$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft File: K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft (raw, json) Hash identifier: uqNEzLAvLxfULer8UaWx6rXfTd+WrN/zpkCfE0xM6SI= Subject key identifier: 33:8B:34:FA:0F:05:91:1C:53:FA:01:A1:19:91:46:3E:19:D1:61:3B Authority key identifier: 2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 Certificate issuer: /CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft Manifest number: ED Signing time: Sat 23 Nov 2024 03:27:21 +0000 Manifest this update: Sat 23 Nov 2024 03:27:21 +0000 Manifest next update: Sat 30 Nov 2024 03:27:21 +0000 Files and hashes: 1: K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl (hash: IHKzNq9rc7P+0j95jiUMgLFb5+ImlsuR1aN+XwIDSvE=) 2: AB366D1C409611EE92C55F40C4F9AE02.roa (hash: SQk3Brop+Id762Ic4sBigwZBA29XCDN62FCzcjcGNd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Validity Not Before: Nov 23 03:27:21 2024 GMT Not After : Nov 30 03:27:21 2024 GMT Subject: CN=67414b99-3b2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f3:c9:6d:65:ab:ef:de:cb:47:9b:40:4b:51: b1:7d:e8:46:18:9a:20:53:60:6b:ea:74:66:93:bf: 63:07:91:1d:55:fe:d3:82:fe:e8:e3:51:32:be:af: 55:65:32:d9:b3:eb:a9:32:3a:a6:79:34:16:40:3b: f1:0e:37:fb:14:2d:82:f0:68:90:0c:ac:e3:85:08: 0c:7e:fc:d5:ec:4c:29:5f:29:a9:e0:a7:e2:40:83: 60:8e:b6:7c:33:64:a2:12:cb:99:21:d4:c5:60:17: 06:96:bb:87:43:7f:6c:92:6b:67:2a:54:90:9c:81: 03:f3:bd:33:2f:20:66:05:93:48:b9:c5:ed:2a:11: ee:5e:0b:b3:75:8f:a1:05:bf:95:ad:1d:29:da:7c: 89:7b:53:40:c0:0d:51:18:cd:01:f7:bd:eb:85:9b: 90:34:46:cc:d5:b8:ee:69:18:4e:84:aa:a0:03:88: b5:f3:33:b2:8c:1f:80:1a:68:3b:67:7d:ff:c4:fd: 04:7d:b5:c8:18:2a:5a:a8:84:5a:ac:cf:8f:61:61: 43:85:ff:e7:73:82:ff:af:bd:f9:c9:32:3f:ef:5d: 59:5a:bc:ab:b3:98:fc:c2:91:13:89:6f:4c:21:54: 5a:34:bf:ce:42:de:d4:9f:0b:61:97:bc:23:13:ea: 6e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:8B:34:FA:0F:05:91:1C:53:FA:01:A1:19:91:46:3E:19:D1:61:3B X509v3 Authority Key Identifier: keyid:2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:65:5e:04:ba:16:5c:52:00:30:ad:cb:a4:26:06:2a:e5:ce: da:27:5b:a8:ad:6f:a5:79:e4:fb:6b:4f:38:a3:72:6b:b6:86: 0f:b8:6e:cb:f0:79:96:26:2b:23:32:11:64:cc:8f:48:0a:77: a3:00:20:f5:97:07:b7:e7:11:d5:0e:58:53:97:f6:42:33:cf: 4c:af:7d:ed:9b:dd:7d:be:ca:27:da:1e:82:bf:fa:0a:76:44: 80:64:1e:90:b5:c1:de:e1:3c:d8:ae:7b:e3:d0:be:7a:39:61: 09:98:8b:f7:d4:c9:b8:10:0f:6c:24:a2:32:44:fd:50:df:1e: a7:ec:4d:dc:4f:ac:52:84:2f:04:41:68:14:97:4c:96:69:26: ac:b1:65:a3:d6:ec:83:8a:04:25:ff:a1:14:a0:3a:e3:42:80: d3:5f:01:68:3d:2b:54:ff:0f:9c:45:e8:43:69:3a:47:6b:8d: c1:1f:28:24:e5:bb:88:b5:b0:d6:29:59:3f:6b:74:77:30:db: 5c:bd:3e:f6:c1:0c:b8:af:20:d5:66:2e:7a:d2:d0:f5:d6:e5: d1:aa:4b:52:06:82:9c:31:d2:4f:11:d0:0a:16:fe:65:b4:4a: d6:39:7b:56:98:02:49:69:b5:5e:e9:4f:11:57:71:0b:70:d0: 12:02:ec:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUyNUExMTAvBgNVBAUTKDJCQ0ExMkQ0NkQ0NjExRUQ2RUYxODg2RjM2NDQ2OERG M0QwMkVERTUwHhcNMjQxMTIzMDMyNzIxWhcNMjQxMTMwMDMyNzIxWjAYMRYwFAYD VQQDEw02NzQxNGI5OS0zYjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmfPJbWWr797LR5tAS1GxfehGGJogU2Br6nRmk79jB5EdVf7Tgv7o41Eyvq9V ZTLZs+upMjqmeTQWQDvxDjf7FC2C8GiQDKzjhQgMfvzV7EwpXymp4KfiQINgjrZ8 M2SiEsuZIdTFYBcGlruHQ39skmtnKlSQnIED870zLyBmBZNIucXtKhHuXguzdY+h Bb+VrR0p2nyJe1NAwA1RGM0B973rhZuQNEbM1bjuaRhOhKqgA4i18zOyjB+AGmg7 Z33/xP0EfbXIGCpaqIRarM+PYWFDhf/nc4L/r735yTI/711ZWryrs5j8wpETiW9M IVRaNL/OQt7Unwthl7wjE+puUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOLNPoP BZEcU/oBoRmRRj4Z0WE7MB8GA1UdIwQYMBaAFCvKEtRtRhHtbvGIbzZEaN89Au3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTI1QS8yQzk2RjUwODQw OTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0VlMXU4WWh2TmtSbzN6MEM3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4b1MxRzFHRWUxdThZaHZOa1JvM3owQzdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTI1QS8yQzk2RjUwODQwOTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0Vl MXU4WWh2TmtSbzN6MEM3ZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXZV4EuhZcUgAwrcukJgYq5c7aJ1uorW+leeT7a084o3JrtoYPuG7L 8HmWJisjMhFkzI9ICnejACD1lwe35xHVDlhTl/ZCM89Mr33tm919vson2h6Cv/oK dkSAZB6QtcHe4TzYrnvj0L56OWEJmIv31Mm4EA9sJKIyRP1Q3x6n7E3cT6xShC8E QWgUl0yWaSassWWj1uyDigQl/6EUoDrjQoDTXwFoPStU/w+cRehDaTpHa43BHygk 5buItbDWKVk/a3R3MNtcvT72wQy4ryDVZi560tD11uXRqktSBoKcMdJPEdAKFv5l tErWOXtWmAJJabVe6U8RV3ELcNASAuw8 -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:20 2024 by rpki-client on console-ams.rpki-client.org