$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft File: kJUWWXx2-jz_qxUgjArpiGY0qgM.mft (raw, json) Hash identifier: U63zBV+fybDbCfVNLO6aL/kWjDev6JMEHre/ne2ZAlE= Subject key identifier: 4D:D9:EC:34:B2:C3:4A:A0:FD:47:51:3C:00:70:3F:CE:C5:3B:3D:E2 Authority key identifier: 90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 Certificate issuer: /CN=A91847A2/serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Certificate serial: 0A46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft Manifest number: 0A3F Signing time: Wed 20 Nov 2024 19:30:36 +0000 Manifest this update: Wed 20 Nov 2024 19:30:36 +0000 Manifest next update: Wed 27 Nov 2024 19:30:36 +0000 Files and hashes: 1: kJUWWXx2-jz_qxUgjArpiGY0qgM.crl (hash: ZwcQpx2CoByoXEFoZiLsWIIz6yUkCdlQLuOGp2WqXa4=) 2: 54EDB8542E1811EBB4E80B1FC4F9AE02.roa (hash: vez5gs+Pt4ya6YLdOueO0QMF6IGNEZr0U1SUVMLX8CY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2630 (0xa46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2/serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Validity Not Before: Nov 20 19:30:36 2024 GMT Not After : Nov 27 19:30:36 2024 GMT Subject: CN=673e38dc-5f0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:07:b9:80:d3:98:db:c2:ee:47:f2:6e:e6:8d: 21:01:fc:81:bf:c3:96:6e:60:62:7c:a1:24:f6:69: ed:f9:45:20:27:57:d5:6d:6e:8e:07:b1:96:fc:b1: c3:49:82:36:dc:9f:38:1b:54:06:b3:5f:d4:02:83: 19:89:63:fa:09:16:68:3d:ff:cb:ad:38:57:60:65: df:38:30:01:23:ba:ea:9f:45:50:a8:63:e9:0f:a0: 38:29:ef:7f:3d:7d:cb:0f:9e:b6:17:26:a3:b7:83: 1d:b7:5f:f5:d0:4a:f6:47:be:6a:7d:51:d5:f3:7d: ce:4a:44:d4:ef:a0:27:d6:2e:4b:7e:f8:36:ee:3e: b4:82:3d:58:b5:c0:2b:92:dd:9c:4b:ad:da:91:9c: 7f:b5:bb:2f:5d:4e:5a:3b:e4:56:70:19:86:f5:2d: 30:62:8e:62:64:83:26:29:95:2b:70:f1:bb:dc:a8: 25:b7:45:31:ba:09:63:d3:16:d5:6c:2b:66:77:49: 2e:9c:56:64:d5:b8:b8:65:ea:50:1b:37:22:42:d7: d8:01:69:e9:ce:bf:2f:ba:76:a7:fc:70:8a:23:5b: f7:03:db:64:d6:e6:0b:4c:ec:f6:4d:d2:53:6b:ee: 78:b1:77:2f:db:60:3d:49:34:77:16:cb:89:06:35: c6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D9:EC:34:B2:C3:4A:A0:FD:47:51:3C:00:70:3F:CE:C5:3B:3D:E2 X509v3 Authority Key Identifier: keyid:90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:9d:ae:b7:c8:af:2d:06:ed:ff:85:07:98:d3:ed:af:17:e8: 2a:09:16:4d:3a:c8:21:07:c4:04:5a:52:6d:7c:e0:3e:f3:b8: b2:44:5d:3f:e6:54:d2:69:cb:bb:64:47:a7:72:2a:1f:d2:40: c7:2c:56:46:89:04:fd:9f:87:43:e2:96:c9:c6:ce:e4:96:a6: b4:af:49:92:bb:c5:fb:f3:67:5d:f9:f9:cd:06:b7:33:8f:37: 5c:46:cc:3e:fa:77:ea:47:3d:47:4c:dc:d1:42:7f:e6:a2:a2: 63:79:33:59:fc:d5:66:c3:b4:0f:e4:22:9e:73:34:e8:f4:07: 84:88:02:e4:8d:2d:29:2a:d0:90:d8:25:e1:34:78:12:2c:6f: ad:1a:79:36:05:0f:64:1b:c5:5f:82:08:c0:ac:83:92:2e:d9: e0:b0:d4:e6:86:1c:a6:75:13:bd:af:94:78:78:0e:63:2d:99: c0:a9:32:11:51:13:b4:98:f9:47:83:a7:fb:3a:dc:9a:7e:22: ba:e5:4c:26:bb:38:0f:b3:90:a3:07:a8:40:9a:fd:af:5a:bc: b0:9e:28:d7:14:3f:5a:f0:16:c8:00:48:68:16:a7:a4:c3:24: 32:2b:1f:fc:99:88:60:68:ed:f5:e3:7b:e0:2c:18:9b:c4:2f: 85:c3:7c:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkwOTUxNjU5N0M3NkZBM0NGRkFCMTUyMDhDMEFFOTg4 NjYzNEFBMDMwHhcNMjQxMTIwMTkzMDM2WhcNMjQxMTI3MTkzMDM2WjAYMRYwFAYD VQQDEw02NzNlMzhkYy01ZjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Ae5gNOY28LuR/Ju5o0hAfyBv8OWbmBifKEk9mnt+UUgJ1fVbW6OB7GW/LHD SYI23J84G1QGs1/UAoMZiWP6CRZoPf/LrThXYGXfODABI7rqn0VQqGPpD6A4Ke9/ PX3LD562Fyajt4Mdt1/10Er2R75qfVHV833OSkTU76An1i5Lfvg27j60gj1YtcAr kt2cS63akZx/tbsvXU5aO+RWcBmG9S0wYo5iZIMmKZUrcPG73Kglt0Uxuglj0xbV bCtmd0kunFZk1bi4ZepQGzciQtfYAWnpzr8vunan/HCKI1v3A9tk1uYLTOz2TdJT a+54sXcv22A9STR3FsuJBjXGbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3Z7DSy w0qg/UdRPABwP87FOz3iMB8GA1UdIwQYMBaAFJCVFll8dvo8/6sVIIwK6YhmNKoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9BRUQzRDM1RTU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1qel9xeFVnakFycGlHWTBx Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tKVVdXWHgyLWp6X3F4VWdqQXJwaUdZMHFnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9BRUQzRDM1RTU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1q el9xeFVnakFycGlHWTBxZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrna63yK8tBu3/hQeY0+2vF+gqCRZNOsghB8QEWlJtfOA+87iyRF0/ 5lTSacu7ZEenciof0kDHLFZGiQT9n4dD4pbJxs7klqa0r0mSu8X782dd+fnNBrcz jzdcRsw++nfqRz1HTNzRQn/moqJjeTNZ/NVmw7QP5CKeczTo9AeEiALkjS0pKtCQ 2CXhNHgSLG+tGnk2BQ9kG8VfggjArIOSLtngsNTmhhymdRO9r5R4eA5jLZnAqTIR URO0mPlHg6f7OtyafiK65UwmuzgPs5CjB6hAmv2vWrywnijXFD9a8BbIAEhoFqek wyQyKx/8mYhgaO3143vgLBibxC+Fw3x6 -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:54 2024 by rpki-client on console-ams.rpki-client.org