$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: MhwwRyohkt+2HidrP6ghXdwFmrrYigiv21IO6Vyw2Gw= Subject key identifier: 13:A0:D0:B0:7F:50:6C:BA:10:89:B4:6E:6F:40:1E:90:C2:52:E9:60 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: 3B Signing time: Sat 23 Nov 2024 05:25:47 +0000 Manifest this update: Sat 23 Nov 2024 05:25:47 +0000 Manifest next update: Sat 30 Nov 2024 05:25:47 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: RMp+r4/9Rr9cJ3QDBlK+glmdjRklmm0BO44YxGZDrhk=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: 7cyDiCG+GWMMc47d/9wE/tr8+3lmCjNtDuQzc5Jy9ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Nov 23 05:25:47 2024 GMT Not After : Nov 30 05:25:47 2024 GMT Subject: CN=6741675b-4441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:53:bb:70:ad:50:81:d0:00:bd:40:e3:47:0b: 67:4f:82:7b:2d:93:fa:52:7b:b4:ea:30:a1:21:9d: 65:2d:6b:63:00:49:f7:67:f5:7d:6e:3b:28:66:15: f6:5e:91:da:bc:6d:9b:4a:61:2e:ad:1b:6d:e2:14: 9e:82:a4:24:6e:15:1b:e0:b5:89:cd:d1:16:95:85: 16:1e:98:4e:6b:88:35:bb:57:fa:34:fb:11:69:3c: 4e:b9:59:b3:1e:d0:69:e1:46:9d:78:86:13:3d:85: ff:b2:2c:b6:e3:f1:df:32:b8:37:eb:fb:6a:90:39: 40:27:ac:54:2c:46:55:4a:4a:01:71:cf:f5:c0:76: 3b:08:1b:c3:e1:c2:3b:63:3c:59:c6:25:b7:0f:46: 14:e1:fc:d9:83:ca:57:2d:b8:8e:5d:9a:12:90:ab: 39:4c:28:fd:80:84:31:c6:85:f9:ef:ac:a0:8e:7c: f9:86:07:ca:8f:62:a5:bc:8a:47:cd:a2:e2:f0:4c: 74:ac:0e:5e:6b:1d:ad:c0:f6:53:71:d3:82:b1:8b: d2:56:0a:3d:28:16:92:0e:d6:f7:d2:da:cc:05:55: b1:83:48:75:9d:fa:fb:84:9f:ff:9e:cc:23:95:72: 26:7a:f3:4f:a7:ef:6e:cf:6e:2f:61:b0:85:9b:3d: 02:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A0:D0:B0:7F:50:6C:BA:10:89:B4:6E:6F:40:1E:90:C2:52:E9:60 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:65:95:ce:bc:8b:a7:39:5b:37:80:07:46:de:64:94:ab:70: f9:a1:54:12:02:41:b3:aa:f8:7e:a3:0b:3f:bf:0c:ea:0e:15: f7:c0:cc:95:e7:84:1b:98:52:31:a0:21:be:d1:75:5d:f4:c1: 1a:8c:43:80:30:b3:21:af:08:30:ca:1e:2e:3a:a2:0d:63:42: 59:48:bb:56:5f:be:e2:30:cc:b5:a6:bc:96:bc:8b:5d:df:27: 74:44:7a:60:b2:fc:48:c9:22:f3:ab:89:aa:5f:10:56:45:ad: 48:80:f3:d6:f0:d5:4c:eb:a9:3f:42:29:da:ed:92:33:56:a8: 36:73:1c:13:fe:bf:1d:24:bb:4d:a0:4a:54:7f:50:40:68:53: 4f:83:88:66:2c:79:54:f2:21:eb:d6:e4:c6:d3:69:2c:e2:3f: da:17:eb:e0:6e:e3:96:b2:53:8b:67:f0:5b:5b:a7:46:20:2f: 3e:c8:28:6b:38:d8:67:38:10:0e:62:9c:2a:d5:9a:a8:a0:97: 27:c2:43:99:7a:48:10:86:41:0d:42:40:45:21:13:bd:8e:a9: 6d:b5:ad:16:00:3e:9a:a3:fd:05:4a:75:06:32:3e:e9:60:fc: 68:24:16:e6:f0:0e:25:be:23:0d:88:86:7b:2e:80:27:92:3e: ea:a5:80:77 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTNCRTExMC8GA1UEBRMoREE0NzI3OEE3N0JCREZGMkFEOUY5OEEwMTFBMkE3QTJF N0NENjBEODAeFw0yNDExMjMwNTI1NDdaFw0yNDExMzAwNTI1NDdaMBgxFjAUBgNV BAMTDTY3NDE2NzViLTQ0NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBU7twrVCB0AC9QONHC2dPgnstk/pSe7TqMKEhnWUta2MASfdn9X1uOyhmFfZe kdq8bZtKYS6tG23iFJ6CpCRuFRvgtYnN0RaVhRYemE5riDW7V/o0+xFpPE65WbMe 0GnhRp14hhM9hf+yLLbj8d8yuDfr+2qQOUAnrFQsRlVKSgFxz/XAdjsIG8Phwjtj PFnGJbcPRhTh/NmDylctuI5dmhKQqzlMKP2AhDHGhfnvrKCOfPmGB8qPYqW8ikfN ouLwTHSsDl5rHa3A9lNx04Kxi9JWCj0oFpIO1vfS2swFVbGDSHWd+vuEn/+ezCOV ciZ680+n727Pbi9hsIWbPQI5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUE6DQsH9Q bLoQibRub0AekMJS6WAwHwYDVR0jBBgwFoAU2kcnine73/Ktn5igEaKnoufNYNgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5M0JFLzc3NDE2MTRDNTJE MzExRUZCQUVEREMxRUM0RjlBRTAyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllO Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMmtjbmluZTczX0t0bjVpZ0VhS25vdWZOWU5nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5 M0JFLzc3NDE2MTRDNTJEMzExRUZCQUVEREMxRUM0RjlBRTAyLzJrY25pbmU3M19L dG41aWdFYUtub3VmTllOZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFlllc68i6c5WzeAB0beZJSrcPmhVBICQbOq+H6jCz+/DOoOFffAzJXn hBuYUjGgIb7RdV30wRqMQ4AwsyGvCDDKHi46og1jQllIu1ZfvuIwzLWmvJa8i13f J3REemCy/EjJIvOriapfEFZFrUiA89bw1UzrqT9CKdrtkjNWqDZzHBP+vx0ku02g SlR/UEBoU0+DiGYseVTyIevW5MbTaSziP9oX6+Bu45ayU4tn8Ftbp0YgLz7IKGs4 2Gc4EA5inCrVmqiglyfCQ5l6SBCGQQ1CQEUhE72OqW21rRYAPpqj/QVKdQYyPulg /GgkFubwDiW+Iw2IhnsugCeSPuqlgHc= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:23 2024 by rpki-client on console-fra.rpki-client.org