$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft File: KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft (raw, json) Hash identifier: BdJAyG4UcndBIgB2F881m74Og+OWvQhaFGTjfLSqDJI= Subject key identifier: 9B:09:E3:C4:48:5C:CB:0B:60:F3:A6:2F:58:97:94:E7:B4:43:44:16 Authority key identifier: 28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 Certificate issuer: /CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft Manifest number: E0 Signing time: Sat 23 Nov 2024 03:35:05 +0000 Manifest this update: Sat 23 Nov 2024 03:35:05 +0000 Manifest next update: Sat 30 Nov 2024 03:35:05 +0000 Files and hashes: 1: KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl (hash: 0Z1b4eFRBjuhoN3epHFw3XTn5IzX05biOWS0faCbU+A=) 2: 21525A1C520B11EE8B79021AC4F9AE02.roa (hash: s8Vu/R6gOMwvLzsGf3nk9tFhiMljx1hOH6LnsMms3Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Validity Not Before: Nov 23 03:35:05 2024 GMT Not After : Nov 30 03:35:05 2024 GMT Subject: CN=67414d69-2526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:90:e9:5b:9e:4f:8c:7f:cc:4c:86:cb:a6:eb: b8:bf:a4:00:b1:33:68:26:8c:f1:f3:90:b5:8d:8e: 8d:7b:87:55:64:e2:f1:86:da:bd:e6:98:57:89:4e: 05:f7:34:f4:0a:20:ed:e9:0a:aa:b3:6f:d3:d8:8b: 37:dd:41:49:07:50:ec:af:07:7d:71:a9:3a:85:ea: 4c:0e:26:aa:c7:11:70:1b:b4:a8:c3:ea:60:eb:00: e7:62:b1:81:8a:ab:58:34:a9:13:be:3a:50:e7:86: d3:b6:40:65:4b:7d:c2:67:36:1c:e5:6a:39:de:8a: c6:34:b8:c0:cb:9c:fc:34:5a:7f:c7:85:da:88:cd: 75:6d:02:67:34:9b:63:de:72:47:87:15:87:e4:06: 7a:12:3d:69:b1:12:13:88:23:5b:cd:fd:5b:45:c0: 61:b8:ca:37:64:7e:49:3b:76:70:8a:81:dc:b0:9f: ad:05:f4:7a:09:41:9a:93:d5:58:54:81:ba:9a:8d: c5:3f:d3:ed:7f:ce:b2:b8:d6:ca:59:19:57:46:34: e9:10:0d:e6:2f:e1:db:ee:06:c9:70:10:96:19:5a: f9:6a:6e:fa:91:ce:76:c3:ad:a7:26:2c:7a:46:6c: c4:a9:7e:17:25:06:3c:5a:e2:32:ec:23:fd:d6:ef: f4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:09:E3:C4:48:5C:CB:0B:60:F3:A6:2F:58:97:94:E7:B4:43:44:16 X509v3 Authority Key Identifier: keyid:28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:62:85:e1:5b:82:3d:f6:0b:12:f2:91:58:c0:eb:70:21:ef: 57:5d:39:3e:77:e1:98:ba:4e:f3:3d:3c:e8:65:5a:90:38:ca: 92:5f:c3:5f:4c:c5:90:d7:15:6c:82:29:f6:11:16:7b:dc:ed: 83:ae:f3:f6:96:2b:1d:c8:e8:bb:51:17:fb:73:eb:bb:98:54: 15:e3:0d:09:97:c4:14:f6:4e:84:4d:79:2b:46:9e:9f:77:b2: 5b:52:ff:4a:bc:d7:4c:75:9a:da:a3:7e:48:df:90:3c:d9:34: ec:ba:70:d9:61:45:79:b8:4f:d2:63:29:5a:c3:20:fb:3c:a2: ef:2e:7f:02:ac:4d:26:b7:c5:9f:13:4c:86:2a:62:a4:14:28: 57:54:12:10:b2:2d:9e:2b:d4:01:a5:74:e1:70:26:b3:df:4e: 55:2d:90:10:30:ab:49:36:97:bc:b8:5f:42:5f:29:c3:f9:ce: 47:e1:00:9e:6a:03:7d:08:82:19:03:b8:85:81:c3:2e:d9:73: 42:64:d8:0c:77:f5:25:e8:a9:ad:b7:88:a5:aa:cf:71:85:79: 3a:db:a7:6c:ac:89:30:51:4e:11:13:5b:1a:ea:78:d5:79:90: c3:10:a7:ba:8b:54:a6:84:04:44:71:ca:dd:07:8b:50:99:ce: f9:56:54:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVBRUUxMTAvBgNVBAUTKDI4QzA2MDdEOTY4MzFBM0QxODA5MzM0NUIzNzI1OEVF M0JEN0YzRTcwHhcNMjQxMTIzMDMzNTA1WhcNMjQxMTMwMDMzNTA1WjAYMRYwFAYD VQQDEw02NzQxNGQ2OS0yNTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pDpW55PjH/MTIbLpuu4v6QAsTNoJozx85C1jY6Ne4dVZOLxhtq95phXiU4F 9zT0CiDt6Qqqs2/T2Is33UFJB1Dsrwd9cak6hepMDiaqxxFwG7Sow+pg6wDnYrGB iqtYNKkTvjpQ54bTtkBlS33CZzYc5Wo53orGNLjAy5z8NFp/x4XaiM11bQJnNJtj 3nJHhxWH5AZ6Ej1psRITiCNbzf1bRcBhuMo3ZH5JO3ZwioHcsJ+tBfR6CUGak9VY VIG6mo3FP9Ptf86yuNbKWRlXRjTpEA3mL+Hb7gbJcBCWGVr5am76kc52w62nJix6 RmzEqX4XJQY8WuIy7CP91u/08QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsJ48RI XMsLYPOmL1iXlOe0Q0QWMB8GA1UdIwQYMBaAFCjAYH2Wgxo9GAkzRbNyWO471/Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUFFRS8zRTM5MDFGMjUy MDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdqMFlDVE5GczNKWTdqdlg4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNQmdmWmFER2owWUNUTkZzM0pZN2p2WDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUFFRS8zRTM5MDFGMjUyMDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdq MFlDVE5GczNKWTdqdlg4LWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbYoXhW4I99gsS8pFYwOtwIe9XXTk+d+GYuk7zPTzoZVqQOMqSX8Nf TMWQ1xVsgin2ERZ73O2DrvP2lisdyOi7URf7c+u7mFQV4w0Jl8QU9k6ETXkrRp6f d7JbUv9KvNdMdZrao35I35A82TTsunDZYUV5uE/SYylawyD7PKLvLn8CrE0mt8Wf E0yGKmKkFChXVBIQsi2eK9QBpXThcCaz305VLZAQMKtJNpe8uF9CXynD+c5H4QCe agN9CIIZA7iFgcMu2XNCZNgMd/Ul6Kmtt4ilqs9xhXk626dsrIkwUU4RE1sa6njV eZDDEKe6i1SmhAREccrdB4tQmc75VlSd -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:23 2024 by rpki-client on console-ams.rpki-client.org