$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: sdtOehtkqcrDT5oFU2cOoi/jHKHYVIgXwqt8VkUOwaA= Subject key identifier: 17:8E:0F:EC:30:87:EB:9E:1C:E1:A5:5E:46:96:ED:18:8E:21:CF:C0 Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: E8 Signing time: Thu 21 Nov 2024 03:34:01 +0000 Manifest this update: Thu 21 Nov 2024 03:34:01 +0000 Manifest next update: Thu 28 Nov 2024 03:34:01 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: zjyF1aKpqkVamSuA31tGoAs+UlDQrIOLi0G5JFSkqwk=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: D2jnJ061deT1FgcnPcnAa54o8jUyuQQ7FJDAZ8ZL8D4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Nov 21 03:34:01 2024 GMT Not After : Nov 28 03:34:01 2024 GMT Subject: CN=673eaa29-f2bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:03:8e:1e:06:fd:81:4b:2e:93:99:ee:e9:82: c2:3f:e9:71:8c:8c:39:b9:e2:3a:e4:d8:77:ea:6d: 3e:77:1c:c7:01:64:25:af:95:37:5a:cc:70:b7:c9: ab:cc:d1:2f:8b:58:5f:85:69:5d:21:85:13:5d:38: 9d:3f:6f:e8:f1:70:b1:b7:27:19:92:f9:f5:a1:67: 5b:7d:50:9d:ac:8e:fb:5b:7a:01:42:a3:34:3d:41: c5:9a:f6:0a:76:da:0f:98:0b:24:f1:24:56:71:d6: 27:98:9d:ef:d2:b7:3d:2f:61:fe:72:0d:09:60:28: d8:83:dd:a6:55:d8:6c:ed:62:6e:68:e2:53:b3:d3: a5:77:99:d6:e2:3c:d8:a3:94:8f:66:29:4d:0b:fb: 1a:90:92:7a:89:6b:1f:33:f8:99:e6:a7:40:15:f0: 2a:ba:45:4c:a6:49:ad:12:74:c5:8c:a0:72:2d:9a: 3e:2f:b9:7c:5f:e2:d6:37:b7:52:4c:ab:95:f6:6c: c5:fe:ea:b3:50:85:b9:9b:e8:6c:9b:40:e9:93:b1: e2:5a:32:8f:ce:f2:41:ad:ad:59:65:38:67:02:b4: 71:ed:8a:08:33:c8:d1:a5:26:bd:e5:79:8d:a7:95: cb:e5:2c:1d:8d:0d:e1:54:0c:54:0b:e0:c8:43:98: 03:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:8E:0F:EC:30:87:EB:9E:1C:E1:A5:5E:46:96:ED:18:8E:21:CF:C0 X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:06:d9:e5:6c:78:6b:f6:f7:49:bd:d3:09:d6:39:ab:ff:72: 8e:f1:bf:55:25:fb:d1:d3:aa:7a:e5:fc:86:89:6f:c2:96:ce: 9b:4a:5e:78:5b:5e:fd:1d:2c:18:1f:c4:7e:ac:54:41:d1:7c: d0:07:ef:0b:6e:8c:cf:e3:95:c9:4d:95:77:d5:d1:47:9a:3d: b8:d7:34:68:d8:cc:4c:11:83:bf:67:9a:56:48:bc:7e:72:3b: d4:5f:9e:fe:fb:17:25:17:14:1a:9d:c1:38:c3:fe:58:0f:a6: 0d:34:01:e7:ab:08:47:18:12:b5:b6:1e:92:63:b1:68:71:32: e8:94:ec:32:de:cd:21:b0:18:80:d3:79:d4:fe:e1:0c:fe:76: 0c:e6:9d:f4:b3:90:af:2f:ce:90:66:35:44:ee:8f:d8:d8:f1: d7:a2:30:1c:83:a3:28:9b:e4:01:df:f2:e5:40:bf:6e:db:8e: 54:6d:80:bf:68:56:99:8a:5e:02:0a:9e:66:73:3c:0e:5a:02: d5:89:aa:1a:67:4a:6c:6f:50:b8:d8:47:24:f5:0a:6d:ae:f2: 61:ab:ed:93:57:ce:d9:85:6b:26:60:b1:e7:fe:28:0e:27:35: 25:b8:9e:dd:97:2d:46:b2:0f:c3:42:f8:90:d5:6c:0b:bc:93: f0:b0:8d:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjQxMTIxMDMzNDAxWhcNMjQxMTI4MDMzNDAxWjAYMRYwFAYD VQQDEw02NzNlYWEyOS1mMmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmgOOHgb9gUsuk5nu6YLCP+lxjIw5ueI65Nh36m0+dxzHAWQlr5U3Wsxwt8mr zNEvi1hfhWldIYUTXTidP2/o8XCxtycZkvn1oWdbfVCdrI77W3oBQqM0PUHFmvYK dtoPmAsk8SRWcdYnmJ3v0rc9L2H+cg0JYCjYg92mVdhs7WJuaOJTs9Old5nW4jzY o5SPZilNC/sakJJ6iWsfM/iZ5qdAFfAqukVMpkmtEnTFjKByLZo+L7l8X+LWN7dS TKuV9mzF/uqzUIW5m+hsm0Dpk7HiWjKPzvJBra1ZZThnArRx7YoIM8jRpSa95XmN p5XL5SwdjQ3hVAxUC+DIQ5gDZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBeOD+ww h+ueHOGlXkaW7RiOIc/AMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHBtnlbHhr9vdJvdMJ1jmr/3KO8b9VJfvR06p65fyGiW/Cls6bSl54 W179HSwYH8R+rFRB0XzQB+8LbozP45XJTZV31dFHmj241zRo2MxMEYO/Z5pWSLx+ cjvUX57++xclFxQancE4w/5YD6YNNAHnqwhHGBK1th6SY7FocTLolOwy3s0hsBiA 03nU/uEM/nYM5p30s5CvL86QZjVE7o/Y2PHXojAcg6Mom+QB3/LlQL9u245UbYC/ aFaZil4CCp5mczwOWgLViaoaZ0psb1C42Eck9QptrvJhq+2TV87ZhWsmYLHn/igO JzUluJ7dly1Gsg/DQviQ1WwLvJPwsI3/ -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:18 2024 by rpki-client on console-ams.rpki-client.org