$ rpki-client -vvf rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft File: lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft (raw, json) Hash identifier: hr3msb64QEQFdJfpL8jOZJG6obP80h9nK/hixURjvxc= Subject key identifier: D7:83:28:31:07:DF:D8:EA:A6:C2:34:64:29:42:5F:F3:11:E0:8C:F5 Authority key identifier: 95:28:16:0E:4C:30:4E:13:07:DB:F6:6F:19:01:63:2A:DF:9F:1A:64 Certificate issuer: /CN=A9132457/serialNumber=9528160E4C304E1307DBF66F1901632ADF9F1A64 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft Manifest number: 0132 Signing time: Sat 23 Nov 2024 02:48:22 +0000 Manifest this update: Sat 23 Nov 2024 02:48:21 +0000 Manifest next update: Sat 30 Nov 2024 02:48:21 +0000 Files and hashes: 1: lSgWDkwwThMH2_ZvGQFjKt-fGmQ.crl (hash: zhO0iKPA+HXEYQ9STS0y2eiF3s3ZuxsrJILY6IOxcQU=) 2: 8E10E282D81B11EDAB75C13EC4F9AE02.roa (hash: ZFOIV6D/1mwtehXiBOGpEO/D359oTLwlftiwuF6vQmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.crl rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:48:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132457/serialNumber=9528160E4C304E1307DBF66F1901632ADF9F1A64 Validity Not Before: Nov 23 02:48:21 2024 GMT Not After : Nov 30 02:48:21 2024 GMT Subject: CN=67414276-8419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:af:13:8d:33:52:02:ce:9f:91:45:da:3e:e9: d8:45:51:59:b9:82:3c:9a:ae:56:ed:51:f9:8f:8a: 6e:c4:e9:55:f9:2a:7e:ce:9a:ed:77:b0:1e:20:74: 2c:1a:07:c8:15:0f:3c:aa:94:ae:3d:62:19:f3:5b: 75:83:89:9e:8f:5d:40:7b:03:11:46:31:b5:71:45: 3f:f4:0e:e0:25:b0:bc:f9:a6:27:7c:af:0a:02:14: 1e:0e:9d:ad:6b:e0:c7:f9:8d:c5:88:7e:1b:0f:3a: 45:c9:51:11:62:0b:68:d6:0e:2b:72:9e:4d:8b:6c: e0:e7:0c:00:90:63:d5:8f:72:f7:62:41:16:3b:e4: 7d:ae:02:c6:dc:d5:3b:cb:8a:f6:f6:61:a9:76:b8: 9c:58:f7:74:47:f7:ae:fa:08:5e:72:7a:20:5f:38: 2c:4f:86:17:df:12:1e:6b:3b:f0:d1:4b:1e:2d:1b: 5a:fa:df:c1:aa:1c:ab:02:c3:fc:29:30:41:2d:77: a8:aa:d6:8f:a3:23:01:9f:7c:64:75:c1:6c:0f:cb: de:87:b2:85:c8:7e:88:da:e8:23:29:d4:14:5d:f1: 9b:08:70:e6:e8:b0:ec:df:4d:90:d5:0c:b2:8b:bd: d7:c6:27:eb:52:c5:82:55:dd:e4:d6:66:7e:55:6d: 5b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:83:28:31:07:DF:D8:EA:A6:C2:34:64:29:42:5F:F3:11:E0:8C:F5 X509v3 Authority Key Identifier: keyid:95:28:16:0E:4C:30:4E:13:07:DB:F6:6F:19:01:63:2A:DF:9F:1A:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:84:4a:08:5c:31:ca:d8:0d:ba:2c:55:99:57:12:b1:71:0c: 86:75:51:72:1d:a1:2c:9e:2a:0a:63:bc:6c:51:b2:93:aa:02: 70:a7:04:2f:1e:ce:0e:19:b3:7a:57:a2:87:b7:d9:2e:9c:e7: 87:61:7e:4b:24:95:42:d6:b4:2d:87:ac:0a:92:af:20:31:f0: c2:25:0f:7e:cb:e0:aa:89:c5:0e:53:dc:85:c9:96:a6:35:bb: c8:7c:17:5b:65:f5:c2:bc:5c:c2:47:60:a6:33:28:35:27:22: 10:db:24:23:33:15:d4:45:1b:36:b7:bc:f2:0e:c8:4a:1b:40: 1b:aa:ae:eb:19:11:f2:1a:b4:f9:a3:4a:45:c7:ea:b4:6f:e1: 4a:6e:ba:8a:29:c6:6e:09:51:af:44:48:ad:a9:17:78:e9:31: db:47:e4:bb:ef:ac:8d:69:7a:a3:1d:fd:d1:a8:11:61:6a:ea: d8:4a:d5:a8:c7:98:ab:d4:4b:e4:59:27:bb:40:1a:72:63:a7: cf:c3:c1:5f:27:b0:b1:bd:a8:50:8e:7c:69:7f:e3:ac:cd:63: 6b:11:0b:1c:4b:49:fd:57:16:19:70:51:0c:7e:63:0c:c9:60: 01:19:e2:8e:2d:58:f6:60:02:e4:b4:bd:9a:93:31:cd:fa:4b: b8:a6:02:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI0NTcxMTAvBgNVBAUTKDk1MjgxNjBFNEMzMDRFMTMwN0RCRjY2RjE5MDE2MzJB REY5RjFBNjQwHhcNMjQxMTIzMDI0ODIxWhcNMjQxMTMwMDI0ODIxWjAYMRYwFAYD VQQDEw02NzQxNDI3Ni04NDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA168TjTNSAs6fkUXaPunYRVFZuYI8mq5W7VH5j4puxOlV+Sp+zprtd7AeIHQs GgfIFQ88qpSuPWIZ81t1g4mej11AewMRRjG1cUU/9A7gJbC8+aYnfK8KAhQeDp2t a+DH+Y3FiH4bDzpFyVERYgto1g4rcp5Ni2zg5wwAkGPVj3L3YkEWO+R9rgLG3NU7 y4r29mGpdricWPd0R/eu+ghecnogXzgsT4YX3xIeazvw0UseLRta+t/BqhyrAsP8 KTBBLXeoqtaPoyMBn3xkdcFsD8veh7KFyH6I2ugjKdQUXfGbCHDm6LDs302Q1Qyy i73XxifrUsWCVd3k1mZ+VW1bRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeDKDEH 39jqpsI0ZClCX/MR4Iz1MB8GA1UdIwQYMBaAFJUoFg5MME4TB9v2bxkBYyrfnxpk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjQ1Ny84QUU3MzkyRUQ4 MTgxMUVEQkQ2NTBGM0RDNEY5QUUwMi9sU2dXRGt3d1RoTUgyX1p2R1FGakt0LWZH bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTZ1dEa3d3VGhNSDJfWnZHUUZqS3QtZkdtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjQ1Ny84QUU3MzkyRUQ4MTgxMUVEQkQ2NTBGM0RDNEY5QUUwMi9sU2dXRGt3d1Ro TUgyX1p2R1FGakt0LWZHbVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7hEoIXDHK2A26LFWZVxKxcQyGdVFyHaEsnioKY7xsUbKTqgJwpwQv Hs4OGbN6V6KHt9kunOeHYX5LJJVC1rQth6wKkq8gMfDCJQ9+y+CqicUOU9yFyZam NbvIfBdbZfXCvFzCR2CmMyg1JyIQ2yQjMxXURRs2t7zyDshKG0Abqq7rGRHyGrT5 o0pFx+q0b+FKbrqKKcZuCVGvREitqRd46THbR+S776yNaXqjHf3RqBFhaurYStWo x5ir1EvkWSe7QBpyY6fPw8FfJ7CxvahQjnxpf+OszWNrEQscS0n9VxYZcFEMfmMM yWABGeKOLVj2YALktL2akzHN+ku4pgIY -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:46 2024 by rpki-client on console-fra.rpki-client.org