$ rpki-client -vvf rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.mft File: L-xEr8Mx34paY6L1hB6AnZey99A.mft (raw, json) Hash identifier: lRTWCEucc+QPrlZhcGsw7hRCsKFFy0cf+XZNxskX5os= Subject key identifier: 36:47:86:B8:D2:A2:B7:5D:6B:EC:A5:2B:CA:EA:CD:EF:EB:F9:86:12 Authority key identifier: 2F:EC:44:AF:C3:31:DF:8A:5A:63:A2:F5:84:1E:80:9D:97:B2:F7:D0 Certificate issuer: /CN=A9111EE2/serialNumber=2FEC44AFC331DF8A5A63A2F5841E809D97B2F7D0 Certificate serial: 3424 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-xEr8Mx34paY6L1hB6AnZey99A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.mft Manifest number: 3424 Signing time: Fri 22 Nov 2024 15:03:38 +0000 Manifest this update: Fri 22 Nov 2024 15:03:38 +0000 Manifest next update: Fri 29 Nov 2024 15:03:38 +0000 Files and hashes: 1: L-xEr8Mx34paY6L1hB6AnZey99A.crl (hash: yuBD3XWlVEVvq57T5SBAz4cRwtOJHXHkV66P1cmUe7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.crl rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-xEr8Mx34paY6L1hB6AnZey99A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13348 (0x3424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111EE2/serialNumber=2FEC44AFC331DF8A5A63A2F5841E809D97B2F7D0 Validity Not Before: Nov 22 15:03:38 2024 GMT Not After : Nov 29 15:03:38 2024 GMT Subject: CN=67409d4a-ebd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ad:9d:2a:c7:cd:d2:82:67:0f:9f:47:75:a0: f4:88:de:93:91:c4:fc:f9:d2:9f:49:95:20:f9:eb: 32:7d:94:f7:e5:f0:da:2e:d0:51:1e:47:7e:85:f8: 9d:07:0e:64:c2:b9:1e:a8:5d:ff:df:3d:15:db:20: c2:72:fa:fb:80:91:23:9d:6f:1b:25:c2:68:75:54: e7:4c:f1:ca:bd:9d:18:36:8d:53:d5:89:94:e6:2a: e0:f1:e7:0d:dd:e8:ae:9b:90:a3:74:f8:6c:39:86: 6c:9e:93:c8:cd:fa:3f:42:94:99:62:1a:9a:f5:1a: 5a:8d:41:01:dc:09:f9:d9:62:45:f3:be:59:04:f7: 82:c8:5a:80:ea:dc:e5:7d:17:ba:c5:f6:8d:37:33: 05:20:d7:2e:08:dd:b3:1d:57:94:fc:02:49:95:9f: 42:cd:69:39:26:67:1f:ee:cd:f5:71:a0:62:45:b5: 32:47:2a:24:2b:f7:33:d8:e1:d6:be:91:48:cf:c1: 64:de:c5:04:94:4f:c4:8d:8b:3e:7d:e6:a1:51:16: 3a:dc:d8:03:a9:ff:d0:cd:fa:3e:be:b7:a8:f6:fe: 02:ea:dc:2b:ac:b0:24:d0:a3:99:6c:62:f8:27:ff: 8a:0c:ba:2d:09:87:e4:f9:e6:00:8a:9f:ea:a8:78: 81:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:47:86:B8:D2:A2:B7:5D:6B:EC:A5:2B:CA:EA:CD:EF:EB:F9:86:12 X509v3 Authority Key Identifier: keyid:2F:EC:44:AF:C3:31:DF:8A:5A:63:A2:F5:84:1E:80:9D:97:B2:F7:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-xEr8Mx34paY6L1hB6AnZey99A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:cf:3a:b1:b0:dc:07:05:46:2e:a2:11:cb:17:fb:88:86:c0: 19:aa:bf:ec:cc:f9:ad:c6:26:f4:03:c2:92:8c:37:d9:5a:85: c5:27:08:36:86:16:7f:46:9e:68:c7:13:f9:fd:20:23:c2:b5: bd:39:ce:61:d2:12:71:88:d2:98:85:e1:a1:45:4d:3e:04:13: 75:d1:22:30:3f:c7:36:53:79:a6:5d:6d:52:ac:c7:c8:46:22: 1e:2f:a8:70:77:9a:96:82:ef:ab:cf:0d:01:3b:0e:d6:0b:13: 70:6c:45:ad:5a:52:60:96:76:e7:1e:64:35:39:d8:90:e0:0a: 51:86:d1:80:9c:79:15:1c:2e:da:f1:87:cf:cb:ef:42:60:c9: 00:fd:4b:fc:7b:2d:2d:77:54:5b:d1:fe:3c:8d:92:ea:b8:32: 3f:e9:0f:4d:41:16:78:e1:18:4b:38:b7:85:cc:e1:70:5f:43: bf:47:2f:c2:3c:c7:f8:bc:17:1a:e6:95:4a:a2:88:8d:c8:ca: 6a:ce:50:48:41:dd:2c:eb:c4:6f:2b:46:d2:99:28:01:12:ab: b7:1d:51:f9:b5:49:99:3a:b6:67:10:e9:c5:83:0c:a4:66:81: 67:32:0f:1c:4d:bb:08:07:28:66:da:41:5c:0f:01:1d:6e:cb: 42:fc:79:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFFRTIxMTAvBgNVBAUTKDJGRUM0NEFGQzMzMURGOEE1QTYzQTJGNTg0MUU4MDlE OTdCMkY3RDAwHhcNMjQxMTIyMTUwMzM4WhcNMjQxMTI5MTUwMzM4WjAYMRYwFAYD VQQDEw02NzQwOWQ0YS1lYmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu62dKsfN0oJnD59HdaD0iN6TkcT8+dKfSZUg+esyfZT35fDaLtBRHkd+hfid Bw5kwrkeqF3/3z0V2yDCcvr7gJEjnW8bJcJodVTnTPHKvZ0YNo1T1YmU5irg8ecN 3eium5CjdPhsOYZsnpPIzfo/QpSZYhqa9RpajUEB3An52WJF875ZBPeCyFqA6tzl fRe6xfaNNzMFINcuCN2zHVeU/AJJlZ9CzWk5Jmcf7s31caBiRbUyRyokK/cz2OHW vpFIz8Fk3sUElE/EjYs+feahURY63NgDqf/Qzfo+vreo9v4C6twrrLAk0KOZbGL4 J/+KDLotCYfk+eYAip/qqHiB6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZHhrjS ordda+ylK8rqze/r+YYSMB8GA1UdIwQYMBaAFC/sRK/DMd+KWmOi9YQegJ2XsvfQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUVFMi80MjBGNjMwQTFE OUYxMUUyQTcyRkJCOEYwOEIwMkNEMi9MLXhFcjhNeDM0cGFZNkwxaEI2QW5aZXk5 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wteEVyOE14MzRwYVk2TDFoQjZBblpleTk5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUVFMi80MjBGNjMwQTFEOUYxMUUyQTcyRkJCOEYwOEIwMkNEMi9MLXhFcjhNeDM0 cGFZNkwxaEI2QW5aZXk5OUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4zzqxsNwHBUYuohHLF/uIhsAZqr/szPmtxib0A8KSjDfZWoXFJwg2 hhZ/Rp5oxxP5/SAjwrW9Oc5h0hJxiNKYheGhRU0+BBN10SIwP8c2U3mmXW1SrMfI RiIeL6hwd5qWgu+rzw0BOw7WCxNwbEWtWlJglnbnHmQ1OdiQ4ApRhtGAnHkVHC7a 8YfPy+9CYMkA/Uv8ey0td1Rb0f48jZLquDI/6Q9NQRZ44RhLOLeFzOFwX0O/Ry/C PMf4vBca5pVKooiNyMpqzlBIQd0s68RvK0bSmSgBEqu3HVH5tUmZOrZnEOnFgwyk ZoFnMg8cTbsIByhm2kFcDwEdbstC/Hm/ -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:12 2024 by rpki-client on console-ams.rpki-client.org