$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: zAqlHl+FbtFdCz45OQJYCZfoXCLc32m56d7xO+z2e4E= Subject key identifier: 70:D5:AE:30:8E:76:14:AD:DA:76:F3:4C:DE:4C:D8:7B:01:F9:60:B8 Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: 50 Signing time: Thu 21 Nov 2024 05:17:08 +0000 Manifest this update: Thu 21 Nov 2024 05:17:08 +0000 Manifest next update: Thu 28 Nov 2024 05:17:08 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: 1gc6pa5iTBLpEmYkGX0JHsJhj+9ugo05vXYG0z1ZlbI=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: yYqs2C5AMpVdcomEvwsEelNt35bcShUcpatPOoqg3y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Nov 21 05:17:08 2024 GMT Not After : Nov 28 05:17:08 2024 GMT Subject: CN=673ec254-be9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8e:79:2c:e8:73:59:4b:e4:2c:3a:f2:50:62: e7:09:fa:8e:30:70:2d:e4:67:48:62:6b:52:ca:5f: 96:32:55:82:d3:b7:67:ff:37:88:38:78:02:ba:a9: 40:50:59:1c:1f:72:7d:e8:ba:47:b4:b6:8b:ef:a5: fe:ce:23:8f:14:16:be:b9:70:be:ca:eb:9c:8a:8d: b4:90:1c:51:12:71:91:78:a4:6e:46:3c:20:db:a6: 72:50:54:6c:49:c9:d3:4c:5b:87:2a:a6:d6:cb:b9: d7:71:d0:04:de:b1:29:63:8b:5f:c0:96:26:4d:bb: 93:cf:79:41:50:d0:bc:00:40:bb:5f:83:d5:60:95: 7d:62:a0:64:14:30:2d:39:cb:5d:63:44:89:b9:68: 9c:ad:7e:d3:37:2d:ba:98:ed:73:fa:ed:c0:41:40: 32:2c:9d:bd:b1:fa:42:5f:e5:0b:f9:7a:c3:f7:8d: e0:09:68:57:92:ac:a4:99:80:68:84:5f:2b:af:fd: e7:97:02:c4:1a:7f:8a:b5:d5:8a:14:de:7d:18:92: 1e:a0:f7:54:df:8f:30:73:4b:12:9d:1d:c8:6f:b9: 4c:dc:5c:39:f5:a5:a3:58:e0:23:45:fa:07:e5:05: 1d:39:69:f8:3c:1b:95:e7:51:d9:42:b1:fd:51:9c: 0f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D5:AE:30:8E:76:14:AD:DA:76:F3:4C:DE:4C:D8:7B:01:F9:60:B8 X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:13:4a:ae:2d:6c:70:77:1e:8b:e0:fa:0e:86:05:78:39:4d: 96:67:b3:1c:14:08:81:29:ff:1b:3d:45:a3:67:89:f2:d8:78: 2b:60:b4:f4:40:6f:a1:46:15:d8:49:3f:b1:af:0d:0f:a0:61: 1a:36:74:9c:2a:d6:4a:ac:60:bd:4c:24:86:22:19:61:53:ec: a9:20:3c:d2:77:22:7f:96:c0:25:4d:7a:83:13:43:a8:9b:c0: 05:44:12:37:32:d4:53:82:60:8e:84:e9:d0:fc:ae:d0:d8:5e: a6:62:61:dc:ae:8c:aa:ef:0a:55:d9:8e:6b:41:c2:68:8b:77: 8a:bf:58:3c:64:44:0c:4a:2e:08:1b:37:26:dd:fc:92:1a:3f: 14:ee:68:a3:13:a5:8a:3d:f9:b9:58:50:3f:00:cb:87:4c:d3: fd:ef:66:1e:bb:ee:3f:c0:57:c1:fd:98:d6:43:96:51:be:d8: e6:c6:19:cc:79:2e:e5:d3:49:6f:89:39:c5:d0:70:95:26:07: 08:25:5d:54:43:a0:20:e6:6f:5f:25:db:c9:9f:e7:8b:2a:62: 96:6c:6a:c4:61:b0:4d:a9:ca:49:f9:6b:83:4f:aa:a9:21:7c: 37:b8:cf:f5:92:84:ae:5a:29:26:c3:5c:c6:37:bd:27:58:fc: 84:a8:5a:96 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTVGQjExMC8GA1UEBRMoOTJFNjMzOTc4RjNDNUMyRDA4NjBBQ0RCMEUxREQ1MTIx MDBFODlFRjAeFw0yNDExMjEwNTE3MDhaFw0yNDExMjgwNTE3MDhaMBgxFjAUBgNV BAMTDTY3M2VjMjU0LWJlOWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFjnks6HNZS+QsOvJQYucJ+o4wcC3kZ0hia1LKX5YyVYLTt2f/N4g4eAK6qUBQ WRwfcn3ouke0tovvpf7OI48UFr65cL7K65yKjbSQHFEScZF4pG5GPCDbpnJQVGxJ ydNMW4cqptbLuddx0ATesSlji1/AliZNu5PPeUFQ0LwAQLtfg9VglX1ioGQUMC05 y11jRIm5aJytftM3LbqY7XP67cBBQDIsnb2x+kJf5Qv5esP3jeAJaFeSrKSZgGiE Xyuv/eeXAsQaf4q11YoU3n0Ykh6g91TfjzBzSxKdHchvuUzcXDn1paNY4CNF+gfl BR05afg8G5XnUdlCsf1RnA+bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcNWuMI52 FK3advNM3kzYewH5YLgwHwYDVR0jBBgwFoAUkuYzl488XC0IYKzbDh3VEhAOie8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExNUZCL0JFODhBNzBDMkVD NzExRUY4MjIwODI3M0M0RjlBRTAyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2ll OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva3VZemw0ODhYQzBJWUt6YkRoM1ZFaEFPaWU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx NUZCL0JFODhBNzBDMkVDNzExRUY4MjIwODI3M0M0RjlBRTAyL2t1WXpsNDg4WEMw SVlLemJEaDNWRWhBT2llOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF8TSq4tbHB3Hovg+g6GBXg5TZZnsxwUCIEp/xs9RaNnifLYeCtgtPRA b6FGFdhJP7GvDQ+gYRo2dJwq1kqsYL1MJIYiGWFT7KkgPNJ3In+WwCVNeoMTQ6ib wAVEEjcy1FOCYI6E6dD8rtDYXqZiYdyujKrvClXZjmtBwmiLd4q/WDxkRAxKLggb Nybd/JIaPxTuaKMTpYo9+blYUD8Ay4dM0/3vZh677j/AV8H9mNZDllG+2ObGGcx5 LuXTSW+JOcXQcJUmBwglXVRDoCDmb18l28mf54sqYpZsasRhsE2pykn5a4NPqqkh fDe4z/WShK5aKSbDXMY3vSdY/ISoWpY= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:47 2024 by rpki-client on console-fra.rpki-client.org