$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: pEikuPH7ggIUkFi3Cy3Kv4bCo2VyipkmKOYIhDNszh4= Subject key identifier: 7A:A3:62:BA:CA:97:B1:48:45:25:EE:62:B2:C8:E1:A1:EC:7D:B4:7C Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: B8 Signing time: Sat 23 Nov 2024 04:06:00 +0000 Manifest this update: Sat 23 Nov 2024 04:05:59 +0000 Manifest next update: Sat 30 Nov 2024 04:05:59 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: fkUISoSBoxDpLzxchO3AJDsWj4dN4lwORPKiMtMpBMY=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: iKey44OboTB8NilxUb2DzRzq18OyDEY6fi5JIxPzxK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Nov 23 04:05:59 2024 GMT Not After : Nov 30 04:05:59 2024 GMT Subject: CN=674154a8-8bec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:fa:cc:7f:9d:f0:ad:8b:42:c0:ab:be:eb:2d: 5b:24:d0:d1:f8:9a:4c:8f:19:bf:b7:4f:31:df:e4: 32:2a:dc:ae:8c:da:11:5e:4c:1f:1c:1f:19:e0:fd: 16:b8:8b:57:bf:44:c1:09:53:9d:21:5c:ec:2a:9c: 96:96:c2:c9:55:7b:1b:2c:16:cb:a8:22:e3:3c:97: cf:30:e7:01:f0:e6:50:be:4d:01:cf:22:fd:dc:b7: d2:94:7f:c2:22:34:15:37:e6:62:eb:68:a2:4c:20: 7e:05:90:45:14:ce:d8:8f:b1:f1:87:6e:c2:95:04: 14:4b:48:5e:27:e2:7c:6c:68:84:bd:43:4a:37:81: af:e1:76:97:83:b0:4b:05:da:c3:01:bc:b9:dc:76: 2e:7c:2d:df:0d:6b:1d:3f:64:c2:87:b6:52:80:b3: e2:93:4c:27:3d:85:e8:80:7c:3c:ab:df:d4:80:14: 4f:3b:42:3c:1e:a9:1d:b4:6d:04:45:d1:c7:2c:95: ed:eb:37:10:05:90:cd:db:a0:6a:c0:91:38:47:77: fc:7b:94:b6:42:f1:ac:07:7d:35:37:d9:7f:d9:81: 30:9d:32:0c:e3:37:2f:d4:19:13:60:47:e6:dc:fb: 21:07:5e:8b:ae:0a:7d:74:c0:8f:7f:55:ce:44:d7: b9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:A3:62:BA:CA:97:B1:48:45:25:EE:62:B2:C8:E1:A1:EC:7D:B4:7C X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:cf:0e:b7:3d:0b:80:ba:d5:f5:3e:3a:6c:b2:f7:fc:03:4f: 59:9f:e7:cb:10:5e:b7:59:95:96:cc:f7:b1:f9:7f:2f:4f:9d: 2f:7e:04:59:82:08:97:f9:86:41:e9:8c:6f:53:f0:c3:38:2d: e0:72:92:5f:ce:05:bd:de:66:6a:60:12:d3:f9:b1:3b:d1:c6: 89:f1:a2:b8:ca:9d:86:df:ad:d4:94:e5:61:0f:76:65:ac:64: d7:38:0c:4b:1e:bc:9d:d2:41:2f:eb:af:51:ec:80:02:fa:a2: ae:73:46:c5:4f:cf:e1:d0:bf:b0:92:78:4a:48:81:19:0d:4e: 81:3a:7c:cf:79:cd:1a:3c:9f:d6:39:0e:68:91:5a:5d:88:1a: 40:07:7f:e8:b2:0d:fa:6d:41:97:32:e2:6f:ac:3f:cb:d2:75: 41:86:7e:7f:29:5c:be:fd:53:f8:4f:61:cd:44:30:be:2e:4a: 9a:cb:01:78:b6:cd:f0:7d:83:7f:35:ff:6a:c6:b3:e5:34:22: c7:5c:44:98:eb:d0:c3:22:b2:4d:eb:c5:e9:2f:e1:80:be:d8: c4:4b:76:56:ac:89:4f:41:c8:41:35:6f:54:7c:ff:c4:2b:d5: 6d:7d:29:46:84:c3:b9:f3:5c:5c:c7:64:b3:d1:aa:35:43:2a: 5f:37:d6:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjQxMTIzMDQwNTU5WhcNMjQxMTMwMDQwNTU5WjAYMRYwFAYD VQQDEw02NzQxNTRhOC04YmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPrMf53wrYtCwKu+6y1bJNDR+JpMjxm/t08x3+QyKtyujNoRXkwfHB8Z4P0W uItXv0TBCVOdIVzsKpyWlsLJVXsbLBbLqCLjPJfPMOcB8OZQvk0BzyL93LfSlH/C IjQVN+Zi62iiTCB+BZBFFM7Yj7Hxh27ClQQUS0heJ+J8bGiEvUNKN4Gv4XaXg7BL BdrDAby53HYufC3fDWsdP2TCh7ZSgLPik0wnPYXogHw8q9/UgBRPO0I8HqkdtG0E RdHHLJXt6zcQBZDN26BqwJE4R3f8e5S2QvGsB301N9l/2YEwnTIM4zcv1BkTYEfm 3PshB16Lrgp9dMCPf1XORNe5SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqjYrrK l7FIRSXuYrLI4aHsfbR8MB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmzw63PQuAutX1Pjpssvf8A09Zn+fLEF63WZWWzPex+X8vT50vfgRZ ggiX+YZB6YxvU/DDOC3gcpJfzgW93mZqYBLT+bE70caJ8aK4yp2G363UlOVhD3Zl rGTXOAxLHryd0kEv669R7IAC+qKuc0bFT8/h0L+wknhKSIEZDU6BOnzPec0aPJ/W OQ5okVpdiBpAB3/osg36bUGXMuJvrD/L0nVBhn5/KVy+/VP4T2HNRDC+LkqaywF4 ts3wfYN/Nf9qxrPlNCLHXESY69DDIrJN68XpL+GAvtjES3ZWrIlPQchBNW9UfP/E K9VtfSlGhMO581xcx2Sz0ao1QypfN9Y+ -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org