$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: 2T6S6YQOH7iuzOcqVtK5psevSBHULjBklPlWx3Y8Ar0= Subject key identifier: 18:D2:5E:97:F9:26:4B:99:1E:0E:2B:FE:EF:93:46:05:13:CB:37:4B Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 344F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 343E Signing time: Fri 22 Nov 2024 14:23:27 +0000 Manifest this update: Fri 22 Nov 2024 14:23:27 +0000 Manifest next update: Fri 29 Nov 2024 14:23:27 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: 0n25a5LZXR/sjdgzfNQ4X+kwqoH+67bhLWXHXQJvzww=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: nOTO05trzCD6uEEv4FInP/xVHgXMSyk7YCzU2yFeaPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13391 (0x344f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Nov 22 14:23:27 2024 GMT Not After : Nov 29 14:23:27 2024 GMT Subject: CN=674093df-6876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d5:a4:c5:33:69:4e:83:d7:6f:4a:ea:9e:35: 67:53:f5:30:32:17:37:be:c5:79:e1:4a:16:1e:de: 68:f3:43:b8:1d:bc:4f:bf:1d:18:f7:bc:0d:82:c4: 69:58:6d:4b:6c:fd:ab:8a:93:49:a5:99:0f:16:f8: 81:98:55:4d:77:ed:b7:72:22:67:9e:11:76:f5:f0: 98:0e:c7:57:9f:ca:59:c4:ae:96:3d:a6:25:6a:30: 32:b2:de:ba:3c:04:2e:67:75:a1:d5:d7:44:1a:c3: 9d:50:3b:98:35:92:77:a9:de:36:cf:a0:d2:de:4a: 62:fc:c2:00:9a:f3:20:78:70:0a:ca:1a:01:1c:0c: a9:10:f8:97:7c:00:a1:bd:a7:cc:34:02:89:f5:81: 2a:19:5b:a0:1b:bf:7c:0f:11:60:e5:6f:1e:5d:51: 1a:70:05:67:38:08:cf:4e:93:1e:62:56:65:42:53: 41:a6:48:04:58:b6:89:b3:11:d3:0b:a9:4e:5b:6b: f4:01:54:18:c6:50:a9:54:38:fc:84:3c:60:25:69: b7:f6:86:ff:e7:bd:6c:6d:6c:56:3f:05:58:5f:63: 61:d2:7a:05:82:4c:cf:8b:ff:25:ca:70:a5:da:0a: 86:03:e4:8f:2c:a2:74:4e:96:30:95:74:af:36:1a: bc:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D2:5E:97:F9:26:4B:99:1E:0E:2B:FE:EF:93:46:05:13:CB:37:4B X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:bb:00:51:2d:9b:4a:f8:6f:ed:00:ef:46:01:27:29:5a:26: 81:21:ee:b0:c2:3d:86:be:5d:21:63:0e:ac:67:21:fc:2e:4e: f4:9c:83:1a:9b:23:38:63:4a:e9:46:1c:ae:19:51:94:60:a7: ae:43:18:57:65:5d:84:8f:a5:95:62:1a:07:c7:54:cb:4d:fc: 85:94:b4:a0:fb:1f:90:45:6a:a9:1e:e1:df:96:04:b7:24:64: 53:55:0e:55:5e:83:0f:ed:cf:40:dd:b7:09:23:bc:96:89:d6: cc:25:fb:1f:7f:62:43:77:a8:ab:86:e0:8f:4e:39:74:96:cd: f3:71:93:69:6a:87:31:c6:ad:32:2f:cf:85:30:78:52:31:f3: 62:68:14:61:8a:7c:a6:1c:27:2d:5a:06:24:0b:1c:6a:33:82: a3:1a:2f:be:e6:b7:a9:33:2f:79:0b:8f:b1:0b:4a:41:ca:96: 5f:8e:61:21:8f:54:14:7a:4f:10:b2:27:30:79:80:9f:6b:61: 75:46:9f:dc:4e:d0:89:f6:a3:7a:83:f0:21:56:b1:bf:41:db: bd:ba:7e:36:ff:80:cc:eb:de:23:1d:3a:6c:fa:a6:3b:54:28: 15:aa:fc:91:45:93:95:43:cc:53:3d:2d:d2:6e:e1:d2:2a:71: 94:ea:a6:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjQxMTIyMTQyMzI3WhcNMjQxMTI5MTQyMzI3WjAYMRYwFAYD VQQDEw02NzQwOTNkZi02ODc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdWkxTNpToPXb0rqnjVnU/UwMhc3vsV54UoWHt5o80O4HbxPvx0Y97wNgsRp WG1LbP2ripNJpZkPFviBmFVNd+23ciJnnhF29fCYDsdXn8pZxK6WPaYlajAyst66 PAQuZ3Wh1ddEGsOdUDuYNZJ3qd42z6DS3kpi/MIAmvMgeHAKyhoBHAypEPiXfACh vafMNAKJ9YEqGVugG798DxFg5W8eXVEacAVnOAjPTpMeYlZlQlNBpkgEWLaJsxHT C6lOW2v0AVQYxlCpVDj8hDxgJWm39ob/571sbWxWPwVYX2Nh0noFgkzPi/8lynCl 2gqGA+SPLKJ0TpYwlXSvNhq81wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjSXpf5 JkuZHg4r/u+TRgUTyzdLMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBuwBRLZtK+G/tAO9GAScpWiaBIe6wwj2Gvl0hYw6sZyH8Lk70nIMa myM4Y0rpRhyuGVGUYKeuQxhXZV2Ej6WVYhoHx1TLTfyFlLSg+x+QRWqpHuHflgS3 JGRTVQ5VXoMP7c9A3bcJI7yWidbMJfsff2JDd6irhuCPTjl0ls3zcZNpaocxxq0y L8+FMHhSMfNiaBRhinymHCctWgYkCxxqM4KjGi++5repMy95C4+xC0pBypZfjmEh j1QUek8QsicweYCfa2F1Rp/cTtCJ9qN6g/AhVrG/Qdu9un42/4DM694jHTps+qY7 VCgVqvyRRZOVQ8xTPS3SbuHSKnGU6qaN -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:38 2024 by rpki-client on console-fra.rpki-client.org