$ rpki-client -vvf rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft File: lFmgev60b3mSRf7CNW08usm-2Ig.mft (raw, json) Hash identifier: EsiuEr1/Pr80syZ3Cy2yXM1OgtmOGjOC4/ifGHMVVSg= Subject key identifier: 78:50:66:69:59:02:46:A8:4D:0C:E8:C0:47:3D:92:01:92:B1:A3:E0 Authority key identifier: 94:59:A0:7A:FE:B4:6F:79:92:45:FE:C2:35:6D:3C:BA:C9:BE:D8:88 Certificate issuer: /CN=A912EE4D/serialNumber=9459A07AFEB46F799245FEC2356D3CBAC9BED888 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft Manifest number: BC Signing time: Sat 23 Nov 2024 04:00:32 +0000 Manifest this update: Sat 23 Nov 2024 04:00:32 +0000 Manifest next update: Sat 30 Nov 2024 04:00:32 +0000 Files and hashes: 1: lFmgev60b3mSRf7CNW08usm-2Ig.crl (hash: w9qseEqVLfsHUjVQpYeCi5u1IhfgyZAyQQrMS1Gnw10=) 2: 81A901FA8A0411EEA251F746C4F9AE02.roa (hash: LQjpde7ZOitEWCJ8Fyab2NYRAI50nPTcOZ5B3mS/eu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.crl rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912EE4D/serialNumber=9459A07AFEB46F799245FEC2356D3CBAC9BED888 Validity Not Before: Nov 23 04:00:32 2024 GMT Not After : Nov 30 04:00:32 2024 GMT Subject: CN=67415360-eda9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ca:76:c1:13:49:65:33:9e:c3:54:26:bc:84: 74:dc:ea:5c:51:b6:2f:65:42:09:da:14:29:81:d4: bf:06:f5:a4:dc:e0:25:77:f5:93:1f:83:c9:ad:ee: dd:1b:de:f5:11:54:d9:b7:93:da:a7:55:b8:ee:05: fb:03:f2:52:07:35:a5:e5:a3:21:74:4f:db:a7:eb: 7e:b5:16:a2:d9:05:46:0d:2c:28:bd:fc:94:f8:60: 38:aa:12:f9:fa:08:70:55:50:f6:cf:3b:d4:90:3d: a8:d7:90:00:eb:05:92:71:31:de:bc:85:a0:fd:26: 39:0c:86:4b:97:f2:3a:30:d6:a4:24:eb:79:73:f1: 1c:31:05:b7:82:6a:0b:d9:99:cd:e2:2c:8b:9c:4c: 40:b0:20:f9:a5:d1:56:bc:1e:73:8f:61:73:7d:d6: 9f:51:2f:0d:c0:5a:a9:13:44:0d:26:42:19:1d:18: 9d:ff:53:c1:f9:df:a0:bf:05:a3:9d:b0:c4:37:ab: 88:0d:49:fa:80:7e:ad:73:fd:d9:d0:d9:54:9a:cf: fd:63:a1:3a:4c:b7:da:96:fd:78:a8:cd:97:f2:77: 70:2c:b4:08:aa:b0:8f:02:f7:57:00:a2:7e:f8:9e: 25:f8:12:d3:d8:cb:ea:55:ea:c9:bc:94:48:10:bb: 55:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:50:66:69:59:02:46:A8:4D:0C:E8:C0:47:3D:92:01:92:B1:A3:E0 X509v3 Authority Key Identifier: keyid:94:59:A0:7A:FE:B4:6F:79:92:45:FE:C2:35:6D:3C:BA:C9:BE:D8:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:32:6a:8c:62:f3:73:d7:76:68:bd:21:b4:cb:d6:96:98:19: dd:2e:ee:2a:e2:5c:87:01:18:fa:20:d9:81:4e:99:4b:1b:3d: 83:cd:b0:64:49:d3:9d:47:4d:e5:1f:74:56:65:0d:b5:b0:b7: 42:56:c2:91:2e:e8:2d:6d:a0:3c:55:ce:73:83:a5:b6:e9:b1: f0:75:b5:1f:b3:60:fb:a4:30:4d:22:d5:ba:e7:e5:6b:02:84: 3d:01:52:5d:58:8b:10:5c:1f:dc:dd:cb:19:82:a5:fc:27:80: 7c:a4:64:eb:7d:82:41:dd:07:b5:e3:8c:fb:da:13:08:b5:6b: 86:a9:fa:32:51:54:40:21:1f:44:a0:35:1b:ad:ad:2b:c7:04: 82:eb:d9:1b:ba:a3:18:48:a4:df:c1:ea:92:cf:ed:c9:a4:75: 23:7b:fc:a6:ae:e4:70:a9:52:3f:b0:9f:53:64:de:2e:4d:25: 6e:7d:cc:bb:8a:48:81:1e:d6:56:24:dc:0a:15:7f:ca:a6:e3: 9e:c1:22:d4:4a:66:26:c4:f7:5e:65:a9:9e:f5:5e:e1:17:3d: 05:b1:cc:ee:30:6d:16:68:c5:0e:65:6a:88:2e:42:22:de:65: ea:03:df:9f:d6:e4:3c:27:4d:dc:b5:3c:d5:b2:47:88:e6:e3: f5:76:94:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVFNEQxMTAvBgNVBAUTKDk0NTlBMDdBRkVCNDZGNzk5MjQ1RkVDMjM1NkQzQ0JB QzlCRUQ4ODgwHhcNMjQxMTIzMDQwMDMyWhcNMjQxMTMwMDQwMDMyWjAYMRYwFAYD VQQDEw02NzQxNTM2MC1lZGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsp2wRNJZTOew1QmvIR03OpcUbYvZUIJ2hQpgdS/BvWk3OAld/WTH4PJre7d G971EVTZt5Pap1W47gX7A/JSBzWl5aMhdE/bp+t+tRai2QVGDSwovfyU+GA4qhL5 +ghwVVD2zzvUkD2o15AA6wWScTHevIWg/SY5DIZLl/I6MNakJOt5c/EcMQW3gmoL 2ZnN4iyLnExAsCD5pdFWvB5zj2FzfdafUS8NwFqpE0QNJkIZHRid/1PB+d+gvwWj nbDEN6uIDUn6gH6tc/3Z0NlUms/9Y6E6TLfalv14qM2X8ndwLLQIqrCPAvdXAKJ+ +J4l+BLT2MvqVerJvJRIELtVrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhQZmlZ AkaoTQzowEc9kgGSsaPgMB8GA1UdIwQYMBaAFJRZoHr+tG95kkX+wjVtPLrJvtiI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRUU0RC81MjNGREE4MDhB MDIxMUVFQjI4OTAzMkNDNEY5QUUwMi9sRm1nZXY2MGIzbVNSZjdDTlcwOHVzbS0y SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGbWdldjYwYjNtU1JmN0NOVzA4dXNtLTJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RUU0RC81MjNGREE4MDhBMDIxMUVFQjI4OTAzMkNDNEY5QUUwMi9sRm1nZXY2MGIz bVNSZjdDTlcwOHVzbS0ySWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoMmqMYvNz13ZovSG0y9aWmBndLu4q4lyHARj6INmBTplLGz2DzbBk SdOdR03lH3RWZQ21sLdCVsKRLugtbaA8Vc5zg6W26bHwdbUfs2D7pDBNItW65+Vr AoQ9AVJdWIsQXB/c3csZgqX8J4B8pGTrfYJB3Qe144z72hMItWuGqfoyUVRAIR9E oDUbra0rxwSC69kbuqMYSKTfweqSz+3JpHUje/ymruRwqVI/sJ9TZN4uTSVufcy7 ikiBHtZWJNwKFX/KpuOewSLUSmYmxPdeZame9V7hFz0FsczuMG0WaMUOZWqILkIi 3mXqA9+f1uQ8J03ctTzVskeI5uP1dpRa -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:04 2024 by rpki-client on console-ams.rpki-client.org