$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft File: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft (raw, json) Hash identifier: iA49q7+xXjaiFxx6qfYTFJI+aQ4OSrxQIrgth8xYLR0= Subject key identifier: E4:96:AD:32:BD:8F:FB:61:15:85:F0:A7:64:6A:A8:51:E8:E9:FC:E5 Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft Manifest number: 20 Signing time: Thu 19 Sep 2024 06:09:12 +0000 Manifest this update: Thu 19 Sep 2024 06:09:11 +0000 Manifest next update: Thu 26 Sep 2024 06:09:11 +0000 Files and hashes: 1: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl (hash: Rg7WGmUMCZrrDz0KnaNirJpw1VyK0zlqdSEssAt9+9Q=) 2: D91E3ADC498E11EF908FD222C4F9AE02.roa (hash: Jx5g4trH+czPvG03Fg+vnQGNF2i3MZbGuk8d0qs2e3E=) 3: D9C5B55A498E11EF908FD222C4F9AE02.roa (hash: 5bWzpxkVdBvFoS/IDZEAIIoO+h76dzg0UD9G2ZwWkiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Sep 19 06:09:11 2024 GMT Not After : Sep 26 06:09:11 2024 GMT Subject: CN=66ebc007-32dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1f:4f:c0:34:76:c0:af:da:67:6e:f2:85:aa: 41:ec:c1:3c:5b:0c:0b:eb:1a:41:47:27:25:c2:b0: 51:69:70:95:db:fc:2d:c4:2a:6a:c0:25:02:e9:60: df:69:7f:b9:83:72:4e:db:79:0e:eb:33:fe:3a:2a: 98:f7:38:3c:b5:0c:5e:8c:d1:18:80:69:f0:ce:86: 49:49:4d:43:0a:8d:fb:3f:6f:c0:48:bc:41:00:8a: ce:3c:8b:6f:2f:c3:79:ae:fc:6d:fb:8b:9d:2e:8c: a2:60:cf:82:71:bd:8c:2f:be:a7:ee:fe:22:90:f9: 6a:11:b7:1d:6a:d3:06:42:99:24:a5:12:a3:13:49: 54:14:12:5d:9f:3e:3b:04:ad:ef:0b:e8:7b:7a:7c: 2f:67:26:61:4e:d5:37:ad:75:62:c0:9c:44:64:f8: cd:25:62:9c:db:8f:98:96:b1:a2:8a:f0:d1:b2:7d: 2a:00:04:0c:3e:cb:1b:51:4a:4e:46:51:d0:eb:14: c9:78:b3:ef:69:4b:3d:fb:a7:6c:11:20:8d:a4:fd: 94:8f:c0:9f:b3:02:67:e7:d5:7c:85:7f:ae:56:da: b5:e9:b9:d2:a3:38:93:d9:79:c4:fa:75:7e:37:ef: 0b:45:4c:26:80:6c:ee:84:b3:cc:3c:1c:6b:19:56: a0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:96:AD:32:BD:8F:FB:61:15:85:F0:A7:64:6A:A8:51:E8:E9:FC:E5 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:9b:21:9c:31:d0:32:36:85:4a:29:b3:12:d7:eb:22:4e:d6: 85:05:5d:d1:6f:75:bf:f1:46:c3:33:6e:01:86:5e:81:1a:85: 9d:1a:ac:71:81:e3:31:47:14:7c:ec:59:19:ca:7c:3c:f2:b2: 1b:b6:0c:64:0d:2d:d0:b1:b5:ba:06:5f:32:69:d6:e0:43:a3: 16:02:ae:31:44:82:29:56:af:1a:f5:70:05:18:8e:f9:d0:9b: 67:24:0a:a7:67:07:53:33:74:d2:a1:f0:a3:d2:71:67:9d:8d: 30:de:56:a4:64:f5:7b:bd:d8:2b:59:58:07:1b:f8:80:10:36: 6f:54:bc:79:c7:55:c7:8d:f7:4a:83:b1:22:f2:4d:55:f3:80: 32:e3:77:d4:17:45:1d:ed:65:c7:77:57:4b:e9:8a:28:e0:e8: 97:b9:79:5c:8a:ce:8f:5f:91:81:4c:48:a5:68:a0:19:69:eb: 1c:15:f7:61:03:b9:3d:68:e7:86:b7:38:aa:e2:35:1f:0c:7d: 99:8b:74:6b:1f:a0:14:57:33:a4:d1:4e:02:7a:e3:c6:2e:fc: e2:8f:bd:b0:d4:58:ad:0c:b5:9b:1d:8d:3a:9d:03:c5:ad:41: 6b:29:49:1e:7f:3b:c5:f2:2a:b2:82:e0:5f:46:97:ec:bc:59: 9d:26:a9:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjNCNjExMC8GA1UEBRMoMkIxMzFBQTEwRDdFNkJGRUEzNjdFODFCNzNEN0ZEQjBB QzAxRDY3ODAeFw0yNDA5MTkwNjA5MTFaFw0yNDA5MjYwNjA5MTFaMBgxFjAUBgNV BAMTDTY2ZWJjMDA3LTMyZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWH0/ANHbAr9pnbvKFqkHswTxbDAvrGkFHJyXCsFFpcJXb/C3EKmrAJQLpYN9p f7mDck7beQ7rM/46Kpj3ODy1DF6M0RiAafDOhklJTUMKjfs/b8BIvEEAis48i28v w3mu/G37i50ujKJgz4JxvYwvvqfu/iKQ+WoRtx1q0wZCmSSlEqMTSVQUEl2fPjsE re8L6Ht6fC9nJmFO1TetdWLAnERk+M0lYpzbj5iWsaKK8NGyfSoABAw+yxtRSk5G UdDrFMl4s+9pSz37p2wRII2k/ZSPwJ+zAmfn1XyFf65W2rXpudKjOJPZecT6dX43 7wtFTCaAbO6Es8w8HGsZVqBLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5JatMr2P +2EVhfCnZGqoUejp/OUwHwYDVR0jBBgwFoAUKxMaoQ1+a/6jZ+gbc9f9sKwB1ngw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGM0I2LzUwRjAxMUM4NDhC QTExRUZCRDQ1MTYzREM0RjlBRTAyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFu Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3hNYW9RMS1hXzZqWi1nYmM5ZjlzS3dCMW5nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJG M0I2LzUwRjAxMUM4NDhCQTExRUZCRDQ1MTYzREM0RjlBRTAyL0t4TWFvUTEtYV82 alotZ2JjOWY5c0t3QjFuZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA+bIZwx0DI2hUopsxLX6yJO1oUFXdFvdb/xRsMzbgGGXoEahZ0arHGB 4zFHFHzsWRnKfDzyshu2DGQNLdCxtboGXzJp1uBDoxYCrjFEgilWrxr1cAUYjvnQ m2ckCqdnB1MzdNKh8KPScWedjTDeVqRk9Xu92CtZWAcb+IAQNm9UvHnHVceN90qD sSLyTVXzgDLjd9QXRR3tZcd3V0vpiijg6Je5eVyKzo9fkYFMSKVooBlp6xwV92ED uT1o54a3OKriNR8MfZmLdGsfoBRXM6TRTgJ648Yu/OKPvbDUWK0MtZsdjTqdA8Wt QWspSR5/O8XyKrKC4F9Gl+y8WZ0mqao= -----END CERTIFICATE-----Generated at Thu Sep 19 07:13:45 2024 by rpki-client on console-fra.rpki-client.org