$ rpki-client -vvf rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft File: LnNTksaGuNjciMDM1Zvyrvun6LA.mft (raw, json) Hash identifier: nI6FnINzxMSCDEoSUPOHCD81jNQYcoBIW6/JEgQVBJY= Subject key identifier: 6C:9B:28:6C:04:E2:CA:42:6E:D1:56:47:B0:D1:12:7A:E5:D9:38:D6 Authority key identifier: 2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 Certificate issuer: /CN=A911D340/serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Certificate serial: 0AD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft Manifest number: 0AC8 Signing time: Fri 22 Nov 2024 19:09:46 +0000 Manifest this update: Fri 22 Nov 2024 19:09:45 +0000 Manifest next update: Fri 29 Nov 2024 19:09:45 +0000 Files and hashes: 1: LnNTksaGuNjciMDM1Zvyrvun6LA.crl (hash: BgWxVuCUBcKrybh6ycQPK6PjGl0ATdLxmeZTtEVbOvg=) 2: 14B2A85C3DA611EAAD093F5EC4F9AE02.roa (hash: YBDDFTyuQNBpFqBokEWPqRZhpMARMTl/5hq7JGaNUzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2768 (0xad0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D340/serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Validity Not Before: Nov 22 19:09:45 2024 GMT Not After : Nov 29 19:09:45 2024 GMT Subject: CN=6740d6fa-8a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f3:57:fa:eb:8b:84:97:96:94:03:24:26:ab: d3:f5:3e:e2:8d:0d:e6:a9:90:9e:e6:05:35:f2:c1: 55:c0:52:96:73:80:d7:ce:79:71:00:73:00:6d:1b: 0d:03:e4:c7:09:70:fe:22:a2:20:74:76:b0:7c:9d: 46:79:f5:20:5b:dc:3b:b6:2a:a5:0e:69:07:4a:42: c5:95:ab:ea:51:77:58:dd:c3:97:0d:64:ce:60:8e: 27:8a:65:77:d1:4a:25:26:de:86:1a:9d:08:4d:88: ba:60:3b:fa:30:a2:40:88:83:1c:ec:96:af:99:92: 8d:c4:f8:fa:d4:89:06:32:19:3a:33:b4:1f:11:b0: 39:8c:be:25:e6:ed:ee:6a:61:2f:7b:20:28:5e:15: 96:d0:f0:b8:99:7d:ca:f2:90:c6:e3:ff:18:5f:86: 22:d8:b0:70:43:a9:7a:b6:40:2b:d2:bc:fd:91:90: 9f:6b:66:05:9e:f3:95:6f:fe:1e:fc:e3:e4:fe:8d: 19:5f:4f:03:dd:9d:2e:d6:0b:27:05:6e:c8:0b:3b: 24:81:88:ad:98:d7:d6:5b:1f:85:9c:ab:c2:d7:64: e6:42:a1:26:09:e3:94:2f:b9:db:9c:9d:a0:4d:a5: e0:55:67:37:86:7d:83:97:a9:a2:54:16:8e:0f:98: a8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:9B:28:6C:04:E2:CA:42:6E:D1:56:47:B0:D1:12:7A:E5:D9:38:D6 X509v3 Authority Key Identifier: keyid:2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:22:75:ed:6b:7b:1d:f5:bc:99:c9:a1:36:f3:c7:1f:ca:7c: 40:aa:b2:e5:55:02:50:d2:d2:79:d2:70:35:d7:ba:74:e4:cc: 2f:86:ac:cb:bf:8d:52:1c:99:10:e8:d4:2a:5f:5b:e5:52:60: 26:6a:d0:b7:05:e9:3c:db:4c:7c:1b:80:d8:ea:e9:d0:36:b1: 42:c8:61:80:21:80:cb:b7:d8:73:f3:50:89:66:b8:29:e9:35: 10:fb:c1:7b:14:4e:24:6e:55:2b:5e:62:03:3c:c6:43:9c:84: f3:30:85:40:0a:a2:b5:c9:b3:4c:4a:50:95:b9:43:8c:1a:4f: 26:7b:09:55:db:41:28:e0:71:32:83:57:25:71:26:5c:68:ce: f0:bc:d6:fa:a0:36:8c:02:96:02:8a:8b:55:55:7b:70:ea:d0: 82:2e:69:f1:72:4c:69:47:f3:e8:3f:84:c0:e2:54:d3:32:28: 2b:ee:47:de:a1:28:f7:8a:d6:d1:5e:e5:55:2f:52:90:ce:3b: 0c:6c:db:99:b5:32:f6:df:86:bb:5e:6a:e2:bb:48:f9:5c:7e: ff:e2:9c:7d:45:55:26:3b:d2:9d:a6:60:f4:00:78:0e:4e:09: 0e:55:67:93:b6:b0:f0:bc:54:fc:34:94:fd:39:08:9e:c9:88: 4e:99:ce:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQzNDAxMTAvBgNVBAUTKDJFNzM1MzkyQzY4NkI4RDhEQzg4QzBDQ0Q1OUJGMkFF RkJBN0U4QjAwHhcNMjQxMTIyMTkwOTQ1WhcNMjQxMTI5MTkwOTQ1WjAYMRYwFAYD VQQDEw02NzQwZDZmYS04YTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfNX+uuLhJeWlAMkJqvT9T7ijQ3mqZCe5gU18sFVwFKWc4DXznlxAHMAbRsN A+THCXD+IqIgdHawfJ1GefUgW9w7tiqlDmkHSkLFlavqUXdY3cOXDWTOYI4nimV3 0UolJt6GGp0ITYi6YDv6MKJAiIMc7JavmZKNxPj61IkGMhk6M7QfEbA5jL4l5u3u amEveyAoXhWW0PC4mX3K8pDG4/8YX4Yi2LBwQ6l6tkAr0rz9kZCfa2YFnvOVb/4e /OPk/o0ZX08D3Z0u1gsnBW7ICzskgYitmNfWWx+FnKvC12TmQqEmCeOUL7nbnJ2g TaXgVWc3hn2Dl6miVBaOD5iokQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGybKGwE 4spCbtFWR7DREnrl2TjWMB8GA1UdIwQYMBaAFC5zU5LGhrjY3IjAzNWb8q77p+iw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDM0MC8wNDY4Mzk3QTND NEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VOamNpTURNMVp2eXJ2dW42 TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTlRrc2FHdU5qY2lNRE0xWnZ5cnZ1bjZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDM0MC8wNDY4Mzk3QTNDNEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VO amNpTURNMVp2eXJ2dW42TEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQInXta3sd9byZyaE288cfynxAqrLlVQJQ0tJ50nA117p05MwvhqzL v41SHJkQ6NQqX1vlUmAmatC3Bek820x8G4DY6unQNrFCyGGAIYDLt9hz81CJZrgp 6TUQ+8F7FE4kblUrXmIDPMZDnITzMIVACqK1ybNMSlCVuUOMGk8mewlV20Eo4HEy g1clcSZcaM7wvNb6oDaMApYCiotVVXtw6tCCLmnxckxpR/PoP4TA4lTTMigr7kfe oSj3itbRXuVVL1KQzjsMbNuZtTL234a7Xmriu0j5XH7/4px9RVUmO9KdpmD0AHgO TgkOVWeTtrDwvFT8NJT9OQieyYhOmc7B -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:21 2024 by rpki-client on console-ams.rpki-client.org