$ rpki-client -vvf rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft File: Lz71uQE3FOMXTGcArgSCTi8FwjA.mft (raw, json) Hash identifier: Gulr+6H0ao/yH/+YVyfisWpucir7UWp0xpZHjS8AGBo= Subject key identifier: 2A:0C:08:EC:5D:56:3B:5B:18:5A:46:BB:B9:A1:7D:9F:10:7C:64:77 Authority key identifier: 2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 Certificate issuer: /CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Certificate serial: 02D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft Manifest number: 02B6 Signing time: Sat 23 Nov 2024 01:02:45 +0000 Manifest this update: Sat 23 Nov 2024 01:02:45 +0000 Manifest next update: Sat 30 Nov 2024 01:02:45 +0000 Files and hashes: 1: Lz71uQE3FOMXTGcArgSCTi8FwjA.crl (hash: osMIlh9enuMZYOY/oUu3blW+Tl4YI36beWpWuiwRXIA=) 2: 19E46D60D0F711EC8673072FC4F9AE02.roa (hash: MW8b0lzbn7akooUbZ8tV+oRNYmXktBHymwJPvbPr0T4=) 3: 69C96612D0F411EC8DAD6D11C4F9AE02.roa (hash: zRGHLr8o7A/D/r9KWR7LY3IvuquDXPxtjtwrPymfsx8=) 4: 196C52A8D0F711EC8673072FC4F9AE02.roa (hash: pmgvt39f/aMkunvyVMO6rfLmljyqEtakdw2Wz0MGd3o=) 5: 6A430D5AD0F411EC8DAD6D11C4F9AE02.roa (hash: Vk4lMkqK5ng6B+iZp/Sl6mPlRDRoZ3QpBy8plRdehn4=) 6: 1BC3E9F8D0F711EC8673072FC4F9AE02.roa (hash: RV0bq4XHGKUuOS8T3WS7G4aUlSWl2to/4furDRifxYQ=) 7: 6920E4D8D0F411EC8DAD6D11C4F9AE02.roa (hash: 6/3DevyJRKnv1xx6SHWcr3LVBgvTH0u4H55ECTrHATk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 722 (0x2d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Validity Not Before: Nov 23 01:02:45 2024 GMT Not After : Nov 30 01:02:45 2024 GMT Subject: CN=674129b5-334c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cf:a5:93:93:4e:ff:73:2e:29:76:f7:1b:d5: 17:23:16:78:c3:96:eb:b3:f6:50:15:ba:94:8c:f7: 47:94:a5:96:5d:91:d6:86:0f:48:17:b2:41:62:60: 1b:d0:df:c6:c0:41:b7:b8:01:b3:22:45:62:ae:43: f2:95:ac:e7:dc:b9:c6:fa:96:6e:ba:bd:e6:8e:f9: aa:c7:dd:fe:f0:e9:97:6b:4b:65:4f:9b:77:ce:0f: 7c:a4:22:0d:15:3f:2b:1c:90:5b:5f:fb:de:40:a5: 48:36:3e:3d:00:6e:38:0f:f6:ba:a5:52:f4:22:f0: da:ef:d1:22:45:f9:05:d8:62:a5:93:f9:dd:a4:16: 39:2b:df:ad:10:db:54:46:a0:13:88:16:9a:58:08: 4f:28:6a:12:38:62:d4:3e:26:00:37:2c:65:9a:6d: 79:2e:ee:7b:70:83:0f:e6:33:68:8f:58:54:91:26: 7f:b8:77:e1:5d:27:7f:66:7b:0d:6c:a5:8a:fb:a5: 3c:f1:3b:b4:0c:6f:9d:7d:b4:9e:46:f4:39:d8:62: 8e:1b:f8:57:5c:e5:d8:68:a8:18:dd:74:b5:c9:38: f6:cc:eb:02:a8:f3:e4:b5:9b:3a:82:fd:b1:4b:04: 10:4c:4d:45:ff:0c:75:d0:0b:33:b0:84:ca:31:d6: c8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:0C:08:EC:5D:56:3B:5B:18:5A:46:BB:B9:A1:7D:9F:10:7C:64:77 X509v3 Authority Key Identifier: keyid:2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:95:78:7c:9d:58:8f:e5:fe:80:c1:21:e3:f4:7b:a7:25:82: 00:cb:8d:76:7d:bd:b6:c9:95:9a:f7:03:6c:8a:e7:9b:74:a9: 94:58:ca:bc:b3:13:ce:3b:2c:b4:89:b9:8d:59:11:33:33:3d: cb:c2:1d:92:ac:87:75:37:e5:f3:ca:ef:f6:d4:1e:de:ee:00: 8a:e9:84:5a:d8:28:b3:ec:3f:0a:e8:02:70:bd:30:a4:af:b7: 0f:37:6d:40:0b:e0:53:34:a9:31:1e:9a:6e:83:5d:11:ad:ee: 83:6c:d6:df:c2:5d:6f:27:df:bc:65:b6:14:c2:ed:7c:45:d6: 9a:d8:ef:55:48:34:73:91:73:08:cb:87:b7:b7:f3:45:da:86: 2d:dc:c7:e1:22:5d:94:e1:c3:dd:8c:ee:ac:6b:d8:d1:58:c8: 03:9f:1f:0c:eb:38:08:75:33:45:6a:b0:53:dd:35:33:5f:b5: e3:a7:0a:fa:11:5a:5a:ce:e7:ff:9d:78:1b:fa:3c:d8:79:90: 51:4c:f4:bc:c1:29:2d:3d:fe:23:06:6b:66:e9:04:e5:50:49: b0:78:1b:df:ef:a4:66:97:98:2d:e9:ff:0a:21:cf:3e:62:73: 0c:d7:c8:b0:e2:01:78:72:d5:bf:c4:a8:29:b0:d7:ed:0a:93: 85:f5:24:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ2QjExMTAvBgNVBAUTKDJGM0VGNUI5MDEzNzE0RTMxNzRDNjcwMEFFMDQ4MjRF MkYwNUMyMzAwHhcNMjQxMTIzMDEwMjQ1WhcNMjQxMTMwMDEwMjQ1WjAYMRYwFAYD VQQDEw02NzQxMjliNS0zMzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3c+lk5NO/3MuKXb3G9UXIxZ4w5brs/ZQFbqUjPdHlKWWXZHWhg9IF7JBYmAb 0N/GwEG3uAGzIkVirkPylazn3LnG+pZuur3mjvmqx93+8OmXa0tlT5t3zg98pCIN FT8rHJBbX/veQKVINj49AG44D/a6pVL0IvDa79EiRfkF2GKlk/ndpBY5K9+tENtU RqATiBaaWAhPKGoSOGLUPiYANyxlmm15Lu57cIMP5jNoj1hUkSZ/uHfhXSd/ZnsN bKWK+6U88Tu0DG+dfbSeRvQ52GKOG/hXXOXYaKgY3XS1yTj2zOsCqPPktZs6gv2x SwQQTE1F/wx10AszsITKMdbIeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoMCOxd VjtbGFpGu7mhfZ8QfGR3MB8GA1UdIwQYMBaAFC8+9bkBNxTjF0xnAK4Egk4vBcIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDZCMS85QTBFQ0UxMEQw RjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZPTVhUR2NBcmdTQ1RpOEZ3 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6NzF1UUUzRk9NWFRHY0FyZ1NDVGk4RndqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDZCMS85QTBFQ0UxMEQwRjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZP TVhUR2NBcmdTQ1RpOEZ3akEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAglXh8nViP5f6AwSHj9HunJYIAy412fb22yZWa9wNsiuebdKmUWMq8 sxPOOyy0ibmNWREzMz3Lwh2SrId1N+Xzyu/21B7e7gCK6YRa2Ciz7D8K6AJwvTCk r7cPN21AC+BTNKkxHppug10Rre6DbNbfwl1vJ9+8ZbYUwu18Rdaa2O9VSDRzkXMI y4e3t/NF2oYt3MfhIl2U4cPdjO6sa9jRWMgDnx8M6zgIdTNFarBT3TUzX7Xjpwr6 EVpazuf/nXgb+jzYeZBRTPS8wSktPf4jBmtm6QTlUEmweBvf76Rml5gt6f8KIc8+ YnMM18iw4gF4ctW/xKgpsNftCpOF9SQe -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:33 2024 by rpki-client on console-fra.rpki-client.org