$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft File: lTUaGSeo8Q660c48bEpaxGUVynA.mft (raw, json) Hash identifier: M855Q4Q8g/WPuOTUi/njuGHvr2qfcaco7tEMIvu06bo= Subject key identifier: C8:B5:22:FC:DC:A9:11:68:3D:36:99:C3:25:11:C2:11:BA:BC:D9:E7 Authority key identifier: 95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 Certificate issuer: /CN=A91D4E15/serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft Manifest number: 0121 Signing time: Sat 23 Nov 2024 02:56:59 +0000 Manifest this update: Sat 23 Nov 2024 02:56:58 +0000 Manifest next update: Sat 30 Nov 2024 02:56:58 +0000 Files and hashes: 1: lTUaGSeo8Q660c48bEpaxGUVynA.crl (hash: ra60ADW+vAHeKjUrvLIv87i0qPOWxQ4UO+/D7PtBJ1w=) 2: 90F09734F1B311EDA789BB57C4F9AE02.roa (hash: 12wpcAe05HtenMlOH90kdV4i4OluuZbyZiMI0pKZkoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E15/serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Validity Not Before: Nov 23 02:56:58 2024 GMT Not After : Nov 30 02:56:58 2024 GMT Subject: CN=6741447b-5a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e8:c1:02:e4:eb:d3:f1:97:71:86:a4:3a:18: 82:35:2a:2c:e4:5e:d7:cb:c7:cd:da:5f:46:89:12: f9:e1:15:3d:92:81:c6:20:a9:4c:27:9c:f1:ec:c2: cb:17:46:65:94:50:f4:d6:6d:dd:b0:85:4f:4b:fb: 0e:4f:60:cc:6c:9a:47:79:e0:b0:80:8a:80:ea:e7: 5d:23:66:d7:d3:53:65:41:f2:3e:cf:4e:fa:3a:26: 3d:21:76:6c:5b:7f:7d:37:99:ad:ec:52:b8:10:e4: 76:ad:4f:ff:00:31:5f:24:aa:fb:4a:3e:54:fc:26: c6:c3:d4:07:5e:e9:1f:d4:c1:9a:7e:3a:78:31:23: 17:0d:f8:4b:78:43:de:60:aa:00:d0:f3:f4:dc:bb: 17:36:33:95:32:4e:de:92:0a:bc:c7:89:1f:27:7e: a9:fd:15:28:57:34:d6:0a:59:09:ee:0b:e7:cb:a4: 2a:d2:3e:16:8d:b8:f6:fe:c1:7a:2b:39:a9:8c:3e: 6a:9a:2a:26:ff:92:01:2d:0e:35:b7:6f:f6:f5:4d: 16:52:d2:7d:5c:cb:03:f6:b0:0c:7e:5e:e2:47:03: d1:56:14:a9:aa:5e:cb:f4:44:0d:43:2f:c3:3b:a6: d2:83:d4:ff:62:b1:99:34:28:64:3f:80:85:31:d4: 03:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B5:22:FC:DC:A9:11:68:3D:36:99:C3:25:11:C2:11:BA:BC:D9:E7 X509v3 Authority Key Identifier: keyid:95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:3d:c3:b1:d3:0d:0b:47:61:2d:b6:4e:4d:ad:03:c1:97:f1: cb:8c:38:cd:bf:61:0f:0b:54:ef:53:03:55:d1:68:bc:d2:6d: ee:98:e9:84:d0:3d:50:38:9a:e9:fc:34:bd:cc:c0:ac:43:d7: c0:a0:dc:2a:c5:7e:04:e8:dc:bc:05:ce:85:2c:ea:c2:cb:98: 79:d1:7a:30:81:7d:3a:60:aa:59:cc:84:93:c8:d7:a8:f3:67: f1:20:0b:de:98:0f:b0:54:88:5f:b7:90:74:e5:f0:73:77:1f: a5:03:e7:22:cb:40:f4:76:13:da:ed:68:1f:e1:77:52:8b:c1: d3:5c:6d:b1:bb:43:ff:50:80:49:67:d5:7c:69:8c:12:a3:f0: f8:14:cc:d8:a3:8e:8f:51:eb:3e:03:f3:58:d8:2d:ec:29:b0: 77:eb:1d:d3:8d:89:f7:8f:ae:53:d1:30:b6:7f:28:ec:3f:ac: 45:ae:b2:e6:3a:48:a6:c1:cc:ea:89:98:15:45:08:37:5e:f1: 61:91:da:1f:02:37:eb:71:ba:8f:6a:c7:16:62:52:b8:36:71: d5:fe:f0:62:c1:1a:4d:c0:13:eb:ab:73:56:b5:df:81:af:a6: bd:47:c9:49:6c:aa:39:24:60:c5:93:45:98:9f:b9:f6:4f:02: f8:d2:41:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFMTUxMTAvBgNVBAUTKDk1MzUxQTE5MjdBOEYxMEVCQUQxQ0UzQzZDNEE1QUM0 NjUxNUNBNzAwHhcNMjQxMTIzMDI1NjU4WhcNMjQxMTMwMDI1NjU4WjAYMRYwFAYD VQQDEw02NzQxNDQ3Yi01YTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwujBAuTr0/GXcYakOhiCNSos5F7Xy8fN2l9GiRL54RU9koHGIKlMJ5zx7MLL F0ZllFD01m3dsIVPS/sOT2DMbJpHeeCwgIqA6uddI2bX01NlQfI+z076OiY9IXZs W399N5mt7FK4EOR2rU//ADFfJKr7Sj5U/CbGw9QHXukf1MGafjp4MSMXDfhLeEPe YKoA0PP03LsXNjOVMk7ekgq8x4kfJ36p/RUoVzTWClkJ7gvny6Qq0j4Wjbj2/sF6 KzmpjD5qmiom/5IBLQ41t2/29U0WUtJ9XMsD9rAMfl7iRwPRVhSpql7L9EQNQy/D O6bSg9T/YrGZNChkP4CFMdQDxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMi1Ivzc qRFoPTaZwyURwhG6vNnnMB8GA1UdIwQYMBaAFJU1GhknqPEOutHOPGxKWsRlFcpw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEUxNS81RERCNDQ0MEYx QUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhRNjYwYzQ4YkVwYXhHVVZ5 bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUVWFHU2VvOFE2NjBjNDhiRXBheEdVVnluQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEUxNS81RERCNDQ0MEYxQUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhR NjYwYzQ4YkVwYXhHVVZ5bkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsPcOx0w0LR2Ettk5NrQPBl/HLjDjNv2EPC1TvUwNV0Wi80m3umOmE 0D1QOJrp/DS9zMCsQ9fAoNwqxX4E6Ny8Bc6FLOrCy5h50XowgX06YKpZzISTyNeo 82fxIAvemA+wVIhft5B05fBzdx+lA+ciy0D0dhPa7Wgf4XdSi8HTXG2xu0P/UIBJ Z9V8aYwSo/D4FMzYo46PUes+A/NY2C3sKbB36x3TjYn3j65T0TC2fyjsP6xFrrLm OkimwczqiZgVRQg3XvFhkdofAjfrcbqPascWYlK4NnHV/vBiwRpNwBPrq3NWtd+B r6a9R8lJbKo5JGDFk0WYn7n2TwL40kFe -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:52 2024 by rpki-client on console-ams.rpki-client.org