$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft File: kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft (raw, json) Hash identifier: T+gYIPJELoRBjdxMdWyImi6GF4C+wTV4ZENHcS7KoNc= Subject key identifier: 5C:36:01:98:EF:E9:DA:BA:6C:BD:A2:04:34:64:98:0A:E8:2A:ED:07 Authority key identifier: 91:2F:B5:F7:35:1C:F9:8F:B9:67:45:1F:EE:DA:F4:9F:14:8E:1A:3A Certificate issuer: /CN=A91C779D/serialNumber=912FB5F7351CF98FB967451FEEDAF49F148E1A3A Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft Manifest number: 7F Signing time: Thu 21 Nov 2024 04:45:56 +0000 Manifest this update: Thu 21 Nov 2024 04:45:55 +0000 Manifest next update: Thu 28 Nov 2024 04:45:55 +0000 Files and hashes: 1: kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl (hash: MHVl596fV9kp+3NrfD0O2vrVElwtmSQ0TC+ujO9JPvA=) 2: 1BC8D5FCE2B211EE946C6541C4F9AE02.roa (hash: pb1KwX0pLwie7CfOH9Gyxrh7Hyrg9MAEQqr69on+vGU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D/serialNumber=912FB5F7351CF98FB967451FEEDAF49F148E1A3A Validity Not Before: Nov 21 04:45:55 2024 GMT Not After : Nov 28 04:45:55 2024 GMT Subject: CN=673ebb03-da56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7c:63:44:2d:49:ea:1e:5a:41:a7:db:7e:82: 5d:1e:dd:d2:f4:44:e1:1a:62:40:ff:b9:e9:8d:13: df:b7:39:4a:7c:12:32:74:6f:a2:ec:64:8a:c6:60: 98:aa:6e:3e:dc:3f:75:8e:13:0b:74:84:bb:b9:5c: d1:0a:bc:38:92:c6:40:f6:50:b6:d9:90:e0:d6:26: b7:8e:d7:d4:12:00:1b:11:4b:4f:01:17:bf:f3:c7: cc:50:18:95:11:03:dd:48:af:d7:59:ba:53:09:3f: ed:81:35:e0:bb:72:48:b8:86:11:12:dc:b9:5b:7d: 36:a4:a0:b5:f9:55:ed:0c:eb:17:e0:27:c5:47:03: 07:33:78:d6:45:72:ba:67:0f:02:15:bf:4c:eb:60: cb:04:d2:0c:ae:a3:7c:69:71:81:42:47:a2:f1:b9: eb:a3:81:bb:cc:04:10:ce:2c:16:7a:d3:04:ff:a0: 12:a1:be:cc:9a:f3:e4:df:8a:ea:8a:e6:4c:d6:53: 26:82:bb:29:b4:0e:68:08:d6:f2:4e:52:b8:c6:49: ac:37:5b:89:79:1f:00:fb:29:12:66:96:55:bd:62: 0b:69:66:69:c2:85:3f:5c:7e:d0:24:45:18:d0:59: 7e:78:12:04:32:ba:cf:3e:93:7b:2e:ac:d9:f1:b2: e5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:36:01:98:EF:E9:DA:BA:6C:BD:A2:04:34:64:98:0A:E8:2A:ED:07 X509v3 Authority Key Identifier: keyid:91:2F:B5:F7:35:1C:F9:8F:B9:67:45:1F:EE:DA:F4:9F:14:8E:1A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:d4:91:18:03:6f:20:36:e1:29:3a:15:c6:3a:07:c1:5a:a3: ae:87:9e:e7:73:64:2e:92:10:23:03:1b:a8:80:d5:84:c0:3b: 81:71:b2:5f:70:04:9f:8d:d6:8a:50:da:84:f0:e3:2e:90:92: 78:68:94:18:5a:45:03:77:4d:3c:7d:5b:ab:8c:13:96:bd:67: 79:bf:be:56:d6:bc:8c:d0:59:20:08:c2:d6:08:d0:c0:65:0c: 7c:bc:2e:ca:ff:85:2b:19:9c:74:98:64:89:d1:6d:0f:47:1b: 41:a1:d9:6f:63:0d:f3:60:26:f6:c7:4c:09:da:2d:e2:e5:fd: 1a:d6:75:98:bd:1d:cd:54:3c:bf:e4:d1:37:14:6a:af:cb:d3: 93:e8:38:cb:dd:6c:a5:0d:b8:8d:a5:e2:89:3f:89:3e:17:c6: e0:17:1b:c2:de:cb:e2:7b:02:6e:22:5a:ed:54:3b:ad:2d:2a: c8:ae:f1:fa:af:87:c3:bc:df:cb:c8:a6:7a:6f:ea:39:5d:ba: ba:b0:17:a1:49:03:db:f8:cc:70:af:01:fc:37:6c:ec:8c:0e: 2e:9f:75:1a:fe:0b:6a:85:ec:74:62:28:bc:d5:02:23:d4:16: b4:1f:5e:8d:fc:8e:a8:07:99:95:7f:4b:cf:d0:5b:8b:19:a7: 33:78:3b:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDkxMkZCNUY3MzUxQ0Y5OEZCOTY3NDUxRkVFREFGNDlG MTQ4RTFBM0EwHhcNMjQxMTIxMDQ0NTU1WhcNMjQxMTI4MDQ0NTU1WjAYMRYwFAYD VQQDEw02NzNlYmIwMy1kYTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnxjRC1J6h5aQafbfoJdHt3S9EThGmJA/7npjRPftzlKfBIydG+i7GSKxmCY qm4+3D91jhMLdIS7uVzRCrw4ksZA9lC22ZDg1ia3jtfUEgAbEUtPARe/88fMUBiV EQPdSK/XWbpTCT/tgTXgu3JIuIYREty5W302pKC1+VXtDOsX4CfFRwMHM3jWRXK6 Zw8CFb9M62DLBNIMrqN8aXGBQkei8bnro4G7zAQQziwWetME/6ASob7MmvPk34rq iuZM1lMmgrsptA5oCNbyTlK4xkmsN1uJeR8A+ykSZpZVvWILaWZpwoU/XH7QJEUY 0Fl+eBIEMrrPPpN7LqzZ8bLlGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFw2AZjv 6dq6bL2iBDRkmAroKu0HMB8GA1UdIwQYMBaAFJEvtfc1HPmPuWdFH+7a9J8Ujho6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80RkQ1OTQyNEUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9rUy0xOXpVYy1ZLTVaMFVmN3RyMG54U09H am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTLTE5elVjLVktNVowVWY3dHIwbnhTT0dqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80RkQ1OTQyNEUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9rUy0xOXpVYy1Z LTVaMFVmN3RyMG54U09Ham8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC21JEYA28gNuEpOhXGOgfBWqOuh57nc2QukhAjAxuogNWEwDuBcbJf cASfjdaKUNqE8OMukJJ4aJQYWkUDd008fVurjBOWvWd5v75W1ryM0FkgCMLWCNDA ZQx8vC7K/4UrGZx0mGSJ0W0PRxtBodlvYw3zYCb2x0wJ2i3i5f0a1nWYvR3NVDy/ 5NE3FGqvy9OT6DjL3WylDbiNpeKJP4k+F8bgFxvC3sviewJuIlrtVDutLSrIrvH6 r4fDvN/LyKZ6b+o5Xbq6sBehSQPb+MxwrwH8N2zsjA4un3Ua/gtqhex0Yii81QIj 1Ba0H16N/I6oB5mVf0vP0FuLGaczeDtP -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:50 2024 by rpki-client on console-fra.rpki-client.org