$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft File: keKklwM5j7IArA6fpHZpFddL-eU.mft (raw, json) Hash identifier: Wl1mbJ6cU3b0QzxGJ4khGGtqGr3VDrKib4OK1T+DCUA= Subject key identifier: E6:B0:AD:F5:B9:28:68:F5:41:E2:59:86:96:B3:13:14:53:2F:C5:C0 Authority key identifier: 91:E2:A4:97:03:39:8F:B2:00:AC:0E:9F:A4:76:69:15:D7:4B:F9:E5 Certificate issuer: /CN=A91FD6E4/serialNumber=91E2A49703398FB200AC0E9FA4766915D74BF9E5 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft Manifest number: 0105 Signing time: Sat 23 Nov 2024 03:13:56 +0000 Manifest this update: Sat 23 Nov 2024 03:13:56 +0000 Manifest next update: Sat 30 Nov 2024 03:13:56 +0000 Files and hashes: 1: keKklwM5j7IArA6fpHZpFddL-eU.crl (hash: P/bJ5L60WIjO7l/plPrGqaVND7s7qnM1NnDfjTIbME0=) 2: 345AD30E1E1311EE846A3261C4F9AE02.roa (hash: zTYXuX3GDZ63v54RvQHdui7ccszwzNrfqOTF6/FnToE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.crl rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD6E4/serialNumber=91E2A49703398FB200AC0E9FA4766915D74BF9E5 Validity Not Before: Nov 23 03:13:56 2024 GMT Not After : Nov 30 03:13:56 2024 GMT Subject: CN=67414874-23cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:44:70:b0:0a:ff:ad:ef:af:cf:42:7f:0c:6b: 3b:2e:cf:1a:2b:37:54:c2:ea:0c:ca:c9:c2:a2:4f: f8:94:cd:3d:1b:71:15:0f:f5:50:9d:c7:73:0c:95: 85:6c:a6:25:b5:93:c5:3d:ac:52:16:c7:b2:0e:b8: 79:b5:4b:4b:5c:60:92:5f:87:9a:8b:05:f0:f9:b9: b5:04:2d:99:ec:b3:3f:0c:b7:97:9c:b5:ab:89:8b: 70:71:53:ef:28:aa:4d:f3:54:93:a8:0f:fb:79:67: 9c:2f:25:cd:87:37:4e:03:82:40:17:e9:25:c2:8a: f6:10:3d:f1:e3:15:d7:ba:dc:7a:6f:51:9c:06:26: bf:f6:0a:42:e1:29:b8:a1:38:28:e0:89:a2:52:30: 5f:4d:cd:ee:ed:f5:44:8a:f5:a6:07:0e:ee:d5:a9: 11:a8:3e:68:c5:c6:17:a1:fa:04:c3:7d:aa:29:7f: 78:b2:6d:ae:a1:b1:6d:1d:08:39:20:29:db:fa:d5: 13:7b:a9:15:fd:7c:ce:2b:be:fb:25:ba:ad:30:99: 41:d6:a0:59:0a:a2:37:df:e2:52:58:e6:76:04:c5: 26:e5:3f:4d:15:93:59:dc:a6:c0:3b:3e:bd:4e:31: d9:6a:57:50:91:d0:5a:99:23:fe:5a:2b:e5:15:59: c1:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B0:AD:F5:B9:28:68:F5:41:E2:59:86:96:B3:13:14:53:2F:C5:C0 X509v3 Authority Key Identifier: keyid:91:E2:A4:97:03:39:8F:B2:00:AC:0E:9F:A4:76:69:15:D7:4B:F9:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:04:a0:15:ca:e5:07:7a:c5:59:68:cd:0d:25:ef:46:b0:e6: 02:50:55:c5:26:f9:05:45:3f:63:5b:db:48:07:f6:d8:58:8b: 95:6d:36:a9:0e:61:51:ba:8c:8d:fb:07:62:30:99:70:a0:85: 71:a0:2c:a6:aa:c9:a9:c0:fb:6c:c6:ca:4c:05:66:34:26:57: d9:fa:59:48:af:cd:af:31:07:7e:66:dd:56:72:90:63:16:48: 21:12:9e:40:8f:ba:cb:4b:2e:e9:ee:37:39:a0:dd:1c:1f:16: f9:fc:46:74:54:2d:1c:d5:82:1f:76:ad:3e:25:fb:f5:42:92: 41:ad:49:40:e9:27:5c:b8:53:6d:13:6a:44:bc:ae:7c:12:3e: 45:ff:46:8a:74:9a:8f:26:1c:3d:45:04:4b:dd:4c:c3:bf:5c: 99:65:03:dd:44:9a:d9:54:f9:9c:35:db:0e:3b:a1:11:54:fb: 1f:55:14:d4:73:3c:77:15:c9:63:23:42:47:3b:a7:56:71:20: 07:f7:40:94:d5:5a:02:95:de:f0:d1:f6:b4:f0:a1:7f:f4:fa: 99:a2:f2:3c:66:c1:20:b1:08:ac:32:37:07:27:89:2b:6d:e3: 63:3e:f4:ce:f1:ca:a3:d9:f2:69:8e:63:9d:de:aa:39:52:7b: 4b:43:84:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2RTQxMTAvBgNVBAUTKDkxRTJBNDk3MDMzOThGQjIwMEFDMEU5RkE0NzY2OTE1 RDc0QkY5RTUwHhcNMjQxMTIzMDMxMzU2WhcNMjQxMTMwMDMxMzU2WjAYMRYwFAYD VQQDEw02NzQxNDg3NC0yM2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkRwsAr/re+vz0J/DGs7Ls8aKzdUwuoMysnCok/4lM09G3EVD/VQncdzDJWF bKYltZPFPaxSFseyDrh5tUtLXGCSX4eaiwXw+bm1BC2Z7LM/DLeXnLWriYtwcVPv KKpN81STqA/7eWecLyXNhzdOA4JAF+klwor2ED3x4xXXutx6b1GcBia/9gpC4Sm4 oTgo4ImiUjBfTc3u7fVEivWmBw7u1akRqD5oxcYXofoEw32qKX94sm2uobFtHQg5 ICnb+tUTe6kV/XzOK777JbqtMJlB1qBZCqI33+JSWOZ2BMUm5T9NFZNZ3KbAOz69 TjHZaldQkdBamSP+WivlFVnB7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOawrfW5 KGj1QeJZhpazExRTL8XAMB8GA1UdIwQYMBaAFJHipJcDOY+yAKwOn6R2aRXXS/nl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDZFNC9BQkU3RTA1NjFF MEUxMUVFOTE3MEY0MjlDNEY5QUUwMi9rZUtrbHdNNWo3SUFyQTZmcEhacEZkZEwt ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlS2tsd001ajdJQXJBNmZwSFpwRmRkTC1lVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDZFNC9BQkU3RTA1NjFFMEUxMUVFOTE3MEY0MjlDNEY5QUUwMi9rZUtrbHdNNWo3 SUFyQTZmcEhacEZkZEwtZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjBKAVyuUHesVZaM0NJe9GsOYCUFXFJvkFRT9jW9tIB/bYWIuVbTap DmFRuoyN+wdiMJlwoIVxoCymqsmpwPtsxspMBWY0JlfZ+llIr82vMQd+Zt1WcpBj FkghEp5Aj7rLSy7p7jc5oN0cHxb5/EZ0VC0c1YIfdq0+Jfv1QpJBrUlA6SdcuFNt E2pEvK58Ej5F/0aKdJqPJhw9RQRL3UzDv1yZZQPdRJrZVPmcNdsOO6ERVPsfVRTU czx3FcljI0JHO6dWcSAH90CU1VoCld7w0fa08KF/9PqZovI8ZsEgsQisMjcHJ4kr beNjPvTO8cqj2fJpjmOd3qo5UntLQ4Qk -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:01 2024 by rpki-client on console-fra.rpki-client.org