$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: kCQPeZjLXuIcwzl1oVF97gWnRwhAZs8Db95/pAagr5g= Subject key identifier: B2:58:B3:4E:18:A1:85:D7:A3:1D:24:95:A1:FA:EB:42:7C:5E:20:D3 Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0B12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0B09 Signing time: Fri 22 Nov 2024 19:02:30 +0000 Manifest this update: Fri 22 Nov 2024 19:02:30 +0000 Manifest next update: Fri 29 Nov 2024 19:02:30 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: uOChPAt44/mLcX3yCasW2qFJwyBFJTlBkwTWnyzeC9E=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: rkLsb+deDCPqbk0gObiXfMhdhI5eY1I1eSaPovL0Epo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2834 (0xb12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Nov 22 19:02:30 2024 GMT Not After : Nov 29 19:02:30 2024 GMT Subject: CN=6740d546-462f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e6:28:8f:ba:4a:81:5f:42:07:28:bf:2b:c0: 14:40:08:3e:fa:30:1f:1b:94:63:cc:55:8c:53:24: 5f:d6:83:b3:e8:f0:e7:39:ae:9b:16:60:53:3e:aa: 56:39:00:68:fd:04:28:db:48:21:f4:be:f3:4e:d1: c9:c0:c1:a1:2c:1c:96:df:9b:2f:6b:43:bf:45:09: c1:37:a9:f9:09:d0:b3:7c:82:20:e3:b5:b1:cb:00: e9:de:0b:ac:e9:3e:cf:b5:4f:2a:f6:99:ce:30:e9: a7:4a:26:d6:71:9a:99:5c:6b:d4:45:42:6d:15:3a: 95:60:83:4b:a0:ad:53:b6:ac:2a:cb:9a:06:06:06: 26:b6:63:54:15:d1:27:a1:f9:b5:39:f1:9c:4d:27: 2b:ff:bc:99:26:f0:30:9c:64:c1:a9:10:7d:85:5e: 03:b9:4c:7d:17:2f:96:4d:1f:af:0e:0c:a4:4b:3f: ed:4c:96:d1:d4:83:04:aa:75:dc:2a:15:f3:c7:b0: 07:3c:fc:2d:e4:46:11:d2:92:93:48:37:25:99:4e: 03:13:5e:6d:fd:de:18:84:95:b8:a9:ba:d7:35:cf: 8b:32:fd:4a:87:3e:17:e9:af:b6:35:24:cb:36:7a: 77:f4:29:ff:4f:14:a7:9b:1c:89:e8:9e:40:04:38: 6d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:58:B3:4E:18:A1:85:D7:A3:1D:24:95:A1:FA:EB:42:7C:5E:20:D3 X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:c8:1a:96:cf:3f:5a:90:eb:0d:27:d0:f0:30:60:d0:d9:e5: 88:8c:24:ef:73:a5:e1:14:69:67:96:30:95:b8:17:07:4a:1c: 7b:b1:4a:dd:2d:30:ab:76:e2:9f:5d:72:50:9e:ee:fb:8c:e6: e7:d5:47:6c:72:b2:40:00:10:96:31:b3:7a:14:9e:10:6d:58: 45:ca:81:35:f2:f8:be:d9:bf:d7:b6:f3:31:4f:84:15:f9:29: bf:6f:96:f4:19:97:8f:16:4a:7b:c6:8a:5d:03:ea:2b:2a:27: 89:1c:1f:f2:4c:79:5e:7e:80:38:b7:56:fb:a9:78:ff:6e:60: 61:3d:e3:f2:17:67:33:48:8f:25:8b:f3:70:50:03:d0:ba:e9: 98:ba:1a:ce:9b:5d:a6:0f:4a:8e:c2:5e:39:07:88:13:80:a3: 02:27:30:57:f1:b7:6a:b8:23:27:fa:32:31:df:e5:7a:39:f6: 22:d2:41:6a:ad:07:9a:87:0f:78:05:92:20:1b:eb:e3:e2:fe: 2b:f8:4f:89:bc:7a:09:d6:fc:04:39:ae:0b:aa:2e:5e:cd:6e: 5b:38:1e:3f:6b:7c:f1:1e:dc:cd:df:20:f5:81:e7:b6:5d:75: 7c:65:ea:c2:97:d3:91:ae:b6:e4:b2:5c:96:fa:18:b6:58:6c: b8:99:f3:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjQxMTIyMTkwMjMwWhcNMjQxMTI5MTkwMjMwWjAYMRYwFAYD VQQDEw02NzQwZDU0Ni00NjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouYoj7pKgV9CByi/K8AUQAg++jAfG5RjzFWMUyRf1oOz6PDnOa6bFmBTPqpW OQBo/QQo20gh9L7zTtHJwMGhLByW35sva0O/RQnBN6n5CdCzfIIg47WxywDp3gus 6T7PtU8q9pnOMOmnSibWcZqZXGvURUJtFTqVYINLoK1Ttqwqy5oGBgYmtmNUFdEn ofm1OfGcTScr/7yZJvAwnGTBqRB9hV4DuUx9Fy+WTR+vDgykSz/tTJbR1IMEqnXc KhXzx7AHPPwt5EYR0pKTSDclmU4DE15t/d4YhJW4qbrXNc+LMv1Khz4X6a+2NSTL Nnp39Cn/TxSnmxyJ6J5ABDhtDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJYs04Y oYXXox0klaH660J8XiDTMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWyBqWzz9akOsNJ9DwMGDQ2eWIjCTvc6XhFGlnljCVuBcHShx7sUrd LTCrduKfXXJQnu77jObn1UdscrJAABCWMbN6FJ4QbVhFyoE18vi+2b/XtvMxT4QV +Sm/b5b0GZePFkp7xopdA+orKieJHB/yTHlefoA4t1b7qXj/bmBhPePyF2czSI8l i/NwUAPQuumYuhrOm12mD0qOwl45B4gTgKMCJzBX8bdquCMn+jIx3+V6OfYi0kFq rQeahw94BZIgG+vj4v4r+E+JvHoJ1vwEOa4Lqi5ezW5bOB4/a3zxHtzN3yD1gee2 XXV8ZerCl9ORrrbkslyW+hi2WGy4mfML -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:49 2024 by rpki-client on console-ams.rpki-client.org