$ rpki-client -vvf rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft File: kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft (raw, json) Hash identifier: xIsRY30scsgbdX7P1Hbxtg40jLnA8HDCQzvYFRE0xOU= Subject key identifier: 6A:AB:92:77:EC:88:EF:A6:04:59:CA:3B:BE:6C:11:5E:87:DA:38:27 Authority key identifier: 90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 Certificate issuer: /CN=A91248C9/serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft Manifest number: CD Signing time: Thu 21 Nov 2024 03:52:27 +0000 Manifest this update: Thu 21 Nov 2024 03:52:27 +0000 Manifest next update: Thu 28 Nov 2024 03:52:27 +0000 Files and hashes: 1: kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl (hash: wrc4R5v9g0xEfo93Zw26FFIuDYfOdMITe90G6Ne5Myo=) 2: 4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa (hash: fKu+QnI9JJSs0/0qC7wtQtv1o9IdD9KvcLGhg+7rRMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:52:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91248C9/serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Validity Not Before: Nov 21 03:52:27 2024 GMT Not After : Nov 28 03:52:27 2024 GMT Subject: CN=673eae7b-3704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e5:d6:b0:f4:10:00:fd:b4:ed:e3:85:6d:70: 6c:a3:99:a1:db:56:9d:9b:c9:af:22:36:ed:a2:73: 37:a5:4a:58:0b:6e:b3:5f:3b:52:2e:e7:e3:0c:69: 4a:c1:7c:4a:ef:c1:45:16:c9:0c:5c:d8:44:da:97: 34:82:99:dc:57:dd:fb:19:ad:8d:1c:c1:60:c6:9a: 16:70:a7:c1:af:6c:75:ce:e7:42:3b:57:96:75:37: 63:69:cd:51:8e:ed:5f:4c:f7:c1:70:cf:05:1b:2d: a5:05:73:8e:bb:96:f9:a5:a9:95:40:5f:1d:81:6e: 12:b7:f7:7e:fc:10:ae:55:3e:ba:b6:98:ae:66:5b: 94:0f:d7:8f:99:3c:e1:06:db:4c:bf:42:7c:13:31: 6e:09:b6:88:36:8e:2b:c1:7e:48:46:38:d9:59:fc: 3a:d6:a1:ac:98:05:17:6a:b6:ae:8e:f6:98:9f:85: 74:8f:4e:37:2b:85:75:eb:9d:c4:08:d7:52:89:38: de:d5:36:78:67:2d:bf:ac:18:e6:c6:3d:f9:7e:de: 51:4e:e9:3f:ad:67:2a:59:f6:6b:39:af:a6:f5:d7: d5:aa:dd:5c:5f:6d:79:86:f5:c8:43:db:7b:f3:54: 1a:50:84:b5:ec:77:f4:84:4a:8c:ba:71:0b:fe:d4: 9b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AB:92:77:EC:88:EF:A6:04:59:CA:3B:BE:6C:11:5E:87:DA:38:27 X509v3 Authority Key Identifier: keyid:90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:96:15:e3:ce:79:6c:1a:d8:8b:cc:48:3b:eb:a3:ef:21:0a: 9f:7a:22:64:65:66:4d:4d:04:42:e1:9c:45:46:e7:e7:67:ba: ea:d4:1c:3b:f8:3f:b9:82:8f:6c:91:05:8a:49:7d:68:29:b9: 2d:24:d0:3e:b0:b2:6c:6e:b4:6d:bb:23:fa:99:40:26:6d:ba: a0:b2:cc:fe:dd:a3:9f:7f:86:4f:a6:12:de:1b:15:f9:31:20: e6:b0:99:a7:91:d2:ae:a2:bd:67:81:ab:ad:fb:c5:46:29:96: 5d:a4:05:0c:40:7f:45:12:fe:ef:df:38:00:e4:6f:3b:ee:7c: bd:8d:9f:92:55:3c:c8:b4:a3:62:c5:2f:4f:ca:27:af:c4:3d: 83:5a:1d:d7:26:9e:a8:56:83:20:e6:ec:43:3c:75:94:f9:3c: 90:8d:95:a2:2a:6a:ec:85:88:a1:73:d0:e2:f6:1d:33:ee:54: 90:ea:fd:81:dc:a8:e6:57:35:26:e6:cb:a7:82:98:3e:6b:80: e9:8c:6a:66:67:42:92:7b:f3:ff:d3:bc:97:c3:f3:bf:67:cb: 2f:bc:b5:2d:dc:e3:17:3c:5f:94:3c:37:ba:43:6f:8e:7f:7e: 9c:90:15:26:14:e9:e5:14:bc:b2:8f:bc:e4:d8:a1:1e:69:24: 37:49:d7:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4QzkxMTAvBgNVBAUTKDkwRjY4MEZDQTdDOTMwRkQxRkRDNTMzNjc1Mzg1QUU5 MEZCNDE2NzIwHhcNMjQxMTIxMDM1MjI3WhcNMjQxMTI4MDM1MjI3WjAYMRYwFAYD VQQDEw02NzNlYWU3Yi0zNzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOXWsPQQAP207eOFbXBso5mh21adm8mvIjbtonM3pUpYC26zXztSLufjDGlK wXxK78FFFskMXNhE2pc0gpncV937Ga2NHMFgxpoWcKfBr2x1zudCO1eWdTdjac1R ju1fTPfBcM8FGy2lBXOOu5b5pamVQF8dgW4St/d+/BCuVT66tpiuZluUD9ePmTzh BttMv0J8EzFuCbaINo4rwX5IRjjZWfw61qGsmAUXaraujvaYn4V0j043K4V1653E CNdSiTje1TZ4Zy2/rBjmxj35ft5RTuk/rWcqWfZrOa+m9dfVqt1cX215hvXIQ9t7 81QaUIS17Hf0hEqMunEL/tSbqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqrknfs iO+mBFnKO75sEV6H2jgnMB8GA1UdIwQYMBaAFJD2gPynyTD9H9xTNnU4WukPtBZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDhDOS9BMDU1QjVCMjZF RUQxMUVFQkMxQUFCNTNDNEY5QUUwMi9rUGFBX0tmSk1QMGYzRk0yZFRoYTZRLTBG bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tQYUFfS2ZKTVAwZjNGTTJkVGhhNlEtMEZuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDhDOS9BMDU1QjVCMjZFRUQxMUVFQkMxQUFCNTNDNEY5QUUwMi9rUGFBX0tmSk1Q MGYzRk0yZFRoYTZRLTBGbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBclhXjznlsGtiLzEg766PvIQqfeiJkZWZNTQRC4ZxFRufnZ7rq1Bw7 +D+5go9skQWKSX1oKbktJNA+sLJsbrRtuyP6mUAmbbqgssz+3aOff4ZPphLeGxX5 MSDmsJmnkdKuor1ngaut+8VGKZZdpAUMQH9FEv7v3zgA5G877ny9jZ+SVTzItKNi xS9PyievxD2DWh3XJp6oVoMg5uxDPHWU+TyQjZWiKmrshYihc9Di9h0z7lSQ6v2B 3KjmVzUm5sungpg+a4DpjGpmZ0KSe/P/07yXw/O/Z8svvLUt3OMXPF+UPDe6Q2+O f36ckBUmFOnlFLyyj7zk2KEeaSQ3Sdfo -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:54 2024 by rpki-client on console-fra.rpki-client.org