$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft File: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft (raw, json) Hash identifier: +uRJlXMZyy1ALaBs8dRGPy38kB3na27pSiMjGqR2Dw0= Subject key identifier: 6A:0B:AB:4A:1A:DD:3D:FF:F8:8F:80:AE:53:04:89:37:F5:74:D8:05 Authority key identifier: 90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 Certificate issuer: /CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Certificate serial: 0677 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft Manifest number: 0672 Signing time: Fri 22 Nov 2024 21:54:14 +0000 Manifest this update: Fri 22 Nov 2024 21:54:14 +0000 Manifest next update: Fri 29 Nov 2024 21:54:14 +0000 Files and hashes: 1: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl (hash: 5KJC/wRSxMhm15vrCZOYK4LohgxL5vZURuIvQq6bhzA=) 2: AFCD8352557E11EBACB5CE3BC4F9AE02.roa (hash: wglThLfIXyQfKwluHMXUowgJMi2IuZWgRZX/TjV84sY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1655 (0x677) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Validity Not Before: Nov 22 21:54:14 2024 GMT Not After : Nov 29 21:54:14 2024 GMT Subject: CN=6740fd86-ffe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:59:03:09:0f:5a:1c:53:66:26:e5:a0:48:3c: 13:51:b8:25:1f:04:b4:29:20:ef:e1:b2:0d:45:1e: b0:ae:aa:fb:e4:10:c0:80:e0:40:2d:a5:bc:7f:bf: 3d:67:34:c6:5c:f1:f7:ad:20:55:2e:bd:af:13:42: 12:8b:9a:76:a2:89:37:27:19:5d:b9:21:bc:a1:19: c2:77:22:1d:d6:1d:61:22:0c:02:c8:ba:3b:e2:26: 74:9a:02:9d:9d:88:11:8f:26:f1:30:33:ce:4f:84: 3e:f6:0b:9f:82:fc:b7:33:bc:39:f5:43:2d:8a:66: bc:eb:a7:b1:52:b6:9f:54:26:13:8a:67:b4:b0:de: 67:69:c5:6e:49:d3:48:75:a6:e7:00:02:e3:1e:e7: 2d:04:f9:6d:2c:40:84:79:9d:09:f6:55:4e:23:3a: f8:2f:03:ae:8e:1a:de:4b:85:af:15:26:c0:f2:92: a7:da:86:67:11:eb:f7:4c:29:a6:ae:2b:fa:1c:8e: 9f:7d:2c:fc:41:f0:8d:bb:d4:cc:1f:bb:e5:04:9c: 43:6d:ae:e6:2b:ed:e0:1f:ad:d8:32:40:5a:2e:eb: bb:77:aa:f7:08:94:83:05:da:e0:d5:b3:30:8b:24: 50:b6:bd:19:a2:28:ec:d8:34:13:e0:e9:d3:ee:16: a3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:0B:AB:4A:1A:DD:3D:FF:F8:8F:80:AE:53:04:89:37:F5:74:D8:05 X509v3 Authority Key Identifier: keyid:90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:e1:31:f3:95:64:c5:48:a0:b7:0c:5d:cd:01:60:98:2a:62: 77:4f:97:e9:99:99:87:2f:eb:fa:20:13:01:b4:6c:d6:cf:16: 73:c5:31:f3:39:a3:b0:a0:2d:cf:9d:ae:0f:6d:00:87:05:e6: ac:7f:2e:fd:89:da:63:b9:9f:ef:bc:32:20:11:88:30:6e:fc: 33:45:c8:af:db:69:76:da:1b:4f:2b:2c:02:f4:ce:e0:96:51: 5d:9e:6c:cd:d3:c1:5a:40:c7:f9:af:9c:36:f9:ac:d8:ad:4b: f8:98:1c:a6:8f:06:3d:99:b3:05:e1:6e:b6:d5:dc:4b:e8:2f: a7:22:38:77:cd:c3:ca:39:6b:a2:d5:00:04:37:2e:bc:a4:d4: f7:2e:e0:85:0a:f8:47:a3:66:7e:33:17:67:8d:e4:9a:d7:d1: 31:06:05:29:ef:59:23:48:87:96:30:e5:2d:63:86:df:6d:5a: f6:04:19:45:8b:bf:9a:15:6a:d0:1b:4e:36:43:d0:63:7d:ee: d8:e8:17:99:1f:d2:85:d4:6d:f6:77:62:4b:01:76:25:c2:9e: d0:fd:54:33:53:82:99:f3:97:0a:ce:51:5b:e8:a6:6f:57:26: fd:b1:c1:74:77:0b:7d:61:52:aa:cb:1e:6b:76:34:90:70:3e: b4:14:42:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM0REQxMTAvBgNVBAUTKDkwQzNEODM1MTcyNkE4QjkxREUyNkQ0NjgxMTI4MzQz NUNDNTI2MjMwHhcNMjQxMTIyMjE1NDE0WhcNMjQxMTI5MjE1NDE0WjAYMRYwFAYD VQQDEw02NzQwZmQ4Ni1mZmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlkDCQ9aHFNmJuWgSDwTUbglHwS0KSDv4bINRR6wrqr75BDAgOBALaW8f789 ZzTGXPH3rSBVLr2vE0ISi5p2ook3JxlduSG8oRnCdyId1h1hIgwCyLo74iZ0mgKd nYgRjybxMDPOT4Q+9gufgvy3M7w59UMtima866exUrafVCYTime0sN5nacVuSdNI dabnAALjHuctBPltLECEeZ0J9lVOIzr4LwOujhreS4WvFSbA8pKn2oZnEev3TCmm riv6HI6ffSz8QfCNu9TMH7vlBJxDba7mK+3gH63YMkBaLuu7d6r3CJSDBdrg1bMw iyRQtr0Zoijs2DQT4OnT7hajvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGoLq0oa 3T3/+I+ArlMEiTf1dNgFMB8GA1UdIwQYMBaAFJDD2DUXJqi5HeJtRoESg0NcxSYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzRERC9CODhDMjI0QzU1 N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFMa2Q0bTFHZ1JLRFExekZK aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNUFlOUmNtcUxrZDRtMUdnUktEUTF6RkppTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzRERC9CODhDMjI0QzU1N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFM a2Q0bTFHZ1JLRFExekZKaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU4THzlWTFSKC3DF3NAWCYKmJ3T5fpmZmHL+v6IBMBtGzWzxZzxTHz OaOwoC3Pna4PbQCHBeasfy79idpjuZ/vvDIgEYgwbvwzRciv22l22htPKywC9M7g llFdnmzN08FaQMf5r5w2+azYrUv4mBymjwY9mbMF4W621dxL6C+nIjh3zcPKOWui 1QAENy68pNT3LuCFCvhHo2Z+MxdnjeSa19ExBgUp71kjSIeWMOUtY4bfbVr2BBlF i7+aFWrQG042Q9Bjfe7Y6BeZH9KF1G32d2JLAXYlwp7Q/VQzU4KZ85cKzlFb6KZv Vyb9scF0dwt9YVKqyx5rdjSQcD60FELP -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:36 2024 by rpki-client on console-fra.rpki-client.org