$ rpki-client -vvf rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.mft File: lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.mft (raw, json) Hash identifier: fXztLis4uoiQTZ/MKwSwhiMQ4iPl93oF80k0Mxeu/Sw= Subject key identifier: 77:FC:9B:23:5A:A4:ED:4F:7C:15:4B:43:CD:6B:68:E3:BE:CA:78:52 Authority key identifier: 95:95:1E:CF:C9:1D:0F:55:AD:8E:D8:AF:BF:E6:3C:B4:16:19:FC:47 Certificate issuer: /CN=A919546B/serialNumber=95951ECFC91D0F55AD8ED8AFBFE63CB41619FC47 Certificate serial: 05F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.mft Manifest number: 05F3 Signing time: Fri 22 Nov 2024 22:23:09 +0000 Manifest this update: Fri 22 Nov 2024 22:23:08 +0000 Manifest next update: Fri 29 Nov 2024 22:23:08 +0000 Files and hashes: 1: lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.crl (hash: Q4aywc2fPeYe+pbcQEfCaj+EDXVJKvazJBpjFPxq+Yk=) 2: 652993B4884F11EBB2A8337FC4F9AE02.roa (hash: f6e3Cg2GIwOdxOCdUfNFOlHtMPQH2uBXwUt1kuNCyx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.crl rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1528 (0x5f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919546B/serialNumber=95951ECFC91D0F55AD8ED8AFBFE63CB41619FC47 Validity Not Before: Nov 22 22:23:08 2024 GMT Not After : Nov 29 22:23:08 2024 GMT Subject: CN=6741044d-d27a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6f:a9:1e:3c:ac:37:fe:23:b1:5b:7a:b9:a2: 7f:72:e5:b2:f2:ef:9d:e5:b5:9b:6c:26:31:05:5f: 65:59:60:54:a6:9a:b1:56:72:0a:08:1f:93:4d:de: 2b:dc:a2:39:dd:fc:f6:80:40:55:5d:80:dd:39:27: 9b:bd:41:99:42:bf:b4:50:b8:69:1b:62:f2:7a:d8: df:df:f9:34:33:ea:c7:fb:b3:08:a7:08:81:72:f6: 49:48:f9:05:11:d7:2b:96:74:d4:84:77:49:ad:a7: 4b:91:4b:d4:e9:0e:b0:a8:71:8e:70:36:a9:1f:76: 83:67:9d:c5:a5:a5:fd:71:03:f7:67:df:9c:33:d3: 0a:7d:d7:17:e1:c4:0a:ae:07:52:40:ab:fa:87:af: d8:3d:f7:9f:98:94:fd:95:61:e2:1a:3e:8f:d4:60: c0:4e:83:bd:c0:46:f3:ea:36:eb:f6:a9:e8:8b:df: 39:09:36:77:89:98:ca:44:dc:04:83:2b:f6:c2:ce: a1:c3:e2:6f:80:fa:a1:17:6c:01:85:b6:92:b1:1f: f3:29:33:c1:5a:20:e4:ca:4d:f8:1b:2c:a3:86:ad: 0c:8c:fc:03:b6:e6:c2:2d:6c:aa:20:eb:f9:e5:7a: 94:bd:fa:d1:d8:38:84:dd:03:d1:39:74:3e:a9:c3: 8e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:FC:9B:23:5A:A4:ED:4F:7C:15:4B:43:CD:6B:68:E3:BE:CA:78:52 X509v3 Authority Key Identifier: keyid:95:95:1E:CF:C9:1D:0F:55:AD:8E:D8:AF:BF:E6:3C:B4:16:19:FC:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:42:a7:49:7a:3f:ff:ee:62:10:2f:ff:ca:38:72:b8:ab:97: 7b:ff:17:84:95:a2:88:fe:7d:93:51:2b:43:bd:72:ee:eb:d9: d5:76:50:99:b8:6a:be:f3:d2:c1:3e:6c:3f:88:90:60:20:4a: c1:5d:30:7c:1d:b9:f9:6c:0e:69:af:d4:2e:63:6e:0c:d2:dd: 88:2f:83:77:af:f9:e2:30:9a:83:ab:54:ef:ea:22:21:63:b4: 02:dd:1f:0e:3d:0e:f5:fc:71:97:11:c7:52:fb:0d:b4:92:c0: 69:f2:1e:b7:51:68:7c:bc:47:55:58:c1:8c:5a:6f:47:07:81: 78:70:35:a9:c3:24:e0:e3:27:9c:22:cc:52:a3:ba:22:86:b3: b9:87:a0:ce:1d:f4:f6:f2:67:82:bd:07:e8:a1:cf:36:18:3e: 3e:43:5e:e0:66:ab:2e:27:c7:58:45:0c:83:05:87:a6:d4:a4: 13:7d:71:f8:1c:a1:0a:8d:84:2f:6d:e0:9e:93:33:ef:0d:71: 40:ec:a2:83:1e:f9:1f:8a:f3:95:9a:d3:54:6a:10:22:5c:86: f4:1d:19:df:99:7d:1e:c6:d0:0e:79:a8:7a:05:0b:91:9c:9a: ff:52:8e:89:a3:e7:76:33:f0:08:d3:5c:f4:d4:c5:21:c7:d0: 35:19:52:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU0NkIxMTAvBgNVBAUTKDk1OTUxRUNGQzkxRDBGNTVBRDhFRDhBRkJGRTYzQ0I0 MTYxOUZDNDcwHhcNMjQxMTIyMjIyMzA4WhcNMjQxMTI5MjIyMzA4WjAYMRYwFAYD VQQDEw02NzQxMDQ0ZC1kMjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmm+pHjysN/4jsVt6uaJ/cuWy8u+d5bWbbCYxBV9lWWBUppqxVnIKCB+TTd4r 3KI53fz2gEBVXYDdOSebvUGZQr+0ULhpG2Lyetjf3/k0M+rH+7MIpwiBcvZJSPkF EdcrlnTUhHdJradLkUvU6Q6wqHGOcDapH3aDZ53FpaX9cQP3Z9+cM9MKfdcX4cQK rgdSQKv6h6/YPfefmJT9lWHiGj6P1GDAToO9wEbz6jbr9qnoi985CTZ3iZjKRNwE gyv2ws6hw+JvgPqhF2wBhbaSsR/zKTPBWiDkyk34Gyyjhq0MjPwDtubCLWyqIOv5 5XqUvfrR2DiE3QPROXQ+qcOOLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHf8myNa pO1PfBVLQ81raOO+ynhSMB8GA1UdIwQYMBaAFJWVHs/JHQ9VrY7Yr7/mPLQWGfxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTQ2Qi9FNUFFNDQwQTg4 NEQxMUVCOTg1RUUzN0RDNEY5QUUwMi9sWlVlejhrZEQxV3RqdGl2di1ZOHRCWVpf RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xaVWV6OGtkRDFXdGp0aXZ2LVk4dEJZWl9FYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTQ2Qi9FNUFFNDQwQTg4NEQxMUVCOTg1RUUzN0RDNEY5QUUwMi9sWlVlejhrZEQx V3RqdGl2di1ZOHRCWVpfRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkQqdJej//7mIQL//KOHK4q5d7/xeElaKI/n2TUStDvXLu69nVdlCZ uGq+89LBPmw/iJBgIErBXTB8Hbn5bA5pr9QuY24M0t2IL4N3r/niMJqDq1Tv6iIh Y7QC3R8OPQ71/HGXEcdS+w20ksBp8h63UWh8vEdVWMGMWm9HB4F4cDWpwyTg4yec IsxSo7oihrO5h6DOHfT28meCvQfooc82GD4+Q17gZqsuJ8dYRQyDBYem1KQTfXH4 HKEKjYQvbeCekzPvDXFA7KKDHvkfivOVmtNUahAiXIb0HRnfmX0extAOeah6BQuR nJr/Uo6Jo+d2M/AI01z01MUhx9A1GVLy -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:45 2024 by rpki-client on console-ams.rpki-client.org