$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: CuKvrFd6saQ1QnYhHq2Ha46QxYQxJRfUMF9EE6R+wHQ= Subject key identifier: 5E:C3:BE:62:D6:EC:CA:99:F3:FB:4F:5F:87:A3:F5:8C:CA:19:05:93 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 9A Signing time: Thu 21 Nov 2024 04:29:09 +0000 Manifest this update: Thu 21 Nov 2024 04:29:09 +0000 Manifest next update: Thu 28 Nov 2024 04:29:09 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: eMoawLdog/N3hXNPC9u3R2BgBgO05AU5ayGzfVWL3DU=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: drim/D+h+Xt+p+pnKr4+ojkoccz6AyP57BUNn870PPc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Nov 21 04:29:09 2024 GMT Not After : Nov 28 04:29:09 2024 GMT Subject: CN=673eb715-d9d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9d:3a:77:45:ab:ba:9f:6d:3e:10:63:0d:1b: 1f:ab:f0:8b:8e:b4:6c:23:04:a2:8e:af:8e:8e:dc: 64:8f:48:dd:b2:3e:08:08:77:39:5a:05:42:af:b0: 1d:b6:f5:9f:37:93:f2:35:3f:1e:9d:37:58:a5:44: 8b:51:d2:d3:fa:61:69:df:99:7d:90:b6:1f:c3:7a: 45:5c:12:84:7d:a7:18:a3:7d:7a:c5:82:e2:ed:20: 4e:bf:fb:fc:b6:d7:3f:b4:c5:b8:5b:8b:d0:16:69: 32:78:f2:fb:17:48:86:34:4e:50:3b:16:cb:b7:18: ee:d4:48:d1:83:28:50:81:99:4d:e1:26:54:15:bf: 87:bc:cb:85:80:bf:e1:52:71:f4:52:ee:d2:7a:d5: cc:bb:08:b3:57:96:ee:cf:30:46:17:4b:ee:29:3d: 47:36:f8:46:31:71:7e:64:8f:c8:65:1c:9e:92:c0: f3:0a:06:a4:2d:82:c4:bf:b2:c8:ba:6f:23:f6:78: 4d:9d:5f:1c:60:ca:b5:f9:2a:e9:86:f1:f2:a5:bd: 02:e8:b0:f2:49:9c:74:c2:e7:8f:63:77:d2:75:82: 86:e8:45:ed:1a:91:d1:ce:ba:74:42:e1:1a:85:75: d1:d3:c0:1e:86:32:f5:bd:0e:33:e5:7b:fd:a6:c2: 22:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C3:BE:62:D6:EC:CA:99:F3:FB:4F:5F:87:A3:F5:8C:CA:19:05:93 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:d5:33:a0:9f:89:e1:98:b8:bc:26:f4:30:ea:a3:39:36:b1: 47:14:6c:e5:28:6d:18:5f:a4:b2:f5:c5:ca:d5:11:7d:03:07: 4e:fc:9a:d0:ba:c6:c1:72:27:9a:03:10:c2:f1:af:41:66:8e: dc:9d:87:43:1c:70:33:2e:4d:b4:44:b8:89:b7:f0:87:36:a9: 6f:a5:5a:da:58:f7:80:af:ed:82:ff:60:83:dd:8a:1a:b7:cf: 81:dc:44:80:e7:88:b4:57:ab:8d:a6:f9:fd:ad:9c:38:8a:cd: 42:4c:00:8b:2b:8a:73:04:20:f9:06:f4:e3:3e:c0:92:a2:2c: 0d:f2:43:ad:88:e0:f8:20:c7:83:58:dd:ca:27:2b:cb:ff:82: 46:6c:8b:89:0c:1f:1e:f6:8e:c5:d5:3f:4f:2e:34:0b:ec:05: fe:d1:3a:1d:e4:e0:f3:1e:37:9b:fb:c2:bb:80:40:37:f2:92: ed:b3:b5:e5:58:3c:10:67:81:bf:5e:33:f6:e6:5a:ea:c5:17: c1:33:e5:63:9b:d3:d8:17:6d:0f:fb:b9:b5:17:22:91:66:5e: c1:09:76:7d:37:84:a1:b3:73:3a:0e:f1:62:76:5f:06:a1:d6: 4d:4b:07:27:13:b7:d1:50:82:49:d0:8a:c6:ce:b7:de:7b:6d: 43:c5:63:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjQxMTIxMDQyOTA5WhcNMjQxMTI4MDQyOTA5WjAYMRYwFAYD VQQDEw02NzNlYjcxNS1kOWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt506d0Wrup9tPhBjDRsfq/CLjrRsIwSijq+Ojtxkj0jdsj4ICHc5WgVCr7Ad tvWfN5PyNT8enTdYpUSLUdLT+mFp35l9kLYfw3pFXBKEfacYo316xYLi7SBOv/v8 ttc/tMW4W4vQFmkyePL7F0iGNE5QOxbLtxju1EjRgyhQgZlN4SZUFb+HvMuFgL/h UnH0Uu7SetXMuwizV5buzzBGF0vuKT1HNvhGMXF+ZI/IZRyeksDzCgakLYLEv7LI um8j9nhNnV8cYMq1+SrphvHypb0C6LDySZx0wuePY3fSdYKG6EXtGpHRzrp0QuEa hXXR08AehjL1vQ4z5Xv9psIi/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7DvmLW 7MqZ8/tPX4ej9YzKGQWTMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe1TOgn4nhmLi8JvQw6qM5NrFHFGzlKG0YX6Sy9cXK1RF9AwdO/JrQ usbBcieaAxDC8a9BZo7cnYdDHHAzLk20RLiJt/CHNqlvpVraWPeAr+2C/2CD3Yoa t8+B3ESA54i0V6uNpvn9rZw4is1CTACLK4pzBCD5BvTjPsCSoiwN8kOtiOD4IMeD WN3KJyvL/4JGbIuJDB8e9o7F1T9PLjQL7AX+0Tod5ODzHjeb+8K7gEA38pLts7Xl WDwQZ4G/XjP25lrqxRfBM+Vjm9PYF20P+7m1FyKRZl7BCXZ9N4Shs3M6DvFidl8G odZNSwcnE7fRUIJJ0IrGzrfee21DxWPb -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:14 2024 by rpki-client on console-fra.rpki-client.org