$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: 8t2JpNQEjpJvW/jrcv8KG+iz+kWuxIfiMoFJ/wlHuIA= Subject key identifier: 30:9D:5A:4E:80:8D:87:CF:A7:A8:CB:FB:D6:A8:56:A4:E9:CD:D6:81 Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 05D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 05D7 Signing time: Fri 22 Nov 2024 22:30:49 +0000 Manifest this update: Fri 22 Nov 2024 22:30:48 +0000 Manifest next update: Fri 29 Nov 2024 22:30:48 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: 60tYmsCULosrsCXAd0JOU9bVd5mi0uwq4Uyskx0BQVQ=) 2: 3A84DC2C44E411EFB0C1A135C4F9AE02.roa (hash: JGxMB26ttBekYTYeINbF/ZGgUOz7c1MGNzdVG0LlGY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1497 (0x5d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Validity Not Before: Nov 22 22:30:48 2024 GMT Not After : Nov 29 22:30:48 2024 GMT Subject: CN=67410619-edc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f0:94:43:0f:a3:8d:8b:34:bd:41:19:39:50: 26:76:92:3a:d8:94:53:1c:40:66:1c:08:07:5c:f9: 81:6a:bc:91:cb:61:7f:99:41:90:2c:2a:18:81:98: 8a:da:0b:7c:d1:64:fd:2e:96:98:2a:10:48:37:6b: be:80:67:e2:ad:a0:5a:55:e8:08:f4:76:15:f8:82: 6b:c5:d6:8d:61:59:b0:c8:17:b8:ab:e0:1e:cb:6e: 19:df:5f:da:8b:f0:d6:7c:2c:9a:30:68:9e:6c:0d: be:71:e6:65:bc:04:41:5d:3b:d6:56:9d:cb:aa:2c: 1e:0a:80:0d:3e:c4:28:fa:e6:58:d1:61:c4:70:da: 0c:e4:d9:23:c3:19:9c:c3:7e:47:98:9b:ce:4a:7d: 2d:94:6c:7f:37:a3:75:0c:5a:3f:0f:8b:8e:41:e1: be:00:33:92:5b:2b:ed:1e:e3:98:37:f9:22:c3:a6: a5:cc:cb:b3:03:94:d1:b3:84:f1:e8:f0:41:e0:dd: dc:12:93:95:bb:3b:e1:09:42:4b:8f:48:6c:bd:81: d1:ed:15:66:4e:cb:7e:d2:e2:1f:36:86:15:a1:90: f7:42:06:72:b9:d7:11:0b:b1:71:95:f2:69:00:2f: 33:1f:02:93:83:7a:08:51:f2:76:bc:34:ee:b4:74: 4d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9D:5A:4E:80:8D:87:CF:A7:A8:CB:FB:D6:A8:56:A4:E9:CD:D6:81 X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:ee:c4:b0:e4:e2:21:e9:16:0d:a3:86:06:ed:27:1d:8d:63: 12:cc:d2:96:3a:74:7b:49:e1:53:4c:36:fb:30:c4:ab:f5:f8: 1a:75:1b:58:63:98:84:94:9c:32:08:dc:16:a8:39:18:87:76: 11:78:20:af:91:9c:c5:4d:77:11:6d:b7:4b:15:a0:c7:93:6d: fd:5a:1e:77:e6:08:d1:28:3a:d3:0d:5f:0c:df:4f:3f:a6:22: 47:fa:72:a7:93:95:7f:48:cf:8e:59:40:a1:1d:77:65:b6:ab: 32:ea:e6:f8:a3:a7:72:58:8b:ac:82:db:9c:c9:68:9b:40:f5: db:14:c8:b2:f9:7e:18:41:31:27:ad:8f:56:d6:27:6d:29:7a: 44:0a:3b:3d:89:81:64:d9:03:9e:ee:98:33:1d:8f:1a:97:40: 5e:76:d5:0e:b1:b6:ba:61:2e:ef:ce:67:89:0a:61:98:d0:ad: bd:3f:c4:1a:45:95:0c:34:bd:da:0a:6f:c1:9e:31:f8:78:dd: bd:22:8f:61:15:21:bb:16:50:68:8f:b1:a7:aa:7d:ae:e9:49: f7:5f:af:21:4d:14:8d:d7:f0:29:8d:5a:d8:7c:fe:b3:1b:69: 91:4c:fb:a6:31:d4:46:5e:96:13:8d:f2:5f:0f:f7:af:d2:ed: e8:4f:d4:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjQxMTIyMjIzMDQ4WhcNMjQxMTI5MjIzMDQ4WjAYMRYwFAYD VQQDEw02NzQxMDYxOS1lZGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvCUQw+jjYs0vUEZOVAmdpI62JRTHEBmHAgHXPmBaryRy2F/mUGQLCoYgZiK 2gt80WT9LpaYKhBIN2u+gGfiraBaVegI9HYV+IJrxdaNYVmwyBe4q+Aey24Z31/a i/DWfCyaMGiebA2+ceZlvARBXTvWVp3LqiweCoANPsQo+uZY0WHEcNoM5Nkjwxmc w35HmJvOSn0tlGx/N6N1DFo/D4uOQeG+ADOSWyvtHuOYN/kiw6alzMuzA5TRs4Tx 6PBB4N3cEpOVuzvhCUJLj0hsvYHR7RVmTst+0uIfNoYVoZD3QgZyudcRC7FxlfJp AC8zHwKTg3oIUfJ2vDTutHRNRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCdWk6A jYfPp6jL+9aoVqTpzdaBMB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa7sSw5OIh6RYNo4YG7ScdjWMSzNKWOnR7SeFTTDb7MMSr9fgadRtY Y5iElJwyCNwWqDkYh3YReCCvkZzFTXcRbbdLFaDHk239Wh535gjRKDrTDV8M308/ piJH+nKnk5V/SM+OWUChHXdltqsy6ub4o6dyWIusgtucyWibQPXbFMiy+X4YQTEn rY9W1idtKXpECjs9iYFk2QOe7pgzHY8al0BedtUOsba6YS7vzmeJCmGY0K29P8Qa RZUMNL3aCm/BnjH4eN29Io9hFSG7FlBoj7Gnqn2u6Un3X68hTRSN1/ApjVrYfP6z G2mRTPumMdRGXpYTjfJfD/ev0u3oT9TH -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:44 2024 by rpki-client on console-ams.rpki-client.org