$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: xfOxaUzM5F/xXH02rvZ8cVIkJQFu82yfNwEq8XHbbT0= Subject key identifier: 7F:CD:DC:89:74:4A:62:D5:BF:5C:C4:3B:72:1C:DD:B1:EF:07:94:3B Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: 2A Signing time: Thu 21 Nov 2024 05:48:46 +0000 Manifest this update: Thu 21 Nov 2024 05:48:45 +0000 Manifest next update: Thu 28 Nov 2024 05:48:45 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: p7qg5exnngcE7rukprU+/mt5LNmvmQ+8OyhdEY2QlGQ=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: v8gSdO2Oyevi0udRA9oSIzZPAk2F5XphTGY0llKdCYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Nov 21 05:48:45 2024 GMT Not After : Nov 28 05:48:45 2024 GMT Subject: CN=673ec9be-925c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:32:b1:2d:fb:9d:e6:a9:2f:1d:d7:0b:49:0e: 4b:64:53:e9:fa:5d:46:58:4b:28:07:3b:68:ed:b7: 94:bb:74:f3:30:5a:9e:d6:b6:3e:fe:8d:24:94:17: 28:a4:db:df:d0:6b:53:f0:9d:d5:26:bc:21:74:c3: 57:d4:bc:0c:1b:67:a7:3f:1e:ad:71:8a:9c:53:55: 1e:82:2d:15:4e:f4:5f:5e:20:73:34:88:cb:29:d2: 19:81:af:f4:30:b5:85:47:4d:39:f0:a0:24:10:29: de:d7:e2:aa:6a:eb:00:a0:54:17:bb:8f:ca:77:cd: 05:d8:71:c4:cf:24:00:0a:3e:23:d8:b9:8c:4f:55: e1:38:dc:2d:90:e9:ff:a6:02:4b:b3:62:f1:44:b6: 7d:55:2e:f4:f5:95:fb:be:b1:31:00:8d:08:1e:d1: 65:07:96:c8:17:28:18:ae:60:18:33:a3:ee:76:53: 24:9a:66:2b:3f:a1:c1:86:62:76:00:d6:06:aa:f1: 38:23:54:ab:ee:e5:68:b5:30:3d:15:63:b0:9e:47: 2a:df:1a:43:09:f6:b6:a9:5e:98:0f:c6:f2:cc:8f: 11:91:34:ac:c2:be:07:e4:e3:14:4c:9a:af:a3:26: 35:de:3c:6d:7a:77:35:b2:02:97:40:bb:2b:1c:a9: a1:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:CD:DC:89:74:4A:62:D5:BF:5C:C4:3B:72:1C:DD:B1:EF:07:94:3B X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:14:9a:5f:6e:de:ab:eb:71:5d:f5:05:f1:5d:8c:e9:19:8f: ae:ad:95:cb:ed:71:dc:18:2a:46:21:83:ad:d9:f2:b2:8d:25: bf:46:3e:75:53:20:56:6e:1a:7e:e1:04:a9:b2:da:91:df:b7: 6e:fd:01:a0:1d:e3:f9:f4:27:0f:95:63:76:23:ba:de:da:80: 0a:49:29:be:cb:3d:10:91:9d:fd:b7:50:c5:79:f4:75:1a:30: 62:bc:45:ce:1b:4f:9b:47:86:b5:72:94:cd:13:a7:d0:d9:f7: c4:23:d0:d3:22:ea:e3:ec:a1:ce:22:66:36:55:bb:94:26:b3: 69:08:d1:ad:7a:1f:04:cc:48:e4:a1:73:da:88:7f:04:f9:25: 48:71:99:bc:07:6d:ce:82:75:3e:e7:0e:d2:32:c1:02:db:2d: fd:c6:a5:bb:02:28:fc:94:e0:74:f0:4b:f5:42:27:54:ec:36: 7f:5a:d4:34:ef:3c:15:38:91:c9:88:a5:2b:7f:f0:bf:3a:08: 89:b9:d0:2f:65:21:15:38:21:32:88:e2:95:0f:9c:35:a7:ab: a3:e7:19:e4:59:6b:5e:06:c6:76:1d:2d:ef:0f:e1:3c:22:01: 3c:40:01:a7:14:63:c3:0c:60:f5:18:0d:80:08:13:1f:9c:ba: 0e:78:e9:67 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OUI4OTExMC8GA1UEBRMoMjkwMzdCQkY5MkYyQjBGNEMzMzBBMUNERDRBNzYyNTZD RDdBNTQyMjAeFw0yNDExMjEwNTQ4NDVaFw0yNDExMjgwNTQ4NDVaMBgxFjAUBgNV BAMTDTY3M2VjOWJlLTkyNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfMrEt+53mqS8d1wtJDktkU+n6XUZYSygHO2jtt5S7dPMwWp7Wtj7+jSSUFyik 29/Qa1PwndUmvCF0w1fUvAwbZ6c/Hq1xipxTVR6CLRVO9F9eIHM0iMsp0hmBr/Qw tYVHTTnwoCQQKd7X4qpq6wCgVBe7j8p3zQXYccTPJAAKPiPYuYxPVeE43C2Q6f+m AkuzYvFEtn1VLvT1lfu+sTEAjQge0WUHlsgXKBiuYBgzo+52UySaZis/ocGGYnYA 1gaq8TgjVKvu5Wi1MD0VY7CeRyrfGkMJ9rapXpgPxvLMjxGRNKzCvgfk4xRMmq+j JjXePG16dzWyApdAuyscqaEjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUf83ciXRK YtW/XMQ7chzdse8HlDswHwYDVR0jBBgwFoAUKQN7v5LysPTDMKHN1KdiVs16VCIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5Qjg5LzQzNjdDMjBFNkMx ODExRUZBQjZCNjkwQ0M0RjlBRTAyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZD SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS1FON3Y1THlzUFRETUtITjFLZGlWczE2VkNJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5 Qjg5LzQzNjdDMjBFNkMxODExRUZBQjZCNjkwQ0M0RjlBRTAyL0tRTjd2NUx5c1BU RE1LSE4xS2RpVnMxNlZDSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJcUml9u3qvrcV31BfFdjOkZj66tlcvtcdwYKkYhg63Z8rKNJb9GPnVT IFZuGn7hBKmy2pHft279AaAd4/n0Jw+VY3Yjut7agApJKb7LPRCRnf23UMV59HUa MGK8Rc4bT5tHhrVylM0Tp9DZ98Qj0NMi6uPsoc4iZjZVu5Qms2kI0a16HwTMSOSh c9qIfwT5JUhxmbwHbc6CdT7nDtIywQLbLf3GpbsCKPyU4HTwS/VCJ1TsNn9a1DTv PBU4kcmIpSt/8L86CIm50C9lIRU4ITKI4pUPnDWnq6PnGeRZa14GxnYdLe8P4Twi ATxAAacUY8MMYPUYDYAIEx+cug546Wc= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:52 2024 by rpki-client on console-fra.rpki-client.org