$ rpki-client -vvf rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft File: KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft (raw, json) Hash identifier: 3IC8NQ0xvqF1HKVR+oEPObeibe2nNqLhFka4MRkLPfo= Subject key identifier: 9E:4C:3E:1E:1F:7C:68:B0:23:70:C0:B4:68:24:1C:A0:D3:93:7C:6D Authority key identifier: 2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31 Certificate issuer: /CN=A9190960/serialNumber=2A900734C5E3B93ACA9470E3F5ADDADC2F215B31 Certificate serial: 065B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft Manifest number: 0652 Signing time: Wed 20 Nov 2024 22:00:20 +0000 Manifest this update: Wed 20 Nov 2024 22:00:20 +0000 Manifest next update: Wed 27 Nov 2024 22:00:20 +0000 Files and hashes: 1: KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl (hash: wbxMUE9BKm5NAMeob1qtjNy9NS6X4K3hk8jQDbB1Nag=) 2: ED534930C8B511ED9A1D817EC4F9AE02.roa (hash: cWc+J1TIBwheicFkr/uWy0LuYQxsGfxktq1Xam8BBXI=) 3: 9398F508619611EBA485B448C4F9AE02.roa (hash: Nd8Cn8Kc0/NAG96VlpahXIFBzBlttK0FrKVnW80S2cI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190960/serialNumber=2A900734C5E3B93ACA9470E3F5ADDADC2F215B31 Validity Not Before: Nov 20 22:00:20 2024 GMT Not After : Nov 27 22:00:20 2024 GMT Subject: CN=673e5bf4-8f7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:76:64:cd:74:99:4e:ee:22:f9:39:6f:e7:d9: ed:e2:48:fb:59:70:58:f3:ea:63:3d:8b:9d:00:34: ca:df:69:71:02:4f:98:17:8e:f7:23:cd:fa:8e:ed: 65:90:e8:dd:4f:0e:15:ea:e9:f6:db:0d:6e:91:4b: c0:80:ef:4b:09:76:42:c9:a2:9e:23:a2:c6:31:60: 12:d9:50:f3:be:5f:28:a1:2e:c0:d9:83:54:c6:ac: f4:94:97:05:6d:37:18:aa:20:cb:18:bf:41:73:0a: c7:2a:8b:2f:5e:c1:29:86:a5:47:1d:bc:01:70:52: 63:d0:a3:79:1e:d1:e1:c9:93:f5:0e:e3:a8:69:9c: 4b:66:b4:e7:56:fa:c6:9f:e3:d9:44:01:5c:7e:19: 9e:59:a7:c6:e0:6e:46:e1:4a:2c:6c:9e:33:24:22: 61:40:e7:91:89:03:fb:28:32:20:18:64:ab:b7:87: ad:a9:31:93:f8:87:db:18:7a:82:a7:f5:17:fc:d2: 31:51:b5:32:77:03:5e:2d:6f:0c:ab:d2:2b:0b:f5: 18:31:82:48:b1:14:1a:d0:1a:bb:ff:0c:b7:be:ba: 6c:b2:9e:12:d2:0e:f4:3d:9c:5a:b7:e8:fa:9d:96: c3:1a:cd:97:a8:e8:1e:9a:14:7c:21:ac:c4:81:b0: c2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:4C:3E:1E:1F:7C:68:B0:23:70:C0:B4:68:24:1C:A0:D3:93:7C:6D X509v3 Authority Key Identifier: keyid:2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:00:0f:16:eb:05:6e:23:d4:99:82:8a:2c:35:e2:1f:4a:d6: 1c:e1:61:63:5b:d8:9a:5e:fe:b9:67:cd:f4:65:dd:1c:e3:23: 49:ee:f9:40:0a:60:5a:d8:dc:c1:9a:c4:cc:f7:18:2e:aa:b6: e1:32:c0:73:9a:1a:e3:94:75:88:bf:fd:c2:ba:a7:fe:11:25: d3:23:6a:0e:89:33:78:c5:63:f1:5d:5e:a5:18:7b:28:0d:36: 5d:7b:b8:6b:f4:d3:0c:c0:64:7d:2a:b8:ea:0e:9f:f4:89:fc: 40:a2:d8:d8:3f:51:f0:3d:ea:d9:97:7b:d9:2e:1e:0c:14:a1: 4e:a3:a1:ef:2b:c6:56:f8:75:fa:a2:53:2e:73:28:28:3a:98: 18:d7:50:62:e5:53:f2:f2:1b:0d:f5:85:71:63:b3:44:0d:59: 19:e2:e3:26:a6:34:a6:1c:94:d9:b9:da:4f:5d:48:b4:3e:05: ed:5f:1c:0a:fe:8a:a6:b8:c3:87:81:b0:ea:69:26:87:9f:74: 80:63:ac:6e:89:6b:e4:1a:9b:91:31:8f:1f:1e:52:6f:3f:63: ff:b5:e5:dc:7e:27:85:bb:af:91:eb:0e:86:a5:7c:d3:73:2d: df:12:c8:31:02:4c:ef:d1:1a:72:d6:56:54:32:db:49:12:ea: b4:42:63:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTA5NjAxMTAvBgNVBAUTKDJBOTAwNzM0QzVFM0I5M0FDQTk0NzBFM0Y1QUREQURD MkYyMTVCMzEwHhcNMjQxMTIwMjIwMDIwWhcNMjQxMTI3MjIwMDIwWjAYMRYwFAYD VQQDEw02NzNlNWJmNC04ZjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunZkzXSZTu4i+Tlv59nt4kj7WXBY8+pjPYudADTK32lxAk+YF473I836ju1l kOjdTw4V6un22w1ukUvAgO9LCXZCyaKeI6LGMWAS2VDzvl8ooS7A2YNUxqz0lJcF bTcYqiDLGL9BcwrHKosvXsEphqVHHbwBcFJj0KN5HtHhyZP1DuOoaZxLZrTnVvrG n+PZRAFcfhmeWafG4G5G4UosbJ4zJCJhQOeRiQP7KDIgGGSrt4etqTGT+IfbGHqC p/UX/NIxUbUydwNeLW8Mq9IrC/UYMYJIsRQa0Bq7/wy3vrpssp4S0g70PZxat+j6 nZbDGs2XqOgemhR8IazEgbDCCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ5MPh4f fGiwI3DAtGgkHKDTk3xtMB8GA1UdIwQYMBaAFCqQBzTF47k6ypRw4/Wt2twvIVsx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDk2MC85QzZGN0JFQTYx OTQxMUVCQkZEMkFBMkFDNEY5QUUwMi9LcEFITk1YanVUcktsSERqOWEzYTNDOGhX ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twQUhOTVhqdVRyS2xIRGo5YTNhM0M4aFd6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDk2MC85QzZGN0JFQTYxOTQxMUVCQkZEMkFBMkFDNEY5QUUwMi9LcEFITk1YanVU cktsSERqOWEzYTNDOGhXekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5AA8W6wVuI9SZgoosNeIfStYc4WFjW9iaXv65Z830Zd0c4yNJ7vlA CmBa2NzBmsTM9xguqrbhMsBzmhrjlHWIv/3Cuqf+ESXTI2oOiTN4xWPxXV6lGHso DTZde7hr9NMMwGR9KrjqDp/0ifxAotjYP1HwPerZl3vZLh4MFKFOo6HvK8ZW+HX6 olMucygoOpgY11Bi5VPy8hsN9YVxY7NEDVkZ4uMmpjSmHJTZudpPXUi0PgXtXxwK /oqmuMOHgbDqaSaHn3SAY6xuiWvkGpuRMY8fHlJvP2P/teXcfieFu6+R6w6GpXzT cy3fEsgxAkzv0Rpy1lZUMttJEuq0QmMs -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:47 2024 by rpki-client on console-ams.rpki-client.org