$ rpki-client -vvf rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft File: lqeZovSzCLIlIrzkXjGNanAmKSs.mft (raw, json) Hash identifier: Fpb32NsIGAtDrVCiFCDZ2Fh22Qwjo0tZJ0Hu7RoJtHc= Subject key identifier: 72:25:AF:CB:47:D4:E6:4E:3B:BC:4D:FC:08:E6:CA:54:67:9E:28:20 Authority key identifier: 96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B Certificate issuer: /CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Certificate serial: 112A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft Manifest number: 111F Signing time: Fri 22 Nov 2024 17:16:45 +0000 Manifest this update: Fri 22 Nov 2024 17:16:44 +0000 Manifest next update: Fri 29 Nov 2024 17:16:44 +0000 Files and hashes: 1: lqeZovSzCLIlIrzkXjGNanAmKSs.crl (hash: LHXaceCejrmUoVyDU4/HB9ZBSCJFpJOAyj3cpltHOvg=) 2: 318BC266FEA911E8BF138B59C4F9AE02.roa (hash: J/CivEwQllds1vZh7Qpd8MrT8E7MxLEHwHoWEk2nUKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4394 (0x112a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Validity Not Before: Nov 22 17:16:44 2024 GMT Not After : Nov 29 17:16:44 2024 GMT Subject: CN=6740bc7c-c985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:68:8f:11:71:a1:cc:17:17:2a:e3:8b:45:88: 93:e7:10:19:63:40:0a:c2:7a:99:97:97:65:69:c9: 84:13:c3:75:39:65:56:a0:18:28:7e:af:ab:5a:e1: 8e:19:4b:a6:c8:2b:3b:cf:19:86:06:74:ee:91:85: d0:1f:72:7e:c1:42:c0:a6:d8:5a:88:53:e7:cf:df: ee:38:c9:76:d0:8b:a3:92:a8:f7:e3:64:b1:48:15: e0:c6:d8:62:e1:e4:24:fa:0a:63:05:35:ba:05:3e: 5e:7f:7c:57:a9:d0:33:78:ee:db:b3:55:a8:f5:f1: f2:8f:17:e3:96:b6:f5:15:82:82:40:19:87:b9:90: aa:69:04:12:6f:b7:ed:23:1b:ec:5d:0f:cb:ca:92: 08:1b:cb:b7:7b:3e:8e:7e:1b:1f:ff:37:e4:23:bf: 44:44:8f:63:0e:c4:f8:9f:46:66:e0:2c:ce:84:59: 69:08:93:55:d3:7b:4a:59:8e:34:4b:8e:97:6c:d0: 1f:38:6a:74:37:14:de:03:a4:8d:f2:62:34:a1:0e: 4f:88:e7:2d:17:54:f8:ea:2a:41:55:3f:42:4b:91: c4:64:8c:73:4b:d3:29:04:25:f3:c6:ed:54:be:84: 95:7b:33:73:22:64:50:e2:1c:66:7c:6d:6f:1e:b1: f4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:25:AF:CB:47:D4:E6:4E:3B:BC:4D:FC:08:E6:CA:54:67:9E:28:20 X509v3 Authority Key Identifier: keyid:96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:14:35:d3:10:e0:b0:48:2a:b0:ed:fd:d5:72:ad:c1:35:01: 1c:a7:ae:57:39:48:fa:c6:b3:74:ce:db:59:35:f4:8c:62:68: 5a:87:35:0b:34:b5:2f:b2:77:9d:a0:37:e1:5b:2d:55:50:83: 0d:20:52:1e:a1:db:d3:81:05:ab:de:5b:fd:d2:77:b1:66:61: d3:8a:a7:0b:7a:e9:70:b5:62:b2:d6:db:ed:fc:41:09:59:ed: 18:3b:78:f8:17:c2:dd:db:56:55:16:3f:9d:8b:0e:a3:6d:2f: af:7c:ac:10:87:25:8e:a8:0b:39:d1:e9:a3:87:3f:e7:85:74: 08:75:1c:9d:9c:c5:46:87:59:53:74:4c:b9:66:9b:94:8e:2a: 28:2e:44:7c:9a:6f:62:0a:25:45:bb:af:f0:ad:b0:b4:32:cc: ac:dd:66:86:26:73:14:0c:c7:e6:76:6e:f6:a4:ca:27:43:d0: c1:8e:2e:45:00:78:80:fc:fb:9e:46:33:ca:4c:c3:0a:d8:63: c6:64:f3:b9:73:39:44:eb:bb:b4:fc:5d:90:64:31:22:ab:0a: 92:4e:4f:ab:05:3c:d1:e8:f1:7f:12:25:4c:4e:35:04:69:5e: 9c:bd:5f:86:04:6d:5b:61:47:40:39:7e:0b:2f:75:c5:01:42: e4:64:c3:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICESowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBNEIxMTAvBgNVBAUTKDk2QTc5OUEyRjRCMzA4QjIyNTIyQkNFNDVFMzE4RDZB NzAyNjI5MkIwHhcNMjQxMTIyMTcxNjQ0WhcNMjQxMTI5MTcxNjQ0WjAYMRYwFAYD VQQDEw02NzQwYmM3Yy1jOTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmiPEXGhzBcXKuOLRYiT5xAZY0AKwnqZl5dlacmEE8N1OWVWoBgofq+rWuGO GUumyCs7zxmGBnTukYXQH3J+wULApthaiFPnz9/uOMl20Iujkqj342SxSBXgxthi 4eQk+gpjBTW6BT5ef3xXqdAzeO7bs1Wo9fHyjxfjlrb1FYKCQBmHuZCqaQQSb7ft IxvsXQ/LypIIG8u3ez6Ofhsf/zfkI79ERI9jDsT4n0Zm4CzOhFlpCJNV03tKWY40 S46XbNAfOGp0NxTeA6SN8mI0oQ5PiOctF1T46ipBVT9CS5HEZIxzS9MpBCXzxu1U voSVezNzImRQ4hxmfG1vHrH0/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIlr8tH 1OZOO7xN/AjmylRnniggMB8GA1UdIwQYMBaAFJanmaL0swiyJSK85F4xjWpwJikr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkE0Qi9FMzc3RkQ3QUZF QTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNMSWxJcnprWGpHTmFuQW1L U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xxZVpvdlN6Q0xJbElyemtYakdOYW5BbUtTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkE0Qi9FMzc3RkQ3QUZFQTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNM SWxJcnprWGpHTmFuQW1LU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACFDXTEOCwSCqw7f3Vcq3BNQEcp65XOUj6xrN0zttZNfSMYmhahzUL NLUvsnedoDfhWy1VUIMNIFIeodvTgQWr3lv90nexZmHTiqcLeulwtWKy1tvt/EEJ We0YO3j4F8Ld21ZVFj+diw6jbS+vfKwQhyWOqAs50emjhz/nhXQIdRydnMVGh1lT dEy5ZpuUjiooLkR8mm9iCiVFu6/wrbC0Msys3WaGJnMUDMfmdm72pMonQ9DBji5F AHiA/PueRjPKTMMK2GPGZPO5czlE67u0/F2QZDEiqwqSTk+rBTzR6PF/EiVMTjUE aV6cvV+GBG1bYUdAOX4LL3XFAULkZMPq -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:57 2024 by rpki-client on console-ams.rpki-client.org