$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: xAaWGrf4jxYxJCZoD140JSOXemzv2xSzm5pz6x/lpYc= Subject key identifier: B9:79:F7:30:22:CF:69:05:40:18:A3:D3:0F:AE:10:A8:72:1E:55:83 Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0BB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0BA8 Signing time: Fri 22 Nov 2024 18:42:50 +0000 Manifest this update: Fri 22 Nov 2024 18:42:50 +0000 Manifest next update: Fri 29 Nov 2024 18:42:50 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: w9vr79q4miBiOha5Oar7l9U8nrZ4EELRL8am1By8VK8=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: KB7PskjjZpvlmJB1Ro3HLdROD0xauXaxZy0otkkd9Bs=) 3: A1A3D7886B9911EF898D4645C4F9AE02.roa (hash: RFkMnKmypwqhoKuW5rUexAXXk8MOX8lKq4I17M92bNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2998 (0xbb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Nov 22 18:42:50 2024 GMT Not After : Nov 29 18:42:50 2024 GMT Subject: CN=6740d0aa-cf23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2c:82:ea:7d:d4:b0:00:54:f8:3b:81:42:14: 0e:5f:51:fb:a4:4d:8c:f4:15:ad:80:79:01:d8:bb: 4e:8d:bf:db:11:da:e7:db:fa:1b:e2:46:84:86:40: 51:ac:54:d4:ff:d0:93:25:b2:fa:0c:06:dd:d3:b9: f5:54:42:c7:b2:f9:2f:63:44:11:5f:e2:f3:d3:54: eb:ff:62:97:39:af:71:15:55:52:6d:dc:41:72:51: ec:f3:f8:de:ee:31:d6:2f:f3:3b:67:7c:59:9c:ac: 94:f1:85:43:c0:5c:a7:28:57:49:15:38:f4:a3:97: e9:f8:69:59:e7:91:71:bc:15:99:b0:03:9c:47:9b: 66:a3:18:52:49:70:94:e8:e6:15:04:fa:85:d0:8d: ed:50:ce:ea:c7:ad:e3:07:8c:8e:5a:de:7a:6a:5d: a4:cd:9b:80:ed:ab:20:93:6c:8c:f2:65:55:bd:c7: 14:51:6c:4c:72:a8:b6:33:b2:cd:62:8d:fb:8d:6e: 5a:69:29:e9:a9:4e:12:7f:2c:9f:ab:e4:6d:b4:0d: 12:e2:5f:27:f3:c0:05:2e:86:14:5c:ca:7a:f4:32: ec:94:ef:2a:2c:ed:8e:77:89:fd:9f:68:37:49:4c: 1c:09:06:18:25:0d:44:89:8e:5b:b6:48:84:5e:68: a3:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:79:F7:30:22:CF:69:05:40:18:A3:D3:0F:AE:10:A8:72:1E:55:83 X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:08:79:85:a9:55:5e:3c:ab:e1:57:9a:a7:58:ba:8e:26:cc: 94:0c:bb:50:32:da:86:8f:8e:7b:5a:fb:b1:41:3a:33:4a:30: a9:5a:23:c0:12:bf:39:00:89:7d:7c:46:94:07:51:d1:29:08: 6f:88:2d:f8:33:92:42:11:d2:06:f0:7c:45:13:30:62:7b:74: 9f:ff:f4:d0:8f:36:c0:dc:4e:f4:2b:c2:ba:b2:4d:0e:24:c3: 76:c9:28:81:ab:b1:d5:ac:cc:49:88:88:fb:b2:a9:75:65:31: 1c:6d:35:9e:de:cf:2a:45:75:58:a3:48:40:8e:30:a9:0a:54: c4:0b:ed:fb:1a:48:9f:23:f8:b2:65:4a:4f:85:82:48:a8:fd: c3:52:ef:16:89:9a:cc:0c:5a:72:de:76:ee:87:c9:88:8b:bc: c3:ad:03:b3:3b:ca:a5:65:aa:02:40:29:c1:12:07:32:a8:bb: a1:32:ee:06:8d:4b:05:f0:cc:11:06:88:f9:84:ba:27:ea:2e: 24:b4:41:44:19:c0:4d:96:aa:71:1e:0d:06:36:9d:01:1b:f9: b6:af:6e:90:b5:2e:2e:4b:92:35:f4:b5:7a:59:72:14:33:dc: 10:d3:b2:2a:a8:b4:f2:d2:fa:85:bd:47:9f:18:25:78:31:9e: 85:c4:68:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjQxMTIyMTg0MjUwWhcNMjQxMTI5MTg0MjUwWjAYMRYwFAYD VQQDEw02NzQwZDBhYS1jZjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyyC6n3UsABU+DuBQhQOX1H7pE2M9BWtgHkB2LtOjb/bEdrn2/ob4kaEhkBR rFTU/9CTJbL6DAbd07n1VELHsvkvY0QRX+Lz01Tr/2KXOa9xFVVSbdxBclHs8/je 7jHWL/M7Z3xZnKyU8YVDwFynKFdJFTj0o5fp+GlZ55FxvBWZsAOcR5tmoxhSSXCU 6OYVBPqF0I3tUM7qx63jB4yOWt56al2kzZuA7asgk2yM8mVVvccUUWxMcqi2M7LN Yo37jW5aaSnpqU4Sfyyfq+RttA0S4l8n88AFLoYUXMp69DLslO8qLO2Od4n9n2g3 SUwcCQYYJQ1EiY5btkiEXmijAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLl59zAi z2kFQBij0w+uEKhyHlWDMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8CHmFqVVePKvhV5qnWLqOJsyUDLtQMtqGj457WvuxQTozSjCpWiPA Er85AIl9fEaUB1HRKQhviC34M5JCEdIG8HxFEzBie3Sf//TQjzbA3E70K8K6sk0O JMN2ySiBq7HVrMxJiIj7sql1ZTEcbTWe3s8qRXVYo0hAjjCpClTEC+37GkifI/iy ZUpPhYJIqP3DUu8WiZrMDFpy3nbuh8mIi7zDrQOzO8qlZaoCQCnBEgcyqLuhMu4G jUsF8MwRBoj5hLon6i4ktEFEGcBNlqpxHg0GNp0BG/m2r26QtS4uS5I19LV6WXIU M9wQ07IqqLTy0vqFvUefGCV4MZ6FxGgq -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org