$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft File: kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json) Hash identifier: AhfNMxkodHmbnhkgvyjKLPeGdlKksDhdgakDvfuc+2k= Subject key identifier: 1E:5E:C7:12:06:4C:C0:99:4D:8D:28:46:CA:E9:2D:CE:D2:84:98:EA Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Certificate serial: 03E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft Manifest number: 03D4 Signing time: Sat 23 Nov 2024 00:14:58 +0000 Manifest this update: Sat 23 Nov 2024 00:14:57 +0000 Manifest next update: Sat 30 Nov 2024 00:14:57 +0000 Files and hashes: 1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: 44WaiuCL5YLm66S6ymvkYDNikG9HbKc8WUe7hLdvxwk=) 2: E7DBA61CA1FA11EF9696DF59C4F9AE02.roa (hash: pkyn+1MHjXSVpOUyEDdNddLi9pFxAtP/4B4YmJnFzL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 998 (0x3e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Validity Not Before: Nov 23 00:14:57 2024 GMT Not After : Nov 30 00:14:57 2024 GMT Subject: CN=67411e82-6bc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:2f:b5:60:87:75:8e:b9:f2:85:6a:72:e4:65: 8e:45:cf:c9:74:be:b9:32:6c:8f:73:ce:9e:0c:1f: 05:dc:67:61:7d:6b:51:d5:fe:d6:0e:21:62:bb:21: 9f:7c:71:26:4c:95:8d:c3:e1:0e:1c:4a:13:5f:32: cf:d9:03:94:48:51:22:81:37:72:f0:cf:6c:48:e0: 06:d3:0a:9b:49:4a:f2:73:15:65:3b:01:c7:5e:45: c9:78:1c:49:14:05:45:3e:f5:a1:c8:20:76:35:bf: 32:51:61:31:64:37:c0:12:3a:80:3a:d6:a5:90:25: f9:9a:15:21:73:db:53:4e:70:bd:56:63:ce:f8:b1: d0:db:45:6e:e2:ac:29:ee:91:f0:32:9f:1b:37:59: 83:25:cc:e9:3c:5e:67:5c:55:c0:6f:17:42:80:5d: 25:54:a3:e4:f4:dc:e9:0f:30:32:24:2b:04:4a:f8: 21:eb:d2:a5:1c:e1:b2:75:01:32:ff:f6:05:7d:b3: 4c:4b:c0:a6:f1:3d:75:e9:6c:95:a7:de:a6:53:d8: ff:a2:d5:c4:5a:f3:f8:a6:d8:95:22:65:12:23:5c: b8:93:85:65:04:1a:36:67:8e:93:39:93:1b:12:20: f0:08:15:c7:15:8c:b1:e7:ad:1b:9b:d2:b4:f5:45: 22:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:5E:C7:12:06:4C:C0:99:4D:8D:28:46:CA:E9:2D:CE:D2:84:98:EA X509v3 Authority Key Identifier: keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:4f:d0:a2:98:ba:7d:74:bb:96:87:e5:6a:a3:ea:6e:fa:41: e2:93:8b:cf:f9:e8:3a:44:27:dc:5f:67:0b:85:87:ae:a8:8b: 77:45:72:70:49:df:53:0f:5f:d6:f4:84:87:53:55:3b:ef:b6: a1:0f:1f:51:61:9c:d4:b5:4a:ba:a2:25:a4:c0:82:f6:66:03: 86:11:4a:2f:70:8a:55:80:a9:9d:f8:bb:02:26:2e:0f:97:2a: a4:05:48:6b:9f:9f:e0:c9:60:4d:1b:33:47:65:85:d0:eb:ee: ee:7e:bb:d3:22:fa:4d:18:74:f7:06:a5:b1:d7:89:7f:82:37: 9c:68:53:4f:2d:16:30:f6:27:25:c0:ea:89:f6:1c:ba:3d:c1: eb:39:f4:c7:a9:87:fa:f2:a8:45:bd:32:13:12:b6:fc:5d:34: bc:fd:b7:c4:e4:a4:8d:a6:c6:56:3b:d5:e4:38:b2:78:36:25: 21:31:d2:5f:41:87:88:19:90:e5:0b:62:1c:ad:65:5c:fa:a3: a7:35:30:0a:4b:12:0e:6b:0f:76:70:54:4e:91:c2:3f:2e:76: 18:3b:8b:9e:a3:e0:80:47:af:32:39:7c:94:ab:5b:2c:38:35: 28:02:71:32:90:cd:64:9d:ef:45:91:4f:db:ad:52:24:62:90: 2d:e0:5a:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0 RDFCNTI3NUYwHhcNMjQxMTIzMDAxNDU3WhcNMjQxMTMwMDAxNDU3WjAYMRYwFAYD VQQDEw02NzQxMWU4Mi02YmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6i+1YId1jrnyhWpy5GWORc/JdL65MmyPc86eDB8F3GdhfWtR1f7WDiFiuyGf fHEmTJWNw+EOHEoTXzLP2QOUSFEigTdy8M9sSOAG0wqbSUrycxVlOwHHXkXJeBxJ FAVFPvWhyCB2Nb8yUWExZDfAEjqAOtalkCX5mhUhc9tTTnC9VmPO+LHQ20Vu4qwp 7pHwMp8bN1mDJczpPF5nXFXAbxdCgF0lVKPk9NzpDzAyJCsESvgh69KlHOGydQEy //YFfbNMS8Cm8T116WyVp96mU9j/otXEWvP4ptiVImUSI1y4k4VlBBo2Z46TOZMb EiDwCBXHFYyx560bm9K09UUiFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5exxIG TMCZTY0oRsrpLc7ShJjqMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0 Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA1Qi85ODE3RDI3MjY0Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0 em5PQ0dLbmlJSVZORzFKMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZT9CimLp9dLuWh+Vqo+pu+kHik4vP+eg6RCfcX2cLhYeuqIt3RXJw Sd9TD1/W9ISHU1U777ahDx9RYZzUtUq6oiWkwIL2ZgOGEUovcIpVgKmd+LsCJi4P lyqkBUhrn5/gyWBNGzNHZYXQ6+7ufrvTIvpNGHT3BqWx14l/gjecaFNPLRYw9icl wOqJ9hy6PcHrOfTHqYf68qhFvTITErb8XTS8/bfE5KSNpsZWO9XkOLJ4NiUhMdJf QYeIGZDlC2IcrWVc+qOnNTAKSxIOaw92cFROkcI/LnYYO4ueo+CAR68yOXyUq1ss ODUoAnEykM1kne9FkU/brVIkYpAt4Fo4 -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:30 2024 by rpki-client on console-ams.rpki-client.org