$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: zF5XTB8HXCtslH5xcXmRoUqUx+zdRQLjv4VnvJ3goZE= Subject key identifier: BC:46:B7:8A:05:FD:F2:A8:C5:92:8F:B3:75:C5:0E:0D:21:00:38:28 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 067F Signing time: Fri 22 Nov 2024 21:51:08 +0000 Manifest this update: Fri 22 Nov 2024 21:51:07 +0000 Manifest next update: Fri 29 Nov 2024 21:51:07 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: l067f92mB3LtBfVAZ4+P30Tft98rsV+PSrTB8M8vv/w=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: Iuvg3/7830UsRgOZFEh+qPoBWe8+HToEhKCpSn7OwW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Nov 22 21:51:07 2024 GMT Not After : Nov 29 21:51:07 2024 GMT Subject: CN=6740fccc-2665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5b:f5:b0:f2:58:90:91:9b:c9:9e:8d:26:14: 9f:da:30:11:58:75:6f:90:f6:43:3b:05:33:b5:d7: a9:09:17:35:c7:58:ef:f3:00:5e:26:e9:ea:dc:32: 7b:66:ac:40:1f:78:0d:d6:44:90:68:70:95:4c:0b: 75:08:65:af:2a:7a:dc:62:f5:f2:a5:b7:9a:b3:bf: a6:89:d7:b5:83:21:c0:be:be:a2:c9:44:f0:c7:7f: 7c:4a:bd:55:2c:f6:5b:75:aa:a4:f7:bd:08:18:cd: ad:d1:45:2e:4d:c8:d5:60:74:fb:d8:94:4b:e9:07: 06:e4:64:00:60:5b:cf:41:a5:c0:81:ca:a0:55:cf: aa:d4:92:4c:57:51:d0:52:86:9f:57:27:05:a1:17: 34:3e:1e:a8:22:0d:6e:1d:ea:d0:ea:b9:67:c1:11: 01:3d:08:2b:1a:e2:e5:ad:ac:c2:ac:31:8e:d2:6a: 68:28:51:24:a9:c9:f4:f7:03:53:fd:d9:ee:ef:63: be:af:ef:79:66:d6:71:b0:6f:de:c0:cd:ae:99:1a: 3f:d8:da:8c:1d:c6:a8:2f:ce:7b:ef:a0:ec:74:b8: ac:c6:a2:89:ae:53:30:d0:0e:da:6b:b4:0a:92:1c: 18:aa:a3:8e:b6:24:0e:28:ca:ef:1c:91:b8:bc:59: f2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:46:B7:8A:05:FD:F2:A8:C5:92:8F:B3:75:C5:0E:0D:21:00:38:28 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:94:ed:76:55:71:46:33:af:5b:45:94:09:c0:89:1e:46:c7: e5:1b:52:6c:76:c7:6c:f4:b7:fa:94:3a:97:fc:5c:94:69:52: 91:c0:47:ee:cf:61:44:dc:21:cf:90:42:7a:d8:f3:c9:59:ab: 77:8b:02:ad:57:97:61:72:e2:7c:33:a8:b5:85:a3:ab:c6:17: 5d:51:69:bc:c7:34:9c:30:27:98:48:af:3a:0e:de:b1:47:df: 56:43:c7:3a:3d:4d:cc:2c:f9:d7:6c:52:6b:a8:c6:44:de:7c: c6:5d:ba:72:68:6d:8d:87:26:a3:66:c7:51:86:a9:6a:66:99: 0c:40:47:b8:de:2b:a7:ad:95:6d:34:23:4b:75:90:11:17:bc: 51:42:c9:61:8f:00:bf:2e:a9:01:86:a7:34:f8:2f:90:49:27: 55:5c:d6:41:59:27:64:91:07:69:49:47:ea:06:6c:d9:a9:32: a4:e4:4b:9d:7c:6c:24:3d:78:c7:8a:9d:6d:19:50:a9:ae:73: 29:bb:93:f9:8e:54:46:ce:9a:6c:1c:c9:74:90:6c:ae:14:19: 5d:3e:a9:4f:2e:40:70:4d:78:55:54:c7:44:7e:42:05:91:3d: 83:97:56:fb:d5:56:2f:5f:95:cb:2b:8d:a0:b3:f8:b1:5b:94: c7:54:cf:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjQxMTIyMjE1MTA3WhcNMjQxMTI5MjE1MTA3WjAYMRYwFAYD VQQDEw02NzQwZmNjYy0yNjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFv1sPJYkJGbyZ6NJhSf2jARWHVvkPZDOwUztdepCRc1x1jv8wBeJunq3DJ7 ZqxAH3gN1kSQaHCVTAt1CGWvKnrcYvXypbeas7+mide1gyHAvr6iyUTwx398Sr1V LPZbdaqk970IGM2t0UUuTcjVYHT72JRL6QcG5GQAYFvPQaXAgcqgVc+q1JJMV1HQ UoafVycFoRc0Ph6oIg1uHerQ6rlnwREBPQgrGuLlrazCrDGO0mpoKFEkqcn09wNT /dnu72O+r+95ZtZxsG/ewM2umRo/2NqMHcaoL85776DsdLisxqKJrlMw0A7aa7QK khwYqqOOtiQOKMrvHJG4vFnyvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxGt4oF /fKoxZKPs3XFDg0hADgoMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCplO12VXFGM69bRZQJwIkeRsflG1Jsdsds9Lf6lDqX/FyUaVKRwEfu z2FE3CHPkEJ62PPJWat3iwKtV5dhcuJ8M6i1haOrxhddUWm8xzScMCeYSK86Dt6x R99WQ8c6PU3MLPnXbFJrqMZE3nzGXbpyaG2NhyajZsdRhqlqZpkMQEe43iunrZVt NCNLdZARF7xRQslhjwC/LqkBhqc0+C+QSSdVXNZBWSdkkQdpSUfqBmzZqTKk5Eud fGwkPXjHip1tGVCprnMpu5P5jlRGzppsHMl0kGyuFBldPqlPLkBwTXhVVMdEfkIF kT2Dl1b71VYvX5XLK42gs/ixW5THVM/R -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:36 2024 by rpki-client on console-ams.rpki-client.org