$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft File: KdzyaXujSl1MV_LtlnGNAxu8VjA.mft (raw, json) Hash identifier: +Qu00Qbe8J+zaI/HFT5zyWd58xjyG03gbEbGVvkli98= Subject key identifier: FC:89:D1:5C:B9:AE:15:01:6E:0B:EC:3A:1F:A3:CF:59:E7:46:7B:24 Authority key identifier: 29:DC:F2:69:7B:A3:4A:5D:4C:57:F2:ED:96:71:8D:03:1B:BC:56:30 Certificate issuer: /CN=A91A1103/serialNumber=29DCF2697BA34A5D4C57F2ED96718D031BBC5630 Certificate serial: 15A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft Manifest number: 15A0 Signing time: Fri 22 Nov 2024 16:48:31 +0000 Manifest this update: Fri 22 Nov 2024 16:48:30 +0000 Manifest next update: Fri 29 Nov 2024 16:48:30 +0000 Files and hashes: 1: KdzyaXujSl1MV_LtlnGNAxu8VjA.crl (hash: AnjpuW/2kshq1avthxjtdB1/997HexwafZSYGFi5x/M=) 2: 1C85059C1EB911E88533FA4EC4F9AE02.roa (hash: OL39VuRaTO6++N4sfRM3PA54REESO/zOJiR+TFOYEMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.crl rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5545 (0x15a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1103/serialNumber=29DCF2697BA34A5D4C57F2ED96718D031BBC5630 Validity Not Before: Nov 22 16:48:30 2024 GMT Not After : Nov 29 16:48:30 2024 GMT Subject: CN=6740b5df-c257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4c:00:ff:c6:8f:6b:d5:f1:2b:9a:00:38:39: 0f:e4:86:a7:a8:b5:5f:a0:e1:f1:41:55:c5:cc:14: 3b:3a:91:db:86:37:0f:07:e3:b2:57:60:88:11:88: 9a:95:bc:4e:02:75:0b:dc:fe:59:51:68:fb:c8:8d: 62:08:19:2c:6d:8c:bb:1d:a2:2e:b6:51:e9:3d:2f: 5d:6f:16:2a:88:94:fc:d7:78:03:fa:19:a1:a4:ef: 9d:ec:79:86:78:8f:82:7e:8e:4b:75:42:73:85:80: ec:43:1d:b9:39:2f:3d:79:68:4f:5d:66:dd:5a:68: ed:fd:86:c5:3a:57:2e:10:bc:47:a4:89:f6:bf:3c: 97:3c:a3:d9:2f:1c:ee:95:ab:44:07:64:cc:cb:09: 38:27:4b:55:55:8b:e9:25:b6:e6:ee:54:f6:31:8d: 46:d4:f2:29:f4:da:f8:19:9b:11:5c:1b:51:b1:eb: 09:d5:db:01:9b:67:aa:8c:1c:f9:69:d9:f1:47:c7: f8:dd:df:40:29:60:c7:08:cf:a0:19:b5:bf:d7:36: ee:71:60:1e:78:c2:4d:33:76:f6:18:2a:3a:87:45: 1a:a8:ce:f3:a9:d4:f1:a5:14:65:69:40:b6:cb:8a: 8c:1b:3b:b2:a7:39:bc:e0:2a:50:5c:e6:bb:02:79: a9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:89:D1:5C:B9:AE:15:01:6E:0B:EC:3A:1F:A3:CF:59:E7:46:7B:24 X509v3 Authority Key Identifier: keyid:29:DC:F2:69:7B:A3:4A:5D:4C:57:F2:ED:96:71:8D:03:1B:BC:56:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:75:7e:6a:7a:cb:52:a1:00:3e:69:59:9e:eb:de:1d:81:b7: 26:59:30:df:df:bb:17:a6:b6:b8:2c:3a:03:99:57:df:13:13: 59:b7:f3:98:ee:5a:67:60:21:8b:e0:6e:50:36:47:35:3b:21: 98:0b:da:48:bd:9b:b3:7b:10:7c:4e:f5:3d:d2:9a:ad:84:7b: 2b:c6:d5:7c:1a:fd:e0:e1:27:6a:38:a8:db:52:54:dc:2f:63: 0b:81:5e:95:f4:18:af:4a:b3:5c:4c:56:7a:e1:d4:da:e8:6f: cb:c4:82:c8:86:8b:7e:a7:6a:d0:78:36:33:b4:a1:a2:1b:07: 19:fc:a4:78:08:55:5b:73:04:9c:7c:5d:fc:08:88:40:2e:20: 91:85:60:50:28:8b:69:d9:56:59:f0:bd:61:15:78:40:97:0f: 0c:84:ee:4c:97:82:3b:fe:9b:ac:cf:c4:da:5f:05:21:cb:75: 6c:84:99:83:c7:0b:cb:cd:30:db:47:bc:71:86:01:77:69:c6: 7f:f7:28:96:56:de:96:e7:fc:3f:97:03:14:4c:d3:5b:73:d2: f7:02:bf:de:0d:4f:63:7a:06:53:48:e0:9d:66:0a:fb:6c:6b: aa:3f:d1:ac:1c:63:b5:80:72:f2:ea:32:6b:fc:2b:36:f1:e6: 48:7a:da:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExMDMxMTAvBgNVBAUTKDI5RENGMjY5N0JBMzRBNUQ0QzU3RjJFRDk2NzE4RDAz MUJCQzU2MzAwHhcNMjQxMTIyMTY0ODMwWhcNMjQxMTI5MTY0ODMwWjAYMRYwFAYD VQQDEw02NzQwYjVkZi1jMjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0wA/8aPa9XxK5oAODkP5IanqLVfoOHxQVXFzBQ7OpHbhjcPB+OyV2CIEYia lbxOAnUL3P5ZUWj7yI1iCBksbYy7HaIutlHpPS9dbxYqiJT813gD+hmhpO+d7HmG eI+Cfo5LdUJzhYDsQx25OS89eWhPXWbdWmjt/YbFOlcuELxHpIn2vzyXPKPZLxzu latEB2TMywk4J0tVVYvpJbbm7lT2MY1G1PIp9Nr4GZsRXBtRsesJ1dsBm2eqjBz5 adnxR8f43d9AKWDHCM+gGbW/1zbucWAeeMJNM3b2GCo6h0UaqM7zqdTxpRRlaUC2 y4qMGzuypzm84CpQXOa7AnmpdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPyJ0Vy5 rhUBbgvsOh+jz1nnRnskMB8GA1UdIwQYMBaAFCnc8ml7o0pdTFfy7ZZxjQMbvFYw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTEwMy8yMDk1QUE2MjFB MDcxMUU4QkUyNEE1NThDNEY5QUUwMi9LZHp5YVh1alNsMU1WX0x0bG5HTkF4dThW akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkenlhWHVqU2wxTVZfTHRsbkdOQXh1OFZqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTEwMy8yMDk1QUE2MjFBMDcxMUU4QkUyNEE1NThDNEY5QUUwMi9LZHp5YVh1alNs MU1WX0x0bG5HTkF4dThWakEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMdX5qestSoQA+aVme694dgbcmWTDf37sXpra4LDoDmVffExNZt/OY 7lpnYCGL4G5QNkc1OyGYC9pIvZuzexB8TvU90pqthHsrxtV8Gv3g4SdqOKjbUlTc L2MLgV6V9BivSrNcTFZ64dTa6G/LxILIhot+p2rQeDYztKGiGwcZ/KR4CFVbcwSc fF38CIhALiCRhWBQKItp2VZZ8L1hFXhAlw8MhO5Ml4I7/pusz8TaXwUhy3VshJmD xwvLzTDbR7xxhgF3acZ/9yiWVt6W5/w/lwMUTNNbc9L3Ar/eDU9jegZTSOCdZgr7 bGuqP9GsHGO1gHLy6jJr/Cs28eZIetp1 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org