$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: JLZJ26bcSwa4qIFsjE4CbWyTI1u76na+FPsr6/lgwhU= Subject key identifier: F8:BD:6C:11:EB:D7:BE:A6:56:D2:F5:FF:E7:8E:DD:EB:A9:1E:20:B7 Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 0302 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 02FA Signing time: Sat 23 Nov 2024 00:49:13 +0000 Manifest this update: Sat 23 Nov 2024 00:49:12 +0000 Manifest next update: Sat 30 Nov 2024 00:49:12 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: Jv2F5k3rC8I47gqlQsL2XMwf9EMlyXp2PDVOP+TpNlo=) 2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: KdODWWy5DaOqxG/rlhfUZW4he8HC+tvuYe4LwAo61T4=) 3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: I5MvmpsL8y59IDd7Mhzk7RlviZnPSJZXIgkWIwxVqvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 770 (0x302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: Nov 23 00:49:12 2024 GMT Not After : Nov 30 00:49:12 2024 GMT Subject: CN=67412689-d498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:47:a1:d7:6e:74:34:ff:8c:1f:79:12:c5:92: 24:c2:b2:e5:23:c5:90:91:21:e2:54:e8:61:11:d3: 7b:b3:23:1a:36:00:a2:48:b7:75:70:3d:0d:5b:e4: 22:99:bc:ca:0a:63:9a:5e:41:51:37:2d:b9:db:89: 4b:a0:4e:1f:74:e5:64:12:0d:90:8f:36:85:28:3a: 00:46:1e:d7:17:7a:02:6d:0d:cb:5e:d5:39:66:7f: ca:f9:c6:ff:98:97:f9:40:e3:db:49:15:bf:7b:94: f6:92:77:0a:6c:e3:40:ac:62:31:8c:a7:8a:88:1a: 15:0e:98:f0:53:5d:2a:cb:27:06:6c:16:28:c5:95: db:fe:2e:bb:ef:d7:f5:62:f3:f6:71:9b:84:8f:70: ad:59:7b:1c:92:bb:80:c0:ea:13:32:58:db:e0:ff: 26:52:2d:c5:82:ba:c0:0a:bb:f6:63:26:b4:c7:4c: 61:c8:b8:cd:aa:35:3b:f7:24:04:93:a5:c2:7c:d0: 85:ea:31:41:7f:4a:7d:20:1b:3a:5a:b2:4c:46:8b: c8:f1:87:98:1b:47:56:84:3b:57:35:7f:68:ff:a7: 0e:22:59:35:18:74:08:7d:b3:10:96:28:24:5b:c8: 07:fa:8d:14:3b:dc:69:00:86:24:07:40:c5:ec:93: 0e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:BD:6C:11:EB:D7:BE:A6:56:D2:F5:FF:E7:8E:DD:EB:A9:1E:20:B7 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ab:17:c6:e3:33:25:f4:ab:53:92:bd:78:49:8f:ce:d1:dd: 19:07:c0:5e:91:54:e1:80:cc:6f:33:02:52:cd:43:c4:29:7a: 41:7f:03:38:f5:87:28:90:c3:31:e3:e3:0b:f7:c8:a5:1d:4a: 9c:3b:9b:9a:77:01:3b:0f:8b:37:eb:6d:f7:f8:6b:c9:09:1c: 26:23:ea:b9:49:ff:b3:07:de:ea:06:f7:16:73:74:9f:cc:97: 22:72:c8:f2:c2:7e:41:0c:36:dc:90:c5:57:97:62:6c:59:90: da:53:41:88:be:ba:55:49:ec:cd:a4:25:b9:c7:3e:c7:6f:c5: d5:bc:37:12:8f:18:5f:f8:9f:b3:5c:e1:31:2a:4d:eb:69:66: 9e:47:b8:41:e1:62:6c:3c:26:ed:e8:e6:ac:27:cf:25:c7:e3: f4:68:cb:6b:14:ce:d3:05:5e:ef:d3:e7:26:84:ce:e1:54:f9: 7c:6e:c8:7d:2c:b7:2c:9b:3d:81:40:91:12:79:99:91:6d:a5: d4:8f:b7:83:48:44:51:57:46:eb:e6:52:5e:aa:eb:89:3a:e8: 4e:fc:d8:00:50:c9:8b:64:1e:db:c8:5e:6a:1b:1d:79:ec:72: 0b:ad:01:41:43:b6:68:cd:ac:50:52:76:7e:ed:54:26:49:ab: 63:16:1e:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjQxMTIzMDA0OTEyWhcNMjQxMTMwMDA0OTEyWjAYMRYwFAYD VQQDEw02NzQxMjY4OS1kNDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUeh1250NP+MH3kSxZIkwrLlI8WQkSHiVOhhEdN7syMaNgCiSLd1cD0NW+Qi mbzKCmOaXkFRNy2524lLoE4fdOVkEg2QjzaFKDoARh7XF3oCbQ3LXtU5Zn/K+cb/ mJf5QOPbSRW/e5T2kncKbONArGIxjKeKiBoVDpjwU10qyycGbBYoxZXb/i6779f1 YvP2cZuEj3CtWXsckruAwOoTMljb4P8mUi3FgrrACrv2Yya0x0xhyLjNqjU79yQE k6XCfNCF6jFBf0p9IBs6WrJMRovI8YeYG0dWhDtXNX9o/6cOIlk1GHQIfbMQligk W8gH+o0UO9xpAIYkB0DF7JMOFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPi9bBHr 176mVtL1/+eO3eupHiC3MB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwqxfG4zMl9KtTkr14SY/O0d0ZB8BekVThgMxvMwJSzUPEKXpBfwM4 9YcokMMx4+ML98ilHUqcO5uadwE7D4s36233+GvJCRwmI+q5Sf+zB97qBvcWc3Sf zJcicsjywn5BDDbckMVXl2JsWZDaU0GIvrpVSezNpCW5xz7Hb8XVvDcSjxhf+J+z XOExKk3raWaeR7hB4WJsPCbt6OasJ88lx+P0aMtrFM7TBV7v0+cmhM7hVPl8bsh9 LLcsmz2BQJESeZmRbaXUj7eDSERRV0br5lJequuJOuhO/NgAUMmLZB7byF5qGx15 7HILrQFBQ7ZozaxQUnZ+7VQmSatjFh51 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:45 2024 by rpki-client on console-fra.rpki-client.org