$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: K0IIGAOZoAjzEEiKjMR40ZioW6Jo3HvxACk6qsO1eL0= Subject key identifier: D7:E4:6B:BF:C0:88:3C:D8:64:13:F9:2C:BC:32:09:2A:EE:82:D6:D4 Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 061A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 060E Signing time: Fri 22 Nov 2024 22:12:58 +0000 Manifest this update: Fri 22 Nov 2024 22:12:57 +0000 Manifest next update: Fri 29 Nov 2024 22:12:57 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: lnfuIkVhpaxOTMAnukXoZgmgyFVsJrP1M77lZ36HhWA=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: 33QQuphQRYqieH70NrggQ8h+UAAXFdTttYTtHGKfVsc=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: 75t6akdtpfZ66rCaphdHE8Ci0vcMWvnaqPUEn6z8jRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1562 (0x61a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Nov 22 22:12:57 2024 GMT Not After : Nov 29 22:12:57 2024 GMT Subject: CN=674101e9-fc16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:96:1e:32:72:af:8a:72:90:c8:de:59:9e:20: 5e:60:78:49:c2:bd:a5:68:76:36:5c:af:f2:ea:10: 0e:43:dd:20:72:a2:5e:12:76:ea:e8:ea:45:97:8f: c1:f4:32:c9:b8:19:4c:05:26:27:e6:d5:8a:74:80: 20:db:70:ba:ba:84:a2:19:f2:39:11:4b:8a:32:e7: 52:6f:73:fe:93:b9:42:39:a0:2e:d6:ed:a2:bd:5d: 28:e8:c9:f7:76:14:ef:60:c7:e1:51:7e:2c:8f:c5: ce:fa:8b:b4:d3:8c:ed:41:34:59:ca:6d:78:33:10: ac:68:16:e9:e5:14:58:73:16:1e:66:39:46:8d:80: cf:09:88:1b:28:5b:1d:b5:42:24:d6:df:0d:d3:4d: f7:87:47:8c:47:53:d0:2d:b9:5c:3c:a6:81:bd:b6: a0:ef:d4:a2:4c:1a:9a:80:31:23:e3:02:62:2f:8c: 6a:35:a0:31:de:8b:03:60:0b:e9:50:51:87:b8:61: 53:81:29:86:04:c5:37:53:aa:a9:d1:62:c8:76:07: d9:41:f9:c1:eb:61:fe:56:6e:3a:1f:13:34:d8:23: b0:e4:45:65:41:d9:24:d0:63:19:1e:17:5f:c6:9b: 92:6a:bd:48:f2:a2:d4:ec:53:c7:46:cc:b9:92:ab: ad:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E4:6B:BF:C0:88:3C:D8:64:13:F9:2C:BC:32:09:2A:EE:82:D6:D4 X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:c7:de:d5:bf:bd:63:20:49:da:ca:59:94:75:11:ac:b7:6a: b8:81:11:cb:c9:d8:07:1e:94:3f:c6:f5:aa:49:55:66:ec:34: 67:a2:53:4d:c2:06:fa:94:be:01:d7:a8:18:7f:99:70:82:cd: bc:43:86:db:85:d4:b0:96:db:54:ed:6a:d0:f0:c5:cd:4b:f5: d9:b2:5b:12:8c:d2:eb:de:18:78:4e:a4:a8:c1:7c:0a:6a:55: 1a:4e:f5:35:cc:96:39:d7:bf:91:2b:b2:4a:26:7c:5c:11:85: cc:49:3f:86:d5:62:a0:f9:4b:0e:d1:04:06:33:a1:7e:f1:8a: 63:b8:51:8e:88:f6:98:46:14:7e:a9:c1:a4:78:9b:1b:5d:3a: 4b:8b:43:3d:b9:c2:41:80:04:dc:af:38:44:7d:9d:03:cb:7e: e0:63:2b:c1:f0:9e:99:4c:2b:eb:96:e1:6a:c3:a4:9a:e6:5e: 56:ec:2a:93:ea:a5:8a:e4:50:bc:c3:99:75:8c:86:e2:00:71: 70:fc:1b:f9:9d:53:1d:b8:49:fb:4a:3c:a8:8b:23:16:ff:81: ce:f0:26:ac:ac:f2:ad:a6:f0:7d:68:3f:a6:34:c8:bd:91:d8: a8:d7:cb:17:b2:c7:17:92:5f:68:00:15:8a:d7:6f:ff:15:6c: fb:cf:2b:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjQxMTIyMjIxMjU3WhcNMjQxMTI5MjIxMjU3WjAYMRYwFAYD VQQDEw02NzQxMDFlOS1mYzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpYeMnKvinKQyN5ZniBeYHhJwr2laHY2XK/y6hAOQ90gcqJeEnbq6OpFl4/B 9DLJuBlMBSYn5tWKdIAg23C6uoSiGfI5EUuKMudSb3P+k7lCOaAu1u2ivV0o6Mn3 dhTvYMfhUX4sj8XO+ou004ztQTRZym14MxCsaBbp5RRYcxYeZjlGjYDPCYgbKFsd tUIk1t8N0033h0eMR1PQLblcPKaBvbag79SiTBqagDEj4wJiL4xqNaAx3osDYAvp UFGHuGFTgSmGBMU3U6qp0WLIdgfZQfnB62H+Vm46HxM02COw5EVlQdkk0GMZHhdf xpuSar1I8qLU7FPHRsy5kqutjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfka7/A iDzYZBP5LLwyCSrugtbUMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwx97Vv71jIEnaylmUdRGst2q4gRHLydgHHpQ/xvWqSVVm7DRnolNN wgb6lL4B16gYf5lwgs28Q4bbhdSwlttU7WrQ8MXNS/XZslsSjNLr3hh4TqSowXwK alUaTvU1zJY517+RK7JKJnxcEYXMST+G1WKg+UsO0QQGM6F+8YpjuFGOiPaYRhR+ qcGkeJsbXTpLi0M9ucJBgATcrzhEfZ0Dy37gYyvB8J6ZTCvrluFqw6Sa5l5W7CqT 6qWK5FC8w5l1jIbiAHFw/Bv5nVMduEn7SjyoiyMW/4HO8CasrPKtpvB9aD+mNMi9 kdio18sXsscXkl9oABWK12//FWz7zysK -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org