$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft File: KtUm39nH6QyjDDH8pOGCUBtwB1M.mft (raw, json) Hash identifier: jjHW7MmfMbaFmrNsS817DvxYQfHnMBqdvUsEadbRxck= Subject key identifier: A9:15:69:CD:19:3E:B2:FA:C0:9F:D0:F3:32:9B:7F:8E:60:29:AE:53 Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 05F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft Manifest number: 05DA Signing time: Fri 22 Nov 2024 22:32:32 +0000 Manifest this update: Fri 22 Nov 2024 22:32:32 +0000 Manifest next update: Fri 29 Nov 2024 22:32:32 +0000 Files and hashes: 1: KtUm39nH6QyjDDH8pOGCUBtwB1M.crl (hash: seGNr4bYKF4p1H2hk6f27VzCDZmVo4KZVNtyInMRfzI=) 2: 8D54D41CFF4A11EBB2CFB65CC4F9AE02.roa (hash: /oai9s0tO9R/CA92gLDGeelZejQBEg1k9ETT577pn5o=) 3: 5C75E87C95F511EBA6D31767C4F9AE02.roa (hash: faItfTXWER/JJzCTtl0b6vLL/MsAfJNd1RIcbd+oWIM=) 4: 176E1D3E961411EB80BD4E1DC4F9AE02.roa (hash: vegulIKBeHttwdRyvB/2WQ05g6xaaoUGb/GkmzarLJw=) 5: 6CFB0FFCF65711EB8988A924C4F9AE02.roa (hash: wMP9I/AdfA5A2Gu8f07TbNhehTZ7LymaxW1TkEKbA2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1520 (0x5f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: Nov 22 22:32:32 2024 GMT Not After : Nov 29 22:32:32 2024 GMT Subject: CN=67410680-0541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:25:71:90:4a:12:a8:19:0e:e2:2a:4d:bb:dd: f0:a3:fa:25:4b:47:a5:58:cf:8e:2a:69:db:2d:31: b0:29:02:2b:16:65:ef:ac:62:ed:ce:ea:5a:87:83: 63:93:56:fc:d3:e7:a7:05:c9:21:13:89:49:fa:20: f5:41:61:7c:35:6f:e4:f2:36:4d:ba:17:11:4f:e9: 26:87:3e:dd:5c:1b:e4:ea:d4:6a:cc:9c:f2:d0:b3: 89:37:4c:52:de:ec:9c:8c:de:cf:b3:d2:df:c6:50: 6b:0e:5f:61:9a:ed:2f:f2:9c:55:fd:3c:ac:6e:03: f0:55:a1:27:d9:8e:0b:d8:6c:98:ec:79:36:f4:43: ae:0d:a3:48:c6:bf:4e:66:80:24:17:69:26:e2:92: 3b:01:37:aa:51:bd:0f:41:f6:67:f7:96:8e:32:a0: e7:bf:b3:08:95:3c:30:22:6d:23:97:6d:10:4e:4c: 9f:e3:58:80:4b:4f:89:b4:aa:c6:4b:d8:c6:a6:f4: 92:44:d8:4f:54:b5:32:f6:a3:45:60:e2:c4:28:83: 38:c1:b9:a3:60:a7:f6:aa:40:09:13:cf:32:5a:3a: de:94:b3:55:5e:e2:4c:5a:8c:7c:b3:52:99:36:f2: 54:2d:7e:e4:01:59:1c:99:23:ac:41:cd:70:dd:59: d6:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:15:69:CD:19:3E:B2:FA:C0:9F:D0:F3:32:9B:7F:8E:60:29:AE:53 X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:ea:7f:e5:38:14:31:fe:8a:20:35:d8:e8:54:38:ae:7b:22: d7:2e:57:8f:cf:64:d0:a7:e6:45:d3:d5:83:dd:62:5b:26:dd: 03:8f:25:37:58:8f:cf:ba:79:09:f2:ea:40:a2:0a:15:47:8d: 1e:36:d2:30:6f:a4:fc:ba:fb:97:9f:d8:a3:b8:c9:04:49:23: 3d:b5:22:55:9d:13:9a:a5:5e:03:da:e4:cc:d1:c6:88:a3:a9: a2:1f:65:16:70:e6:e8:fd:16:c1:73:4d:28:fb:19:46:15:f6: ae:e6:e5:e6:1f:de:d6:90:95:8d:b5:c6:bd:46:ea:14:0e:c1: b0:63:21:00:e6:0b:b1:10:ba:19:4a:2e:f5:ba:7b:af:33:16: a7:06:22:d4:47:bd:76:40:f3:98:6f:ca:77:e9:47:7c:3d:89: ad:ad:c3:0f:83:f4:68:2a:67:61:b0:cf:d7:31:51:09:7f:3a: 09:52:1d:7f:62:e0:24:f7:ff:32:74:2c:b7:82:ee:b6:7e:db: d3:bd:23:8e:f2:45:39:16:dc:37:16:07:67:50:80:e0:61:39: 91:0f:c2:c5:a6:83:7f:4b:71:e2:af:3f:a5:09:15:f8:14:5b: 16:a2:2f:09:86:f5:06:de:83:21:49:53:68:3d:7b:9f:02:02: 74:cc:ab:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjQxMTIyMjIzMjMyWhcNMjQxMTI5MjIzMjMyWjAYMRYwFAYD VQQDEw02NzQxMDY4MC0wNTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmyVxkEoSqBkO4ipNu93wo/olS0elWM+OKmnbLTGwKQIrFmXvrGLtzupah4Nj k1b80+enBckhE4lJ+iD1QWF8NW/k8jZNuhcRT+kmhz7dXBvk6tRqzJzy0LOJN0xS 3uycjN7Ps9LfxlBrDl9hmu0v8pxV/TysbgPwVaEn2Y4L2GyY7Hk29EOuDaNIxr9O ZoAkF2km4pI7ATeqUb0PQfZn95aOMqDnv7MIlTwwIm0jl20QTkyf41iAS0+JtKrG S9jGpvSSRNhPVLUy9qNFYOLEKIM4wbmjYKf2qkAJE88yWjrelLNVXuJMWox8s1KZ NvJULX7kAVkcmSOsQc1w3VnWiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkVac0Z PrL6wJ/Q8zKbf45gKa5TMB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUFBMC8yMjgzOTZCQTk1RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZR eWpEREg4cE9HQ1VCdHdCMU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT6n/lOBQx/oogNdjoVDiueyLXLlePz2TQp+ZF09WD3WJbJt0DjyU3 WI/PunkJ8upAogoVR40eNtIwb6T8uvuXn9ijuMkESSM9tSJVnROapV4D2uTM0caI o6miH2UWcObo/RbBc00o+xlGFfau5uXmH97WkJWNtca9RuoUDsGwYyEA5guxELoZ Si71unuvMxanBiLUR712QPOYb8p36Ud8PYmtrcMPg/RoKmdhsM/XMVEJfzoJUh1/ YuAk9/8ydCy3gu62ftvTvSOO8kU5Ftw3FgdnUIDgYTmRD8LFpoN/S3Hirz+lCRX4 FFsWoi8JhvUG3oMhSVNoPXufAgJ0zKu+ -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:31 2024 by rpki-client on console-fra.rpki-client.org