$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft File: Kz24XvlSI40ZLc8XDua-scjbA6k.mft (raw, json) Hash identifier: 07HdHgYO7A3ktEX+MNXtZ3k4IRIxHPkDmsW/TQIb61o= Subject key identifier: AA:D4:84:89:4B:97:4A:03:F6:E8:F0:81:2D:C0:39:57:3D:08:DB:E6 Authority key identifier: 2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 Certificate issuer: /CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft Manifest number: 1D Signing time: Thu 21 Nov 2024 05:59:07 +0000 Manifest this update: Thu 21 Nov 2024 05:59:07 +0000 Manifest next update: Thu 28 Nov 2024 05:59:07 +0000 Files and hashes: 1: Kz24XvlSI40ZLc8XDua-scjbA6k.crl (hash: Ys3TEwg5d4u3jSdxvtdOWiBHeFYjhrQqfqjkwEbcakU=) 2: 4AFF817484EF11EFBDCD721DC4F9AE02.roa (hash: yCZMfZ6NfluzN2Ky52xSRjoZCp2FkkrWLhsmfBj/nsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Validity Not Before: Nov 21 05:59:07 2024 GMT Not After : Nov 28 05:59:07 2024 GMT Subject: CN=673ecc2b-6a2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:93:35:3a:56:b1:5d:56:fc:ce:55:b8:4e:73: f7:87:70:88:30:8f:ab:d3:58:1a:11:ba:ca:d5:02: 97:40:db:72:c9:e9:db:5f:f0:bf:bd:94:95:e4:0e: 60:3b:04:8c:76:0d:a2:50:9a:f3:68:bb:a0:e3:0c: 33:ed:1c:1a:b5:82:56:96:bd:29:42:33:51:ac:31: 82:3b:07:ae:04:e8:67:34:3f:eb:e2:83:c3:fe:2c: 1b:24:62:d1:a8:1d:d1:a2:e0:77:94:bc:90:6d:38: d6:e8:ab:47:aa:f2:7e:da:09:07:b0:49:7b:b1:98: 15:75:40:06:48:69:35:16:05:a5:d9:d0:bd:f6:00: 40:6e:55:ca:39:cc:19:26:e0:cf:fa:aa:a0:d3:de: ed:d1:59:07:65:3e:84:31:e6:cf:c2:1c:77:e1:b1: 62:0e:41:22:f5:aa:d3:50:c5:a3:4c:ef:1b:6e:49: 85:b1:e5:76:0a:08:ae:09:ec:38:66:f8:40:4c:72: ef:44:25:99:64:fe:b6:63:86:d6:87:41:26:d4:40: b3:1a:a8:00:84:37:2e:61:28:75:b9:53:97:ba:41: d7:fb:af:56:20:03:4d:b5:f7:10:e9:85:25:94:c0: 71:60:41:9f:7c:2d:4d:85:21:c8:a3:17:0a:b1:b2: 87:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:D4:84:89:4B:97:4A:03:F6:E8:F0:81:2D:C0:39:57:3D:08:DB:E6 X509v3 Authority Key Identifier: keyid:2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:fb:b6:aa:f4:8b:52:cf:46:93:11:70:d2:38:3b:40:a8:ab: 27:fe:3d:01:11:38:96:16:0e:be:e0:c5:fa:61:c8:7c:25:5a: 5b:e2:95:17:42:44:35:f9:f2:f6:d1:12:ef:09:f3:6a:61:53: 77:9c:1d:37:3e:83:3f:9a:52:8d:23:33:6c:69:df:7e:74:61: 22:87:cc:8f:ce:be:20:db:ce:04:37:a7:82:88:9b:2d:22:13: 2a:8d:bf:62:43:6c:af:72:43:5e:ee:22:59:a4:d4:c8:26:4a: 43:59:02:62:93:b3:c0:4f:ab:d9:49:24:0b:d9:35:dc:ef:53: f9:a1:a2:6f:9a:74:00:c8:97:6b:48:62:0a:06:6f:69:80:e6: e1:62:92:85:a0:b6:be:b4:e5:a5:e9:ff:a2:d3:01:53:a5:6b: a9:03:5d:08:d0:e0:6b:c4:1b:58:74:31:ea:5b:5e:b4:02:bd: bd:c3:4f:75:41:9f:46:61:cc:24:2f:a4:94:5f:d8:a9:26:b3: ca:b0:05:8f:cb:70:ed:45:2c:6e:2f:ef:e2:a2:e2:c9:72:f2: 00:30:b4:9f:9c:0a:8e:3b:7a:52:b6:d2:ad:12:06:a0:37:4f: ff:c9:a7:46:fe:54:8b:ae:5c:63:3e:e2:56:6c:b7:85:e5:e1: 65:33:1c:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RjUyNTExMC8GA1UEBRMoMkIzREI4NUVGOTUyMjM4RDE5MkRDRjE3MEVFNkJFQjFD OERCMDNBOTAeFw0yNDExMjEwNTU5MDdaFw0yNDExMjgwNTU5MDdaMBgxFjAUBgNV BAMTDTY3M2VjYzJiLTZhMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnkzU6VrFdVvzOVbhOc/eHcIgwj6vTWBoRusrVApdA23LJ6dtf8L+9lJXkDmA7 BIx2DaJQmvNou6DjDDPtHBq1glaWvSlCM1GsMYI7B64E6Gc0P+vig8P+LBskYtGo HdGi4HeUvJBtONboq0eq8n7aCQewSXuxmBV1QAZIaTUWBaXZ0L32AEBuVco5zBkm 4M/6qqDT3u3RWQdlPoQx5s/CHHfhsWIOQSL1qtNQxaNM7xtuSYWx5XYKCK4J7Dhm +EBMcu9EJZlk/rZjhtaHQSbUQLMaqACENy5hKHW5U5e6Qdf7r1YgA0219xDphSWU wHFgQZ98LU2FIcijFwqxsof3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqtSEiUuX SgP26PCBLcA5Vz0I2+YwHwYDVR0jBBgwFoAUKz24XvlSI40ZLc8XDua+scjbA6kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGNTI1L0UxODcxNzc2ODRF RDExRUZCOUZGMkQ1QUM0RjlBRTAyL0t6MjRYdmxTSTQwWkxjOFhEdWEtc2NqYkE2 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3oyNFh2bFNJNDBaTGM4WER1YS1zY2piQTZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlG NTI1L0UxODcxNzc2ODRFRDExRUZCOUZGMkQ1QUM0RjlBRTAyL0t6MjRYdmxTSTQw WkxjOFhEdWEtc2NqYkE2ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFP7tqr0i1LPRpMRcNI4O0Coqyf+PQEROJYWDr7gxfphyHwlWlvilRdC RDX58vbREu8J82phU3ecHTc+gz+aUo0jM2xp3350YSKHzI/OviDbzgQ3p4KImy0i EyqNv2JDbK9yQ17uIlmk1MgmSkNZAmKTs8BPq9lJJAvZNdzvU/mhom+adADIl2tI YgoGb2mA5uFikoWgtr605aXp/6LTAVOla6kDXQjQ4GvEG1h0MepbXrQCvb3DT3VB n0ZhzCQvpJRf2Kkms8qwBY/LcO1FLG4v7+Ki4sly8gAwtJ+cCo47elK20q0SBqA3 T//Jp0b+VIuuXGM+4lZst4Xl4WUzHGQ= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:47 2024 by rpki-client on console-fra.rpki-client.org