$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: aXyfQSxqEx2KaXIm4XWBqiI+9wkgxRqRbr4dqT8k/Yk= Subject key identifier: B1:67:F8:B9:1F:26:E2:F3:D9:14:98:17:99:25:1A:96:BC:5C:6F:C3 Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 02CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 02C9 Signing time: Thu 21 Nov 2024 00:39:47 +0000 Manifest this update: Thu 21 Nov 2024 00:39:47 +0000 Manifest next update: Thu 28 Nov 2024 00:39:47 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: +h5fi3ifDRgjp7Ax1hdbJzO6HXF2zjL2fKj9ios6SKQ=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: FD8mMbLhsLGNWUTDqXS2ge1jhJLxbO0CzgruTSg9Row=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 716 (0x2cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Nov 21 00:39:47 2024 GMT Not After : Nov 28 00:39:47 2024 GMT Subject: CN=673e8153-705f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ae:79:59:ef:b8:aa:d6:d9:32:84:94:d3:f2: 47:2b:e6:0c:0b:61:08:0c:2c:8a:6d:01:27:53:be: d3:72:70:a6:9d:c9:b8:b9:e6:5f:a5:17:3c:dd:90: 48:74:8f:3f:40:fd:ed:9f:83:72:99:09:6c:f7:c4: 93:23:60:5e:31:64:50:56:16:a1:c2:aa:a3:00:27: 94:5d:a7:7c:22:08:46:bb:03:c1:ce:66:62:17:5f: e2:6f:5d:4e:e4:b3:0c:45:17:11:65:67:b9:02:df: a9:0d:26:6c:e5:b4:1e:72:b4:57:7a:d4:3e:48:f4: db:1d:80:69:2a:20:2b:68:6f:a0:a4:29:82:8b:0e: 67:93:ab:d4:27:81:99:c0:be:fe:22:af:a9:46:87: 41:7d:b7:a8:f2:22:08:3e:5b:ce:00:6c:e4:7a:56: 42:6f:6e:0b:8a:3d:75:29:97:fb:9c:ef:9a:a2:6f: 36:9e:1a:ee:2e:a8:42:09:14:58:9e:7a:f5:56:ca: b8:7a:f6:bb:32:44:4f:88:d1:69:5c:33:8a:fe:98: 0b:10:3e:1f:db:61:ad:02:0c:41:fb:48:ca:94:bc: e3:44:29:54:23:a9:e2:a6:a9:a8:2f:9f:62:b1:4a: 3e:7f:14:81:16:1e:2c:2d:da:71:b7:53:2a:56:c1: d5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:67:F8:B9:1F:26:E2:F3:D9:14:98:17:99:25:1A:96:BC:5C:6F:C3 X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b3:93:7b:6a:30:23:b9:f4:92:4f:f2:69:84:82:ee:bf:00: 2b:1a:f0:64:1f:ac:68:25:df:30:2e:d7:6c:88:4e:24:fc:d4: d2:5f:51:0d:73:6b:f6:8a:99:40:ae:69:22:88:e9:f1:20:61: d2:f7:46:b5:08:97:96:41:d5:83:c6:31:1d:dd:dd:e2:fa:ab: cc:51:e1:69:8d:1c:8f:a2:65:ce:5d:58:0a:5b:c6:ec:0b:52: 08:26:a8:13:85:96:43:b1:67:ce:19:ac:60:07:9e:2a:88:d7: 8b:54:cf:b0:f5:f0:0c:08:9a:21:ab:f7:e0:a6:83:9b:6a:60: c5:b7:2e:5f:25:0d:16:60:26:3f:c6:f3:ac:3c:2d:0a:20:89: 20:c9:e6:8c:98:23:52:31:2d:6e:a6:3a:0e:c4:71:e5:82:3b: 6c:87:c1:ea:9e:8e:4b:cd:d1:99:8a:24:74:36:c5:e4:7e:a4: b8:e9:73:2c:76:ac:a2:08:58:2c:f6:68:ea:d8:15:5e:82:80: e9:a6:f7:d0:c9:4c:70:98:d7:6f:45:04:79:b2:f5:04:da:17: f9:af:24:7f:63:e7:66:14:30:f2:37:8f:36:b6:56:c7:94:a8: 60:29:18:5b:ea:d7:fa:32:cb:74:15:3c:77:d4:9c:e5:8b:7b: eb:d1:77:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjQxMTIxMDAzOTQ3WhcNMjQxMTI4MDAzOTQ3WjAYMRYwFAYD VQQDEw02NzNlODE1My03MDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya55We+4qtbZMoSU0/JHK+YMC2EIDCyKbQEnU77TcnCmncm4ueZfpRc83ZBI dI8/QP3tn4NymQls98STI2BeMWRQVhahwqqjACeUXad8IghGuwPBzmZiF1/ib11O 5LMMRRcRZWe5At+pDSZs5bQecrRXetQ+SPTbHYBpKiAraG+gpCmCiw5nk6vUJ4GZ wL7+Iq+pRodBfbeo8iIIPlvOAGzkelZCb24Lij11KZf7nO+aom82nhruLqhCCRRY nnr1Vsq4eva7MkRPiNFpXDOK/pgLED4f22GtAgxB+0jKlLzjRClUI6nipqmoL59i sUo+fxSBFh4sLdpxt1MqVsHVRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFn+Lkf JuLz2RSYF5klGpa8XG/DMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArs5N7ajAjufSST/JphILuvwArGvBkH6xoJd8wLtdsiE4k/NTSX1EN c2v2iplArmkiiOnxIGHS90a1CJeWQdWDxjEd3d3i+qvMUeFpjRyPomXOXVgKW8bs C1IIJqgThZZDsWfOGaxgB54qiNeLVM+w9fAMCJohq/fgpoObamDFty5fJQ0WYCY/ xvOsPC0KIIkgyeaMmCNSMS1upjoOxHHlgjtsh8Hqno5LzdGZiiR0NsXkfqS46XMs dqyiCFgs9mjq2BVegoDppvfQyUxwmNdvRQR5svUE2hf5ryR/Y+dmFDDyN482tlbH lKhgKRhb6tf6Mst0FTx31Jzli3vr0Xf7 -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:58 2024 by rpki-client on console-fra.rpki-client.org