$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: BZ32+Hd/1JKZrCmj08GjWrCm7ibs0YaQkDgmaxi7pUs= Subject key identifier: 28:A2:9C:2B:C5:C6:F0:76:AF:2B:4C:15:C4:A6:CA:5B:BC:E9:A8:26 Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0DE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0DDB Signing time: Fri 22 Nov 2024 17:48:54 +0000 Manifest this update: Fri 22 Nov 2024 17:48:53 +0000 Manifest next update: Fri 29 Nov 2024 17:48:53 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: BbPfjc4UsccVE3O1KnLVg3a0L/wuGaYV+3bXpPWdyRY=) 2: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (hash: fNpUJmaY/58+uPHYwxaUVKQVkJ1Z1JQOjKMefzdFE80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3560 (0xde8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: Nov 22 17:48:53 2024 GMT Not After : Nov 29 17:48:53 2024 GMT Subject: CN=6740c405-a5bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7d:ea:ea:c3:26:58:2c:ed:7e:cb:b3:33:e9: 61:b2:ee:f3:6d:67:c7:8d:a8:e2:d2:de:a9:cf:06: 72:18:c4:a5:c5:ba:f1:96:92:dc:ac:82:8e:d1:ce: 7f:68:d7:68:5e:e2:e7:36:2d:64:3b:14:2d:e8:50: db:22:02:67:50:2b:7d:50:1b:7e:fa:e1:bb:02:66: 8c:f3:54:99:4b:15:9d:54:04:67:e0:ce:0c:a2:35: df:ea:8c:34:fb:c3:b6:7f:78:ba:db:18:e6:57:2e: 06:5d:0d:f1:71:31:17:fe:42:c3:43:e1:30:0c:46: 2f:04:56:ed:7c:53:c0:3c:c6:55:91:25:bc:17:26: 66:84:91:b4:03:a0:fe:5b:eb:ce:4d:4e:33:73:6f: 37:a0:1a:c0:97:cc:e2:3c:b1:15:15:90:28:ea:f9: 5e:f2:7a:39:97:11:65:d8:54:7d:17:9e:bc:94:3b: ed:00:3d:3e:75:01:71:8e:4a:e6:c4:4b:ed:f7:13: a9:7e:bc:4f:70:a9:2b:3d:5c:72:8c:e0:d7:3f:be: 50:02:5a:6f:d3:ae:fe:8e:94:1f:bb:f5:a4:20:09: 41:d4:9e:75:31:aa:4c:3c:6c:23:ef:82:f8:b6:33: 77:08:ce:85:cd:83:67:06:9b:39:5f:f6:fb:f8:6b: 9d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A2:9C:2B:C5:C6:F0:76:AF:2B:4C:15:C4:A6:CA:5B:BC:E9:A8:26 X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:ad:5c:39:cf:86:dd:f0:ce:8f:ad:cf:16:39:b1:c2:8e:ed: c2:f2:b4:d1:3e:76:9f:d8:1c:52:d9:30:e1:ce:c7:2e:5d:21: b2:5c:de:c4:0f:53:4a:cc:50:78:d8:ee:27:06:02:53:35:31: 22:e3:bf:47:e1:bc:f0:4c:6a:17:23:62:9e:41:26:ec:bc:02: db:8f:92:5a:ee:37:68:1d:2f:a0:5e:5e:c3:0e:6b:98:1c:fd: 70:17:6f:fd:d6:69:b3:da:42:33:1d:37:5f:41:90:60:b1:94: ec:85:c8:67:79:be:a2:09:13:ea:a7:ee:47:1b:24:e2:48:18: db:ea:8b:6f:a3:7f:7a:62:de:75:f5:b1:98:ee:9b:d2:57:f7: 9e:e8:21:be:25:7b:f5:07:60:e0:53:03:a3:15:1f:13:a4:16: 07:91:d9:e2:e9:67:74:3c:53:24:35:18:7a:c1:9a:dc:6b:d7: be:ce:3a:6b:2e:47:4a:df:a5:ba:d4:18:70:9a:18:10:84:48: 01:e9:11:94:8e:e4:ff:8a:9f:50:ee:1a:ad:1a:1e:09:2f:b2: 87:c0:20:48:6f:57:1d:82:e6:ae:d9:ca:a8:f1:dd:cc:23:26: e7:e8:00:21:85:c5:14:9e:61:7a:f0:0c:17:6a:eb:a5:8d:fb: 30:06:0f:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjQxMTIyMTc0ODUzWhcNMjQxMTI5MTc0ODUzWjAYMRYwFAYD VQQDEw02NzQwYzQwNS1hNWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun3q6sMmWCztfsuzM+lhsu7zbWfHjaji0t6pzwZyGMSlxbrxlpLcrIKO0c5/ aNdoXuLnNi1kOxQt6FDbIgJnUCt9UBt++uG7AmaM81SZSxWdVARn4M4MojXf6ow0 +8O2f3i62xjmVy4GXQ3xcTEX/kLDQ+EwDEYvBFbtfFPAPMZVkSW8FyZmhJG0A6D+ W+vOTU4zc283oBrAl8ziPLEVFZAo6vle8no5lxFl2FR9F568lDvtAD0+dQFxjkrm xEvt9xOpfrxPcKkrPVxyjODXP75QAlpv067+jpQfu/WkIAlB1J51MapMPGwj74L4 tjN3CM6FzYNnBps5X/b7+GudtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiinCvF xvB2rytMFcSmylu86agmMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSrVw5z4bd8M6Prc8WObHCju3C8rTRPnaf2BxS2TDhzscuXSGyXN7E D1NKzFB42O4nBgJTNTEi479H4bzwTGoXI2KeQSbsvALbj5Ja7jdoHS+gXl7DDmuY HP1wF2/91mmz2kIzHTdfQZBgsZTshchneb6iCRPqp+5HGyTiSBjb6otvo396Yt51 9bGY7pvSV/ee6CG+JXv1B2DgUwOjFR8TpBYHkdni6Wd0PFMkNRh6wZrca9e+zjpr LkdK36W61BhwmhgQhEgB6RGUjuT/ip9Q7hqtGh4JL7KHwCBIb1cdguau2cqo8d3M Iybn6AAhhcUUnmF68AwXauuljfswBg9E -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org