$ rpki-client -vvf rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft File: K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft (raw, json) Hash identifier: 3ooMUTSlyOmsXGuAmjcpCK1dVLzMCTFtq+AcZh1FLwo= Subject key identifier: 0F:67:6F:03:A3:33:42:48:C7:C8:03:49:C4:B1:F2:C5:99:C7:BA:A2 Authority key identifier: 2B:F0:AE:67:90:D2:F0:1D:D1:DB:67:38:31:32:DC:40:3B:67:45:22 Certificate issuer: /CN=A912F6E3/serialNumber=2BF0AE6790D2F01DD1DB67383132DC403B674522 Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K_CuZ5DS8B3R22c4MTLcQDtnRSI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft Manifest number: 0A Signing time: Wed 25 Dec 2024 06:11:53 +0000 Manifest this update: Wed 25 Dec 2024 06:11:52 +0000 Manifest next update: Wed 01 Jan 2025 06:11:52 +0000 Files and hashes: 1: K_CuZ5DS8B3R22c4MTLcQDtnRSI.crl (hash: pwnl3uO+ySMz4mSTqd3LhPxShYMauCf0A+iGxh2Z54w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.crl rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K_CuZ5DS8B3R22c4MTLcQDtnRSI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jan 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F6E3/serialNumber=2BF0AE6790D2F01DD1DB67383132DC403B674522 Validity Not Before: Dec 25 06:11:52 2024 GMT Not After : Jan 1 06:11:52 2025 GMT Subject: CN=676ba229-a387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6e:00:f6:c8:60:c7:89:3a:7a:ab:f9:01:dc: d8:aa:68:d3:ed:ac:82:15:d4:38:58:99:1f:a0:47: 74:3b:de:2f:7a:7b:ff:63:a5:52:f7:7b:d8:8b:6a: 63:23:9e:f9:b5:44:27:56:b7:a3:b2:49:e4:72:c7: 83:00:78:ce:f1:c9:a4:b3:8b:90:8c:21:b8:7e:c5: c6:ed:8d:87:2e:0d:79:5e:cf:2a:ca:e5:b8:5c:53: 61:78:b4:ba:93:dd:a5:62:dd:b5:3f:c9:05:23:0e: 53:f9:d8:95:c3:4a:ea:67:fc:d9:5f:62:38:15:22: 31:9e:ad:75:a7:41:f1:20:8e:e3:46:14:3c:af:27: 65:53:64:58:46:c1:f7:b4:e2:dd:fa:38:ec:ad:4e: 45:d6:50:ea:90:2b:65:9b:46:0a:2c:dd:9a:7d:c3: 6d:29:ae:ab:9f:aa:06:c6:ed:76:76:67:d6:9a:31: f4:6b:1c:66:29:b4:a4:36:91:d3:17:f0:dd:99:59: 27:d8:c5:0c:ba:71:ef:2f:e9:6a:99:79:1d:4f:75: 45:85:1a:cc:15:8d:ac:8f:58:c0:28:bf:5a:01:0d: 18:54:a0:90:49:57:9d:25:13:50:7b:54:e5:d3:73: 78:ee:ba:26:46:55:03:28:cd:7c:1c:8a:43:8d:ce: a9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:67:6F:03:A3:33:42:48:C7:C8:03:49:C4:B1:F2:C5:99:C7:BA:A2 X509v3 Authority Key Identifier: keyid:2B:F0:AE:67:90:D2:F0:1D:D1:DB:67:38:31:32:DC:40:3B:67:45:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K_CuZ5DS8B3R22c4MTLcQDtnRSI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:b7:00:64:32:b2:84:e6:cd:d0:e0:b2:59:b2:59:5d:5d:d3: 39:3c:ab:9e:2d:88:24:a1:1f:8d:65:b4:42:49:2b:b9:ed:0c: 02:15:e2:d1:96:4d:c2:aa:dc:4b:a8:1e:c4:72:b3:1e:09:6a: ff:fc:44:da:d6:e1:c3:f8:eb:4d:4d:26:9b:83:90:92:36:6f: 61:96:52:bf:7d:89:e9:87:17:4a:a1:3f:e6:b9:6e:75:59:48: 11:9c:cf:e6:60:b8:78:db:d2:ba:8f:2d:9e:28:b8:2e:7b:c2: 1e:59:33:f7:2f:14:2d:3f:f6:6b:3d:49:c6:08:d7:99:49:f8: 4b:04:42:17:f9:76:4d:33:e8:0b:42:4e:69:df:c2:ba:73:5e: 2e:33:91:e6:55:da:1c:31:10:65:69:8c:32:d4:fa:92:29:cb: e2:b4:c6:1e:e5:e5:86:c9:16:f6:46:ca:d6:2e:fc:79:e9:86: b7:b8:64:98:60:98:30:d1:01:83:c0:c7:14:4e:e2:b9:26:90: 96:9a:b6:a0:5f:4e:a9:f7:74:eb:62:fd:67:7f:5e:b9:a4:a5: 45:08:f9:c5:a5:92:38:ff:23:c2:da:4c:65:fa:6c:3d:ab:7b: b5:05:72:31:55:0b:62:17:dd:89:75:04:61:42:d1:cd:0a:a1: f6:e2:0b:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjZFMzExMC8GA1UEBRMoMkJGMEFFNjc5MEQyRjAxREQxREI2NzM4MzEzMkRDNDAz QjY3NDUyMjAeFw0yNDEyMjUwNjExNTJaFw0yNTAxMDEwNjExNTJaMBgxFjAUBgNV BAMTDTY3NmJhMjI5LWEzODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBbgD2yGDHiTp6q/kB3NiqaNPtrIIV1DhYmR+gR3Q73i96e/9jpVL3e9iLamMj nvm1RCdWt6OySeRyx4MAeM7xyaSzi5CMIbh+xcbtjYcuDXlezyrK5bhcU2F4tLqT 3aVi3bU/yQUjDlP52JXDSupn/NlfYjgVIjGerXWnQfEgjuNGFDyvJ2VTZFhGwfe0 4t36OOytTkXWUOqQK2WbRgos3Zp9w20prqufqgbG7XZ2Z9aaMfRrHGYptKQ2kdMX 8N2ZWSfYxQy6ce8v6WqZeR1PdUWFGswVjayPWMAov1oBDRhUoJBJV50lE1B7VOXT c3juuiZGVQMozXwcikONzqmTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUD2dvA6Mz QkjHyANJxLHyxZnHuqIwHwYDVR0jBBgwFoAUK/CuZ5DS8B3R22c4MTLcQDtnRSIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGNkUzL0YyRkI4MjUwQjVE RDExRUY5N0Q5RkEzNEM0RjlBRTAyL0tfQ3VaNURTOEIzUjIyYzRNVExjUUR0blJT SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS19DdVo1RFM4QjNSMjJjNE1UTGNRRHRuUlNJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJG NkUzL0YyRkI4MjUwQjVERDExRUY5N0Q5RkEzNEM0RjlBRTAyL0tfQ3VaNURTOEIz UjIyYzRNVExjUUR0blJTSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABW3AGQysoTmzdDgslmyWV1d0zk8q54tiCShH41ltEJJK7ntDAIV4tGW TcKq3EuoHsRysx4Jav/8RNrW4cP4601NJpuDkJI2b2GWUr99iemHF0qhP+a5bnVZ SBGcz+ZguHjb0rqPLZ4ouC57wh5ZM/cvFC0/9ms9ScYI15lJ+EsEQhf5dk0z6AtC TmnfwrpzXi4zkeZV2hwxEGVpjDLU+pIpy+K0xh7l5YbJFvZGytYu/Hnphre4ZJhg mDDRAYPAxxRO4rkmkJaatqBfTqn3dOti/Wd/XrmkpUUI+cWlkjj/I8LaTGX6bD2r e7UFcjFVC2IX3Yl1BGFC0c0KofbiC00= -----END CERTIFICATE-----Generated at Wed Dec 25 07:59:59 2024 by rpki-client on console-ams.rpki-client.org