$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: AzZVCVlVz99NJC9SYBRY5BdHVY5EVI6x7q1DzetSA7Q= Subject key identifier: B8:B1:B2:10:C0:E7:A5:43:C8:C8:8C:99:B1:BB:D4:F5:43:65:DC:B0 Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: 0F Signing time: Fri 27 Dec 2024 06:11:30 +0000 Manifest this update: Fri 27 Dec 2024 06:11:29 +0000 Manifest next update: Fri 03 Jan 2025 06:11:29 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: tjHR1ChQ6Aa9086w0D+micRZL9LJOCr//eGcLEEQWZE=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: OnMDRT+B6RI2pySK/GT7zK6sSZU+o29fnWCK2xZrKx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Dec 27 06:11:29 2024 GMT Not After : Jan 3 06:11:29 2025 GMT Subject: CN=676e4511-5c2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:6f:5f:d5:16:c4:d3:b7:7e:d6:cd:d1:48:20: 9d:1f:29:57:d4:f9:34:9e:7a:40:cb:be:c1:6c:87: 36:72:aa:73:5b:24:15:38:e3:66:80:b3:42:83:f2: 61:78:5c:72:25:79:c5:4b:eb:b6:80:26:dc:87:47: 99:6a:3c:d1:57:1b:50:10:c1:e5:23:2d:07:f5:e6: ca:0c:e7:a4:39:47:46:bf:88:9c:72:e0:41:58:2c: 9f:3b:62:da:ed:0b:84:d8:f9:ca:f2:a1:4b:ca:78: 73:4b:26:75:5d:75:cd:0b:02:0d:17:8b:7d:e0:91: 01:71:53:21:01:15:45:46:c0:41:57:2d:27:cc:2b: 79:93:89:b7:79:d5:96:12:be:07:39:8e:46:97:a9: f7:ef:6e:c3:20:bc:0d:d2:e2:be:c7:51:38:72:9e: 56:11:bc:22:20:21:f9:0d:ca:e2:f9:5b:cc:6f:8a: 88:33:4e:87:bf:f3:73:c7:34:4d:e0:94:e0:55:3d: 1a:fc:62:b1:63:ac:82:ef:12:3f:3a:4f:65:86:4f: 4f:4d:d2:5c:4e:c1:c7:d0:f1:6d:73:fe:7c:f9:fc: 72:2c:5e:16:8d:09:09:a7:c8:af:a4:9a:a9:dd:40: e7:1b:04:9c:8c:11:54:b4:91:59:5a:28:a0:41:dc: f1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B1:B2:10:C0:E7:A5:43:C8:C8:8C:99:B1:BB:D4:F5:43:65:DC:B0 X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:f7:ba:fd:82:92:26:34:29:6c:70:c9:6b:80:88:b3:78:71: 17:a8:9c:71:49:0e:42:44:47:50:63:c5:15:84:cd:0f:91:94: 21:17:d0:9d:f0:9d:30:62:b5:ce:5c:26:34:6e:92:d1:65:98: 80:da:33:5a:2a:72:9d:c4:a2:90:07:ce:d5:54:b7:b6:ea:b8: e8:1f:bb:59:84:08:0c:2a:4d:a0:a2:86:4f:03:5f:6b:a6:67: 2e:91:fe:2c:e4:4c:96:c9:04:a1:65:af:c1:38:e6:ce:f9:71: 90:9f:50:05:98:3f:9f:19:a9:05:79:bd:0e:d2:0b:b7:84:82: 35:ba:05:37:10:90:ed:9e:e0:94:22:8f:4d:fe:29:8b:1d:96: 53:62:9d:bd:60:ff:3d:e0:6b:2a:df:96:64:4a:de:7f:9a:2c: 47:d1:92:1c:bb:1c:75:9b:7e:19:f8:18:6f:eb:04:09:2c:bf: c5:51:1e:ff:ac:65:ed:7c:92:86:73:41:a5:fe:3c:5b:a4:93: d4:01:e8:d1:a0:6b:05:22:41:31:92:75:a4:a5:88:3d:75:27: 61:42:e4:27:72:11:dd:fa:f8:1b:49:6d:3b:bd:27:d5:32:b1: 55:be:8e:0e:0f:a2:2b:d2:e5:c5:3b:c0:3a:9e:fe:24:a6:8c: ed:ca:06:d5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTIzRjExMC8GA1UEBRMoMkE1OUI5NkMzMEE1NUZCRDYxRDIyMzAzNzNDRUI4OUQx REIwMUE4QjAeFw0yNDEyMjcwNjExMjlaFw0yNTAxMDMwNjExMjlaMBgxFjAUBgNV BAMTDTY3NmU0NTExLTVjMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvb1/VFsTTt37WzdFIIJ0fKVfU+TSeekDLvsFshzZyqnNbJBU442aAs0KD8mF4 XHIlecVL67aAJtyHR5lqPNFXG1AQweUjLQf15soM56Q5R0a/iJxy4EFYLJ87Ytrt C4TY+cryoUvKeHNLJnVddc0LAg0Xi33gkQFxUyEBFUVGwEFXLSfMK3mTibd51ZYS vgc5jkaXqffvbsMgvA3S4r7HUThynlYRvCIgIfkNyuL5W8xviogzToe/83PHNE3g lOBVPRr8YrFjrILvEj86T2WGT09N0lxOwcfQ8W1z/nz5/HIsXhaNCQmnyK+kmqnd QOcbBJyMEVS0kVlaKKBB3PG/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuLGyEMDn pUPIyIyZsbvU9UNl3LAwHwYDVR0jBBgwFoAUKlm5bDClX71h0iMDc864nR2wGosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1MjNGLzRFQkE2QjMyQjA1 MzExRUY5QzJCOEQzRkM0RjlBRTAyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS2xtNWJEQ2xYNzFoMGlNRGM4NjRuUjJ3R29zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 MjNGLzRFQkE2QjMyQjA1MzExRUY5QzJCOEQzRkM0RjlBRTAyL0tsbTViRENsWDcx aDBpTURjODY0blIyd0dvcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACz3uv2CkiY0KWxwyWuAiLN4cReonHFJDkJER1BjxRWEzQ+RlCEX0J3w nTBitc5cJjRuktFlmIDaM1oqcp3EopAHztVUt7bquOgfu1mECAwqTaCihk8DX2um Zy6R/izkTJbJBKFlr8E45s75cZCfUAWYP58ZqQV5vQ7SC7eEgjW6BTcQkO2e4JQi j03+KYsdllNinb1g/z3gayrflmRK3n+aLEfRkhy7HHWbfhn4GG/rBAksv8VRHv+s Ze18koZzQaX+PFukk9QB6NGgawUiQTGSdaSliD11J2FC5CdyEd36+BtJbTu9J9Uy sVW+jg4PoivS5cU7wDqe/iSmjO3KBtU= -----END CERTIFICATE-----Generated at Fri Dec 27 07:44:02 2024 by rpki-client on console-ams.rpki-client.org