$ rpki-client -vvf rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft File: kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft (raw, json) Hash identifier: naYhJA9NoTj4rcEiwftVdaftIlmh6F0WBWHqtXw9Mow= Subject key identifier: 93:48:AA:9E:1D:18:9C:90:98:8C:38:AD:83:96:33:51:73:0E:05:08 Authority key identifier: 91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 Certificate issuer: /CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Certificate serial: 04F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft Manifest number: 04E7 Signing time: Fri 22 Nov 2024 23:16:57 +0000 Manifest this update: Fri 22 Nov 2024 23:16:56 +0000 Manifest next update: Fri 29 Nov 2024 23:16:56 +0000 Files and hashes: 1: kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl (hash: HyN8mPXuUsyXDPIBxjNYTPOkfn9EhA8ZJiQ/bKjeFNc=) 2: C41538940B4711EC99840631C4F9AE02.roa (hash: li3UtGYjrBf3C8NwlkMmtocNy8KFUcDjCj/BKLVAeWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1266 (0x4f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Validity Not Before: Nov 22 23:16:56 2024 GMT Not After : Nov 29 23:16:56 2024 GMT Subject: CN=674110e8-5745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b5:0d:b9:0d:16:90:63:2a:36:1c:6f:a7:99: 3d:08:ba:97:e5:9c:01:2e:0b:58:21:21:b9:27:50: 1c:94:72:6f:bb:65:78:ce:0e:c1:78:4d:71:3d:bc: 6e:a4:9e:42:2e:30:e9:ac:1f:c0:48:fd:57:6a:b7: 1b:e5:40:8d:e8:3e:3b:8e:88:a5:cd:4d:28:e8:40: 5a:68:fa:7b:b6:1f:d9:5f:85:a2:16:80:d0:3d:4c: 22:19:c8:1a:34:2c:f3:c5:d5:a0:1f:9a:ef:22:bd: ee:d2:19:90:6f:38:8b:61:86:d1:aa:de:c3:33:f9: bd:86:1e:4e:41:67:09:f1:36:c8:d6:55:77:cc:73: 7c:21:ed:3f:e1:95:0a:e9:56:f9:1b:2e:29:56:32: ad:60:51:aa:83:3b:93:f4:2a:23:b2:4e:45:34:5d: 3d:e5:93:1f:49:1e:24:69:e9:8e:03:ef:f8:26:2b: 9e:6d:59:9c:85:77:c2:81:53:03:56:c1:9e:f8:bd: f2:ed:70:da:15:cc:37:88:1c:c7:92:36:ef:d9:58: c3:4c:33:b7:b7:ed:db:76:0d:2c:c5:b8:0a:9d:c8: 6a:d7:9f:25:98:59:c1:92:5d:b6:6a:bd:f7:a5:fb: e5:33:e7:24:f1:14:dc:89:b3:a3:1f:cc:fe:7d:bd: 4a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:48:AA:9E:1D:18:9C:90:98:8C:38:AD:83:96:33:51:73:0E:05:08 X509v3 Authority Key Identifier: keyid:91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:dc:81:40:96:f7:e9:fb:d3:4c:47:89:d6:71:f9:39:dd:c6: 7a:e0:75:34:7d:ba:0b:d2:02:20:99:5b:da:1a:bd:ae:67:75: d6:aa:e9:11:7b:96:d5:fd:f3:64:a3:fc:9c:60:a8:77:1b:cc: a2:2c:de:4e:48:80:1c:36:b2:fe:00:a1:ba:85:cf:3d:fd:fb: b9:ea:cb:b0:9b:52:6a:a8:f2:c5:af:16:90:f2:f0:04:9a:72: af:dc:a5:bb:7a:7f:bc:ac:ca:34:83:88:8c:86:2b:4b:07:7b: e8:8d:6a:71:9c:3a:3d:7a:7b:d2:d4:23:8f:e7:55:85:ca:ff: 74:82:a7:7f:71:30:c5:82:4f:43:cb:2a:5b:db:53:0f:2d:2b: 03:0d:e2:d9:70:b5:16:87:ca:6a:62:04:b3:25:6c:01:f3:7d: 36:c3:6e:e7:73:dc:f8:37:ab:91:1f:ea:8a:13:ba:41:9b:46: 7c:08:a7:db:20:63:ae:d8:0e:55:42:ec:f1:55:4a:e6:d7:1a: fe:18:e1:ef:5d:8a:b2:67:31:a8:c3:77:94:08:a3:65:e6:fb: 92:bf:01:45:3a:71:74:b8:b0:57:be:81:4a:fa:8e:32:8e:85: 1e:88:a2:e1:5e:95:36:9c:5d:97:78:99:90:fa:9b:e9:40:a4: 82:df:b0:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDQjUxMTAvBgNVBAUTKDkxRjQ5MzlBQkFFRDQwRkEzNjZFQ0M3NjM1OURDQTJC Q0I2OENFNDcwHhcNMjQxMTIyMjMxNjU2WhcNMjQxMTI5MjMxNjU2WjAYMRYwFAYD VQQDEw02NzQxMTBlOC01NzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7UNuQ0WkGMqNhxvp5k9CLqX5ZwBLgtYISG5J1AclHJvu2V4zg7BeE1xPbxu pJ5CLjDprB/ASP1Xarcb5UCN6D47joilzU0o6EBaaPp7th/ZX4WiFoDQPUwiGcga NCzzxdWgH5rvIr3u0hmQbziLYYbRqt7DM/m9hh5OQWcJ8TbI1lV3zHN8Ie0/4ZUK 6Vb5Gy4pVjKtYFGqgzuT9Cojsk5FNF095ZMfSR4kaemOA+/4JiuebVmchXfCgVMD VsGe+L3y7XDaFcw3iBzHkjbv2VjDTDO3t+3bdg0sxbgKnchq158lmFnBkl22ar33 pfvlM+ck8RTcibOjH8z+fb1KewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNIqp4d GJyQmIw4rYOWM1FzDgUIMB8GA1UdIwQYMBaAFJH0k5q67UD6Nm7MdjWdyivLaM5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUNCNS9EOUZEMkRGRUYz N0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQbzJic3gyTlozS0s4dG96 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmU1RtcnJ0UVBvMmJzeDJOWjNLSzh0b3prYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUNCNS9EOUZEMkRGRUYzN0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQ bzJic3gyTlozS0s4dG96a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS3IFAlvfp+9NMR4nWcfk53cZ64HU0fboL0gIgmVvaGr2uZ3XWqukR e5bV/fNko/ycYKh3G8yiLN5OSIAcNrL+AKG6hc89/fu56suwm1JqqPLFrxaQ8vAE mnKv3KW7en+8rMo0g4iMhitLB3vojWpxnDo9envS1COP51WFyv90gqd/cTDFgk9D yypb21MPLSsDDeLZcLUWh8pqYgSzJWwB8302w27nc9z4N6uRH+qKE7pBm0Z8CKfb IGOu2A5VQuzxVUrm1xr+GOHvXYqyZzGow3eUCKNl5vuSvwFFOnF0uLBXvoFK+o4y joUeiKLhXpU2nF2XeJmQ+pvpQKSC37C8 -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:34 2024 by rpki-client on console-ams.rpki-client.org