$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft File: KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft (raw, json) Hash identifier: PWkJnV+ZM0ES7FwGhpWkett4mG3i2SDP48j6ZSyKEaA= Subject key identifier: 6D:59:26:A8:BA:10:C7:41:6E:5F:CB:09:68:77:C0:FF:55:06:EE:59 Authority key identifier: 2A:C5:3E:26:20:2F:4B:CB:C1:48:06:F1:3E:9E:86:0D:0A:C6:77:F9 Certificate issuer: /CN=A91A4EF9/serialNumber=2AC53E26202F4BCBC14806F13E9E860D0AC677F9 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsU-JiAvS8vBSAbxPp6GDQrGd_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft Manifest number: 8C Signing time: Sat 23 Nov 2024 04:32:50 +0000 Manifest this update: Sat 23 Nov 2024 04:32:49 +0000 Manifest next update: Sat 30 Nov 2024 04:32:49 +0000 Files and hashes: 1: KsU-JiAvS8vBSAbxPp6GDQrGd_k.crl (hash: yUsqFrFMksrmcrlqLXIAl7CfqJUCsbZhmmq0+SYeElk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.crl rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsU-JiAvS8vBSAbxPp6GDQrGd_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4EF9/serialNumber=2AC53E26202F4BCBC14806F13E9E860D0AC677F9 Validity Not Before: Nov 23 04:32:49 2024 GMT Not After : Nov 30 04:32:49 2024 GMT Subject: CN=67415af2-dbd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c8:e9:49:62:44:ed:ba:34:ae:8c:ae:a7:4b: ab:64:38:f5:8f:c0:fc:a7:61:45:1b:18:c1:fd:66: 35:4b:a5:e6:97:78:d1:fa:1b:b1:db:12:00:19:fa: 16:77:14:ec:c4:bc:60:da:f2:d8:90:cf:b3:4d:ec: dd:8d:d2:ba:49:55:51:b1:db:42:3b:30:69:db:85: 6b:2c:ef:bd:95:99:ba:5c:ba:2c:26:b4:e1:88:81: 09:ca:70:b6:83:cf:42:8f:63:99:c8:a4:a9:88:ac: a7:be:dc:a7:e1:01:64:c3:ac:44:75:08:7e:0e:bf: 0b:91:a4:98:a0:2d:44:1c:8c:83:15:04:32:ff:20: 5b:47:36:52:d4:b3:32:7a:f3:65:c9:c1:a2:73:43: a2:df:5c:a9:b9:50:51:09:4e:cb:ba:6c:61:d3:d5: 4c:24:43:b6:4f:e1:ec:56:87:57:1d:a7:ad:1d:d0: 8a:d6:fe:17:bb:50:77:0b:13:1e:94:50:8a:4d:f4: 01:81:26:35:74:94:21:ab:9a:f1:e2:95:93:f0:f3: be:13:49:75:a9:ea:87:07:89:50:bc:e2:07:06:71: 65:50:7f:0b:73:93:80:43:cb:e2:84:10:53:83:a4: fd:1d:c5:17:0c:9f:21:87:86:a2:f2:ce:3e:7a:1c: 1e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:59:26:A8:BA:10:C7:41:6E:5F:CB:09:68:77:C0:FF:55:06:EE:59 X509v3 Authority Key Identifier: keyid:2A:C5:3E:26:20:2F:4B:CB:C1:48:06:F1:3E:9E:86:0D:0A:C6:77:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsU-JiAvS8vBSAbxPp6GDQrGd_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a4:cd:c1:30:3f:a8:48:fa:0e:15:38:0c:3c:dd:46:1f:19: 42:45:c5:48:b3:04:be:7c:68:92:ca:48:66:5f:af:97:4e:a3: 08:41:57:a6:68:5e:ad:6b:ef:3d:13:b4:37:36:e7:a5:f5:e0: 1f:7a:26:4e:70:80:57:a0:90:af:aa:ae:60:2a:aa:22:1f:df: 59:d0:10:ad:96:d7:54:28:f1:22:6a:e5:be:67:1b:71:ad:3a: 3c:ce:09:7d:95:ee:9f:21:49:88:9e:a7:b4:69:30:9c:e8:69: 88:e6:88:0e:4a:cc:b0:97:7a:3a:49:89:fe:0d:10:0f:7b:0c: 47:81:25:21:84:44:2a:2a:8b:81:84:28:f8:64:77:b6:69:6e: 9a:18:bf:70:b8:99:41:73:0b:69:89:65:d0:0e:8c:75:90:9f: ec:66:f7:84:6f:aa:f2:7b:a6:15:26:a7:1f:a1:9b:87:fc:a8: 86:b3:2c:55:00:60:46:cc:76:cc:a9:1d:41:54:4e:5a:25:70: e5:06:4b:99:b3:a3:e3:05:0c:8d:b7:75:04:46:71:4b:12:fc: 12:db:ba:77:5f:8e:df:65:be:48:15:1f:40:8e:3c:88:ae:3c: 4d:c1:78:a1:6b:33:89:16:33:d9:8c:03:0e:17:c8:6c:68:78: 10:f1:00:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRjkxMTAvBgNVBAUTKDJBQzUzRTI2MjAyRjRCQ0JDMTQ4MDZGMTNFOUU4NjBE MEFDNjc3RjkwHhcNMjQxMTIzMDQzMjQ5WhcNMjQxMTMwMDQzMjQ5WjAYMRYwFAYD VQQDEw02NzQxNWFmMi1kYmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlsjpSWJE7bo0royup0urZDj1j8D8p2FFGxjB/WY1S6Xml3jR+hux2xIAGfoW dxTsxLxg2vLYkM+zTezdjdK6SVVRsdtCOzBp24VrLO+9lZm6XLosJrThiIEJynC2 g89Cj2OZyKSpiKynvtyn4QFkw6xEdQh+Dr8LkaSYoC1EHIyDFQQy/yBbRzZS1LMy evNlycGic0Oi31ypuVBRCU7Lumxh09VMJEO2T+HsVodXHaetHdCK1v4Xu1B3CxMe lFCKTfQBgSY1dJQhq5rx4pWT8PO+E0l1qeqHB4lQvOIHBnFlUH8Lc5OAQ8vihBBT g6T9HcUXDJ8hh4ai8s4+ehwecQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1ZJqi6 EMdBbl/LCWh3wP9VBu5ZMB8GA1UdIwQYMBaAFCrFPiYgL0vLwUgG8T6ehg0Kxnf5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVGOS83RTlFMjNGOEQx MzcxMUVFQUE5RjE5ODBDNEY5QUUwMi9Lc1UtSmlBdlM4dkJTQWJ4UHA2R0RRckdk X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tzVS1KaUF2Uzh2QlNBYnhQcDZHRFFyR2Rfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVGOS83RTlFMjNGOEQxMzcxMUVFQUE5RjE5ODBDNEY5QUUwMi9Lc1UtSmlBdlM4 dkJTQWJ4UHA2R0RRckdkX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLpM3BMD+oSPoOFTgMPN1GHxlCRcVIswS+fGiSykhmX6+XTqMIQVem aF6ta+89E7Q3Nuel9eAfeiZOcIBXoJCvqq5gKqoiH99Z0BCtltdUKPEiauW+Zxtx rTo8zgl9le6fIUmInqe0aTCc6GmI5ogOSsywl3o6SYn+DRAPewxHgSUhhEQqKouB hCj4ZHe2aW6aGL9wuJlBcwtpiWXQDox1kJ/sZveEb6rye6YVJqcfoZuH/KiGsyxV AGBGzHbMqR1BVE5aJXDlBkuZs6PjBQyNt3UERnFLEvwS27p3X47fZb5IFR9AjjyI rjxNwXihazOJFjPZjAMOF8hsaHgQ8QDv -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org