$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: WX8thhFvLuv8zGoKXiNGrGxU9EBXdSv8fMCHK/YKuCY= Subject key identifier: F5:E8:AC:D1:44:B9:D5:D0:02:A5:DB:3C:31:E4:04:14:49:8D:80:12 Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 0723 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 071D Signing time: Fri 22 Nov 2024 21:19:51 +0000 Manifest this update: Fri 22 Nov 2024 21:19:50 +0000 Manifest next update: Fri 29 Nov 2024 21:19:50 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: 95fA47Ulo7TWUC60HnvQhXYmki97UbTWnknfKyA2Mv0=) 2: 395AFD84135811EB942A3E15C4F9AE02.roa (hash: +nVGHDmFpNMeCZK4D+EYT1WCdxSsITi4ixDFG3tX1xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1827 (0x723) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Nov 22 21:19:50 2024 GMT Not After : Nov 29 21:19:50 2024 GMT Subject: CN=6740f577-dc0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cc:aa:32:1f:84:5b:2b:ca:7c:3b:d6:6a:73: 14:8b:8e:2b:13:8e:1f:9c:2a:04:7a:d1:ea:51:24: 45:b0:64:57:a5:5d:21:33:d2:35:cf:c1:b6:11:09: 02:40:0f:42:2f:51:89:b6:13:e9:a5:9e:12:7e:f7: ea:33:54:48:3b:63:0e:bb:fc:68:44:14:38:82:d9: 9a:10:d2:21:0a:6c:fa:74:41:68:a3:18:77:07:8a: 8f:6e:c4:a3:4b:f9:90:90:3f:75:8a:59:51:3f:43: b1:86:89:a3:3c:87:cb:fc:da:a5:3c:98:eb:37:ff: 8e:3b:4b:51:ae:2f:21:89:71:ba:67:39:59:cc:13: 67:f7:4a:4b:53:34:7a:1c:9c:6e:a3:25:7c:1f:c0: 1c:ab:e7:fe:db:55:7e:9c:50:e3:28:e2:62:06:88: b2:e0:cc:09:75:c3:fc:a9:a0:90:1e:d7:56:42:53: b6:c9:a6:7c:14:0c:85:a1:68:96:dd:96:2c:77:e4: b8:e8:b7:45:61:5e:59:cc:95:7e:cf:20:d3:dd:2e: d0:57:33:23:81:f2:d7:32:57:1b:d2:e1:3c:c5:b5: 26:dd:50:b2:9e:6b:22:4c:5c:10:7f:13:08:26:39: fa:55:3c:5c:8e:7a:2c:03:a1:3f:ac:d4:92:45:c5: fe:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E8:AC:D1:44:B9:D5:D0:02:A5:DB:3C:31:E4:04:14:49:8D:80:12 X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:72:c0:97:cc:3c:08:0d:1b:b3:12:74:31:99:da:1c:b2:25: 2d:57:56:14:c3:78:6b:ff:d0:c9:44:9b:2a:ab:2e:12:74:62: ac:81:4f:88:ab:76:99:3e:81:9e:a1:d6:e3:d8:7f:6d:1b:06: 74:6b:d7:7d:e6:e8:b1:87:4b:61:c8:00:89:ea:b8:b2:27:ee: ea:fd:79:28:65:65:70:83:c8:df:6b:dd:03:ed:0a:66:a9:60: 4f:fc:4f:2f:46:44:fc:ce:fe:91:82:c7:c6:56:c2:e5:02:05: e9:26:cf:46:ed:38:d5:77:06:7e:7f:17:31:82:99:69:6a:3d: d7:91:d4:b2:ab:4b:ac:a5:0c:90:4b:87:c1:fc:cc:c4:1e:a6: c2:e8:f6:27:ee:f0:c3:01:c7:1d:cd:19:0a:eb:e3:4a:4c:33: f8:61:dc:64:8d:8c:05:d0:45:1f:cb:95:f8:46:bf:82:5b:3a: c8:88:3d:a3:78:69:c2:a1:ff:ff:c6:25:45:b8:dd:26:4c:e3: ab:5d:69:10:19:ae:07:12:05:36:85:44:48:9a:bf:55:fa:17: c2:78:52:2e:dd:9d:40:fe:f9:38:b4:95:2d:f1:85:91:2c:45: 42:c1:f4:fd:a3:bf:89:5a:f4:1e:5e:33:2b:b6:e9:90:06:f6: 88:5b:4b:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjQxMTIyMjExOTUwWhcNMjQxMTI5MjExOTUwWjAYMRYwFAYD VQQDEw02NzQwZjU3Ny1kYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcyqMh+EWyvKfDvWanMUi44rE44fnCoEetHqUSRFsGRXpV0hM9I1z8G2EQkC QA9CL1GJthPppZ4SfvfqM1RIO2MOu/xoRBQ4gtmaENIhCmz6dEFooxh3B4qPbsSj S/mQkD91illRP0OxhomjPIfL/NqlPJjrN/+OO0tRri8hiXG6ZzlZzBNn90pLUzR6 HJxuoyV8H8Acq+f+21V+nFDjKOJiBoiy4MwJdcP8qaCQHtdWQlO2yaZ8FAyFoWiW 3ZYsd+S46LdFYV5ZzJV+zyDT3S7QVzMjgfLXMlcb0uE8xbUm3VCynmsiTFwQfxMI Jjn6VTxcjnosA6E/rNSSRcX+CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXorNFE udXQAqXbPDHkBBRJjYASMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCcsCXzDwIDRuzEnQxmdocsiUtV1YUw3hr/9DJRJsqqy4SdGKsgU+I q3aZPoGeodbj2H9tGwZ0a9d95uixh0thyACJ6riyJ+7q/XkoZWVwg8jfa90D7Qpm qWBP/E8vRkT8zv6RgsfGVsLlAgXpJs9G7TjVdwZ+fxcxgplpaj3XkdSyq0uspQyQ S4fB/MzEHqbC6PYn7vDDAccdzRkK6+NKTDP4YdxkjYwF0EUfy5X4Rr+CWzrIiD2j eGnCof//xiVFuN0mTOOrXWkQGa4HEgU2hURImr9V+hfCeFIu3Z1A/vk4tJUt8YWR LEVCwfT9o7+JWvQeXjMrtumQBvaIW0uz -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:15 2024 by rpki-client on console-fra.rpki-client.org