$ rpki-client -vvf rpki.apnic.net/member_repository/A911D5F1/A95E6C02506211E9BFCB4C87C4F9AE02/kuhI5x9wCNzHd7jiP3PaknjJpQ4.mft File: kuhI5x9wCNzHd7jiP3PaknjJpQ4.mft (raw, json) Hash identifier: GHIISAiXDCbCQ4AIoYvlp8uW3vPg5aPSax3dG+iMzi4= Subject key identifier: 39:15:9A:9F:01:AB:09:2A:0F:59:08:F0:2F:11:73:51:A9:38:DB:EB Authority key identifier: 92:E8:48:E7:1F:70:08:DC:C7:77:B8:E2:3F:73:DA:92:78:C9:A5:0E Certificate issuer: /CN=A911D5F1/serialNumber=92E848E71F7008DCC777B8E23F73DA9278C9A50E Certificate serial: 0F8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kuhI5x9wCNzHd7jiP3PaknjJpQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D5F1/A95E6C02506211E9BFCB4C87C4F9AE02/kuhI5x9wCNzHd7jiP3PaknjJpQ4.mft Manifest number: 0F80 Signing time: Fri 22 Nov 2024 17:31:21 +0000 Manifest this update: Fri 22 Nov 2024 17:31:20 +0000 Manifest next update: Fri 29 Nov 2024 17:31:20 +0000 Files and hashes: 1: kuhI5x9wCNzHd7jiP3PaknjJpQ4.crl (hash: 5runYcRCWF6jhWHGuRAaAcG9WoLC0lxumr8pCjUNX3c=) 2: F2C7080CE17A11EC93AB7473C4F9AE02.roa (hash: XexnyfwA0CtniI2Ujd9ZJAthg40KLsIk/EQefN1sYwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D5F1/A95E6C02506211E9BFCB4C87C4F9AE02/kuhI5x9wCNzHd7jiP3PaknjJpQ4.crl rsync://rpki.apnic.net/member_repository/A911D5F1/A95E6C02506211E9BFCB4C87C4F9AE02/kuhI5x9wCNzHd7jiP3PaknjJpQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kuhI5x9wCNzHd7jiP3PaknjJpQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:31:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3978 (0xf8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D5F1/serialNumber=92E848E71F7008DCC777B8E23F73DA9278C9A50E Validity Not Before: Nov 22 17:31:20 2024 GMT Not After : Nov 29 17:31:20 2024 GMT Subject: CN=6740bfe8-22aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0e:f7:7a:e3:2c:97:58:02:21:d2:61:9d:35: e0:98:3f:f2:73:da:c1:a0:14:13:7b:0d:a9:43:a4: 8f:62:1e:d5:ef:8b:8c:46:d1:9e:fb:56:f7:0a:7f: c2:04:6c:b8:05:21:25:d7:dd:68:d8:63:ee:db:d2: 24:1d:88:ce:79:06:57:4c:60:de:5e:3e:21:81:69: 38:31:dd:b3:2d:da:1a:8d:38:b0:dd:6f:ca:0b:7d: 34:79:54:e7:f9:63:2a:96:58:b9:da:94:06:bf:f0: 0c:8e:bb:ed:33:f0:b6:38:b3:42:f6:b2:4a:d3:e0: 1a:22:5b:5a:c1:0a:8d:2f:57:d4:34:79:00:09:55: 1a:77:d4:b1:2f:39:02:bf:bb:cf:86:16:11:d8:9f: 6b:22:54:6b:04:ba:02:10:39:6b:23:fa:9a:a6:4f: 6b:0a:d8:e0:13:ae:ac:01:2b:aa:74:53:18:f1:c6: 5a:16:fe:1d:1e:2e:d1:f7:60:b3:90:9a:70:35:31: 7d:3d:65:af:7b:cd:98:1d:32:21:a5:ee:f9:e1:bb: d7:5d:2e:77:71:95:49:54:1b:5b:2a:ea:92:11:40: 65:dd:66:a2:51:9b:25:96:25:34:b1:2d:f1:ab:1e: 3d:e8:e3:f8:74:ba:eb:11:d2:85:89:bc:0e:6e:0e: cb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:15:9A:9F:01:AB:09:2A:0F:59:08:F0:2F:11:73:51:A9:38:DB:EB X509v3 Authority Key Identifier: keyid:92:E8:48:E7:1F:70:08:DC:C7:77:B8:E2:3F:73:DA:92:78:C9:A5:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D5F1/A95E6C02506211E9BFCB4C87C4F9AE02/kuhI5x9wCNzHd7jiP3PaknjJpQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kuhI5x9wCNzHd7jiP3PaknjJpQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D5F1/A95E6C02506211E9BFCB4C87C4F9AE02/kuhI5x9wCNzHd7jiP3PaknjJpQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:1c:6a:42:83:8c:42:d0:86:06:3e:9e:98:8a:90:d2:16:53: b6:34:63:80:47:c4:04:d9:21:c5:e3:54:97:07:5f:59:31:1d: 96:a4:ae:cf:38:fa:3c:ca:38:d1:e2:37:2e:12:b5:63:da:06: bb:ff:e8:c6:1c:cb:0d:88:c8:8a:51:f2:01:b8:08:15:ab:c1: 7f:ba:11:f3:a7:bd:44:79:6c:96:7e:b2:a8:79:a8:0d:5f:47: 9e:ce:fe:4d:d2:71:e7:9c:76:7f:e2:10:49:66:10:e0:5e:20: ea:23:52:ff:c1:28:1a:0e:76:a8:2c:cb:5b:e1:ed:68:fd:1e: 87:bb:87:95:0d:ab:20:1b:df:1c:59:65:8d:5b:da:f3:32:42: f0:80:97:4e:b6:4d:a1:cd:19:12:68:33:f2:1e:5a:af:9c:dc: 24:a9:c9:b6:6d:3b:27:de:ac:4b:20:6d:0f:9d:60:90:8b:01: 77:31:fd:dd:d1:a3:3d:f1:70:cc:77:bd:c2:77:83:d0:27:97: c9:4f:ea:ba:6f:d4:7d:80:bb:4e:5f:2a:fa:82:6b:9f:0f:f3: 4d:f4:06:df:18:9c:93:c5:ab:d3:df:61:0b:05:27:93:de:29: a8:bd:a8:9a:8e:a7:17:53:f6:6e:df:ac:a1:cd:eb:11:f7:a9: af:60:80:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ1RjExMTAvBgNVBAUTKDkyRTg0OEU3MUY3MDA4RENDNzc3QjhFMjNGNzNEQTky NzhDOUE1MEUwHhcNMjQxMTIyMTczMTIwWhcNMjQxMTI5MTczMTIwWjAYMRYwFAYD VQQDEw02NzQwYmZlOC0yMmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0A73euMsl1gCIdJhnTXgmD/yc9rBoBQTew2pQ6SPYh7V74uMRtGe+1b3Cn/C BGy4BSEl191o2GPu29IkHYjOeQZXTGDeXj4hgWk4Md2zLdoajTiw3W/KC300eVTn +WMqlli52pQGv/AMjrvtM/C2OLNC9rJK0+AaIltawQqNL1fUNHkACVUad9SxLzkC v7vPhhYR2J9rIlRrBLoCEDlrI/qapk9rCtjgE66sASuqdFMY8cZaFv4dHi7R92Cz kJpwNTF9PWWve82YHTIhpe754bvXXS53cZVJVBtbKuqSEUBl3WaiUZslliU0sS3x qx496OP4dLrrEdKFibwObg7LzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkVmp8B qwkqD1kI8C8Rc1GpONvrMB8GA1UdIwQYMBaAFJLoSOcfcAjcx3e44j9z2pJ4yaUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDVGMS9BOTVFNkMwMjUw NjIxMUU5QkZDQjRDODdDNEY5QUUwMi9rdWhJNXg5d0NOekhkN2ppUDNQYWtuakpw UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t1aEk1eDl3Q056SGQ3amlQM1Bha25qSnBRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDVGMS9BOTVFNkMwMjUwNjIxMUU5QkZDQjRDODdDNEY5QUUwMi9rdWhJNXg5d0NO ekhkN2ppUDNQYWtuakpwUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiHGpCg4xC0IYGPp6YipDSFlO2NGOAR8QE2SHF41SXB19ZMR2WpK7P OPo8yjjR4jcuErVj2ga7/+jGHMsNiMiKUfIBuAgVq8F/uhHzp71EeWyWfrKoeagN X0eezv5N0nHnnHZ/4hBJZhDgXiDqI1L/wSgaDnaoLMtb4e1o/R6Hu4eVDasgG98c WWWNW9rzMkLwgJdOtk2hzRkSaDPyHlqvnNwkqcm2bTsn3qxLIG0PnWCQiwF3Mf3d 0aM98XDMd73Cd4PQJ5fJT+q6b9R9gLtOXyr6gmufD/NN9AbfGJyTxavT32ELBSeT 3imovaiajqcXU/Zu36yhzesR96mvYIBc -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:57 2024 by rpki-client on console-ams.rpki-client.org