$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: PDZinxEPHdIDXyT1qCMwUsMVGRmSWfgIRhSz7AXUb6M= Subject key identifier: 04:95:4C:03:F2:6D:2A:EB:C0:CC:85:7A:8D:8C:D5:30:8C:E1:75:3D Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: 1B Signing time: Wed 23 Oct 2024 06:36:50 +0000 Manifest this update: Wed 23 Oct 2024 06:36:50 +0000 Manifest next update: Wed 30 Oct 2024 06:36:50 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: v2tlW+7/Tr1pj9mU3U/SJd50UumgOE6rrq0aWF3n73M=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: v8gSdO2Oyevi0udRA9oSIzZPAk2F5XphTGY0llKdCYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Oct 23 06:36:50 2024 GMT Not After : Oct 30 06:36:50 2024 GMT Subject: CN=67189982-333a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:26:e9:33:85:eb:23:26:a5:92:28:72:2e:4c: 1d:31:32:53:c0:3f:f8:5e:43:64:7a:7f:d4:d1:a1: 67:7f:3b:d0:9a:fc:d2:2b:85:19:7c:92:2b:b6:fe: 46:40:6c:38:d5:61:01:db:c4:e3:58:74:4f:2e:2a: 1c:63:e0:29:0a:23:aa:88:2d:9e:cb:7a:69:c2:63: ae:bb:0b:62:83:e5:85:4b:47:5a:d2:85:1c:a5:49: 19:6f:a6:5d:59:23:58:4d:87:b1:3f:13:60:f7:06: f0:e1:c6:08:69:4e:2b:11:97:32:ef:f5:2d:11:93: 27:93:c5:57:d0:a5:7a:1a:fb:e1:49:83:20:a7:b5: e8:5b:5c:e1:05:06:23:a5:c5:23:82:42:82:8f:35: 26:d1:22:3b:98:c1:a5:62:10:a2:b9:86:67:2f:7f: 25:bd:27:bb:cb:22:8a:d2:77:0d:c8:c2:aa:83:7a: b9:39:5b:66:60:4d:eb:07:97:51:a5:6c:de:85:f2: 58:da:12:66:57:43:7b:3e:90:ba:a8:de:94:d0:44: 29:49:53:88:ed:ab:ee:fc:bb:ea:ae:ff:28:dd:6f: eb:b8:ce:e1:53:7a:c9:d6:09:dc:47:7c:7b:5c:97: ee:ce:9a:15:6c:f9:b8:15:28:de:0b:85:e8:2d:28: ef:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:95:4C:03:F2:6D:2A:EB:C0:CC:85:7A:8D:8C:D5:30:8C:E1:75:3D X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:1c:40:8f:fd:8b:9a:05:56:64:6a:b7:c7:01:fc:85:b1:64: a1:ee:9a:e6:1d:3f:5b:2d:a4:20:40:cd:2a:d8:46:04:20:70: 66:0b:81:01:1b:39:89:0a:ad:6a:d4:99:a9:20:65:fd:eb:e5: 30:55:75:59:80:79:72:a1:7e:11:be:20:f1:b0:e2:1f:c5:db: 07:da:ea:be:c1:d4:32:ae:6c:9b:cd:ff:98:eb:5a:7d:59:86: e6:bd:0e:05:b3:7d:e8:9a:f9:d6:66:c4:93:d7:5c:ee:2b:67: 8d:74:e6:35:88:d6:d1:a7:a4:1c:3b:28:1d:94:c2:ae:a9:72: aa:06:36:3b:df:9f:cc:2d:39:75:ad:c3:a4:32:c5:33:84:8b: f3:55:79:8b:02:17:9f:b5:04:a5:fa:9f:41:b2:5b:64:76:a2: 87:58:39:db:98:81:01:40:f4:d8:e5:92:ae:67:8f:4d:c6:9a: 3b:94:b7:b6:8d:ab:18:f5:70:fd:8e:fd:c5:f7:59:27:22:17: d7:cd:51:49:23:27:a8:cd:30:aa:9b:1f:6c:b5:69:b5:94:38: af:a1:e5:14:ac:0b:bc:1f:d1:a7:97:e5:22:a3:8c:b6:8d:bd: 7d:4d:12:48:11:0c:7b:a9:92:49:d4:15:2a:f4:52:ce:9b:85: 7d:72:c0:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OUI4OTExMC8GA1UEBRMoMjkwMzdCQkY5MkYyQjBGNEMzMzBBMUNERDRBNzYyNTZD RDdBNTQyMjAeFw0yNDEwMjMwNjM2NTBaFw0yNDEwMzAwNjM2NTBaMBgxFjAUBgNV BAMTDTY3MTg5OTgyLTMzM2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWJukzhesjJqWSKHIuTB0xMlPAP/heQ2R6f9TRoWd/O9Ca/NIrhRl8kiu2/kZA bDjVYQHbxONYdE8uKhxj4CkKI6qILZ7LemnCY667C2KD5YVLR1rShRylSRlvpl1Z I1hNh7E/E2D3BvDhxghpTisRlzLv9S0RkyeTxVfQpXoa++FJgyCntehbXOEFBiOl xSOCQoKPNSbRIjuYwaViEKK5hmcvfyW9J7vLIorSdw3IwqqDerk5W2ZgTesHl1Gl bN6F8ljaEmZXQ3s+kLqo3pTQRClJU4jtq+78u+qu/yjdb+u4zuFTesnWCdxHfHtc l+7OmhVs+bgVKN4LhegtKO+XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBJVMA/Jt KuvAzIV6jYzVMIzhdT0wHwYDVR0jBBgwFoAUKQN7v5LysPTDMKHN1KdiVs16VCIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5Qjg5LzQzNjdDMjBFNkMx ODExRUZBQjZCNjkwQ0M0RjlBRTAyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZD SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS1FON3Y1THlzUFRETUtITjFLZGlWczE2VkNJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5 Qjg5LzQzNjdDMjBFNkMxODExRUZBQjZCNjkwQ0M0RjlBRTAyL0tRTjd2NUx5c1BU RE1LSE4xS2RpVnMxNlZDSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFwcQI/9i5oFVmRqt8cB/IWxZKHumuYdP1stpCBAzSrYRgQgcGYLgQEb OYkKrWrUmakgZf3r5TBVdVmAeXKhfhG+IPGw4h/F2wfa6r7B1DKubJvN/5jrWn1Z hua9DgWzfeia+dZmxJPXXO4rZ4105jWI1tGnpBw7KB2Uwq6pcqoGNjvfn8wtOXWt w6QyxTOEi/NVeYsCF5+1BKX6n0GyW2R2oodYOduYgQFA9Njlkq5nj03GmjuUt7aN qxj1cP2O/cX3WSciF9fNUUkjJ6jNMKqbH2y1abWUOK+h5RSsC7wf0aeX5SKjjLaN vX1NEkgRDHupkknUFSr0Us6bhX1ywMM= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:27 2024 by rpki-client on console-fra.rpki-client.org