$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: OGnPsO00l83CKAVStqB3X0/nFiuXVjVMzwZ0r+EkH/E= Subject key identifier: 6C:8E:80:94:F0:8F:27:7A:26:19:07:BC:CA:ED:2F:0D:7E:37:A8:29 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 010B Signing time: Sat 23 Nov 2024 03:08:15 +0000 Manifest this update: Sat 23 Nov 2024 03:08:15 +0000 Manifest next update: Sat 30 Nov 2024 03:08:15 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: NjvkhTD6oZfofeHkHWT2lSNU1Rw8JaqPKMpo2Id9Nyk=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: LEuGWO/AHJLUDwLeABLdjtuQr5+JNGq1678nn2RoAyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Nov 23 03:08:15 2024 GMT Not After : Nov 30 03:08:15 2024 GMT Subject: CN=6741471f-f9a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:43:bd:63:b4:b4:cc:7d:5e:63:4a:ba:8d:38: 90:89:72:0e:a6:c7:22:f3:99:c4:03:ac:11:67:3a: 99:1d:9b:34:63:d0:db:21:f6:37:9a:67:9e:b0:b7: 49:dd:cc:e4:ec:31:96:3f:1b:28:12:35:a8:ff:0a: fe:e0:90:c3:bb:77:c6:e0:67:44:36:37:7b:15:f6: 65:a4:35:f4:86:3b:25:4c:e7:f7:c7:73:09:eb:7b: 8c:9a:30:c7:47:f8:b5:99:f9:ee:9f:7e:6f:40:b8: 5e:bb:50:07:68:6b:5c:28:c3:eb:d0:73:a6:09:e7: 44:07:a3:f1:63:d6:2f:85:f0:ce:04:68:f1:d1:4d: ab:8c:97:59:3f:07:08:64:c0:ec:54:b0:aa:ad:7e: 64:a0:37:d4:98:9a:d1:b7:19:fd:22:4f:21:70:29: 94:01:c2:87:26:2f:6b:3e:f0:17:1d:d4:a0:28:b4: f2:74:48:bf:bf:43:9d:1b:cf:01:49:ad:11:45:ca: 5f:64:44:d2:f6:80:52:18:a9:ab:59:c9:76:5b:4f: 4b:71:66:d2:49:21:a3:d3:17:61:7a:ce:52:61:52: 31:70:73:d6:2c:ea:b8:c4:d8:a5:ec:c6:ea:77:ae: 09:db:33:05:c4:d6:9e:9a:4e:ef:b1:17:11:7b:33: 25:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:8E:80:94:F0:8F:27:7A:26:19:07:BC:CA:ED:2F:0D:7E:37:A8:29 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:5f:db:cd:1a:9f:e0:8d:21:4c:a0:e5:4c:4b:bf:22:79:9c: e7:b0:5e:de:bf:5c:c1:c0:31:3f:d4:3d:1e:aa:fe:db:14:bd: a5:9c:ac:16:7d:61:af:fc:10:bb:71:e9:11:82:0e:1e:9c:f4: ea:11:5d:d4:38:07:9a:09:37:3c:76:ca:60:6c:bb:5e:a7:5f: b8:fe:b0:ff:88:9b:db:d9:13:66:40:50:08:87:75:8b:11:cc: 81:88:77:0f:ff:5e:77:30:6f:a8:3c:1b:fb:d7:2e:2c:c1:7a: 59:14:57:10:5e:af:48:26:3c:bc:9c:e8:96:c3:5e:fd:9b:c7: a6:e8:97:c3:df:3e:40:2f:33:ff:ef:3e:13:40:4c:a8:af:f2: 3d:0a:ce:ea:f9:25:bc:7b:7e:ce:44:c2:52:b0:ac:31:18:ff: 74:13:2e:7a:3d:96:72:e7:8f:30:4d:6f:3d:70:5f:2e:68:ac: f5:a5:65:eb:9f:94:41:7f:1e:ff:8a:7b:51:26:14:4a:03:86: d8:af:cb:ee:08:03:2f:c7:ae:fa:18:99:2a:e4:79:f9:a1:62: 9f:35:45:ef:ce:d9:fc:6f:bd:06:4f:99:64:86:91:6f:ac:68: 4e:65:78:da:5c:05:da:af:16:00:86:13:4e:45:f0:51:1a:4d: ad:2c:37:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjQxMTIzMDMwODE1WhcNMjQxMTMwMDMwODE1WjAYMRYwFAYD VQQDEw02NzQxNDcxZi1mOWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0O9Y7S0zH1eY0q6jTiQiXIOpsci85nEA6wRZzqZHZs0Y9DbIfY3mmeesLdJ 3czk7DGWPxsoEjWo/wr+4JDDu3fG4GdENjd7FfZlpDX0hjslTOf3x3MJ63uMmjDH R/i1mfnun35vQLheu1AHaGtcKMPr0HOmCedEB6PxY9YvhfDOBGjx0U2rjJdZPwcI ZMDsVLCqrX5koDfUmJrRtxn9Ik8hcCmUAcKHJi9rPvAXHdSgKLTydEi/v0OdG88B Sa0RRcpfZETS9oBSGKmrWcl2W09LcWbSSSGj0xdhes5SYVIxcHPWLOq4xNil7Mbq d64J2zMFxNaemk7vsRcRezMlEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyOgJTw jyd6JhkHvMrtLw1+N6gpMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgX9vNGp/gjSFMoOVMS78ieZznsF7ev1zBwDE/1D0eqv7bFL2lnKwW fWGv/BC7cekRgg4enPTqEV3UOAeaCTc8dspgbLtep1+4/rD/iJvb2RNmQFAIh3WL EcyBiHcP/153MG+oPBv71y4swXpZFFcQXq9IJjy8nOiWw179m8em6JfD3z5ALzP/ 7z4TQEyor/I9Cs7q+SW8e37ORMJSsKwxGP90Ey56PZZy548wTW89cF8uaKz1pWXr n5RBfx7/intRJhRKA4bYr8vuCAMvx676GJkq5Hn5oWKfNUXvztn8b70GT5lkhpFv rGhOZXjaXAXarxYAhhNORfBRGk2tLDc7 -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:00 2024 by rpki-client on console-ams.rpki-client.org