$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: wtw2SxiJFEijtDpveh2cT5l6OqR8uThMV5B4vP9zJEg= Subject key identifier: E5:27:73:C3:7B:94:FB:D4:0E:80:05:F6:DF:4A:E7:88:D1:50:F2:F5 Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: 09 Signing time: Wed 23 Oct 2024 06:48:46 +0000 Manifest this update: Wed 23 Oct 2024 06:48:46 +0000 Manifest next update: Wed 30 Oct 2024 06:48:46 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: +/RtvM1TfotZbLSuLVYi289fm1z8WGqzK5kP441/0as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: Oct 23 06:48:46 2024 GMT Not After : Oct 30 06:48:46 2024 GMT Subject: CN=67189c4e-8cd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:80:7b:ba:fc:71:2a:a8:c5:e2:25:f4:1c:fa: 62:f5:d2:2b:07:ae:31:a5:bf:cf:4a:7b:9a:1c:93: e3:7c:1e:cd:19:75:3e:56:2f:19:fd:8c:2b:85:75: 31:c1:77:ed:3a:c4:b1:c8:b9:c2:97:9b:11:3a:66: 18:1d:fd:d0:ef:c4:dd:15:3d:43:57:af:c7:04:6c: 4a:8f:0c:5f:17:ff:f9:71:e0:81:84:62:80:d8:61: 47:0b:5e:b1:31:89:92:e0:ad:3d:93:20:26:e1:7f: fe:81:f5:fa:9e:23:82:48:67:e7:08:43:30:6c:25: 98:cc:37:84:45:19:7a:7d:ac:03:80:65:6f:79:89: e7:a9:c5:49:03:d5:40:67:ad:0e:7c:77:d5:2b:48: b0:e5:af:0c:f2:8d:95:49:e5:f3:0b:08:65:43:ee: 57:1d:98:e8:94:91:8c:9d:a4:7b:04:0c:d2:26:b2: d5:f1:39:3b:33:31:3f:be:e5:7b:14:b3:19:88:bc: dd:e8:4a:ac:0e:45:e3:62:66:ce:c2:0f:5c:60:e8: 3b:f1:2e:4f:2d:5b:19:5b:52:c5:93:81:62:b2:c7: 04:ed:d7:20:a4:e5:61:b7:3a:ae:ac:8d:d0:82:6c: 33:08:0c:31:ed:37:ff:b6:f5:61:16:6f:1b:cc:0d: fc:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:27:73:C3:7B:94:FB:D4:0E:80:05:F6:DF:4A:E7:88:D1:50:F2:F5 X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:c6:38:37:54:d8:4f:7d:be:71:4c:3b:12:40:e5:6b:9f:b8: be:b2:97:39:65:ac:96:e8:1e:a1:9d:28:e6:6d:2c:e6:8a:cd: 5e:a2:e8:d1:4d:39:aa:3f:5a:98:a6:83:a0:0e:06:54:af:13: 88:8a:a8:73:af:75:41:71:91:97:0f:0d:db:c4:86:3d:54:a2: 10:6b:8f:9b:a2:7f:e7:e5:a6:32:b3:8f:9c:cc:6b:6b:1c:c7: cd:7d:98:3c:47:7f:30:66:2e:9c:17:95:0c:fc:58:4b:eb:48: 0e:61:96:b8:08:29:ea:be:bf:ce:c9:55:c3:ae:bf:38:98:26: 5a:fd:7e:36:24:73:35:01:f7:82:69:dd:a4:11:e8:72:08:42: ac:6f:f5:42:22:f5:68:79:2f:db:62:eb:63:0e:46:87:c7:cb: b5:45:9e:11:a2:5e:c8:38:b0:98:9e:c0:5d:20:7d:b5:aa:53: d7:21:a1:6e:90:e7:96:ae:c4:62:27:ae:33:2f:66:18:1b:4e: 54:9f:b7:01:19:b7:b0:6c:2d:af:af:ab:bc:56:0f:5c:1d:90: af:f1:44:03:58:18:83:ba:5c:7b:8f:ef:fe:1b:af:10:96:27: 42:b1:d7:5f:53:e9:50:82:d4:56:9e:8c:c8:e8:de:a9:90:01: 46:45:d4:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTFDRjExMC8GA1UEBRMoMjlBMDA5MDEzRjc0MzFERTM2OUMwMENBQjU0NzE2Q0E5 MzQ1MjZEMzAeFw0yNDEwMjMwNjQ4NDZaFw0yNDEwMzAwNjQ4NDZaMBgxFjAUBgNV BAMTDTY3MTg5YzRlLThjZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsgHu6/HEqqMXiJfQc+mL10isHrjGlv89Ke5ock+N8Hs0ZdT5WLxn9jCuFdTHB d+06xLHIucKXmxE6Zhgd/dDvxN0VPUNXr8cEbEqPDF8X//lx4IGEYoDYYUcLXrEx iZLgrT2TICbhf/6B9fqeI4JIZ+cIQzBsJZjMN4RFGXp9rAOAZW95ieepxUkD1UBn rQ58d9UrSLDlrwzyjZVJ5fMLCGVD7lcdmOiUkYydpHsEDNImstXxOTszMT++5XsU sxmIvN3oSqwOReNiZs7CD1xg6DvxLk8tWxlbUsWTgWKyxwTt1yCk5WG3Oq6sjdCC bDMIDDHtN/+29WEWbxvMDfz1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5Sdzw3uU +9QOgAX230rniNFQ8vUwHwYDVR0jBBgwFoAUKaAJAT90Md42nADKtUcWypNFJtMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MUNGLzMwNDM2MzVDODZE NzExRUY4NTRERDQ3QkM0RjlBRTAyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2FBSkFUOTBNZDQybkFES3RVY1d5cE5GSnRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MUNGLzMwNDM2MzVDODZENzExRUY4NTRERDQ3QkM0RjlBRTAyL0thQUpBVDkwTWQ0 Mm5BREt0VWNXeXBORkp0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFLGODdU2E99vnFMOxJA5WufuL6ylzllrJboHqGdKOZtLOaKzV6i6NFN Oao/Wpimg6AOBlSvE4iKqHOvdUFxkZcPDdvEhj1UohBrj5uif+flpjKzj5zMa2sc x819mDxHfzBmLpwXlQz8WEvrSA5hlrgIKeq+v87JVcOuvziYJlr9fjYkczUB94Jp 3aQR6HIIQqxv9UIi9Wh5L9ti62MORofHy7VFnhGiXsg4sJiewF0gfbWqU9choW6Q 55auxGInrjMvZhgbTlSftwEZt7BsLa+vq7xWD1wdkK/xRANYGIO6XHuP7/4brxCW J0Kx119T6VCC1FaejMjo3qmQAUZF1IY= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:20 2024 by rpki-client on console-fra.rpki-client.org