$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json) Hash identifier: L8Yeo8O4Fv8oDiTj2VPzKHH6KhnMDFgZ50woQXqv3ZU= Subject key identifier: 12:F9:E8:52:6E:01:99:8A:DE:3C:53:42:B8:47:B6:F8:66:13:3C:0B Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Certificate serial: 0A1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft Manifest number: 0A04 Signing time: Fri 22 Nov 2024 19:37:44 +0000 Manifest this update: Fri 22 Nov 2024 19:37:44 +0000 Manifest next update: Fri 29 Nov 2024 19:37:44 +0000 Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: SAJNpGQCTqR4yAg61p/jI0mxSE76EX2sH2aOts/GX6g=) 2: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: DeSX5mR90qF9IRdX2EyXW+cFduwBwR++LaECrmC9RqI=) 3: DE137C362C7811EC97C8D979C4F9AE02.roa (hash: 1JrXRKrsJBaJ+/4+ml3Sz+iqG9fcskoIvUEpTyCTJxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:37:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2590 (0xa1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Validity Not Before: Nov 22 19:37:44 2024 GMT Not After : Nov 29 19:37:44 2024 GMT Subject: CN=6740dd88-d4f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:24:86:0a:02:4d:1f:77:44:0a:8c:dd:f1:08: 21:4e:d1:aa:70:51:76:8d:fe:1c:27:e4:dc:42:66: 58:75:49:2d:99:01:63:be:c2:61:89:33:db:6f:fe: 88:98:22:83:72:ab:b7:ff:00:4a:9e:82:bc:44:28: 9c:dd:75:c5:f9:71:95:5d:f8:92:d1:dd:0b:49:70: b7:43:39:16:b4:57:68:7e:1f:ab:26:a9:29:77:bc: bf:30:a8:2a:d2:17:f1:92:6d:fb:9b:ef:05:c3:2a: 1a:17:fe:62:23:11:e9:4c:2d:09:8d:89:5d:a4:dc: 03:a8:48:8e:31:56:65:a4:cb:d0:d4:55:0d:4c:c9: 98:26:e9:f8:91:1a:47:44:95:c2:e8:ea:be:a2:ed: f0:a9:8e:a2:6f:0c:55:30:c4:a1:a6:ac:0a:b3:60: fe:e1:de:82:35:70:d1:9a:38:ce:a6:f2:4b:28:a9: 02:81:03:1e:ce:3a:c7:39:82:e0:a6:9a:b2:08:68: 72:2a:2f:2c:80:e1:ec:57:cc:3f:e1:f5:cc:66:20: 7a:a9:53:bd:da:bf:8e:b1:4c:a1:2d:a2:d8:49:4c: 8c:71:de:76:7f:4e:4c:57:f2:66:27:79:fe:70:51: 9c:c9:ed:ec:77:19:b7:ae:87:d4:34:ae:1c:5d:3e: 4b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F9:E8:52:6E:01:99:8A:DE:3C:53:42:B8:47:B6:F8:66:13:3C:0B X509v3 Authority Key Identifier: keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:3d:d9:92:e8:d0:75:59:e5:46:a0:71:49:06:f9:6c:98:c8: b8:f6:62:93:85:af:2c:ac:6a:10:94:70:ad:c3:64:1d:c2:c4: b4:e9:d1:6c:f6:2f:19:85:c0:30:cb:22:6a:a3:af:92:47:91: 91:90:c2:e4:3d:cd:19:db:63:be:08:be:79:0a:b3:4e:cf:b8: ca:03:14:50:28:f8:77:f2:97:e0:80:24:77:b8:ff:e4:e8:66: 80:09:33:68:e6:88:cf:60:bc:8c:cf:6b:01:bf:b0:94:65:06: 6a:cb:c4:e5:ef:01:c2:f7:20:0d:7d:45:28:22:a0:5d:9e:51: 60:5e:0f:81:6f:cd:43:b9:49:fd:e1:17:10:1b:06:69:a5:dd: d6:6b:72:10:7b:6f:0d:39:9c:fc:94:87:49:2b:b5:5d:91:22: 70:41:73:0e:a3:8c:1c:d5:a6:d0:cd:73:d3:33:e5:1f:99:e0: 68:96:a3:d9:75:13:51:27:21:e9:3c:f5:40:46:8b:07:22:dd: 78:fa:b3:2f:01:bd:82:7f:26:77:45:cd:6f:01:e4:c8:d5:38: f1:dd:4b:74:7d:8f:a6:45:c2:41:d9:c5:54:77:06:d3:6a:0d: 93:38:72:e9:6e:7e:e5:6e:bf:0e:4a:f6:19:51:5b:34:95:b6: bf:b8:41:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0OEMxMTAvBgNVBAUTKDI4OTYyNEIyRTAwQjc3NEQzRDM5MEY1QTBBRDEwQjVC QzM1RjU2RDgwHhcNMjQxMTIyMTkzNzQ0WhcNMjQxMTI5MTkzNzQ0WjAYMRYwFAYD VQQDEw02NzQwZGQ4OC1kNGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsySGCgJNH3dECozd8QghTtGqcFF2jf4cJ+TcQmZYdUktmQFjvsJhiTPbb/6I mCKDcqu3/wBKnoK8RCic3XXF+XGVXfiS0d0LSXC3QzkWtFdofh+rJqkpd7y/MKgq 0hfxkm37m+8FwyoaF/5iIxHpTC0JjYldpNwDqEiOMVZlpMvQ1FUNTMmYJun4kRpH RJXC6Oq+ou3wqY6ibwxVMMShpqwKs2D+4d6CNXDRmjjOpvJLKKkCgQMezjrHOYLg ppqyCGhyKi8sgOHsV8w/4fXMZiB6qVO92r+OsUyhLaLYSUyMcd52f05MV/JmJ3n+ cFGcye3sdxm3rofUNK4cXT5LaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBL56FJu AZmK3jxTQrhHtvhmEzwLMB8GA1UdIwQYMBaAFCiWJLLgC3dNPTkPWgrRC1vDX1bY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ4Qy9BNzREQTc3MjY0 QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQwMDlPUTlhQ3RFTFc4TmZW dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKWWtzdUFMZDAwOU9ROWFDdEVMVzhOZlZ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ4Qy9BNzREQTc3MjY0QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQw MDlPUTlhQ3RFTFc4TmZWdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBPdmS6NB1WeVGoHFJBvlsmMi49mKTha8srGoQlHCtw2QdwsS06dFs 9i8ZhcAwyyJqo6+SR5GRkMLkPc0Z22O+CL55CrNOz7jKAxRQKPh38pfggCR3uP/k 6GaACTNo5ojPYLyMz2sBv7CUZQZqy8Tl7wHC9yANfUUoIqBdnlFgXg+Bb81DuUn9 4RcQGwZppd3Wa3IQe28NOZz8lIdJK7VdkSJwQXMOo4wc1abQzXPTM+UfmeBolqPZ dRNRJyHpPPVARosHIt14+rMvAb2CfyZ3Rc1vAeTI1Tjx3Ut0fY+mRcJB2cVUdwbT ag2TOHLpbn7lbr8OSvYZUVs0lba/uEFv -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:30 2024 by rpki-client on console-fra.rpki-client.org