$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: HnHrc24QNSLUuEAhn1MAiiU/hyGiAksgWZVcaLGRAJE= Subject key identifier: 09:94:77:1B:FE:71:9B:47:DC:00:97:15:1E:7A:55:0D:66:DB:50:2A Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 0976 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 0970 Signing time: Fri 22 Nov 2024 19:53:23 +0000 Manifest this update: Fri 22 Nov 2024 19:53:22 +0000 Manifest next update: Fri 29 Nov 2024 19:53:22 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: ns1cQ906EEbA8DOzdKaigDdoZMpsJEE7VYFZebH422M=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: xV0WLxYqqQFCLmI/y4DVLsG2EiamVNg0WSby5MmNSBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2422 (0x976) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Nov 22 19:53:22 2024 GMT Not After : Nov 29 19:53:22 2024 GMT Subject: CN=6740e132-2147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1c:1f:61:eb:84:a8:ac:c7:cc:a6:58:2a:44: ae:2c:f6:73:72:42:49:b4:7d:2b:fd:1d:14:a4:22: 49:1c:3c:35:06:e2:1f:71:e8:c2:0c:3f:c6:18:98: 6b:b4:06:c6:92:19:98:6b:75:d0:d5:81:74:d9:30: ae:0a:6c:70:71:f2:4f:28:f7:f6:75:92:6d:24:df: 28:11:04:66:92:84:1e:c7:64:95:56:2f:68:cd:e4: c1:92:0d:47:04:fc:fd:2f:76:47:b7:55:bc:01:df: de:75:ee:9f:aa:2d:e4:d0:58:fd:39:90:79:55:3c: a7:bd:ec:53:85:12:cb:36:16:f2:4b:9e:2c:9f:88: 2b:cd:95:3b:c8:e6:af:1d:a1:a6:d9:72:ec:76:d8: d0:41:7e:eb:3c:14:53:72:9f:87:33:a2:dc:9b:dd: 34:16:16:8a:a8:a5:77:0b:56:b7:aa:07:2d:c1:16: cc:99:dc:6e:d3:bb:c8:ee:f7:c8:e1:46:90:20:f3: b2:a3:ac:e8:4e:85:2b:96:a2:0a:76:66:d5:2e:05: fe:85:a5:02:26:8e:03:13:da:b2:3e:2c:09:7b:fc: 13:1b:0c:c4:75:7c:73:26:82:f0:6e:3a:61:2e:e2: 87:56:23:69:0d:70:0b:d9:a8:e9:76:52:bd:11:75: 58:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:94:77:1B:FE:71:9B:47:DC:00:97:15:1E:7A:55:0D:66:DB:50:2A X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:10:9b:70:ba:f6:1a:de:88:6b:93:25:f3:a9:09:2c:99:6c: 6a:bb:e7:e1:cf:64:49:03:24:28:93:75:7f:d2:11:ea:b4:07: 6a:18:03:2d:46:1a:c1:19:ae:4b:26:0a:1e:0b:ec:5b:95:e0: 78:c7:43:61:65:fe:80:d2:57:57:6f:f7:a8:2e:fe:8c:a9:16: 1a:90:c6:c3:8a:95:45:a0:fb:be:2b:e2:25:d2:70:65:4b:04: f3:f4:ad:91:c3:c6:b5:e1:c3:18:da:d8:83:2f:54:b2:5f:e2: aa:11:97:d1:42:d5:77:e7:e9:13:87:35:d2:87:93:59:86:44: 21:7f:b3:0f:fe:01:92:61:f5:b0:d5:8d:4f:e3:0f:a9:f4:e2: 56:46:68:29:03:3c:3a:36:15:fc:e6:cc:e8:61:6c:55:c9:64: f7:4a:bc:e7:a2:b6:14:2f:ea:76:c9:b3:6e:8a:97:30:ec:df: 99:ed:e2:32:79:b6:9c:b1:e3:33:82:ed:32:df:23:9e:16:ce: 0b:3b:5d:9f:08:68:bd:c6:79:17:80:55:cb:41:1e:38:1f:0f: 12:7a:8f:48:fc:b3:fb:51:03:53:e9:a5:a2:8b:b0:8f:c3:cc: c2:1b:20:29:5f:e6:99:ba:e7:b8:11:ba:48:4f:92:ce:31:37: 1b:c8:65:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjQxMTIyMTk1MzIyWhcNMjQxMTI5MTk1MzIyWjAYMRYwFAYD VQQDEw02NzQwZTEzMi0yMTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RwfYeuEqKzHzKZYKkSuLPZzckJJtH0r/R0UpCJJHDw1BuIfcejCDD/GGJhr tAbGkhmYa3XQ1YF02TCuCmxwcfJPKPf2dZJtJN8oEQRmkoQex2SVVi9ozeTBkg1H BPz9L3ZHt1W8Ad/ede6fqi3k0Fj9OZB5VTynvexThRLLNhbyS54sn4grzZU7yOav HaGm2XLsdtjQQX7rPBRTcp+HM6Lcm900FhaKqKV3C1a3qgctwRbMmdxu07vI7vfI 4UaQIPOyo6zoToUrlqIKdmbVLgX+haUCJo4DE9qyPiwJe/wTGwzEdXxzJoLwbjph LuKHViNpDXAL2ajpdlK9EXVYowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmUdxv+ cZtH3ACXFR56VQ1m21AqMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcEJtwuvYa3ohrkyXzqQksmWxqu+fhz2RJAyQok3V/0hHqtAdqGAMt RhrBGa5LJgoeC+xbleB4x0NhZf6A0ldXb/eoLv6MqRYakMbDipVFoPu+K+Il0nBl SwTz9K2Rw8a14cMY2tiDL1SyX+KqEZfRQtV35+kThzXSh5NZhkQhf7MP/gGSYfWw 1Y1P4w+p9OJWRmgpAzw6NhX85szoYWxVyWT3SrznorYUL+p2ybNuipcw7N+Z7eIy ebacseMzgu0y3yOeFs4LO12fCGi9xnkXgFXLQR44Hw8Seo9I/LP7UQNT6aWii7CP w8zCGyApX+aZuue4EbpIT5LOMTcbyGXz -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:28 2024 by rpki-client on console-fra.rpki-client.org