$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft File: 5KlM-o0vn1s570Y1BZHOMS5RT7M.mft (raw, json) Hash identifier: U1Yk6SMDEvmxqIQGJl37OkGuKHnnhPXqdfBo7UDXIQ0= Subject key identifier: 23:39:B1:07:47:C8:B9:23:D0:3C:A7:38:33:57:FA:83:A0:4C:F7:CD Authority key identifier: E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 Certificate issuer: /CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft Manifest number: 020F Signing time: Sat 23 Nov 2024 01:38:21 +0000 Manifest this update: Sat 23 Nov 2024 01:38:21 +0000 Manifest next update: Sat 30 Nov 2024 01:38:21 +0000 Files and hashes: 1: 5KlM-o0vn1s570Y1BZHOMS5RT7M.crl (hash: BoOtP5iqCSGfe8f+TBxsbC2N+/1oivxMBtedHMf86CQ=) 2: E73131A43F7211EFAA8D2F2AC4F9AE02.roa (hash: cHVAnbAAZkxxvDbaZ0/vXTAfraTJSVRsAmDN10groi8=) 3: 5B69CE3A474A11EF8624EE6DC4F9AE02.roa (hash: 67zhTTp2vfU+e/e2tJTNawILQWqWdPCohYNKfRAh44c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:38:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Validity Not Before: Nov 23 01:38:21 2024 GMT Not After : Nov 30 01:38:21 2024 GMT Subject: CN=6741320d-971b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:38:ad:d4:91:5e:29:9b:22:3d:ae:4e:b7:ff: ff:66:2c:43:c6:34:e3:eb:ec:47:c5:5e:d0:ea:25: 53:5f:b4:25:c5:4f:04:06:c0:5b:dd:7d:9a:d1:a3: 11:65:24:f5:43:4d:aa:4a:a7:1f:c5:9f:75:85:d5: b7:8d:91:27:c7:3e:ee:05:a9:1f:2b:23:3f:41:47: 7f:9f:7e:b8:5e:9d:59:f3:a5:af:3f:01:d2:91:94: cf:45:0c:3b:93:4e:d2:0a:70:d2:aa:16:3c:65:a9: 19:c3:21:4c:a3:2b:22:c3:9c:1e:1b:0d:f3:cb:99: 48:f1:4c:02:3f:62:07:17:8f:16:ce:93:4b:d4:72: 98:ae:ab:5a:3e:91:fc:81:ed:37:73:d9:4c:da:ac: 35:af:aa:92:63:fd:d3:9e:4c:d0:37:02:42:82:58: eb:72:65:21:86:a9:66:95:90:05:9e:70:a7:ea:92: 0b:59:c2:eb:e4:71:47:a4:a5:45:e9:69:40:39:46: 36:c6:d1:b6:c6:2d:86:06:39:44:91:fe:52:20:c6: 09:15:d8:00:61:03:de:c8:15:1e:fd:55:24:2e:5a: f2:dc:84:16:22:da:77:88:02:77:69:07:6b:3b:6f: be:87:61:e6:d1:dc:a2:47:6f:4d:da:db:ab:61:44: 03:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:39:B1:07:47:C8:B9:23:D0:3C:A7:38:33:57:FA:83:A0:4C:F7:CD X509v3 Authority Key Identifier: keyid:E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:76:67:dc:4d:e7:52:32:75:b3:d9:29:d4:95:32:80:ca:01: 79:cd:54:b9:cb:45:0d:27:3e:91:6a:26:ec:54:ef:76:9d:44: f4:70:b7:93:01:f9:09:30:26:70:3b:3c:e6:48:e3:f0:5c:47: 19:9d:e5:9a:63:ed:24:09:19:e6:db:c2:cc:4a:03:50:5a:c8: 8d:d7:b0:ef:a5:18:b4:c9:ba:2e:b9:4d:9f:2a:f6:e3:2c:f8: 1d:4a:d5:84:1f:5e:3e:51:53:6b:50:ba:06:b1:aa:45:a5:20: 34:68:fa:12:84:30:7e:81:90:19:69:97:67:f2:bb:1f:73:b7: 43:72:39:5c:1f:d8:ed:1c:89:32:e8:a1:45:4a:ba:e0:2a:80: 5e:e5:e2:fa:19:0a:dd:17:8c:88:eb:c0:4a:07:4b:7c:31:b5: 2f:00:22:c3:cc:32:36:3d:8b:dd:c0:48:98:c0:d1:9f:47:c2: a2:13:ed:c7:e9:35:48:c7:06:2f:65:2b:03:90:a7:d6:5a:8c: 02:9d:ce:f7:a5:a8:f4:97:5c:85:42:b4:a3:29:eb:3b:09:de: cd:af:43:74:ba:a9:60:b0:3b:f7:7f:ea:b8:e8:bf:03:c3:1e: 25:8d:0c:5a:7e:04:8f:2d:03:e3:25:f5:2e:9b:93:3f:96:53: 58:99:97:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBQjMxMTAvBgNVBAUTKEU0QTk0Q0ZBOEQyRjlGNUIzOUVGNDYzNTA1OTFDRTMx MkU1MTRGQjMwHhcNMjQxMTIzMDEzODIxWhcNMjQxMTMwMDEzODIxWjAYMRYwFAYD VQQDEw02NzQxMzIwZC05NzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzit1JFeKZsiPa5Ot///ZixDxjTj6+xHxV7Q6iVTX7QlxU8EBsBb3X2a0aMR ZST1Q02qSqcfxZ91hdW3jZEnxz7uBakfKyM/QUd/n364Xp1Z86WvPwHSkZTPRQw7 k07SCnDSqhY8ZakZwyFMoysiw5weGw3zy5lI8UwCP2IHF48WzpNL1HKYrqtaPpH8 ge03c9lM2qw1r6qSY/3TnkzQNwJCgljrcmUhhqlmlZAFnnCn6pILWcLr5HFHpKVF 6WlAOUY2xtG2xi2GBjlEkf5SIMYJFdgAYQPeyBUe/VUkLlry3IQWItp3iAJ3aQdr O2++h2Hm0dyiR29N2turYUQDcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCM5sQdH yLkj0DynODNX+oOgTPfNMB8GA1UdIwQYMBaAFOSpTPqNL59bOe9GNQWRzjEuUU+z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0FCMy8wNUVEOTRDRTE5 NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4xczU3MFkxQlpIT01TNVJU N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVLbE0tbzB2bjFzNTcwWTFCWkhPTVM1UlQ3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0FCMy8wNUVEOTRDRTE5NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4x czU3MFkxQlpIT01TNVJUN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6dmfcTedSMnWz2SnUlTKAygF5zVS5y0UNJz6RaibsVO92nUT0cLeT AfkJMCZwOzzmSOPwXEcZneWaY+0kCRnm28LMSgNQWsiN17DvpRi0ybouuU2fKvbj LPgdStWEH14+UVNrULoGsapFpSA0aPoShDB+gZAZaZdn8rsfc7dDcjlcH9jtHIky 6KFFSrrgKoBe5eL6GQrdF4yI68BKB0t8MbUvACLDzDI2PYvdwEiYwNGfR8KiE+3H 6TVIxwYvZSsDkKfWWowCnc73paj0l1yFQrSjKes7Cd7Nr0N0uqlgsDv3f+q46L8D wx4ljQxafgSPLQPjJfUum5M/llNYmZfj -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:46 2024 by rpki-client on console-ams.rpki-client.org