$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: HkRF+uUjn2NlaPHTApMfWdCjPjsEMjIWFc3sczajR7E= Subject key identifier: 5E:26:11:D9:19:40:54:D5:8E:C2:B3:08:F9:F2:DF:FA:8B:37:D4:4E Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0A66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 0A60 Signing time: Fri 22 Nov 2024 19:25:30 +0000 Manifest this update: Fri 22 Nov 2024 19:25:29 +0000 Manifest next update: Fri 29 Nov 2024 19:25:29 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: zCBRjP5SIfDGSsb8tl2i4bAoSKypjUl/eHjkGWJ47/4=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: 41cjFQ4140Z5h4e8/b+EfKqx6IFO/VtjT/VMpvwFsdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2662 (0xa66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Validity Not Before: Nov 22 19:25:29 2024 GMT Not After : Nov 29 19:25:29 2024 GMT Subject: CN=6740daaa-2b4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:30:4c:6a:fe:15:f4:94:e2:32:3a:72:73:bd: 14:a6:6a:9d:a6:b1:09:c5:ce:ec:57:29:f1:82:bd: 00:b0:8a:71:04:fd:b7:1a:6a:c5:89:f6:7d:1c:7c: 0a:bf:ef:10:09:b0:5e:85:f9:53:97:2b:92:c6:6d: 9b:e7:9a:64:43:17:43:34:05:5a:8a:29:39:a0:a4: 9e:0d:cb:39:c5:2f:d0:17:49:73:18:78:39:2c:88: 9e:87:c7:be:b6:98:77:37:dc:c2:74:07:44:26:70: c9:fa:da:59:68:21:22:02:50:bf:15:fe:9e:56:ff: 0a:4a:c5:1a:26:3f:50:94:9e:84:28:cb:e3:e3:49: 2a:f1:aa:29:02:45:65:79:76:41:02:51:27:83:0a: 6b:77:e6:85:4a:02:aa:23:98:17:63:96:e5:01:7b: 8b:aa:fa:f9:46:86:8d:ba:57:dd:f2:31:25:15:1d: 12:e6:9b:1f:0f:f3:64:e2:f8:c6:a1:2f:5c:f7:0d: 90:64:57:bc:ef:4c:43:e2:c3:cc:54:f3:49:bf:74: 7d:ba:ab:56:78:83:5d:c8:4c:61:05:25:7a:21:87: 81:2e:d3:f9:4f:42:13:11:3b:f6:b8:3e:b2:dd:18: 43:d7:f3:80:ee:17:9c:75:f9:2c:f0:f6:d9:1c:e1: 22:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:26:11:D9:19:40:54:D5:8E:C2:B3:08:F9:F2:DF:FA:8B:37:D4:4E X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:f1:70:07:e1:20:4f:a0:fe:45:18:12:bf:62:a1:9b:b5:f8: a0:c4:2e:15:31:dd:93:37:72:03:4e:50:b0:c1:1a:01:c1:6a: 9c:d7:00:ab:12:14:8f:c8:aa:57:1d:a4:b9:30:e5:d5:a0:e7: ab:43:fc:36:a8:11:9e:aa:30:1d:93:4c:f9:5b:1c:40:3c:35: d1:5b:d9:0f:44:99:5f:bb:81:72:aa:c9:1f:ae:66:20:b4:da: 23:94:ac:b2:28:76:cd:4e:ef:dd:b0:af:9e:0d:66:68:38:f3: 78:c0:32:0b:c1:1e:49:4b:d4:bb:34:a6:c0:b9:48:8e:fa:74: 63:16:21:14:e8:e5:49:19:8a:9f:e3:c5:32:94:f0:33:45:a1: 06:a1:6b:dc:af:83:03:a0:6f:91:49:63:65:66:f1:b4:59:9f: 91:14:66:6a:05:1a:7a:5c:91:ba:4c:f0:d3:9e:1f:db:4a:f9: 17:28:ac:b8:de:54:c2:dd:6e:c1:27:7f:52:3a:f4:4c:a3:08: 69:72:ba:68:7e:69:fb:24:7c:ca:08:21:4a:f4:5f:90:0f:ef: eb:63:75:b7:ea:7a:2d:c9:50:fa:57:06:e4:d6:7d:ad:a8:18: f4:29:05:da:d8:d7:3b:41:9f:04:af:c5:f8:cd:ad:f2:8c:a5: 23:87:bf:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjQxMTIyMTkyNTI5WhcNMjQxMTI5MTkyNTI5WjAYMRYwFAYD VQQDEw02NzQwZGFhYS0yYjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzBMav4V9JTiMjpyc70UpmqdprEJxc7sVynxgr0AsIpxBP23GmrFifZ9HHwK v+8QCbBehflTlyuSxm2b55pkQxdDNAVaiik5oKSeDcs5xS/QF0lzGHg5LIieh8e+ tph3N9zCdAdEJnDJ+tpZaCEiAlC/Ff6eVv8KSsUaJj9QlJ6EKMvj40kq8aopAkVl eXZBAlEngwprd+aFSgKqI5gXY5blAXuLqvr5RoaNulfd8jElFR0S5psfD/Nk4vjG oS9c9w2QZFe870xD4sPMVPNJv3R9uqtWeINdyExhBSV6IYeBLtP5T0ITETv2uD6y 3RhD1/OA7hecdfks8PbZHOEiMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4mEdkZ QFTVjsKzCPny3/qLN9ROMB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA78XAH4SBPoP5FGBK/YqGbtfigxC4VMd2TN3IDTlCwwRoBwWqc1wCr EhSPyKpXHaS5MOXVoOerQ/w2qBGeqjAdk0z5WxxAPDXRW9kPRJlfu4FyqskfrmYg tNojlKyyKHbNTu/dsK+eDWZoOPN4wDILwR5JS9S7NKbAuUiO+nRjFiEU6OVJGYqf 48UylPAzRaEGoWvcr4MDoG+RSWNlZvG0WZ+RFGZqBRp6XJG6TPDTnh/bSvkXKKy4 3lTC3W7BJ39SOvRMowhpcrpofmn7JHzKCCFK9F+QD+/rY3W36notyVD6Vwbk1n2t qBj0KQXa2Nc7QZ8Er8X4za3yjKUjh79P -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:32 2024 by rpki-client on console-ams.rpki-client.org