$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft File: kXkVGVyXGrRB_d7eb_PNNy51TLU.mft (raw, json) Hash identifier: C2SQZv9/zbVIF67KkvCR4CeJVeoPbfwM8dKHRvLxhLQ= Subject key identifier: 1B:42:71:90:77:B6:0A:EE:11:D5:40:59:9B:B7:C9:70:17:A5:DE:4F Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 05D0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft Manifest number: 05CB Signing time: Wed 20 Nov 2024 22:18:55 +0000 Manifest this update: Wed 20 Nov 2024 22:18:55 +0000 Manifest next update: Wed 27 Nov 2024 22:18:55 +0000 Files and hashes: 1: kXkVGVyXGrRB_d7eb_PNNy51TLU.crl (hash: SCTuphZzKXjOD7krD/Plawl5J6Aqq0+uFFwcZfP+b4U=) 2: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (hash: GBv0Bwrza6PzeZcBlfUxDT4tM9xuaZtoH+l5x8EcaKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1488 (0x5d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: Nov 20 22:18:55 2024 GMT Not After : Nov 27 22:18:55 2024 GMT Subject: CN=673e604f-b7b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8f:d7:b3:82:92:76:5f:cc:ab:73:e0:77:4c: 93:c2:2d:c3:63:b9:aa:c6:1a:05:e1:2f:5e:28:29: ac:49:0c:85:f3:dc:39:f1:e7:b7:83:ba:5b:90:a6: 35:cd:7a:f2:d7:40:6a:52:0d:e2:9e:79:60:b9:79: 50:3c:a1:9f:34:d8:3c:8d:08:13:f5:45:11:f2:65: 1a:26:4e:07:ec:d0:3b:3e:27:1e:fd:5e:07:00:97: af:74:06:72:ca:b9:bd:0b:01:e8:a6:90:17:61:e2: 0e:b9:8e:62:bb:b8:aa:1c:da:04:38:41:3f:04:d0: 52:9c:eb:df:96:1f:66:13:43:a1:16:0e:b8:aa:45: 96:68:08:89:88:fa:e6:c9:85:e7:c3:2c:17:f5:fa: 0a:f9:cb:5e:ef:af:68:2c:1e:d6:0f:71:c6:60:3c: 0b:8b:92:56:da:99:7a:67:fe:bb:dd:ce:01:99:15: 3a:60:cb:33:5e:73:fe:98:43:d7:a3:69:46:f2:3e: 53:71:52:d4:44:68:2c:37:34:f0:23:59:f2:26:67: 96:4a:25:47:0f:fe:e2:e9:04:f3:1f:69:f1:29:c9: dc:28:0d:df:8b:05:56:8e:64:30:ff:27:cb:70:89: 60:97:57:26:a5:12:c7:f2:06:83:28:ad:37:5d:76: 20:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:42:71:90:77:B6:0A:EE:11:D5:40:59:9B:B7:C9:70:17:A5:DE:4F X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:d9:15:98:20:b5:5c:67:c4:8c:a4:28:b3:32:ef:ff:b6:55: 81:8c:14:88:0a:63:5e:43:63:01:27:58:3f:32:e1:ad:d5:2f: 01:c8:13:ac:0d:33:8e:e4:86:eb:48:f0:ff:c0:45:4c:00:82: e0:40:4f:5b:c1:16:95:9d:9f:7b:98:1c:92:46:14:0a:72:09: 9d:b9:e7:d8:b5:a4:01:97:72:94:d8:d3:73:cc:35:0e:fc:6a: 77:61:81:9b:7e:66:be:e4:02:2a:34:d3:06:cc:5d:bb:70:1e: be:77:f8:ff:ec:ff:05:76:21:77:02:76:ab:75:36:1a:07:12: f3:b6:18:f4:ec:94:09:db:ac:e3:52:e5:40:55:0f:3b:6c:17: e4:6f:c3:52:c8:9f:f1:8b:6b:75:5e:bb:91:6e:66:22:be:c2: ac:bd:8c:29:0c:de:76:39:d5:1f:9b:4b:ff:d1:d3:f3:a5:cc: 7c:c5:94:3d:f2:4c:49:eb:c8:64:b0:6d:7c:58:b9:6b:b6:37: 01:40:69:47:ce:69:12:f3:d6:8a:9b:d9:c4:ae:a4:80:ee:16: aa:f9:c4:27:db:3c:06:8f:54:76:8e:3f:21:61:be:c2:63:6e: c0:2b:0b:e1:03:ce:bd:9e:0c:78:a8:45:a9:a3:f2:77:6b:48: f8:62:b3:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjQxMTIwMjIxODU1WhcNMjQxMTI3MjIxODU1WjAYMRYwFAYD VQQDEw02NzNlNjA0Zi1iN2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyo/Xs4KSdl/Mq3Pgd0yTwi3DY7mqxhoF4S9eKCmsSQyF89w58ee3g7pbkKY1 zXry10BqUg3innlguXlQPKGfNNg8jQgT9UUR8mUaJk4H7NA7Pice/V4HAJevdAZy yrm9CwHoppAXYeIOuY5iu7iqHNoEOEE/BNBSnOvflh9mE0OhFg64qkWWaAiJiPrm yYXnwywX9foK+cte769oLB7WD3HGYDwLi5JW2pl6Z/673c4BmRU6YMszXnP+mEPX o2lG8j5TcVLURGgsNzTwI1nyJmeWSiVHD/7i6QTzH2nxKcncKA3fiwVWjmQw/yfL cIlgl1cmpRLH8gaDKK03XXYg2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtCcZB3 tgruEdVAWZu3yXAXpd5PMB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS82MzQ3Mzc1Njk4MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdy UkJfZDdlYl9QTk55NTFUTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN2RWYILVcZ8SMpCizMu//tlWBjBSICmNeQ2MBJ1g/MuGt1S8ByBOs DTOO5IbrSPD/wEVMAILgQE9bwRaVnZ97mBySRhQKcgmduefYtaQBl3KU2NNzzDUO /Gp3YYGbfma+5AIqNNMGzF27cB6+d/j/7P8FdiF3AnardTYaBxLzthj07JQJ26zj UuVAVQ87bBfkb8NSyJ/xi2t1XruRbmYivsKsvYwpDN52OdUfm0v/0dPzpcx8xZQ9 8kxJ68hksG18WLlrtjcBQGlHzmkS89aKm9nErqSA7haq+cQn2zwGj1R2jj8hYb7C Y27AKwvhA869ngx4qEWpo/J3a0j4YrPK -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:45 2024 by rpki-client on console-fra.rpki-client.org