$ rpki-client -vvf rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft File: kakyPLNEJvPZyJDjl4Ag1BezWfU.mft (raw, json) Hash identifier: S+DTLVVWJvusmug96wn7t5mtlVwM4Pulvp0Dkvocvhk= Subject key identifier: 28:71:5C:87:31:1C:78:40:A3:8C:FD:CA:F9:50:3F:2F:14:64:9B:4B Authority key identifier: 91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5 Certificate issuer: /CN=A9151265/serialNumber=91A9323CB34426F3D9C890E3978020D417B359F5 Certificate serial: 03FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft Manifest number: 03F6 Signing time: Sat 23 Nov 2024 00:03:02 +0000 Manifest this update: Sat 23 Nov 2024 00:03:01 +0000 Manifest next update: Sat 30 Nov 2024 00:03:01 +0000 Files and hashes: 1: kakyPLNEJvPZyJDjl4Ag1BezWfU.crl (hash: B/P07OjFViw8yhTX5RR0xXBYfC9daq8GZuHSxwWqWA0=) 2: B1334FD4522011ECB0594C2BC4F9AE02.roa (hash: AdqmHcdVFHUJYvm1cm6+jhO3q3DYpUc6FI5IG6Qk0Vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.crl rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1018 (0x3fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151265/serialNumber=91A9323CB34426F3D9C890E3978020D417B359F5 Validity Not Before: Nov 23 00:03:01 2024 GMT Not After : Nov 30 00:03:01 2024 GMT Subject: CN=67411bb5-41ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:02:bf:e4:2f:0c:d6:62:e8:f2:ff:2d:60:70: 9a:29:4e:a6:cb:71:68:84:b6:ea:1b:dc:e1:bb:18: 4d:43:f3:d2:5d:0e:c5:47:fe:f4:58:f7:8d:2c:54: ed:16:48:ae:57:a0:43:0f:46:af:29:71:ea:cc:98: 69:3f:41:13:92:71:c8:6a:8e:36:fc:8f:ed:3b:97: 1c:65:bd:c2:b5:43:e6:09:83:5c:60:fd:36:91:b7: 2b:4f:89:e3:98:2c:72:23:79:cc:98:a5:bf:8b:f2: 87:5b:f6:cf:a8:39:56:9e:e2:16:bd:f3:e6:4d:68: 4d:21:e9:af:79:5f:d7:68:16:16:51:d3:9a:9b:75: 8c:3c:15:98:2d:64:70:9d:2e:55:ed:fc:b8:3c:03: 06:83:61:97:0d:00:36:9e:2f:c9:35:2d:9d:9f:1a: ed:ba:09:34:cd:f6:9b:67:fb:9d:f2:5b:2b:40:18: b0:f9:2e:ba:c3:aa:a5:4b:a5:6d:d7:cb:d6:7c:98: 22:38:de:0f:ab:e6:ae:78:12:2c:f9:1b:79:c4:f5: 17:2b:6f:c8:ff:b5:80:62:ae:75:f1:f0:a9:93:56: 3f:39:25:18:ee:5d:be:e5:6c:2b:75:e9:c1:88:9a: 6e:70:cb:0b:21:94:20:56:96:04:6d:23:57:e8:5b: 5d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:71:5C:87:31:1C:78:40:A3:8C:FD:CA:F9:50:3F:2F:14:64:9B:4B X509v3 Authority Key Identifier: keyid:91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:66:71:5c:cc:b2:a8:3a:d1:7b:47:67:04:22:4f:b3:37:42: b6:34:cc:e5:a4:52:35:c1:11:f3:34:96:d1:a7:33:f3:a8:33: e2:62:0f:9f:e1:49:9d:8b:d0:cf:8e:17:71:82:c1:41:7e:d8: 7d:33:a9:a7:da:58:66:e7:42:25:45:c5:44:66:78:5f:ba:5b: 17:94:1b:65:16:d4:34:cd:f9:01:ad:b3:32:73:e0:11:82:36: 3b:41:ba:40:e6:07:1a:b9:0c:66:8f:75:da:70:0d:4c:25:9f: db:87:7c:04:78:2c:53:87:98:d7:9f:95:d9:7b:69:32:28:36: 3c:56:e6:87:7f:ed:08:b0:c4:67:44:bf:b9:98:71:23:65:61: 61:98:65:de:fa:11:ce:28:61:b4:59:8e:4b:67:df:c1:6e:35: c7:13:75:b0:cf:d7:41:d2:0f:a8:0e:f3:84:28:b4:ce:cc:bb: b4:27:fa:bd:9b:6c:b9:76:32:7c:b1:c6:35:8a:74:1f:41:a0: b7:53:ce:a5:a5:ae:66:b3:1b:f3:ef:c7:be:71:cb:68:ec:88: 91:58:ea:aa:de:35:11:a1:29:d7:d9:91:48:96:0f:0a:df:a0: 01:99:4d:d5:95:55:a3:44:91:ec:b2:96:db:2a:94:66:0b:37: c9:da:84:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyNjUxMTAvBgNVBAUTKDkxQTkzMjNDQjM0NDI2RjNEOUM4OTBFMzk3ODAyMEQ0 MTdCMzU5RjUwHhcNMjQxMTIzMDAwMzAxWhcNMjQxMTMwMDAwMzAxWjAYMRYwFAYD VQQDEw02NzQxMWJiNS00MWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkQK/5C8M1mLo8v8tYHCaKU6my3FohLbqG9zhuxhNQ/PSXQ7FR/70WPeNLFTt FkiuV6BDD0avKXHqzJhpP0ETknHIao42/I/tO5ccZb3CtUPmCYNcYP02kbcrT4nj mCxyI3nMmKW/i/KHW/bPqDlWnuIWvfPmTWhNIemveV/XaBYWUdOam3WMPBWYLWRw nS5V7fy4PAMGg2GXDQA2ni/JNS2dnxrtugk0zfabZ/ud8lsrQBiw+S66w6qlS6Vt 18vWfJgiON4Pq+aueBIs+Rt5xPUXK2/I/7WAYq518fCpk1Y/OSUY7l2+5WwrdenB iJpucMsLIZQgVpYEbSNX6FtdzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChxXIcx HHhAo4z9yvlQPy8UZJtLMB8GA1UdIwQYMBaAFJGpMjyzRCbz2ciQ45eAINQXs1n1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI2NS8wNTcwOUFFQTUy MUYxMUVDQjNEMDE5MkJDNEY5QUUwMi9rYWt5UExORUp2UFp5SkRqbDRBZzFCZXpX ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tha3lQTE5FSnZQWnlKRGpsNEFnMUJleldmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTI2NS8wNTcwOUFFQTUyMUYxMUVDQjNEMDE5MkJDNEY5QUUwMi9rYWt5UExORUp2 UFp5SkRqbDRBZzFCZXpXZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUZnFczLKoOtF7R2cEIk+zN0K2NMzlpFI1wRHzNJbRpzPzqDPiYg+f 4Umdi9DPjhdxgsFBfth9M6mn2lhm50IlRcVEZnhfulsXlBtlFtQ0zfkBrbMyc+AR gjY7QbpA5gcauQxmj3XacA1MJZ/bh3wEeCxTh5jXn5XZe2kyKDY8VuaHf+0IsMRn RL+5mHEjZWFhmGXe+hHOKGG0WY5LZ9/BbjXHE3Wwz9dB0g+oDvOEKLTOzLu0J/q9 m2y5djJ8scY1inQfQaC3U86lpa5msxvz78e+ccto7IiRWOqq3jURoSnX2ZFIlg8K 36ABmU3VlVWjRJHsspbbKpRmCzfJ2oSo -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:22 2024 by rpki-client on console-ams.rpki-client.org