$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft File: K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json) Hash identifier: NbuXeYQ5r3bTrQZDkMtqyHKlXLXw0Y8P30/7carJyfk= Subject key identifier: C4:E7:8A:8C:1F:A4:4B:87:E9:F5:7E:99:F4:C7:A2:A8:A0:93:2D:2D Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B Certificate issuer: /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Certificate serial: 165D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft Manifest number: 1646 Signing time: Sun 24 Nov 2024 16:33:47 +0000 Manifest this update: Sun 24 Nov 2024 16:33:47 +0000 Manifest next update: Sun 01 Dec 2024 16:33:47 +0000 Files and hashes: 1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: A1h1dPZYitXdGa4/KIsug1P7/lDZZk+XpUiUIfMxoH0=) 2: 07D665E0862711EBAC147872C4F9AE02.roa (hash: ous1E0oLiCs3r+HQiFOj64dMFKdW/gP7r3rj77Prx3Y=) 3: F9E21144D90F11EDB2DBEA49C4F9AE02.roa (hash: iTzoakUoaVNdTqGJxVmIzhqLbUwoGqXoPnqROEzOhSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5725 (0x165d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Validity Not Before: Nov 24 16:33:47 2024 GMT Not After : Dec 1 16:33:47 2024 GMT Subject: CN=6743556b-e545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0f:9b:53:58:5f:3a:e3:04:2f:f5:a2:26:95: 5b:37:61:cd:fd:77:c3:26:5a:bf:5f:35:41:83:d1: 9c:5c:f5:ac:57:8a:fe:3c:aa:16:9b:9c:f3:e7:c7: 65:ac:8e:1e:cf:56:02:e5:31:7f:02:e1:a9:16:31: 5c:00:0b:60:12:b6:3e:3f:64:d4:99:49:25:d3:d7: 81:31:de:bc:76:a8:4a:96:63:6a:83:b2:58:35:9e: 9b:b4:09:22:e6:c7:a5:04:b4:27:91:72:be:08:ab: 53:cc:db:ac:69:aa:ac:c3:04:53:8c:d5:e1:aa:6e: 7d:ac:dc:a2:17:3e:b2:3b:91:2a:73:0f:9b:21:93: 9b:69:21:af:11:1a:98:5b:c3:d0:37:20:ac:fc:56: 4f:ff:8f:f4:6d:11:25:62:8f:b3:00:05:36:b8:66: 3f:4c:08:7c:17:6f:0f:ac:64:12:3c:5b:f2:83:fd: 34:ee:fc:54:79:98:fe:48:22:2a:06:37:c5:1a:96: 69:6f:ab:d2:86:5d:a6:8a:c6:8d:f0:a1:ed:11:b3: b7:11:88:c6:b9:dd:63:cc:8d:18:22:be:a5:d8:fd: 9d:4f:4f:50:92:37:7b:07:89:91:4b:71:a8:59:73: a3:b7:4e:06:a3:c1:3c:c1:98:44:ba:68:3b:b4:31: bf:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:E7:8A:8C:1F:A4:4B:87:E9:F5:7E:99:F4:C7:A2:A8:A0:93:2D:2D X509v3 Authority Key Identifier: keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:c2:ce:1a:6a:09:bf:bf:e1:3a:00:f9:d4:30:87:7f:96:00: 12:25:28:fd:3e:3e:e3:56:10:57:90:d2:7e:61:85:94:5b:3e: 18:b7:ea:33:86:ef:14:61:e7:9f:60:56:25:5d:3b:09:52:d3: 18:7f:85:2d:5e:22:a6:f3:6b:6a:1a:0c:5a:aa:e9:09:aa:a0: ed:60:80:cd:9a:85:22:c6:2e:18:a2:fd:61:d1:68:1b:c7:13: 5c:45:3a:72:ee:f9:a6:4a:c6:94:dd:cf:59:b2:7f:b9:e1:a7: e6:bd:15:1b:e2:1c:a9:e7:04:a3:db:84:12:de:e1:51:b2:ee: 7a:64:48:1f:55:10:e7:c2:2b:33:8e:74:bd:a2:fa:10:c2:da: 0a:6c:4e:6c:28:5a:48:a2:b2:4d:b1:21:d1:be:c2:12:29:a6: 7a:30:9c:af:83:b0:80:d0:e8:20:94:b9:de:2c:65:23:73:70: 0c:78:60:b2:1f:04:a6:32:a0:cf:6f:e0:1b:e0:6f:3b:ae:9e: c7:0a:78:57:87:d9:2d:92:63:06:55:25:db:a0:c6:d9:ef:44: dc:e0:17:d2:46:42:22:7a:2e:7a:de:3a:fa:10:8e:89:8f:1b: b1:65:54:47:6d:7d:0d:29:a7:4b:4e:76:f8:a0:dd:c9:70:cf: ce:35:b5:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QTkxMTAvBgNVBAUTKDJCOTVEOEQ4MjI4QTg5MTQ3RDgwMTkzRDk3NzBFQjUw QUVEREJCNkIwHhcNMjQxMTI0MTYzMzQ3WhcNMjQxMjAxMTYzMzQ3WjAYMRYwFAYD VQQDEw02NzQzNTU2Yi1lNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1g+bU1hfOuMEL/WiJpVbN2HN/XfDJlq/XzVBg9GcXPWsV4r+PKoWm5zz58dl rI4ez1YC5TF/AuGpFjFcAAtgErY+P2TUmUkl09eBMd68dqhKlmNqg7JYNZ6btAki 5selBLQnkXK+CKtTzNusaaqswwRTjNXhqm59rNyiFz6yO5Eqcw+bIZObaSGvERqY W8PQNyCs/FZP/4/0bRElYo+zAAU2uGY/TAh8F28PrGQSPFvyg/007vxUeZj+SCIq BjfFGpZpb6vShl2misaN8KHtEbO3EYjGud1jzI0YIr6l2P2dT09Qkjd7B4mRS3Go WXOjt04Go8E8wZhEumg7tDG/pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTniowf pEuH6fV+mfTHoqigky0tMB8GA1UdIwQYMBaAFCuV2NgiiokUfYAZPZdw61Cu3btr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVBOS8wMEI3MTUxQ0ZE MDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lSUjlnQms5bDNEclVLN2R1 MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1WFkyQ0tLaVJSOWdCazlsM0RyVUs3ZHUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVBOS8wMEI3MTUxQ0ZEMDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lS UjlnQms5bDNEclVLN2R1MnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXws4aagm/v+E6APnUMId/lgASJSj9Pj7jVhBXkNJ+YYWUWz4Yt+oz hu8UYeefYFYlXTsJUtMYf4UtXiKm82tqGgxaqukJqqDtYIDNmoUixi4Yov1h0Wgb xxNcRTpy7vmmSsaU3c9Zsn+54afmvRUb4hyp5wSj24QS3uFRsu56ZEgfVRDnwisz jnS9ovoQwtoKbE5sKFpIorJNsSHRvsISKaZ6MJyvg7CA0OgglLneLGUjc3AMeGCy HwSmMqDPb+Ab4G87rp7HCnhXh9ktkmMGVSXboMbZ70Tc4BfSRkIiei563jr6EI6J jxuxZVRHbX0NKadLTnb4oN3JcM/ONbUP -----END CERTIFICATE-----Generated at Sun Nov 24 18:25:00 2024 by rpki-client on console-ams.rpki-client.org