$ rpki-client -vvf rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft File: LToKI8WbTfbb4BpMXzt8i___cA0.mft (raw, json) Hash identifier: cw4uZrJLioZkmToHaM1HbnFwoLBcpCV8h82dKK3NLww= Subject key identifier: 54:6C:1D:79:77:DB:BE:5F:BA:17:E1:AA:69:BF:42:46:EA:2F:05:9F Authority key identifier: 2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D Certificate issuer: /CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft Manifest number: 01B7 Signing time: Sat 23 Nov 2024 01:48:28 +0000 Manifest this update: Sat 23 Nov 2024 01:48:28 +0000 Manifest next update: Sat 30 Nov 2024 01:48:28 +0000 Files and hashes: 1: LToKI8WbTfbb4BpMXzt8i___cA0.crl (hash: 3X50j4nPTFc3EWjXE4UOVuyEvmW7QtAaY1gy4T/Dd4k=) 2: C202E82834B611ED815AAB32C4F9AE02.roa (hash: hw3e3hTzsjowGN0Wxe4NUA2TCLqWrlYb3yFyRPFsovQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Validity Not Before: Nov 23 01:48:28 2024 GMT Not After : Nov 30 01:48:28 2024 GMT Subject: CN=6741346c-6164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5d:ec:1c:76:29:fd:ab:37:59:c1:b5:68:42: ce:53:72:8a:8d:06:c9:41:ba:9a:17:94:3e:90:28: fe:bb:33:3c:7b:43:69:1d:06:f0:0a:25:c1:99:a4: 20:d1:5d:e1:64:0b:eb:79:2f:ea:12:5b:48:84:b0: fc:fe:06:07:88:1f:9d:6b:da:ed:3e:10:67:cb:60: 52:36:e6:e2:e2:d7:0d:1c:1e:65:8b:93:09:ba:ea: 06:4b:21:92:82:dd:a9:e7:e6:13:22:dd:ec:66:08: 34:0d:6c:18:2b:a6:06:05:33:f3:5d:b6:7e:2e:32: 78:ab:57:b8:48:44:12:1f:70:2a:5c:e3:6a:8a:b7: e2:a6:46:73:b9:b4:f8:bb:c5:55:08:df:7e:8b:db: 52:77:74:d6:40:23:16:f9:ee:46:70:dd:2e:cd:51: a1:ff:72:63:27:b8:f8:b1:14:25:65:e8:23:8d:da: 53:98:76:1a:26:db:12:4f:a3:00:7e:13:84:16:a1: 5e:39:79:ce:63:16:fb:02:7b:65:0d:d7:4d:91:54: 1b:80:2c:19:ea:31:de:9a:79:9e:f1:4f:e0:fa:15: aa:0b:f4:1e:dd:cb:72:70:47:0e:38:c0:ab:c6:bb: f9:c5:d7:1e:e6:17:a9:14:8e:68:bb:cd:26:d0:fb: 89:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:6C:1D:79:77:DB:BE:5F:BA:17:E1:AA:69:BF:42:46:EA:2F:05:9F X509v3 Authority Key Identifier: keyid:2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:cb:8a:cc:13:d8:0c:59:5c:eb:29:81:6c:b3:1a:c8:37:4b: 5f:c2:66:9f:09:9c:c4:08:3c:97:23:20:5f:8c:b2:ae:9e:75: b3:3e:74:90:bf:18:ff:b2:a6:0e:4a:08:d9:57:74:46:f4:3a: 44:3e:fe:7c:21:2d:5c:10:49:e3:be:82:63:78:24:20:ab:16: e0:1a:55:fb:77:fb:64:c0:34:8f:27:76:d1:12:fa:8f:85:fd: 16:3a:ec:74:f0:a8:55:54:d8:8d:3f:6f:22:1a:39:4a:aa:f2: f4:fd:e3:e5:af:43:52:a4:26:f2:33:1f:f1:f0:a3:11:b0:e0: ce:e0:bc:ed:ec:fa:12:10:24:29:7d:ac:b1:1f:ed:8c:5d:3d: 93:09:66:09:de:0f:ee:b6:ba:2e:93:d2:9e:29:48:c7:fc:2e: 7f:b9:e7:f4:88:fb:d0:96:2b:90:7b:01:d9:c9:cc:96:2c:ca: 57:ed:34:c4:c1:fc:cc:db:3e:8d:f8:85:dc:a0:7b:41:57:46: 20:e8:b1:b7:cb:d2:fb:ae:2e:93:49:0d:0c:f3:5d:62:78:27: 28:8b:d1:b1:c7:57:2e:83:55:0a:ef:84:11:ac:a0:f2:29:c8: 0e:e8:81:55:a2:97:bb:54:6c:33:ba:8d:46:58:ec:a7:33:c3: a6:73:63:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwQkMxMTAvBgNVBAUTKDJEM0EwQTIzQzU5QjRERjZEQkUwMUE0QzVGM0I3QzhC RkZGRjcwMEQwHhcNMjQxMTIzMDE0ODI4WhcNMjQxMTMwMDE0ODI4WjAYMRYwFAYD VQQDEw02NzQxMzQ2Yy02MTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx13sHHYp/as3WcG1aELOU3KKjQbJQbqaF5Q+kCj+uzM8e0NpHQbwCiXBmaQg 0V3hZAvreS/qEltIhLD8/gYHiB+da9rtPhBny2BSNubi4tcNHB5li5MJuuoGSyGS gt2p5+YTIt3sZgg0DWwYK6YGBTPzXbZ+LjJ4q1e4SEQSH3AqXONqirfipkZzubT4 u8VVCN9+i9tSd3TWQCMW+e5GcN0uzVGh/3JjJ7j4sRQlZegjjdpTmHYaJtsST6MA fhOEFqFeOXnOYxb7AntlDddNkVQbgCwZ6jHemnme8U/g+hWqC/Qe3ctycEcOOMCr xrv5xdce5hepFI5ou80m0PuJRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRsHXl3 275fuhfhqmm/QkbqLwWfMB8GA1UdIwQYMBaAFC06CiPFm0322+AaTF87fIv//3AN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDBCQy8yMDI0QjQ0ODM0 QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRmYmI0QnBNWHp0OGlfX19j QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUb0tJOFdiVGZiYjRCcE1YenQ4aV9fX2NBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDBCQy8yMDI0QjQ0ODM0QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRm YmI0QnBNWHp0OGlfX19jQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZy4rME9gMWVzrKYFssxrIN0tfwmafCZzECDyXIyBfjLKunnWzPnSQ vxj/sqYOSgjZV3RG9DpEPv58IS1cEEnjvoJjeCQgqxbgGlX7d/tkwDSPJ3bREvqP hf0WOux08KhVVNiNP28iGjlKqvL0/ePlr0NSpCbyMx/x8KMRsODO4Lzt7PoSECQp fayxH+2MXT2TCWYJ3g/utrouk9KeKUjH/C5/uef0iPvQliuQewHZycyWLMpX7TTE wfzM2z6N+IXcoHtBV0Yg6LG3y9L7ri6TSQ0M811ieCcoi9Gxx1cug1UK74QRrKDy KcgO6IFVope7VGwzuo1GWOynM8Omc2PZ -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:32 2024 by rpki-client on console-fra.rpki-client.org