$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft File: km2a3G-4c9dlu0EicoDB8RhG7hc.mft (raw, json) Hash identifier: WlN6BBiXPWijhWKvRB41e5HyXIaL1yL/nfiPrnrqN3o= Subject key identifier: 3E:5A:98:AD:83:98:BC:2E:B7:D0:19:D1:7A:B2:B3:D0:E9:5A:34:73 Authority key identifier: 92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 Certificate issuer: /CN=A91EBA0E/serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft Manifest number: 0149 Signing time: Thu 21 Nov 2024 02:40:58 +0000 Manifest this update: Thu 21 Nov 2024 02:40:57 +0000 Manifest next update: Thu 28 Nov 2024 02:40:57 +0000 Files and hashes: 1: km2a3G-4c9dlu0EicoDB8RhG7hc.crl (hash: nJEkDNmj5Z33f1dVAwLx4SLRFeUU2PaNz0n+UYSMc6s=) 2: BB2A40229BA811EF88DC4B0DC4F9AE02.roa (hash: mA4NPbgtdMFtne8pWaTtQYIX/GAm9AP8n2tobaAe+TE=) 3: 1B5E26228FA911EF90043A7CC4F9AE02.roa (hash: qnBQhpbL+In7Rm7axMxwi9nx/8GCpB92x1MFdrDnqbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA0E/serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Validity Not Before: Nov 21 02:40:57 2024 GMT Not After : Nov 28 02:40:57 2024 GMT Subject: CN=673e9dba-43f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9d:c9:27:65:71:16:69:ce:16:cd:e5:44:81: 06:37:fb:61:43:11:b6:47:52:07:69:a1:0e:43:8a: c1:8c:0d:13:0e:01:af:c7:d3:21:a7:52:f0:5c:a5: ba:4e:1e:64:2c:6a:23:6e:5a:ed:e0:af:07:74:06: 32:96:b4:a0:e0:00:cb:63:74:d9:42:5b:49:be:c8: 02:9c:20:50:f7:f4:2b:dd:90:f3:3f:f6:a8:89:07: d3:32:35:d9:61:05:0f:fa:d9:bb:49:c1:c0:34:68: 1a:dd:58:94:f8:27:f5:fc:f9:ee:05:f9:3b:07:2f: 40:2b:b7:2c:30:0f:1f:c7:42:4d:85:cd:31:08:7e: 80:ed:ce:e3:db:5e:1d:6a:dd:ad:55:34:3f:7a:0c: ca:d7:51:54:3a:db:aa:d2:8a:8e:79:83:58:b9:78: 1e:63:6c:80:f6:e5:c9:a4:90:00:77:aa:8d:7a:bc: 43:82:29:2f:0e:28:e1:17:cc:d2:bf:7b:3b:3c:e1: fd:c4:55:3a:10:2b:31:ab:2c:68:81:8d:ea:1f:3a: f3:a8:8b:e2:7e:53:84:b0:0d:14:e2:af:9a:92:ff: 85:eb:c7:ba:0d:f0:9c:2c:23:9e:e4:95:d9:2a:a0: 9a:40:d0:17:a2:5e:b9:1c:4d:4e:ca:49:a3:c0:a8: 95:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:5A:98:AD:83:98:BC:2E:B7:D0:19:D1:7A:B2:B3:D0:E9:5A:34:73 X509v3 Authority Key Identifier: keyid:92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:30:5b:fd:be:fb:d3:db:6f:a4:8e:e9:ed:b2:ef:2d:fd:54: ba:27:50:22:09:87:cc:c8:8d:8b:d2:4d:9d:3a:a2:7b:be:0e: fe:90:94:44:c3:a3:ed:1d:d1:e0:2b:b3:b4:a0:5d:a3:65:73: 07:41:ac:67:02:a0:9c:a9:89:9e:7a:d9:1b:2d:e9:f4:da:ae: 2e:0f:e0:04:13:03:ca:87:50:90:85:26:2a:a2:8a:01:e5:02: 7c:f5:a8:28:d4:f0:fd:2e:88:7c:4e:df:dd:4c:c4:1f:3c:52: c3:f1:99:3c:10:8a:05:06:38:8d:25:98:48:11:d4:3f:2b:77: 0c:b3:90:eb:f6:93:b0:d6:62:07:1c:c7:bc:51:4a:47:8a:36: 3a:44:b5:6a:cb:a6:46:89:79:db:37:96:d3:b5:a6:a1:44:3a: fb:d8:19:68:10:4a:bf:72:f4:26:51:ac:b4:93:6e:91:7b:1e: 37:08:78:0d:ce:e5:67:11:3b:bf:af:5c:82:df:24:f4:4b:0a: 7d:df:89:8b:a1:e8:5d:c6:c6:13:87:8f:12:de:ef:57:25:f4: d7:8a:19:de:11:24:3b:78:35:07:d8:fb:42:84:1d:2a:0d:a1: 70:d6:63:3b:29:e5:00:95:61:d6:5f:35:2f:0e:7b:0c:cf:b8: 7e:1e:b5:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMEUxMTAvBgNVBAUTKDkyNkQ5QURDNkZCODczRDc2NUJCNDEyMjcyODBDMUYx MTg0NkVFMTcwHhcNMjQxMTIxMDI0MDU3WhcNMjQxMTI4MDI0MDU3WjAYMRYwFAYD VQQDEw02NzNlOWRiYS00M2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3p3JJ2VxFmnOFs3lRIEGN/thQxG2R1IHaaEOQ4rBjA0TDgGvx9Mhp1LwXKW6 Th5kLGojblrt4K8HdAYylrSg4ADLY3TZQltJvsgCnCBQ9/Qr3ZDzP/aoiQfTMjXZ YQUP+tm7ScHANGga3ViU+Cf1/PnuBfk7By9AK7csMA8fx0JNhc0xCH6A7c7j214d at2tVTQ/egzK11FUOtuq0oqOeYNYuXgeY2yA9uXJpJAAd6qNerxDgikvDijhF8zS v3s7POH9xFU6ECsxqyxogY3qHzrzqIviflOEsA0U4q+akv+F68e6DfCcLCOe5JXZ KqCaQNAXol65HE1OykmjwKiVpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5amK2D mLwut9AZ0Xqys9DpWjRzMB8GA1UdIwQYMBaAFJJtmtxvuHPXZbtBInKAwfEYRu4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkEwRS9EQkJFRDIwNkMw MDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5ZGx1MEVpY29EQjhSaEc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ttMmEzRy00YzlkbHUwRWljb0RCOFJoRzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkEwRS9EQkJFRDIwNkMwMDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5 ZGx1MEVpY29EQjhSaEc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7MFv9vvvT22+kjuntsu8t/VS6J1AiCYfMyI2L0k2dOqJ7vg7+kJRE w6PtHdHgK7O0oF2jZXMHQaxnAqCcqYmeetkbLen02q4uD+AEEwPKh1CQhSYqoooB 5QJ89ago1PD9Loh8Tt/dTMQfPFLD8Zk8EIoFBjiNJZhIEdQ/K3cMs5Dr9pOw1mIH HMe8UUpHijY6RLVqy6ZGiXnbN5bTtaahRDr72BloEEq/cvQmUay0k26Rex43CHgN zuVnETu/r1yC3yT0Swp934mLoehdxsYTh48S3u9XJfTXihneESQ7eDUH2PtChB0q DaFw1mM7KeUAlWHWXzUvDnsMz7h+HrUh -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:18 2024 by rpki-client on console-ams.rpki-client.org