$ rpki-client -vvf rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft File: KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft (raw, json) Hash identifier: aMSN0qBqp/l13gMydHmBabp0VI3sw1UHdCgo7urDB64= Subject key identifier: 40:D5:3C:BD:DB:C8:A3:11:5D:A2:BB:C4:D3:79:83:A6:20:DB:47:92 Authority key identifier: 28:0B:2E:93:B4:AF:D2:03:20:A3:D0:82:A5:B3:CD:A3:B0:0D:2E:1D Certificate issuer: /CN=A9195393/serialNumber=280B2E93B4AFD20320A3D082A5B3CDA3B00D2E1D Certificate serial: 0AAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft Manifest number: 0AA5 Signing time: Fri 22 Nov 2024 19:17:37 +0000 Manifest this update: Fri 22 Nov 2024 19:17:36 +0000 Manifest next update: Fri 29 Nov 2024 19:17:36 +0000 Files and hashes: 1: KAsuk7Sv0gMgo9CCpbPNo7ANLh0.crl (hash: CHsJyhwtdcNzMAvPHGhmF8CQ62e44LAiPu6Ys8/ZukA=) 2: 784507FC9F4211ECB5BC4D14C4F9AE02.roa (hash: Rrqo0fHhyR6JUNrP9MMcsUE6hhp2tronEE70lXIOPYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.crl rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2732 (0xaac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195393/serialNumber=280B2E93B4AFD20320A3D082A5B3CDA3B00D2E1D Validity Not Before: Nov 22 19:17:36 2024 GMT Not After : Nov 29 19:17:36 2024 GMT Subject: CN=6740d8d0-e413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4a:0a:5a:56:91:cf:5f:3d:07:c0:d6:1f:3b: 84:29:5b:ce:84:d8:23:98:39:95:19:1c:9c:6f:ce: 58:af:56:76:38:c9:56:d0:a8:c7:e9:4c:ef:8e:d9: c7:dc:26:b6:12:ed:fa:91:46:df:3a:ba:e4:60:f0: 57:0b:0c:c2:b3:78:fc:8c:69:12:cb:b4:ad:a4:d9: c6:4e:4f:b4:18:68:33:cd:c9:df:73:a3:a8:8a:04: 67:41:e9:22:db:63:a8:af:98:6f:ff:cb:30:8c:ca: d1:50:ae:0c:f6:af:e3:6a:45:8c:bf:a2:a1:cc:e6: d1:ba:98:3a:fb:76:ae:75:4a:cf:02:91:3e:96:af: 99:71:4a:58:46:a7:3e:80:04:60:95:f7:63:99:f4: 82:9f:2a:b0:01:dd:16:ab:64:7f:45:b7:04:13:96: 7a:22:0c:72:0a:e7:5e:6d:35:5b:09:7c:87:97:b9: 5b:55:f2:c3:00:fb:00:50:f5:03:bb:e6:ac:bd:0e: db:bd:34:01:47:66:0e:85:ee:b3:b9:22:57:c2:9a: 78:90:c1:76:f6:9f:20:7f:f1:4b:ec:6e:90:46:2f: 10:bf:b9:c2:7b:5c:00:a5:3f:5d:d3:b9:15:16:a7: a3:82:b5:5f:40:5b:21:6f:1e:65:d2:e1:74:95:b8: d9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D5:3C:BD:DB:C8:A3:11:5D:A2:BB:C4:D3:79:83:A6:20:DB:47:92 X509v3 Authority Key Identifier: keyid:28:0B:2E:93:B4:AF:D2:03:20:A3:D0:82:A5:B3:CD:A3:B0:0D:2E:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:7f:9a:c3:c3:59:bc:d5:e4:65:14:89:df:29:6e:8f:0f:24: 88:9f:2c:59:1a:6e:32:15:2e:04:c5:35:c3:51:fe:4f:48:c1: b7:50:ad:0c:2e:24:d0:ec:ca:71:4e:ae:f0:e8:00:b9:c1:8d: f5:b6:b3:fe:ee:29:ba:fb:d3:ce:f7:37:52:46:a8:b5:f3:1a: b2:0b:c2:0d:30:e6:23:bf:3d:be:b1:6a:5c:21:32:7c:18:bc: c5:08:af:c7:47:ab:5a:20:98:17:57:40:be:bb:1d:94:d4:d9: 8d:e0:33:ae:34:bf:d9:4f:7d:2c:e0:db:c8:38:ff:ba:09:1a: 07:1c:61:1c:12:0e:01:58:32:63:23:48:5f:7d:da:64:6d:b3: 59:18:ca:b9:2b:eb:e9:ab:f5:f6:8a:78:ed:d4:91:82:fd:ec: da:c9:64:57:a8:af:e2:9e:d0:0c:82:33:df:2d:72:75:18:32: 23:11:b8:aa:9c:6d:0d:50:1e:f4:37:22:61:26:70:af:8c:cd: 06:b9:b8:e4:9e:4b:f9:f3:37:5b:b3:c7:90:97:ff:96:2b:cb: 15:66:36:d5:3e:77:25:52:fa:2e:69:99:20:6f:67:07:64:b7: 1e:65:40:7f:40:11:0d:0a:d3:81:6e:59:11:b2:04:ea:e0:74: 40:a2:d1:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzOTMxMTAvBgNVBAUTKDI4MEIyRTkzQjRBRkQyMDMyMEEzRDA4MkE1QjNDREEz QjAwRDJFMUQwHhcNMjQxMTIyMTkxNzM2WhcNMjQxMTI5MTkxNzM2WjAYMRYwFAYD VQQDEw02NzQwZDhkMC1lNDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0koKWlaRz189B8DWHzuEKVvOhNgjmDmVGRycb85Yr1Z2OMlW0KjH6UzvjtnH 3Ca2Eu36kUbfOrrkYPBXCwzCs3j8jGkSy7StpNnGTk+0GGgzzcnfc6OoigRnQeki 22Oor5hv/8swjMrRUK4M9q/jakWMv6KhzObRupg6+3audUrPApE+lq+ZcUpYRqc+ gARglfdjmfSCnyqwAd0Wq2R/RbcEE5Z6IgxyCudebTVbCXyHl7lbVfLDAPsAUPUD u+asvQ7bvTQBR2YOhe6zuSJXwpp4kMF29p8gf/FL7G6QRi8Qv7nCe1wApT9d07kV FqejgrVfQFshbx5l0uF0lbjZ8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDVPL3b yKMRXaK7xNN5g6Yg20eSMB8GA1UdIwQYMBaAFCgLLpO0r9IDIKPQgqWzzaOwDS4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM5My84ODZFODM0NDQz MTcxMUVBQUU4OEM3MjBDNEY5QUUwMi9LQXN1azdTdjBnTWdvOUNDcGJQTm83QU5M aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tBc3VrN1N2MGdNZ285Q0NwYlBObzdBTkxoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTM5My84ODZFODM0NDQzMTcxMUVBQUU4OEM3MjBDNEY5QUUwMi9LQXN1azdTdjBn TWdvOUNDcGJQTm83QU5MaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEf5rDw1m81eRlFInfKW6PDySInyxZGm4yFS4ExTXDUf5PSMG3UK0M LiTQ7MpxTq7w6AC5wY31trP+7im6+9PO9zdSRqi18xqyC8INMOYjvz2+sWpcITJ8 GLzFCK/HR6taIJgXV0C+ux2U1NmN4DOuNL/ZT30s4NvIOP+6CRoHHGEcEg4BWDJj I0hffdpkbbNZGMq5K+vpq/X2injt1JGC/ezayWRXqK/intAMgjPfLXJ1GDIjEbiq nG0NUB70NyJhJnCvjM0Gubjknkv58zdbs8eQl/+WK8sVZjbVPnclUvouaZkgb2cH ZLceZUB/QBENCtOBblkRsgTq4HRAotFD -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:35 2024 by rpki-client on console-ams.rpki-client.org