$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft File: KUrNCNoZE4w376-ydKHndXceRT4.mft (raw, json) Hash identifier: jJsYU9xoBtyIg2pbXmZTNeQ4en9gev8ZbV85Ur9Xlpk= Subject key identifier: 8F:C9:AE:94:3A:54:97:0B:84:C8:E6:21:F1:A1:D0:91:C6:85:7E:13 Authority key identifier: 29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E Certificate issuer: /CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Certificate serial: 04CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft Manifest number: 04C5 Signing time: Wed 20 Nov 2024 23:22:45 +0000 Manifest this update: Wed 20 Nov 2024 23:22:44 +0000 Manifest next update: Wed 27 Nov 2024 23:22:44 +0000 Files and hashes: 1: KUrNCNoZE4w376-ydKHndXceRT4.crl (hash: nbbv+lmkRAvtrJA5/pv5StXWllP00dtiQOXKXvORp8Y=) 2: 2D7BD4EA03DD11ECA448405BC4F9AE02.roa (hash: YSc5boVMKwRMhn/M8zXGpxfF3jaAcCONXN+5+B53UcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1226 (0x4ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Validity Not Before: Nov 20 23:22:44 2024 GMT Not After : Nov 27 23:22:44 2024 GMT Subject: CN=673e6f45-c88d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fe:c7:c5:97:ea:f3:c6:cf:79:6c:81:dd:4d: 49:71:7a:5c:48:77:61:dc:5d:53:d8:60:56:8d:1a: d8:b6:9d:a9:3b:49:0c:eb:9b:d9:a4:83:95:1e:38: bc:a0:1d:29:bb:b2:d6:ac:9d:39:07:51:0d:54:68: 80:ed:37:f6:83:80:24:f1:65:cd:83:84:ad:ce:01: 6f:24:85:35:07:10:96:46:40:4f:a9:3d:d4:67:a3: 56:08:bd:39:7d:8e:8d:2d:a3:b9:53:df:c3:af:c4: e9:fc:2d:67:6b:eb:20:34:3c:4a:a0:6a:ca:54:c0: 02:b1:3c:6e:fe:ac:f2:c8:0b:76:c8:f5:c4:03:8e: eb:99:65:0b:02:dc:84:cc:2b:0c:4f:ed:f6:dc:1e: e4:c3:eb:55:a1:95:d7:34:53:4f:5b:91:76:3c:f4: ff:13:be:2f:fc:5e:60:eb:8c:67:80:0c:0b:34:09: 66:c2:af:32:72:b1:a4:50:d5:d3:b9:c2:ef:a8:5d: 9a:23:f6:80:a3:e1:33:dc:0b:d8:7f:05:71:de:3b: 45:fd:3d:6c:b7:d7:df:52:61:51:5a:7d:c7:fc:58: a4:d0:f2:a7:10:58:22:60:f6:20:32:d7:4b:26:25: b9:d2:2b:7a:7e:f5:64:d6:c4:f3:ab:c7:2b:21:40: ca:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C9:AE:94:3A:54:97:0B:84:C8:E6:21:F1:A1:D0:91:C6:85:7E:13 X509v3 Authority Key Identifier: keyid:29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:e9:cc:7b:1c:5b:93:c0:cd:05:3f:40:95:7b:a6:1c:22:1b: 32:0c:63:81:03:5d:15:5e:45:46:0e:52:82:6c:77:7c:b0:cd: 06:f6:46:d1:0a:9e:8d:6a:d0:b8:27:9a:71:ee:95:2a:aa:b2: c4:85:51:bf:60:57:b6:0f:85:7e:62:48:0a:a8:cd:26:85:16: 57:5b:0e:27:18:b4:df:0d:13:8d:05:9b:54:a7:da:41:48:07: ef:0b:2a:82:ea:b0:f1:ef:d8:df:d5:2a:a0:45:e6:25:9c:6b: 18:de:68:2e:89:48:44:3c:38:19:2c:d2:b1:b9:1b:80:3f:8f: 93:16:66:2b:d8:4e:85:18:7c:db:f2:0b:1f:10:01:18:ae:10: 55:6a:3d:d0:2c:d0:cb:f5:3b:d2:0e:72:26:ce:e9:5f:60:5e: 2c:27:f2:8b:85:66:67:20:ca:84:15:f9:c5:14:5a:d5:e0:b6: ec:1e:84:6c:6b:5c:a3:c0:2a:20:e7:39:2a:99:de:e6:33:9b: 4f:29:64:32:7b:b3:30:f6:82:24:10:32:f8:4e:62:0a:44:92: 57:7e:3a:27:b5:ed:e3:14:b9:ef:d3:7d:2a:95:e2:a4:ff:0f: ca:56:c0:ff:03:0f:98:f5:50:36:ac:78:1d:a4:cf:8a:33:6f: d9:f7:6c:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4RjkxMTAvBgNVBAUTKDI5NEFDRDA4REExOTEzOEMzN0VGQUZCMjc0QTFFNzc1 NzcxRTQ1M0UwHhcNMjQxMTIwMjMyMjQ0WhcNMjQxMTI3MjMyMjQ0WjAYMRYwFAYD VQQDEw02NzNlNmY0NS1jODhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3P7HxZfq88bPeWyB3U1JcXpcSHdh3F1T2GBWjRrYtp2pO0kM65vZpIOVHji8 oB0pu7LWrJ05B1ENVGiA7Tf2g4Ak8WXNg4StzgFvJIU1BxCWRkBPqT3UZ6NWCL05 fY6NLaO5U9/Dr8Tp/C1na+sgNDxKoGrKVMACsTxu/qzyyAt2yPXEA47rmWULAtyE zCsMT+323B7kw+tVoZXXNFNPW5F2PPT/E74v/F5g64xngAwLNAlmwq8ycrGkUNXT ucLvqF2aI/aAo+Ez3AvYfwVx3jtF/T1st9ffUmFRWn3H/Fik0PKnEFgiYPYgMtdL JiW50it6fvVk1sTzq8crIUDK5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/JrpQ6 VJcLhMjmIfGh0JHGhX4TMB8GA1UdIwQYMBaAFClKzQjaGROMN++vsnSh53V3HkU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhGOS9EQzZCMzYxNEZF NkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0dzM3Ni15ZEtIbmRYY2VS VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVck5DTm9aRTR3Mzc2LXlkS0huZFhjZVJUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhGOS9EQzZCMzYxNEZFNkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0 dzM3Ni15ZEtIbmRYY2VSVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY6cx7HFuTwM0FP0CVe6YcIhsyDGOBA10VXkVGDlKCbHd8sM0G9kbR Cp6NatC4J5px7pUqqrLEhVG/YFe2D4V+YkgKqM0mhRZXWw4nGLTfDRONBZtUp9pB SAfvCyqC6rDx79jf1SqgReYlnGsY3mguiUhEPDgZLNKxuRuAP4+TFmYr2E6FGHzb 8gsfEAEYrhBVaj3QLNDL9TvSDnImzulfYF4sJ/KLhWZnIMqEFfnFFFrV4LbsHoRs a1yjwCog5zkqmd7mM5tPKWQye7Mw9oIkEDL4TmIKRJJXfjonte3jFLnv030qleKk /w/KVsD/Aw+Y9VA2rHgdpM+KM2/Z92xT -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:03 2024 by rpki-client on console-ams.rpki-client.org