bb:54:c9: 0c:76:8e:9c:8a:38:76:f5:c6:9a:10:26:8e:2d:9f: 3b:cb:67:1d:a6:26:bc:ab:24:82:62:35:91:15:67: 4d:7a:b3:78:02:34:c4:19:05:04:52:36:ab:9d:a4: 49:80:71:06:d7:06:20:80:3c:9e:2e:46:40:19:10: a0:49:5b:6b:6e:03:ae:3d:36:f5:dc:58:a8:c1:cb: f7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:C6:BB:C7:DE:11:57:9C:FD:45:CA:D9:B5:4E:19:90:A8:07:F4:CE X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:ec:93:d0:25:b5:f8:01:e5:5d:a3:19:22:c1:7e:af:9b:5a: 96:a3:ac:90:1b:e6:ef:73:7b:9d:b7:af:77:96:85:de:0a:fa: 8e:5f:c0:11:8a:27:68:6d:61:94:cc:e1:37:ac:4b:5f:d4:af: 66:86:5d:7a:a6:e3:8f:4d:bf:c2:6b:3f:34:cc:a8:be:1e:f7: 64:df:60:e4:36:c3:fe:74:04:73:cf:e2:40:6b:c1:75:9d:23: d4:13:10:e0:43:e2:b1:06:a6:86:2f:58:3b:5b:be:ed:cb:bf: d1:d2:0c:c6:4a:87:ce:21:95:e8:b1:be:c0:2f:5d:81:31:6b: d2:2b:1c:52:36:9e:18:99:bc:a6:23:3d:51:fb:50:10:da:55: c1:ac:27:a3:b0:40:44:e0:d3:18:91:d5:d9:71:0e:2b:d0:6f: 01:23:f1:31:fa:c1:ed:a6:b0:f9:de:4f:7e:4f:a0:05:c9:27: ff:b1:0a:74:29:1e:cc:7f:e5:58:84:74:18:23:77:3c:d5:a2: 39:4b:9a:f0:34:eb:a7:a5:cb:4a:d7:57:73:dc:94:dc:6c:e6: 33:3e:c2:47:b7:59:b4:51:51:8d:88:87:be:97:d6:98:ae:61: ae:fa:94:28:3f:bc:6e:77:bf:09:4d:bb:b4:70:9e:ec:fb:13: 12:d4:d2:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjQxMTIzMDMzNzQ4WhcNMjQxMTMwMDMzNzQ4WjAYMRYwFAYD VQQDEw02NzQxNGUwYy0xMDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHqJlHcL0EESH4JyGcBToo6vYkB7OKT52kJvQ4EttakJX5fY9n2JQmoHJ4ei QBMP1ZmR/KrauC+/0eu/eaDcrhVCYSZo3jdaIbGYTTFerl9RhPObkHvyPSPRTEtm eO8Dz57wY9qvn5DRoLjV2E4KSuj1YiVQXuWiYdKG9E9dZ3U+JUNqUnKSolWaJeNb AQesbeVyjzRuCuHcC7YhbCQivjxnB3/pcFCeujDehcsk8KW7VMkMdo6cijh29caa ECaOLZ87y2cdpia8qySCYjWRFWdNerN4AjTEGQUEUjarnaRJgHEG1wYggDyeLkZA GRCgSVtrbgOuPTb13Fiowcv36QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPGu8fe EVec/UXK2bVOGZCoB/TOMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK7JPQJbX4AeVdoxkiwX6vm1qWo6yQG+bvc3udt693loXeCvqOX8AR iidobWGUzOE3rEtf1K9mhl16puOPTb/Caz80zKi+Hvdk32DkNsP+dARzz+JAa8F1 nSPUExDgQ+KxBqaGL1g7W77ty7/R0gzGSofOIZXosb7AL12BMWvSKxxSNp4Ymbym Iz1R+1AQ2lXBrCejsEBE4NMYkdXZcQ4r0G8BI/Ex+sHtprD53k9+T6AFySf/sQp0 KR7Mf+VYhHQYI3c81aI5S5rwNOunpctK11dz3JTcbOYzPsJHt1m0UVGNiIe+l9aY rmGu+pQoP7xud78JTbu0cJ7s+xMS1NK/ -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:14 2024 by rpki-client on console-ams.rpki-client.org