$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft File: KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft (raw, json) Hash identifier: zSkBHdDv7MAgI2CZKD37LjQvxqm7BNTmhwmE4iqbV3M= Subject key identifier: 9C:9B:C2:30:2B:DD:D8:25:3B:82:AE:68:2A:F8:B4:12:B1:B3:D7:F3 Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0E2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft Manifest number: 0DE5 Signing time: Fri 22 Nov 2024 17:50:44 +0000 Manifest this update: Fri 22 Nov 2024 17:50:43 +0000 Manifest next update: Fri 29 Nov 2024 17:50:43 +0000 Files and hashes: 1: KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl (hash: RKIYre4iJxrygHLLTlEo71kxJfnyLYfj6KTIBljQUu4=) 2: 433917A83D8211EEA0E4DD46C4F9AE02.roa (hash: q8VjbfesBfjBXJ1O+TtlGTvZbuy2Q6Gq6lc9iUM1cKc=) 3: 5915642864AB11EEBFD54F2EC4F9AE02.roa (hash: L+aUrfi/IHEm4FCCzrEf6AdJOcO/5KYjXAI+VHu0xCQ=) 4: 40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa (hash: mROz4ndcci/lFowjKQt8EppikBLu2fjIlvGiFhvH3EY=) 5: 427DCF0C3D8211EEA0E4DD46C4F9AE02.roa (hash: EXUVL2zA/J8QBofGrTImrqh06PPMbUwS8kq7MDyN79I=) 6: 41A09C683D8211EEA0E4DD46C4F9AE02.roa (hash: LliQbQ1JrB45v11EWXMUYtz6YL9U5wdtSwrWMJkpnsM=) 7: 3FE88D863D8211EEA0E4DD46C4F9AE02.roa (hash: GkH732I1xtgGbCxpuKwxGejcreu2f5sOzAx51TVl89I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3626 (0xe2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Nov 22 17:50:43 2024 GMT Not After : Nov 29 17:50:43 2024 GMT Subject: CN=6740c473-f5f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f6:f0:33:02:9b:80:80:20:ff:04:4e:b1:b6: 01:2c:ca:55:e1:a5:ff:1e:3c:84:cd:d7:f8:8d:43: e2:64:f7:60:b7:1d:a5:a2:c6:c2:16:50:d4:96:5a: e1:c9:76:50:c3:13:ac:0e:90:3d:53:20:ec:c4:c1: b6:e6:8d:c5:12:76:fd:bc:56:1d:7b:0c:03:4c:0c: 24:bf:48:05:c8:78:34:4f:51:1b:a6:83:56:7b:e5: d0:6a:93:6c:a8:5f:37:ec:c8:f6:cd:b8:95:24:4a: d3:b4:1c:9e:32:51:31:3c:8a:56:4c:07:fe:48:80: 9e:e5:50:ba:a7:e8:64:1a:7d:fb:1f:eb:49:75:53: 1c:a2:07:1b:be:fc:3f:ac:5b:33:9d:59:b3:26:f1: b9:4f:e8:25:a4:f9:91:54:93:e0:f9:05:f4:13:54: bb:63:ff:30:46:a1:c5:77:bb:cb:6c:71:5c:b1:ed: 57:bd:02:44:e9:0a:ce:44:cb:62:e3:a6:6a:c6:51: 2a:db:cd:fa:3e:4e:bc:67:e7:59:2b:1d:0c:65:af: 59:4f:69:1b:fd:67:3e:e4:8a:4a:07:9f:05:18:6a: 96:80:45:1f:a3:fe:a7:1e:71:a3:e5:ce:a5:39:c0: 9d:ff:ce:8e:35:b2:46:dc:f9:e2:83:21:97:e0:7f: 10:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:9B:C2:30:2B:DD:D8:25:3B:82:AE:68:2A:F8:B4:12:B1:B3:D7:F3 X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:cb:63:b6:bd:45:02:c5:fe:44:9d:f4:fe:e6:b3:1c:31:69: 57:64:e1:79:d5:b9:51:ad:31:f7:1c:1f:0f:29:cd:5b:cb:02: 59:d9:4c:b3:d7:94:04:80:84:81:de:f1:10:0f:b0:5d:a9:c9: 66:19:6f:e6:1c:8b:3c:b2:ce:03:da:bb:3c:0a:29:fd:12:f4: c3:7a:ec:e6:28:05:7f:70:ec:ab:92:d7:ab:d1:9d:dc:19:1a: b2:69:34:67:6a:08:c7:28:60:df:2a:63:86:c9:f1:ea:e6:ff: 69:9e:93:f5:11:c5:76:f2:45:e6:6d:40:fd:33:a6:85:62:a8: 14:f5:7c:3a:42:50:20:30:4f:da:21:5f:4f:16:2c:ba:53:1c: 8c:1f:2b:ab:cd:e9:83:b6:64:1c:cc:f0:63:ac:03:a7:7a:7e: c4:3b:e9:80:89:99:9f:ef:cd:f2:64:f7:87:0f:a8:b0:9b:67: 58:75:4f:69:ce:ca:d6:64:06:c1:1a:5e:8d:12:ff:13:a6:9c: 21:41:f6:76:f9:a4:bf:a2:3b:cf:e7:3b:28:b0:ba:ba:24:fb: 9b:57:9e:12:a1:95:99:13:05:17:3f:36:bb:b5:e8:20:db:68: 10:99:c1:30:69:c6:f2:27:c2:3a:18:3b:34:83:07:a5:3f:3a: c9:2e:1e:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjQxMTIyMTc1MDQzWhcNMjQxMTI5MTc1MDQzWjAYMRYwFAYD VQQDEw02NzQwYzQ3My1mNWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvbwMwKbgIAg/wROsbYBLMpV4aX/HjyEzdf4jUPiZPdgtx2losbCFlDUllrh yXZQwxOsDpA9UyDsxMG25o3FEnb9vFYdewwDTAwkv0gFyHg0T1EbpoNWe+XQapNs qF837Mj2zbiVJErTtByeMlExPIpWTAf+SICe5VC6p+hkGn37H+tJdVMcogcbvvw/ rFsznVmzJvG5T+glpPmRVJPg+QX0E1S7Y/8wRqHFd7vLbHFcse1XvQJE6QrORMti 46ZqxlEq2836Pk68Z+dZKx0MZa9ZT2kb/Wc+5IpKB58FGGqWgEUfo/6nHnGj5c6l OcCd/86ONbJG3PnigyGX4H8QvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJybwjAr 3dglO4KuaCr4tBKxs9fzMB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODY4Qy8zRkI5MzM2OEE5REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2 QmNZN3RXYmlBOFVkeEY0ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOy2O2vUUCxf5EnfT+5rMcMWlXZOF51blRrTH3HB8PKc1bywJZ2Uyz 15QEgISB3vEQD7BdqclmGW/mHIs8ss4D2rs8Cin9EvTDeuzmKAV/cOyrkter0Z3c GRqyaTRnagjHKGDfKmOGyfHq5v9pnpP1EcV28kXmbUD9M6aFYqgU9Xw6QlAgME/a IV9PFiy6UxyMHyurzemDtmQczPBjrAOnen7EO+mAiZmf783yZPeHD6iwm2dYdU9p zsrWZAbBGl6NEv8TppwhQfZ2+aS/ojvP5zsosLq6JPubV54SoZWZEwUXPza7tegg 22gQmcEwacbyJ8I6GDs0gwelPzrJLh7P -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org