$ rpki-client -vvf rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft File: KxuyStzbFPbix7uy2Iq62x3diY0.mft (raw, json) Hash identifier: bG/iOEQrIqfxyx/TB9YFloS3xFZ0JvXU3hzjJbWOhgg= Subject key identifier: 92:F0:23:5B:4E:F6:BD:DB:FB:2C:F0:84:61:69:32:1D:3F:C7:7A:B1 Authority key identifier: 2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D Certificate issuer: /CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Certificate serial: 029C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft Manifest number: 0298 Signing time: Sat 23 Nov 2024 01:06:46 +0000 Manifest this update: Sat 23 Nov 2024 01:06:46 +0000 Manifest next update: Sat 30 Nov 2024 01:06:46 +0000 Files and hashes: 1: KxuyStzbFPbix7uy2Iq62x3diY0.crl (hash: tWvjimp1LbU9N9rrrC9Nz4im1Ls7QdozJhYlCaZfDAk=) 2: 3486D47412D511EFB1EF161DC4F9AE02.roa (hash: X92cUniuja3j0fCsHUIuSIZrgASXCC/Dqmgvow0h/1A=) 3: 95CA439CDAE211ECA14A8254C4F9AE02.roa (hash: OECkIlj17co6mkQPfqLaCAPspTHEJP8pYNRcO1GHXvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 668 (0x29c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Validity Not Before: Nov 23 01:06:46 2024 GMT Not After : Nov 30 01:06:46 2024 GMT Subject: CN=67412aa6-3095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b2:9c:5e:f7:b0:1b:81:6f:5d:79:e3:43:62: 1c:fa:f5:f0:d7:52:d8:5d:b0:25:c3:5f:82:c7:cf: 81:71:7a:82:e3:37:22:13:6b:5d:ce:9c:e1:aa:a2: dc:56:f4:67:6e:a5:f0:d0:85:c8:e7:a9:09:4b:28: 32:a2:19:b3:aa:c1:b1:dd:a5:46:5c:28:9e:f5:e3: d1:1f:fc:72:37:9d:33:9f:9b:d7:c5:79:da:ff:10: 50:05:dd:9c:23:c9:a8:d4:83:c8:f2:00:03:a5:26: 2a:4d:64:b3:01:16:66:19:28:e2:62:2a:da:34:0c: a7:96:db:f4:f4:b4:ad:8c:b4:74:08:03:23:3e:5a: 65:0b:23:05:37:68:aa:b3:80:2e:c6:67:fe:37:92: cf:46:c1:d8:0d:e5:37:69:5e:e9:67:47:79:b9:cd: 42:90:bc:4a:db:9d:bc:f0:80:d0:87:a0:f9:2a:86: c0:52:94:6d:e2:67:aa:8a:58:13:62:d0:34:09:bb: 70:b1:2d:80:29:7a:7e:72:31:47:b3:3f:54:4c:5d: 7f:42:54:6e:6e:10:80:0f:8a:98:f6:62:17:cd:9f: f4:1e:de:54:b3:34:49:06:02:e9:f6:0b:ae:c2:b6: 83:1d:0e:92:4e:eb:aa:2a:73:e5:cb:a6:f8:a8:59: 6e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F0:23:5B:4E:F6:BD:DB:FB:2C:F0:84:61:69:32:1D:3F:C7:7A:B1 X509v3 Authority Key Identifier: keyid:2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:51:c1:a9:29:c1:74:1a:da:ca:7d:88:30:27:e2:74:80:9d: 2a:3a:0a:6d:18:6f:47:3b:30:6e:a9:91:55:76:14:1f:a8:fa: ff:7d:aa:f0:74:82:e1:23:a9:dc:29:43:18:76:10:6c:45:6a: dc:78:31:40:f6:18:a1:54:76:38:2c:e2:b5:4d:92:9a:73:df: cd:5f:a4:13:5c:ea:c4:b9:88:d9:d8:48:7f:cb:10:9a:45:ca: 05:89:e0:4c:fd:dc:c4:f0:17:4c:d6:7e:10:4c:d3:7a:bc:62: 1e:97:cd:01:6c:d6:a3:3f:8a:97:36:be:96:f0:21:ff:e8:c6: d9:8d:a7:0d:35:33:03:ba:22:08:1a:3a:28:69:7f:fa:8a:0f: 11:ca:84:05:1e:de:61:cc:4e:41:78:90:7e:45:d1:67:85:95: 47:11:b4:2c:bd:b2:22:dd:06:65:af:58:64:41:7a:f4:02:de: b4:95:9d:23:db:98:bd:ae:4c:6a:f2:c7:84:23:78:92:88:0d: d1:c8:d9:c5:2e:7a:ec:a1:be:f0:5f:d7:ef:1d:e9:f9:05:6f: 78:8d:71:5b:19:ec:31:c7:7f:c1:81:96:3f:43:fe:33:71:b9: 72:f1:e0:fa:62:1b:7c:06:e2:46:08:b0:33:ea:2c:76:db:e0: e8:ec:55:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgwRDIxMTAvBgNVBAUTKDJCMUJCMjRBRENEQjE0RjZFMkM3QkJCMkQ4OEFCQURC MURERDg5OEQwHhcNMjQxMTIzMDEwNjQ2WhcNMjQxMTMwMDEwNjQ2WjAYMRYwFAYD VQQDEw02NzQxMmFhNi0zMDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbKcXvewG4FvXXnjQ2Ic+vXw11LYXbAlw1+Cx8+BcXqC4zciE2tdzpzhqqLc VvRnbqXw0IXI56kJSygyohmzqsGx3aVGXCie9ePRH/xyN50zn5vXxXna/xBQBd2c I8mo1IPI8gADpSYqTWSzARZmGSjiYiraNAynltv09LStjLR0CAMjPlplCyMFN2iq s4Auxmf+N5LPRsHYDeU3aV7pZ0d5uc1CkLxK25288IDQh6D5KobAUpRt4meqilgT YtA0CbtwsS2AKXp+cjFHsz9UTF1/QlRubhCAD4qY9mIXzZ/0Ht5UszRJBgLp9guu wraDHQ6STuuqKnPly6b4qFluUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLwI1tO 9r3b+yzwhGFpMh0/x3qxMB8GA1UdIwQYMBaAFCsbskrc2xT24se7stiKutsd3YmN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODBEMi9ENDI4RDBDNkRB REUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQYml4N3V5MklxNjJ4M2Rp WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4dXlTdHpiRlBiaXg3dXkySXE2MngzZGlZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODBEMi9ENDI4RDBDNkRBREUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQ Yml4N3V5MklxNjJ4M2RpWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2UcGpKcF0GtrKfYgwJ+J0gJ0qOgptGG9HOzBuqZFVdhQfqPr/farw dILhI6ncKUMYdhBsRWrceDFA9hihVHY4LOK1TZKac9/NX6QTXOrEuYjZ2Eh/yxCa RcoFieBM/dzE8BdM1n4QTNN6vGIel80BbNajP4qXNr6W8CH/6MbZjacNNTMDuiII GjooaX/6ig8RyoQFHt5hzE5BeJB+RdFnhZVHEbQsvbIi3QZlr1hkQXr0At60lZ0j 25i9rkxq8seEI3iSiA3RyNnFLnrsob7wX9fvHen5BW94jXFbGewxx3/BgZY/Q/4z cbly8eD6Yht8BuJGCLAz6ix22+Do7FVE -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:47 2024 by rpki-client on console-ams.rpki-client.org