$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft File: kKozD4l2v2xASeZzwoIf0pHUO8E.mft (raw, json) Hash identifier: oU0uGIuO9qa59Rqsx8fMOM7KJPK3d4VgLEh5ATQ9BMg= Subject key identifier: 76:46:7C:95:F6:88:C6:63:B3:0C:32:34:6E:08:45:C1:F8:A8:30:BA Authority key identifier: 90:AA:33:0F:89:76:BF:6C:40:49:E6:73:C2:82:1F:D2:91:D4:3B:C1 Certificate issuer: /CN=A91AE85E/serialNumber=90AA330F8976BF6C4049E673C2821FD291D43BC1 Certificate serial: 04F2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft Manifest number: 04F2 Signing time: Wed 20 Nov 2024 14:18:07 +0000 Manifest this update: Wed 20 Nov 2024 14:18:06 +0000 Manifest next update: Wed 27 Nov 2024 14:18:06 +0000 Files and hashes: 1: kKozD4l2v2xASeZzwoIf0pHUO8E.crl (hash: JPDECJHW/jZMG0Eiiy0IFrQ86Ii42ILcvaVsNEp/Zbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.crl rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:18:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1266 (0x4f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE85E/serialNumber=90AA330F8976BF6C4049E673C2821FD291D43BC1 Validity Not Before: Nov 20 14:18:06 2024 GMT Not After : Nov 27 14:18:06 2024 GMT Subject: CN=673def9f-ba36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:67:9e:83:f3:c3:56:46:96:66:70:3a:5e:82: 3b:2d:05:14:9f:e4:8b:e4:44:51:89:b2:c9:35:78: e6:cf:d4:05:e0:c6:af:c2:86:ba:74:d7:44:b5:33: be:c0:2a:46:47:3c:7f:35:31:bb:c4:7b:d5:a6:8f: 59:43:fb:b6:00:22:33:e5:2a:70:c0:fb:59:2b:d9: 4f:4a:16:da:2b:6c:8b:67:b1:3d:d3:c5:6d:72:a5: d0:d3:4e:68:39:42:ba:3d:aa:a3:a1:06:b5:8a:a0: af:b6:5b:b5:43:ed:f3:1f:cd:5b:a3:7d:42:dd:60: 2c:40:36:de:fd:80:f2:d9:c0:ba:15:9d:81:c8:de: ac:1f:3b:11:4e:f0:58:ae:d2:3f:70:aa:62:6f:b6: f4:2b:c7:14:c1:3e:bf:bd:ef:94:92:f4:41:02:ca: 79:63:e7:d8:23:da:e9:0b:e6:a5:5c:7b:4b:40:92: 42:3a:ba:e3:fa:cf:db:0b:9b:65:39:2f:21:95:13: d5:89:83:be:fc:d4:2d:00:8b:e1:16:47:73:f4:a0: a2:7b:58:ed:71:5c:2e:a3:49:90:80:a3:7f:6d:05: 47:6e:c0:3d:98:ef:26:96:f3:99:2e:39:2c:d4:c1: c9:54:6c:38:c5:80:2e:b7:b8:1e:43:fc:17:74:38: d3:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:46:7C:95:F6:88:C6:63:B3:0C:32:34:6E:08:45:C1:F8:A8:30:BA X509v3 Authority Key Identifier: keyid:90:AA:33:0F:89:76:BF:6C:40:49:E6:73:C2:82:1F:D2:91:D4:3B:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:39:fb:6f:c0:eb:31:e7:0d:66:86:71:29:90:a4:a8:a1:28: 38:4e:3f:89:a5:16:91:04:f2:a5:53:0b:a7:80:69:cb:c6:72: bd:cb:63:09:f2:05:79:d5:fa:d6:18:6a:81:85:c8:56:6d:aa: ee:2a:13:0c:00:24:52:de:11:e5:60:63:18:a0:f0:16:3b:4a: 7d:53:3e:7d:79:c8:18:76:91:9b:c5:3a:cf:cd:30:0e:95:81: d2:34:e8:fe:c9:eb:70:1a:41:05:34:10:7a:ce:28:10:dd:e2: 22:82:c3:cf:2c:90:f0:73:c4:68:da:07:91:91:8f:7d:6b:81: 43:18:48:d2:c2:c8:7b:73:3a:6d:c0:a7:1c:9b:b8:da:62:c2: 50:0b:a7:f1:cc:c2:fd:d4:44:0d:07:57:62:4c:b7:d0:cd:b1: bc:67:e6:33:12:12:f6:9f:a5:13:8d:ad:6c:6c:a2:94:a1:58: 41:0f:4a:20:78:ec:c9:b2:d3:44:ae:08:39:cb:77:d3:d0:fd: 57:6b:d7:b2:01:5d:fd:2e:88:69:eb:2b:fe:cc:b6:65:80:2c: 72:cb:0c:1d:1c:d7:ed:2d:67:f7:9e:58:8e:8f:f8:35:ac:a0: bd:24:f3:7b:a1:44:30:22:51:cc:7d:5f:68:66:57:34:33:0a: f9:fb:92:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU4NUUxMTAvBgNVBAUTKDkwQUEzMzBGODk3NkJGNkM0MDQ5RTY3M0MyODIxRkQy OTFENDNCQzEwHhcNMjQxMTIwMTQxODA2WhcNMjQxMTI3MTQxODA2WjAYMRYwFAYD VQQDEw02NzNkZWY5Zi1iYTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmeeg/PDVkaWZnA6XoI7LQUUn+SL5ERRibLJNXjmz9QF4Mavwoa6dNdEtTO+ wCpGRzx/NTG7xHvVpo9ZQ/u2ACIz5SpwwPtZK9lPShbaK2yLZ7E908VtcqXQ005o OUK6PaqjoQa1iqCvtlu1Q+3zH81bo31C3WAsQDbe/YDy2cC6FZ2ByN6sHzsRTvBY rtI/cKpib7b0K8cUwT6/ve+UkvRBAsp5Y+fYI9rpC+alXHtLQJJCOrrj+s/bC5tl OS8hlRPViYO+/NQtAIvhFkdz9KCie1jtcVwuo0mQgKN/bQVHbsA9mO8mlvOZLjks 1MHJVGw4xYAut7geQ/wXdDjTFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZGfJX2 iMZjswwyNG4IRcH4qDC6MB8GA1UdIwQYMBaAFJCqMw+Jdr9sQEnmc8KCH9KR1DvB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTg1RS8xQTE2RUI4NkYz RUExMUVCQjI1OEJBN0JDNEY5QUUwMi9rS296RDRsMnYyeEFTZVp6d29JZjBwSFVP OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tLb3pENGwydjJ4QVNlWnp3b0lmMHBIVU84RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTg1RS8xQTE2RUI4NkYzRUExMUVCQjI1OEJBN0JDNEY5QUUwMi9rS296RDRsMnYy eEFTZVp6d29JZjBwSFVPOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQOftvwOsx5w1mhnEpkKSooSg4Tj+JpRaRBPKlUwungGnLxnK9y2MJ 8gV51frWGGqBhchWbaruKhMMACRS3hHlYGMYoPAWO0p9Uz59ecgYdpGbxTrPzTAO lYHSNOj+yetwGkEFNBB6zigQ3eIigsPPLJDwc8Ro2geRkY99a4FDGEjSwsh7czpt wKccm7jaYsJQC6fxzML91EQNB1diTLfQzbG8Z+YzEhL2n6UTja1sbKKUoVhBD0og eOzJstNErgg5y3fT0P1Xa9eyAV39Lohp6yv+zLZlgCxyywwdHNftLWf3nliOj/g1 rKC9JPN7oUQwIlHMfV9oZlc0Mwr5+5L/ -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:03 2024 by rpki-client on console-fra.rpki-client.org