$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.mft File: K8iorLUs8M9_MTaUMA9ThmhiN60.mft (raw, json) Hash identifier: 1ojNkIp+sbxEESYiwZqCWQj9Knxx2N6vLNCKJlg/woc= Subject key identifier: AF:42:53:DD:CF:3F:D3:B9:D4:57:20:11:EF:20:53:36:4D:C9:77:7D Authority key identifier: 2B:C8:A8:AC:B5:2C:F0:CF:7F:31:36:94:30:0F:53:86:68:62:37:AD Certificate issuer: /CN=A91B0549/serialNumber=2BC8A8ACB52CF0CF7F313694300F5386686237AD Certificate serial: 0B10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8iorLUs8M9_MTaUMA9ThmhiN60.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.mft Manifest number: 0B08 Signing time: Fri 22 Nov 2024 19:02:06 +0000 Manifest this update: Fri 22 Nov 2024 19:02:06 +0000 Manifest next update: Fri 29 Nov 2024 19:02:06 +0000 Files and hashes: 1: K8iorLUs8M9_MTaUMA9ThmhiN60.crl (hash: ffB3v6Ae37Rsy8KPm1OcNdPVIDZvgqo8AbI1rFDjF7g=) 2: 7A629E90303211EA9DAB6581C4F9AE02.roa (hash: 5tQROkuKBdGr5CDnMUVPHlhLeJ1/YaIHTHWkyStRniQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.crl rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8iorLUs8M9_MTaUMA9ThmhiN60.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2832 (0xb10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0549/serialNumber=2BC8A8ACB52CF0CF7F313694300F5386686237AD Validity Not Before: Nov 22 19:02:06 2024 GMT Not After : Nov 29 19:02:06 2024 GMT Subject: CN=6740d52e-c840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0f:5d:14:97:ca:37:89:87:02:0d:ce:c7:69: 6e:45:8d:b8:5f:95:34:7f:cc:59:26:5b:1a:d5:4a: c5:a9:c0:0b:b0:a6:48:5d:e8:06:dd:59:6e:f2:62: 5a:47:46:59:90:04:a5:f2:63:99:de:6a:23:2f:9c: 23:31:08:96:cc:75:28:e0:75:12:b7:bd:fc:a6:82: b3:fd:c8:23:5d:08:0b:0b:c1:f7:11:b6:13:55:9c: df:d2:a0:ec:82:6d:5f:d7:5c:81:4e:93:2f:20:95: 74:6b:7e:70:5d:50:b9:b2:46:8d:0f:be:75:84:9d: d4:49:6e:ef:93:7c:e7:d1:39:00:57:ef:83:ed:af: 03:9d:fa:bb:b3:6d:0c:d2:43:37:5d:2c:13:4e:89: 77:ff:38:8e:bf:91:7f:a9:fe:d5:b2:f4:d0:76:85: ce:1a:60:e0:4a:db:cf:12:42:c0:c1:53:d5:ab:18: 3e:f9:6e:66:cf:43:dc:e3:51:6b:56:dc:f3:fd:f6: 74:fb:22:77:6a:63:37:f4:71:3b:05:04:7d:33:f4: c2:9f:33:33:74:07:00:44:2d:85:82:2b:60:0d:53: 13:1d:df:75:80:be:f0:a3:76:a8:b3:5f:50:aa:53: d8:1c:5f:dd:b0:4d:4c:ea:fa:f4:1a:fc:9b:e1:af: 2b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:42:53:DD:CF:3F:D3:B9:D4:57:20:11:EF:20:53:36:4D:C9:77:7D X509v3 Authority Key Identifier: keyid:2B:C8:A8:AC:B5:2C:F0:CF:7F:31:36:94:30:0F:53:86:68:62:37:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8iorLUs8M9_MTaUMA9ThmhiN60.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:c8:86:f4:68:f1:2c:41:18:70:98:b8:64:74:ac:fc:ef:3b: 61:71:a1:d0:bb:14:ad:cd:a9:88:b3:da:7f:75:74:cd:9a:b6: 62:cf:bb:45:9d:fe:e2:29:2f:29:28:8a:5a:01:9f:6e:69:d2: 16:d5:a6:58:26:d1:ef:34:ed:2a:0e:e6:6d:d8:ce:d3:1a:7f: 98:77:06:95:12:9a:10:2f:04:37:05:eb:bb:d6:5e:ac:7f:11: 83:a3:1c:b6:55:15:a9:1e:fa:e7:51:85:95:9a:ff:b4:87:fd: 27:0c:b2:28:1e:62:0a:cf:e2:78:cd:57:23:fc:94:c6:ac:46: 57:e5:40:fc:f8:0e:0f:50:1a:f3:de:10:d7:3e:d9:38:70:b7: 1e:f0:39:32:d4:22:78:46:f3:ff:dc:18:35:67:49:89:60:dd: 4a:25:ce:76:df:69:c0:72:b3:35:81:d1:33:32:c2:69:d3:f6: 12:72:91:0d:2b:e4:5d:dc:f7:43:cb:c4:3d:9a:09:96:76:55: 13:54:02:70:39:53:44:ee:46:3a:4c:2f:10:90:d0:8d:ab:0d: 4e:5b:a4:e4:c6:ef:ca:b3:3f:78:08:0f:8c:b5:c2:d6:e8:85: 8c:34:08:5e:6b:0b:73:ce:37:a3:0f:c4:84:ec:12:8b:18:95: c3:be:0e:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA1NDkxMTAvBgNVBAUTKDJCQzhBOEFDQjUyQ0YwQ0Y3RjMxMzY5NDMwMEY1Mzg2 Njg2MjM3QUQwHhcNMjQxMTIyMTkwMjA2WhcNMjQxMTI5MTkwMjA2WjAYMRYwFAYD VQQDEw02NzQwZDUyZS1jODQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3g9dFJfKN4mHAg3Ox2luRY24X5U0f8xZJlsa1UrFqcALsKZIXegG3Vlu8mJa R0ZZkASl8mOZ3mojL5wjMQiWzHUo4HUSt738poKz/cgjXQgLC8H3EbYTVZzf0qDs gm1f11yBTpMvIJV0a35wXVC5skaND751hJ3USW7vk3zn0TkAV++D7a8Dnfq7s20M 0kM3XSwTTol3/ziOv5F/qf7VsvTQdoXOGmDgStvPEkLAwVPVqxg++W5mz0Pc41Fr Vtzz/fZ0+yJ3amM39HE7BQR9M/TCnzMzdAcARC2FgitgDVMTHd91gL7wo3aos19Q qlPYHF/dsE1M6vr0Gvyb4a8rmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9CU93P P9O51FcgEe8gUzZNyXd9MB8GA1UdIwQYMBaAFCvIqKy1LPDPfzE2lDAPU4ZoYjet MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDU0OS8xQzZGNEFEQzMw MzExMUVBODg2RDUxN0NDNEY5QUUwMi9LOGlvckxVczhNOV9NVGFVTUE5VGhtaGlO NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4aW9yTFVzOE05X01UYVVNQTlUaG1oaU42MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDU0OS8xQzZGNEFEQzMwMzExMUVBODg2RDUxN0NDNEY5QUUwMi9LOGlvckxVczhN OV9NVGFVTUE5VGhtaGlONjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpyIb0aPEsQRhwmLhkdKz87zthcaHQuxStzamIs9p/dXTNmrZiz7tF nf7iKS8pKIpaAZ9uadIW1aZYJtHvNO0qDuZt2M7TGn+YdwaVEpoQLwQ3Beu71l6s fxGDoxy2VRWpHvrnUYWVmv+0h/0nDLIoHmIKz+J4zVcj/JTGrEZX5UD8+A4PUBrz 3hDXPtk4cLce8Dky1CJ4RvP/3Bg1Z0mJYN1KJc5232nAcrM1gdEzMsJp0/YScpEN K+Rd3PdDy8Q9mgmWdlUTVAJwOVNE7kY6TC8QkNCNqw1OW6Tkxu/Ksz94CA+MtcLW 6IWMNAheawtzzjejD8SE7BKLGJXDvg44 -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org