$ rpki-client -vvf rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft File: D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft (raw, json) Hash identifier: gNV2MPcKOYcIGf2FWKeGrVv/PZzCsXFBFNjK3sZzges= Subject key identifier: 72:B9:6F:CA:D5:CF:56:65:9E:9A:53:D8:75:78:32:47:8F:27:A0:A2 Authority key identifier: 0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 Certificate issuer: /CN=A9185413/serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft Manifest number: A8 Signing time: Sat 23 Nov 2024 04:13:46 +0000 Manifest this update: Sat 23 Nov 2024 04:13:46 +0000 Manifest next update: Sat 30 Nov 2024 04:13:46 +0000 Files and hashes: 1: D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl (hash: v7jxNqxz1z09/cFYohdPqXCS5/fU3ApRmJCTA8RnuXM=) 2: C1D49C12AEDF11EE96155C68C4F9AE02.roa (hash: dzuBA92ULhmJzmxGgdHpyawAKCUbaQ8RTfKuM5up9R0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185413/serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Validity Not Before: Nov 23 04:13:46 2024 GMT Not After : Nov 30 04:13:46 2024 GMT Subject: CN=6741567a-c06e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:55:e8:d8:10:8b:88:55:03:14:c0:f7:3a:98: 3b:ba:eb:ec:2c:37:8d:84:8c:06:51:5d:3a:cb:fd: 81:63:26:9d:cd:f6:9e:59:18:56:46:2b:da:98:5d: 76:33:f3:dc:51:68:f3:a0:e9:46:12:95:e7:eb:8f: b3:2f:14:38:42:83:a4:c8:5b:34:6d:56:1c:ee:49: a8:cc:c1:35:32:c9:9e:ac:94:27:4a:85:ad:9c:66: 4b:fd:81:3c:8e:fb:57:31:35:c0:39:52:c6:ee:99: 55:d8:d1:d1:84:d4:51:c1:39:30:46:da:e6:a9:82: 69:02:21:ad:68:29:1f:ca:29:b0:24:57:64:87:b2: 78:87:39:b5:18:cd:da:9b:0c:ee:a7:b0:aa:e9:34: f7:8d:ff:c4:a7:2f:7c:10:f9:4d:d1:1f:b4:d2:92: c6:ab:18:c1:02:35:68:1b:16:9f:c9:93:f5:af:b3: 20:2f:7b:92:cb:5f:e7:08:42:fd:17:b8:fa:af:46: e0:3d:4c:cc:bd:db:f5:41:1b:c3:50:1b:e5:7e:fa: 27:80:8a:87:f0:ea:d1:a5:dd:c7:37:74:62:64:f9: 7e:31:84:e5:f5:01:64:6b:b1:ae:68:be:c3:d6:c7: c4:61:50:5c:64:e7:0d:a0:cf:d0:4e:57:ca:c5:1d: 84:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:B9:6F:CA:D5:CF:56:65:9E:9A:53:D8:75:78:32:47:8F:27:A0:A2 X509v3 Authority Key Identifier: keyid:0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:d6:ff:71:0d:4e:a6:45:d8:2c:13:24:7a:d8:2b:aa:14:e8: 84:30:b3:42:55:70:d6:a0:94:a2:0e:d0:5d:0e:f0:d4:12:77: af:ca:07:79:38:1e:f4:00:45:8c:76:3d:3d:8e:c8:fd:a8:ed: 38:69:4c:3f:cf:3d:37:79:ad:51:2e:99:81:71:06:b1:32:61: e1:83:2f:a1:df:01:a8:83:50:92:e9:35:e2:61:8a:0b:2c:9e: ae:b4:8d:23:c0:ca:d3:a5:60:7b:dd:95:ff:5a:7b:03:0a:02: 0b:cf:1d:97:af:21:47:fd:73:9a:d7:7c:5e:99:b0:ac:61:05: 23:14:a2:42:05:77:cf:13:8a:7f:13:5e:c7:83:47:c4:e3:99: ee:26:20:95:93:83:a2:88:62:38:df:30:44:8b:ae:42:8f:d0: f6:ec:16:0c:d0:4c:f0:35:c2:c5:d1:21:37:4e:d0:f0:21:ec: 41:ee:49:36:6b:3b:55:bb:d3:3a:d2:98:5c:f6:1f:70:a4:f2: 24:69:88:e9:3d:4f:cb:94:80:94:a3:9d:02:32:bc:b1:da:ee: 9f:c6:11:38:99:37:2c:f4:8b:21:8e:13:a0:42:bc:ce:5b:77: 35:78:de:a9:ad:1a:ef:1b:84:14:23:9e:69:42:5e:c1:fc:62: 48:47:fd:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0MTMxMTAvBgNVBAUTKDBGOTlCMUZFQ0ZBNTcwMDRGNjQzRDgyQkY1MTFDREQ0 NzQ3ODZEQTAwHhcNMjQxMTIzMDQxMzQ2WhcNMjQxMTMwMDQxMzQ2WjAYMRYwFAYD VQQDEw02NzQxNTY3YS1jMDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplXo2BCLiFUDFMD3Opg7uuvsLDeNhIwGUV06y/2BYyadzfaeWRhWRivamF12 M/PcUWjzoOlGEpXn64+zLxQ4QoOkyFs0bVYc7kmozME1MsmerJQnSoWtnGZL/YE8 jvtXMTXAOVLG7plV2NHRhNRRwTkwRtrmqYJpAiGtaCkfyimwJFdkh7J4hzm1GM3a mwzup7Cq6TT3jf/Epy98EPlN0R+00pLGqxjBAjVoGxafyZP1r7MgL3uSy1/nCEL9 F7j6r0bgPUzMvdv1QRvDUBvlfvongIqH8OrRpd3HN3RiZPl+MYTl9QFka7GuaL7D 1sfEYVBcZOcNoM/QTlfKxR2EIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHK5b8rV z1ZlnppT2HV4MkePJ6CiMB8GA1UdIwQYMBaAFA+Zsf7PpXAE9kPYK/URzdR0eG2g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQxMy83NTlBRDI0Q0FC OUUxMUVFOTYzRDMxN0RDNEY5QUUwMi9ENW14X3MtbGNBVDJROWdyOVJITjFIUjRi YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1bXhfcy1sY0FUMlE5Z3I5UkhOMUhSNGJhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQxMy83NTlBRDI0Q0FCOUUxMUVFOTYzRDMxN0RDNEY5QUUwMi9ENW14X3MtbGNB VDJROWdyOVJITjFIUjRiYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn1v9xDU6mRdgsEyR62CuqFOiEMLNCVXDWoJSiDtBdDvDUEnevygd5 OB70AEWMdj09jsj9qO04aUw/zz03ea1RLpmBcQaxMmHhgy+h3wGog1CS6TXiYYoL LJ6utI0jwMrTpWB73ZX/WnsDCgILzx2XryFH/XOa13xembCsYQUjFKJCBXfPE4p/ E17Hg0fE45nuJiCVk4OiiGI43zBEi65Cj9D27BYM0EzwNcLF0SE3TtDwIexB7kk2 aztVu9M60phc9h9wpPIkaYjpPU/LlICUo50CMryx2u6fxhE4mTcs9IshjhOgQrzO W3c1eN6prRrvG4QUI55pQl7B/GJIR/39 -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:52 2024 by rpki-client on console-fra.rpki-client.org