$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: ejVo55jxKE6qEAglDc/bZ3fGzIo6/Xi/lrEWvIIfSRc= Subject key identifier: 5C:68:88:CA:EE:69:C5:16:B9:36:74:BD:3E:FD:18:83:E7:1D:A4:68 Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 06D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 06BD Signing time: Fri 22 Nov 2024 21:43:48 +0000 Manifest this update: Fri 22 Nov 2024 21:43:47 +0000 Manifest next update: Fri 29 Nov 2024 21:43:47 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: 6GQ9mc8MZ0uC+/1l3eSxXPcZ6EK1XhYAcRqGFa4574g=) 2: 9E5DBE04136F11EF91BD086BC4F9AE02.roa (hash: +e/ld8usHvEdrYyQwaeA8D6Jc1yZaCGdr8GHpC95f8k=) 3: 39E6B6BE137011EF984EE96BC4F9AE02.roa (hash: IJBVRCtWOw+FsLOo5ZwRYxsh/T25QRZC0qKEusLAigQ=) 4: 0CE58260355D11EC96291331C4F9AE02.roa (hash: fY0jZ+fjDvyJatv+//KtopLNXgNgnHXGLgwTeyK1ivE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1744 (0x6d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Nov 22 21:43:47 2024 GMT Not After : Nov 29 21:43:47 2024 GMT Subject: CN=6740fb14-f46c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:65:cc:cf:0e:7a:01:55:72:2f:6b:b5:26:9d: 5e:78:eb:4b:06:0f:ad:3f:1c:54:6d:60:7a:61:cc: be:02:93:84:93:3f:92:aa:b9:1a:aa:20:d8:9a:d5: c9:90:29:36:c4:21:ed:f8:0d:9f:fe:a3:27:87:ff: 87:0b:29:66:8a:6d:ce:11:4a:dd:96:7e:71:c1:f9: a7:4e:b3:b3:c9:22:fe:3b:75:72:e0:11:10:ef:3c: c4:d1:01:a4:fb:e0:7e:72:33:f7:52:aa:0f:ab:1f: ae:86:e9:fa:5d:29:20:b1:10:3d:91:33:1d:72:f3: 8f:77:75:02:9c:35:13:f8:f2:c9:c4:19:c3:28:37: ef:78:76:43:e1:18:90:b9:c5:58:33:7a:4c:09:f1: be:50:97:7f:1e:21:15:7b:dc:af:a3:06:67:be:ef: 16:4f:6d:49:4b:39:20:96:51:bf:ef:60:22:58:81: df:af:e6:71:c5:88:e3:32:6e:44:55:2d:67:45:8d: 34:31:09:2e:59:13:a6:22:1a:dd:b0:92:6c:f1:c9: ca:9d:94:8f:e5:d9:b6:eb:a6:a9:33:97:55:cc:e0: dd:de:e9:fa:94:3f:8a:ca:d6:ef:55:79:03:40:fa: 45:8c:09:1a:55:04:b1:2f:00:7b:34:c2:07:91:74: 5a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:68:88:CA:EE:69:C5:16:B9:36:74:BD:3E:FD:18:83:E7:1D:A4:68 X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:de:7c:2f:24:0f:cd:a6:70:3c:5a:6e:ba:a3:a8:ff:44:f7: 5d:04:9d:f5:95:31:5e:73:ce:ca:85:af:79:7f:aa:1d:2d:f0: cd:da:12:71:d6:be:d4:10:cd:37:43:06:3d:60:b5:05:1a:0f: 4b:7d:05:5f:f5:7a:53:17:4c:6e:40:2b:99:ad:a3:54:31:46: 01:e1:c7:c5:a1:a1:a5:1b:c2:8a:66:c5:4d:b2:c5:7e:48:1f: d0:fd:74:67:84:f8:08:78:54:e2:12:cc:15:ce:88:69:fd:2f: 72:43:74:91:7f:b3:3a:6f:21:a3:c9:94:d7:e8:92:8a:ae:18: 48:76:f3:5e:f1:37:87:e3:27:78:77:92:5a:35:73:ee:98:11: fc:bd:86:2d:08:fc:b9:cc:8a:fc:a4:e7:92:1d:be:c6:70:1e: a4:26:f8:16:4d:da:61:fb:c6:40:2b:0e:08:c8:8d:cd:74:39: a0:94:8b:bc:db:09:e2:48:7a:03:0e:1c:64:f0:91:a6:28:27: da:05:ec:57:04:ee:cc:37:4c:53:7e:b0:08:79:83:43:a2:05: 1e:c7:79:d4:64:22:c8:50:8e:7e:12:90:a9:31:cc:b2:32:6c: 6e:da:fd:8c:2c:9c:27:02:db:6e:0d:4b:b4:23:b0:c3:2e:8a: a6:5e:62:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjQxMTIyMjE0MzQ3WhcNMjQxMTI5MjE0MzQ3WjAYMRYwFAYD VQQDEw02NzQwZmIxNC1mNDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GXMzw56AVVyL2u1Jp1eeOtLBg+tPxxUbWB6Ycy+ApOEkz+SqrkaqiDYmtXJ kCk2xCHt+A2f/qMnh/+HCylmim3OEUrdln5xwfmnTrOzySL+O3Vy4BEQ7zzE0QGk ++B+cjP3UqoPqx+uhun6XSkgsRA9kTMdcvOPd3UCnDUT+PLJxBnDKDfveHZD4RiQ ucVYM3pMCfG+UJd/HiEVe9yvowZnvu8WT21JSzkgllG/72AiWIHfr+ZxxYjjMm5E VS1nRY00MQkuWROmIhrdsJJs8cnKnZSP5dm266apM5dVzODd3un6lD+KytbvVXkD QPpFjAkaVQSxLwB7NMIHkXRa3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxoiMru acUWuTZ0vT79GIPnHaRoMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI3nwvJA/NpnA8Wm66o6j/RPddBJ31lTFec87Kha95f6odLfDN2hJx 1r7UEM03QwY9YLUFGg9LfQVf9XpTF0xuQCuZraNUMUYB4cfFoaGlG8KKZsVNssV+ SB/Q/XRnhPgIeFTiEswVzohp/S9yQ3SRf7M6byGjyZTX6JKKrhhIdvNe8TeH4yd4 d5JaNXPumBH8vYYtCPy5zIr8pOeSHb7GcB6kJvgWTdph+8ZAKw4IyI3NdDmglIu8 2wniSHoDDhxk8JGmKCfaBexXBO7MN0xTfrAIeYNDogUex3nUZCLIUI5+EpCpMcyy Mmxu2v2MLJwnAttuDUu0I7DDLoqmXmLK -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:12 2024 by rpki-client on console-fra.rpki-client.org