$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: xehjWdU36l7MNk2RjXaFCwowNmZRvooDeu9AJQ1j3fo= Subject key identifier: 6D:6C:DD:AF:D3:E0:C7:2F:93:DF:CE:31:4B:C2:1B:63:BB:C3:13:4B Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: 18 Signing time: Thu 21 Nov 2024 06:00:21 +0000 Manifest this update: Thu 21 Nov 2024 06:00:20 +0000 Manifest next update: Thu 28 Nov 2024 06:00:20 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: mZnKv53zIm57aq8eG0j1ufG9Uv53IHH8lTFuzhUHLww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: Nov 21 06:00:20 2024 GMT Not After : Nov 28 06:00:20 2024 GMT Subject: CN=673ecc75-b854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:bf:24:2d:0d:62:bd:9c:3c:d6:d0:0c:34:f7: 93:f6:54:8a:11:24:e4:29:1d:8b:82:a0:48:fc:66: 99:fe:56:01:ad:37:61:7a:a4:ad:84:8c:5e:e7:e5: ff:99:fa:9a:00:89:32:cf:c0:27:1b:ae:0a:bb:a6: e1:e2:39:46:3a:e4:db:92:04:7c:2f:f7:67:c6:aa: a0:f8:0a:47:71:83:3e:a5:12:6f:e8:b6:e1:0c:73: eb:44:b1:01:7d:6c:91:08:94:05:b1:7c:0c:48:ea: cc:ee:e6:fc:a6:20:75:aa:90:4c:c3:05:fa:c1:22: 48:59:89:fe:c0:c1:5d:45:11:89:53:0c:38:06:e5: 89:9b:8e:ec:17:44:23:cb:7c:b2:ed:bc:59:20:fd: f2:76:12:d9:85:e3:c0:ba:68:b4:19:c6:5f:d8:00: 93:e6:b7:f4:2f:f6:93:20:0e:d9:30:b6:22:6e:27: 95:bb:63:4a:c6:62:bf:01:2f:26:87:31:fe:ca:ca: 9e:b7:c1:ff:20:3b:c3:a4:b8:98:ca:c1:8a:27:f7: 76:03:8f:00:dd:f3:3c:09:10:91:51:9f:9d:ab:15: e0:26:b6:c3:2f:19:63:d1:7e:63:07:b3:f4:24:fd: 3e:51:0e:2d:8d:3e:2a:1b:33:71:e2:43:23:bb:01: b6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:6C:DD:AF:D3:E0:C7:2F:93:DF:CE:31:4B:C2:1B:63:BB:C3:13:4B X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:12:c8:09:fd:54:cb:ee:07:13:fd:1e:3b:4f:1c:e8:40:e5: d6:48:8f:6f:53:e8:9d:c4:9b:78:57:d1:b8:b6:86:07:2f:e5: 76:72:3b:f9:9a:12:a0:0f:d0:78:48:3d:b1:a0:8e:a0:b7:ad: f9:3a:0f:62:0e:69:ae:19:df:13:b4:10:32:f7:12:57:79:71: 33:c9:10:fa:cf:17:a6:2d:a1:7c:f6:d4:3a:e9:31:ba:ee:86: 27:c1:5b:1d:1d:64:48:a9:1a:3c:7d:06:ab:ac:2c:5b:78:8f: 4a:6f:49:19:61:c8:bc:e8:d7:f3:8f:1a:80:1d:e2:31:72:f1: c0:38:55:c5:23:5e:ef:8b:19:d4:3e:7d:1f:dc:99:97:ce:74: 27:3c:45:46:5e:ab:80:98:e4:dd:d9:82:61:6f:3e:d0:73:39: 6e:77:37:f3:c2:37:72:ed:52:e9:75:5c:80:db:e1:8b:28:69: ec:f6:d3:64:bf:1d:f2:ca:58:c6:54:de:a1:56:6d:2c:2f:af: d9:96:10:ab:34:88:04:09:16:c9:58:56:a3:1b:74:25:79:2d: e1:e5:42:11:d2:27:9a:f5:a7:e6:3c:0f:3e:ea:29:93:4e:81: 37:fc:86:f7:03:12:4b:6f:6b:03:ca:7e:09:31:e1:69:9d:95: e5:37:18:f3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTFDRjExMC8GA1UEBRMoMjlBMDA5MDEzRjc0MzFERTM2OUMwMENBQjU0NzE2Q0E5 MzQ1MjZEMzAeFw0yNDExMjEwNjAwMjBaFw0yNDExMjgwNjAwMjBaMBgxFjAUBgNV BAMTDTY3M2VjYzc1LWI4NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdvyQtDWK9nDzW0Aw095P2VIoRJOQpHYuCoEj8Zpn+VgGtN2F6pK2EjF7n5f+Z +poAiTLPwCcbrgq7puHiOUY65NuSBHwv92fGqqD4Ckdxgz6lEm/otuEMc+tEsQF9 bJEIlAWxfAxI6szu5vymIHWqkEzDBfrBIkhZif7AwV1FEYlTDDgG5YmbjuwXRCPL fLLtvFkg/fJ2EtmF48C6aLQZxl/YAJPmt/Qv9pMgDtkwtiJuJ5W7Y0rGYr8BLyaH Mf7Kyp63wf8gO8OkuJjKwYon93YDjwDd8zwJEJFRn52rFeAmtsMvGWPRfmMHs/Qk /T5RDi2NPiobM3HiQyO7AbbtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbWzdr9Pg xy+T384xS8IbY7vDE0swHwYDVR0jBBgwFoAUKaAJAT90Md42nADKtUcWypNFJtMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MUNGLzMwNDM2MzVDODZE NzExRUY4NTRERDQ3QkM0RjlBRTAyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2FBSkFUOTBNZDQybkFES3RVY1d5cE5GSnRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MUNGLzMwNDM2MzVDODZENzExRUY4NTRERDQ3QkM0RjlBRTAyL0thQUpBVDkwTWQ0 Mm5BREt0VWNXeXBORkp0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG0SyAn9VMvuBxP9HjtPHOhA5dZIj29T6J3Em3hX0bi2hgcv5XZyO/ma EqAP0HhIPbGgjqC3rfk6D2IOaa4Z3xO0EDL3Eld5cTPJEPrPF6YtoXz21DrpMbru hifBWx0dZEipGjx9BqusLFt4j0pvSRlhyLzo1/OPGoAd4jFy8cA4VcUjXu+LGdQ+ fR/cmZfOdCc8RUZeq4CY5N3ZgmFvPtBzOW53N/PCN3LtUul1XIDb4Ysoaez202S/ HfLKWMZU3qFWbSwvr9mWEKs0iAQJFslYVqMbdCV5LeHlQhHSJ5r1p+Y8Dz7qKZNO gTf8hvcDEktvawPKfgkx4WmdleU3GPM= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:05 2024 by rpki-client on console-ams.rpki-client.org