$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft File: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft (raw, json) Hash identifier: ++1nqg17Zk7z/smSh1zEKlOVCp/rGqBqOE5UwaVO+DY= Subject key identifier: 0C:BD:FC:D5:5B:2C:E2:9E:E4:CD:E8:51:13:C0:B4:D4:04:B7:5F:C0 Authority key identifier: 29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC Certificate issuer: /CN=A9152329/serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft Manifest number: 06 Signing time: Thu 21 Nov 2024 06:16:15 +0000 Manifest this update: Thu 21 Nov 2024 06:16:15 +0000 Manifest next update: Thu 28 Nov 2024 06:16:15 +0000 Files and hashes: 1: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl (hash: ZhSD8WomZMUaiBGYSsDsSFe33iT4DJA1uGLswux4MA4=) 2: 38161248A26911EFBF6D0319C4F9AE02.roa (hash: ask+BZFU8F8z7xA+3YaObHPYrB9zSG3srAnnNSVnzDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329/serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Validity Not Before: Nov 21 06:16:15 2024 GMT Not After : Nov 28 06:16:15 2024 GMT Subject: CN=673ed02f-83c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fe:72:29:65:88:2d:f6:3d:ee:04:d9:42:a6: 97:27:50:33:f5:68:5b:2c:49:81:f9:e4:c7:11:cb: 5b:38:cc:91:4e:bc:26:e8:76:09:24:ac:67:36:52: a0:c0:c3:fd:7f:bb:db:a8:f3:ea:91:43:60:ab:48: 27:bf:f7:2f:c2:78:75:b1:71:ab:8b:45:2e:29:5f: dd:0c:bd:67:8e:07:27:02:73:65:aa:61:4e:42:e1: 26:c4:cd:c8:de:09:c1:f8:59:79:a7:4e:b9:6f:8b: 10:e3:29:60:22:88:aa:81:bb:8c:0b:f5:a3:63:32: 58:0c:80:af:73:91:46:39:51:ed:bc:37:0c:1e:10: 48:db:44:b8:d3:0e:21:45:2e:e9:67:13:79:31:85: 1b:d0:34:9d:73:21:07:4e:e8:6b:d1:f3:2c:05:9d: 6f:af:39:9e:29:55:0e:93:05:42:59:f6:fa:db:73: 2c:0c:22:30:ca:a1:b6:15:1e:f9:c3:a2:33:fd:6d: f0:9c:e1:5b:97:71:8b:14:bf:22:91:c2:1f:02:7b: 78:04:84:49:96:c2:7f:68:cb:a7:17:83:50:49:64: f2:48:f1:0d:c7:fa:7d:3a:11:84:4d:31:0b:45:b4: ac:35:ed:e5:15:61:67:78:dc:c3:fc:f8:ca:44:03: be:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:BD:FC:D5:5B:2C:E2:9E:E4:CD:E8:51:13:C0:B4:D4:04:B7:5F:C0 X509v3 Authority Key Identifier: keyid:29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:50:18:ea:9a:eb:b6:d7:42:cb:55:7d:67:6a:76:2a:e5:8a: 66:3e:f8:aa:09:a5:94:7b:08:9e:bd:d1:a0:86:ca:8a:0b:0b: ee:19:79:99:30:82:b1:86:2d:62:fd:51:34:27:b5:ec:31:d9: 1d:5b:94:4d:4e:cc:36:20:d5:42:75:eb:38:1d:3c:b6:95:0d: 28:a3:0f:f8:23:e4:d2:4e:9e:8f:9d:08:ba:a7:41:81:2b:96: 01:5e:85:04:e9:94:2b:1f:7d:3c:34:63:2f:02:79:07:1e:8f: 30:b9:9b:cf:2b:3a:fd:3e:e1:3a:06:b0:3c:ff:15:17:fb:9f: 87:b4:8e:33:79:0e:08:34:80:1a:00:c3:fa:1e:07:2a:02:78: ae:cb:e1:36:fe:92:98:2c:11:ad:ec:fb:3f:db:04:0f:bc:7c: 6f:43:44:c7:f4:d0:76:83:f1:70:f1:6e:2f:64:62:48:97:d6: d9:83:10:b7:e5:c2:d1:f9:37:43:5b:67:4d:02:3c:f9:ba:f8: 95:ef:2a:1e:5b:15:f2:9b:c5:73:70:78:d0:e0:46:f9:b3:5f: 2f:8a:c1:26:61:fe:92:88:24:12:3f:7a:c5:c6:26:c4:d5:28: e3:f7:73:d7:d8:9e:0e:0a:8c:6c:e3:eb:c9:ae:ce:75:b2:f1: b5:66:31:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjMyOTExMC8GA1UEBRMoMjkzQUM2NDA1MzA5REU5NDk1MTY4N0ZFMTcyOTZBRERD RDk1NzJGQzAeFw0yNDExMjEwNjE2MTVaFw0yNDExMjgwNjE2MTVaMBgxFjAUBgNV BAMTDTY3M2VkMDJmLTgzYzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDh/nIpZYgt9j3uBNlCppcnUDP1aFssSYH55McRy1s4zJFOvCbodgkkrGc2UqDA w/1/u9uo8+qRQ2CrSCe/9y/CeHWxcauLRS4pX90MvWeOBycCc2WqYU5C4SbEzcje CcH4WXmnTrlvixDjKWAiiKqBu4wL9aNjMlgMgK9zkUY5Ue28NwweEEjbRLjTDiFF LulnE3kxhRvQNJ1zIQdO6GvR8ywFnW+vOZ4pVQ6TBUJZ9vrbcywMIjDKobYVHvnD ojP9bfCc4VuXcYsUvyKRwh8Ce3gEhEmWwn9oy6cXg1BJZPJI8Q3H+n06EYRNMQtF tKw17eUVYWd43MP8+MpEA76zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDL381Vss 4p7kzehRE8C01AS3X8AwHwYDVR0jBBgwFoAUKTrGQFMJ3pSVFof+Fylq3c2Vcvww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyMzI5L0M3RkFEMzY4QTI2 ODExRUY5RDkxNDExOEM0RjlBRTAyL0tUckdRRk1KM3BTVkZvZi1GeWxxM2MyVmN2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS1RyR1FGTUozcFNWRm9mLUZ5bHEzYzJWY3Z3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy MzI5L0M3RkFEMzY4QTI2ODExRUY5RDkxNDExOEM0RjlBRTAyL0tUckdRRk1KM3BT VkZvZi1GeWxxM2MyVmN2dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACRQGOqa67bXQstVfWdqdirlimY++KoJpZR7CJ690aCGyooLC+4ZeZkw grGGLWL9UTQntewx2R1blE1OzDYg1UJ16zgdPLaVDSijD/gj5NJOno+dCLqnQYEr lgFehQTplCsffTw0Yy8CeQcejzC5m88rOv0+4ToGsDz/FRf7n4e0jjN5Dgg0gBoA w/oeByoCeK7L4Tb+kpgsEa3s+z/bBA+8fG9DRMf00HaD8XDxbi9kYkiX1tmDELfl wtH5N0NbZ00CPPm6+JXvKh5bFfKbxXNweNDgRvmzXy+KwSZh/pKIJBI/esXGJsTV KOP3c9fYng4KjGzj68muznWy8bVmMao= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:54 2024 by rpki-client on console-fra.rpki-client.org