$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft File: Km8SBBLYIPn_JM0F1ez0nmYtmco.mft (raw, json) Hash identifier: p+2ZzqdCJSyTT6wO9+yIE+yXHQQFeBKgX3vFW3RZJJo= Subject key identifier: F4:AC:8F:9A:B7:5D:D5:39:59:55:BA:55:2A:39:39:54:A8:BA:02:08 Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 1F1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft Manifest number: 1F0F Signing time: Fri 22 Nov 2024 16:01:13 +0000 Manifest this update: Fri 22 Nov 2024 16:01:13 +0000 Manifest next update: Fri 29 Nov 2024 16:01:13 +0000 Files and hashes: 1: Km8SBBLYIPn_JM0F1ez0nmYtmco.crl (hash: ykXMfPJ1H0L2Y8RGx4qkgZh6q9jMyeiq/2Hk5Zdr9hc=) 2: E352E0A2896F11E7BBF2923CC4F9AE02.roa (hash: C6sGcNivAhM8b7+hs2R4TWPNfdN5sOXAahaAosnvUZ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7964 (0x1f1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: Nov 22 16:01:13 2024 GMT Not After : Nov 29 16:01:13 2024 GMT Subject: CN=6740aac9-26df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:57:ac:43:20:78:ef:82:f3:43:bb:1e:a2:cf: f0:53:fa:05:01:00:fd:63:7b:c2:7f:0a:2b:a8:36: b3:71:e2:d6:70:28:95:19:9e:88:d2:90:c2:fd:71: 7c:28:30:b0:0d:82:60:6b:6c:92:db:ab:4b:de:be: 10:29:ab:a9:56:64:b8:a7:fc:1b:c5:b9:e1:d2:0f: 51:8e:eb:09:64:ca:b9:c9:38:4d:9a:ae:bd:27:57: 17:29:1b:f7:9a:19:d2:49:b8:b8:a9:fc:52:b8:98: 03:9d:7e:5e:22:63:82:b2:92:cf:48:9b:cb:e7:ce: 4a:62:3c:06:b0:c4:79:10:f1:ed:d7:f7:92:78:a9: 20:19:95:ea:1f:5b:91:11:66:87:11:ff:4f:60:a7: d4:01:8c:c8:73:b9:cd:fc:60:68:3c:b1:e6:96:58: 66:70:4a:a2:80:3a:21:76:06:0c:27:df:4e:20:81: 28:46:4a:f9:ca:4c:06:85:8b:b1:5b:6f:f3:17:85: 5c:b2:13:7c:78:bc:7b:3e:c1:34:0b:90:ac:4d:d9: 3d:d3:b4:54:35:30:1c:38:bf:e0:e4:fa:bc:7e:d6: dc:ba:42:45:a3:31:6d:9c:cf:25:66:00:15:8d:7f: ec:09:c7:cb:06:4a:b1:97:f7:6d:61:4e:4c:34:e1: 25:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:AC:8F:9A:B7:5D:D5:39:59:55:BA:55:2A:39:39:54:A8:BA:02:08 X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:b4:f6:8f:6b:b2:d8:f3:da:ca:b8:bc:75:3a:0d:3d:14:60: c3:a5:01:74:f8:91:12:4b:fa:d6:8b:62:68:74:b8:cd:2c:3f: a7:d4:b6:67:38:1c:cb:80:97:0a:54:82:b8:ad:35:31:0e:1f: 86:a1:df:c6:e7:5e:e0:a0:06:a4:13:15:63:c2:15:fa:e6:6f: bc:df:52:e7:26:05:38:25:e2:e8:f4:20:c5:b5:20:da:3b:eb: f0:a8:32:e0:46:08:04:90:01:8b:d2:25:a2:f1:3e:8c:f5:ba: 75:cb:b2:5d:3d:8b:ee:94:5f:d5:b2:cf:88:61:0c:96:9e:9a: 7a:50:aa:c3:46:46:10:f9:8e:f8:59:72:3c:71:c8:f7:45:27: 9d:cf:69:fd:22:c9:fb:8e:e4:2a:b0:42:07:d7:62:0f:5c:be: fe:91:07:d0:be:51:54:1d:d4:34:16:bc:72:c3:cc:5c:25:39: 16:a0:73:48:37:4a:2a:59:64:c6:a4:c7:c7:1a:80:14:68:da: 55:5f:81:8e:2e:bc:01:76:59:d2:d8:11:5b:60:56:bd:70:73: a9:91:52:67:12:9a:63:50:1f:b8:0a:10:d5:31:cb:d5:14:5b: 55:e6:5c:07:c0:7b:9e:47:e6:cf:d4:31:6b:0c:58:32:ad:96: 66:ec:c7:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjQxMTIyMTYwMTEzWhcNMjQxMTI5MTYwMTEzWjAYMRYwFAYD VQQDEw02NzQwYWFjOS0yNmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1esQyB474LzQ7seos/wU/oFAQD9Y3vCfworqDazceLWcCiVGZ6I0pDC/XF8 KDCwDYJga2yS26tL3r4QKaupVmS4p/wbxbnh0g9RjusJZMq5yThNmq69J1cXKRv3 mhnSSbi4qfxSuJgDnX5eImOCspLPSJvL585KYjwGsMR5EPHt1/eSeKkgGZXqH1uR EWaHEf9PYKfUAYzIc7nN/GBoPLHmllhmcEqigDohdgYMJ99OIIEoRkr5ykwGhYux W2/zF4VcshN8eLx7PsE0C5CsTdk907RUNTAcOL/g5Pq8ftbcukJFozFtnM8lZgAV jX/sCcfLBkqxl/dtYU5MNOEl3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSsj5q3 XdU5WVW6VSo5OVSougIIMB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjQwQi81QjczNkQ5MjQzMzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQ bl9KTTBGMWV6MG5tWXRtY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAtPaPa7LY89rKuLx1Og09FGDDpQF0+JESS/rWi2JodLjNLD+n1LZn OBzLgJcKVIK4rTUxDh+God/G517goAakExVjwhX65m+831LnJgU4JeLo9CDFtSDa O+vwqDLgRggEkAGL0iWi8T6M9bp1y7JdPYvulF/Vss+IYQyWnpp6UKrDRkYQ+Y74 WXI8ccj3RSedz2n9Isn7juQqsEIH12IPXL7+kQfQvlFUHdQ0Frxyw8xcJTkWoHNI N0oqWWTGpMfHGoAUaNpVX4GOLrwBdlnS2BFbYFa9cHOpkVJnEppjUB+4ChDVMcvV FFtV5lwHwHueR+bP1DFrDFgyrZZm7Mdw -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org