$ rpki-client -vvf rpki.apnic.net/member_repository/A9165D52/612B67AC84FA11ED80AC4E10C4F9AE02/LnG4umMF_9SMEx0IYK8sGs9tIrY.mft File: LnG4umMF_9SMEx0IYK8sGs9tIrY.mft (raw, json) Hash identifier: MP6npjyrSMN8WVbbRJfFmUlwQhWpvI0UblQeqTlAWho= Subject key identifier: 1A:0C:B4:19:51:63:EB:93:DE:9D:D3:66:38:EC:5E:08:65:13:30:97 Authority key identifier: 2E:71:B8:BA:63:05:FF:D4:8C:13:1D:08:60:AF:2C:1A:CF:6D:22:B6 Certificate issuer: /CN=A9165D52/serialNumber=2E71B8BA6305FFD48C131D0860AF2C1ACF6D22B6 Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnG4umMF_9SMEx0IYK8sGs9tIrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165D52/612B67AC84FA11ED80AC4E10C4F9AE02/LnG4umMF_9SMEx0IYK8sGs9tIrY.mft Manifest number: 0166 Signing time: Sat 23 Nov 2024 02:18:14 +0000 Manifest this update: Sat 23 Nov 2024 02:18:14 +0000 Manifest next update: Sat 30 Nov 2024 02:18:14 +0000 Files and hashes: 1: LnG4umMF_9SMEx0IYK8sGs9tIrY.crl (hash: 9aiZynmRQvy6KMn0LVNUOPfKruv033lP7O28nJWASRk=) 2: D08310DE94C511EDB2732947C4F9AE02.roa (hash: 6swA/Z2Bn/93wNV89PyUjWjhUlp9ILVNtdOEp/BxgkA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165D52/612B67AC84FA11ED80AC4E10C4F9AE02/LnG4umMF_9SMEx0IYK8sGs9tIrY.crl rsync://rpki.apnic.net/member_repository/A9165D52/612B67AC84FA11ED80AC4E10C4F9AE02/LnG4umMF_9SMEx0IYK8sGs9tIrY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnG4umMF_9SMEx0IYK8sGs9tIrY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165D52/serialNumber=2E71B8BA6305FFD48C131D0860AF2C1ACF6D22B6 Validity Not Before: Nov 23 02:18:14 2024 GMT Not After : Nov 30 02:18:14 2024 GMT Subject: CN=67413b66-b270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:26:eb:31:c4:3f:6e:c2:65:80:4e:3d:27:44: b0:b6:8e:53:c2:cc:0c:70:45:01:34:87:1c:be:92: bd:af:8c:21:93:6c:63:df:0a:33:90:c5:55:ae:31: a7:a9:92:81:37:48:af:b7:3e:69:76:36:71:61:ac: 8f:b9:2e:06:40:34:41:f7:5b:f3:5e:f1:90:70:c6: b4:4f:5e:fd:7a:36:ea:f5:76:05:a3:41:64:9d:46: 0f:56:e9:27:b2:d3:84:c7:90:2c:91:50:b4:90:60: de:f6:e6:c6:3b:06:18:33:47:4c:fe:97:27:e3:3a: 63:49:32:bd:99:6d:f8:56:0f:2a:0d:84:17:24:05: a1:db:d7:e8:dc:a9:00:b2:35:3b:62:33:4f:80:bb: ff:7f:50:bf:f9:0f:49:ce:59:d6:5f:68:12:32:4b: 7a:ee:ee:08:3c:76:de:c2:4d:6c:83:a6:ae:62:6a: 7f:b8:dc:b8:f8:13:22:d6:53:f8:bb:33:09:99:1c: 7c:df:3a:41:43:3a:18:97:31:47:b7:84:37:bb:37: d9:66:68:7d:40:21:85:1c:0e:f2:7c:9e:8c:65:20: 57:32:af:1c:85:6a:de:9f:36:70:01:19:fd:8b:2d: e3:4b:01:ad:ec:cc:41:1f:8f:44:38:bf:8b:2a:1d: dd:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:0C:B4:19:51:63:EB:93:DE:9D:D3:66:38:EC:5E:08:65:13:30:97 X509v3 Authority Key Identifier: keyid:2E:71:B8:BA:63:05:FF:D4:8C:13:1D:08:60:AF:2C:1A:CF:6D:22:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165D52/612B67AC84FA11ED80AC4E10C4F9AE02/LnG4umMF_9SMEx0IYK8sGs9tIrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnG4umMF_9SMEx0IYK8sGs9tIrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165D52/612B67AC84FA11ED80AC4E10C4F9AE02/LnG4umMF_9SMEx0IYK8sGs9tIrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:28:c1:34:d4:74:50:0c:38:b7:ad:ad:7a:86:f3:7c:1f:44: cb:df:86:93:5b:29:34:ce:e2:62:59:9c:43:a7:4c:5a:16:42: 30:12:13:eb:80:22:0d:d2:64:35:44:ad:8a:b1:6d:3b:6a:5b: a8:2d:64:c7:fa:5c:53:70:ea:af:7f:ff:f1:48:70:0a:65:5e: dd:6e:74:14:24:77:ac:07:22:e6:7a:8d:3b:f7:90:4c:47:ba: e0:4f:92:09:4f:d8:87:31:e4:da:e0:2a:97:ff:62:bf:24:49: 0a:25:be:63:97:ef:34:20:b0:12:ab:7f:ee:1d:7f:66:70:78: c3:16:7e:17:18:ca:2d:d1:95:b6:a1:cc:cb:c9:7a:9b:e0:72: 40:cf:5c:be:d4:dc:90:e4:e9:8d:e4:eb:6f:82:65:aa:9d:6b: 7e:e3:7d:41:75:86:86:0b:10:f3:8a:87:39:df:b8:cd:9d:de: ff:df:56:b3:f0:a9:23:6e:63:5b:2c:d3:c7:80:c7:39:47:0b: f7:0f:c6:bb:e4:78:e5:05:79:ed:06:db:de:9e:45:e3:14:1a: c8:5b:b4:d1:59:45:6c:f3:ae:8d:14:bf:cd:f2:50:49:09:c7: 54:68:d3:28:60:c5:0c:52:db:35:35:cc:d6:93:93:f2:31:e9: cf:78:1d:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVENTIxMTAvBgNVBAUTKDJFNzFCOEJBNjMwNUZGRDQ4QzEzMUQwODYwQUYyQzFB Q0Y2RDIyQjYwHhcNMjQxMTIzMDIxODE0WhcNMjQxMTMwMDIxODE0WjAYMRYwFAYD VQQDEw02NzQxM2I2Ni1iMjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ibrMcQ/bsJlgE49J0Swto5TwswMcEUBNIccvpK9r4whk2xj3wozkMVVrjGn qZKBN0ivtz5pdjZxYayPuS4GQDRB91vzXvGQcMa0T179ejbq9XYFo0FknUYPVukn stOEx5AskVC0kGDe9ubGOwYYM0dM/pcn4zpjSTK9mW34Vg8qDYQXJAWh29fo3KkA sjU7YjNPgLv/f1C/+Q9JzlnWX2gSMkt67u4IPHbewk1sg6auYmp/uNy4+BMi1lP4 uzMJmRx83zpBQzoYlzFHt4Q3uzfZZmh9QCGFHA7yfJ6MZSBXMq8chWrenzZwARn9 iy3jSwGt7MxBH49EOL+LKh3dnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBoMtBlR Y+uT3p3TZjjsXghlEzCXMB8GA1UdIwQYMBaAFC5xuLpjBf/UjBMdCGCvLBrPbSK2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUQ1Mi82MTJCNjdBQzg0 RkExMUVEODBBQzRFMTBDNEY5QUUwMi9Mbkc0dW1NRl85U01FeDBJWUs4c0dzOXRJ clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuRzR1bU1GXzlTTUV4MElZSzhzR3M5dElyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUQ1Mi82MTJCNjdBQzg0RkExMUVEODBBQzRFMTBDNEY5QUUwMi9Mbkc0dW1NRl85 U01FeDBJWUs4c0dzOXRJclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPKME01HRQDDi3ra16hvN8H0TL34aTWyk0zuJiWZxDp0xaFkIwEhPr gCIN0mQ1RK2KsW07aluoLWTH+lxTcOqvf//xSHAKZV7dbnQUJHesByLmeo0795BM R7rgT5IJT9iHMeTa4CqX/2K/JEkKJb5jl+80ILASq3/uHX9mcHjDFn4XGMot0ZW2 oczLyXqb4HJAz1y+1NyQ5OmN5OtvgmWqnWt+431BdYaGCxDzioc537jNnd7/31az 8KkjbmNbLNPHgMc5Rwv3D8a75HjlBXntBtvenkXjFBrIW7TRWUVs866NFL/N8lBJ CcdUaNMoYMUMUts1NczWk5PyMenPeB3z -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org