$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft File: LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json) Hash identifier: B4/sZY+0o6MqFiU64bwnn+14wD7zsWRpliJqZVBLXnU= Subject key identifier: 5C:77:2D:B4:B1:63:BB:10:D3:8E:7A:01:2B:42:F2:44:C6:59:9C:D1 Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft Manifest number: 01D2 Signing time: Sat 23 Nov 2024 01:44:23 +0000 Manifest this update: Sat 23 Nov 2024 01:44:22 +0000 Manifest next update: Sat 30 Nov 2024 01:44:22 +0000 Files and hashes: 1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: /t94uIuEKsC9FBsf9CPGvtkNr5FXrrIoWiLO34CYpcM=) 2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: JGGOwQFcpR3ELTy5wFGQ2CrG/qRvA17VfD8zk3vhn0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:44:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Nov 23 01:44:22 2024 GMT Not After : Nov 30 01:44:22 2024 GMT Subject: CN=67413376-ae8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ad:fa:19:40:f0:19:39:6c:50:a2:6b:d6:5b: 18:6a:84:65:d8:ae:9a:d3:3c:f8:55:2a:78:6a:a5: e6:01:27:87:f5:77:6a:85:3f:67:29:3f:f1:96:db: 74:ba:43:43:ec:f4:28:cd:5f:93:f1:8a:86:55:db: 8c:c5:36:6a:27:91:27:8f:3a:81:fb:84:07:49:ac: f2:a4:50:fe:c0:28:52:20:4c:f9:07:ed:17:45:19: f5:90:96:87:9a:39:8e:78:11:27:64:cc:eb:5b:83: 60:aa:28:a3:8c:e5:34:3d:cd:43:42:e7:0a:ea:40: d8:2c:7b:9c:3a:9d:c3:dd:c7:90:30:1e:39:5f:98: e9:01:ed:8c:e1:f3:d2:f9:67:84:5e:88:ce:86:88: b0:35:a6:b2:1d:cc:02:63:9c:78:9b:dc:16:46:80: 7b:8e:ed:b6:86:05:38:72:6d:88:78:67:50:dc:a5: 03:ec:42:57:79:82:03:8d:1a:a7:8a:6f:87:3c:f6: cf:af:28:03:7a:71:1b:b7:a5:41:7b:b7:be:39:b4: 2a:da:c2:6e:a4:49:81:18:f5:af:41:f1:3d:12:4d: fa:dd:af:2c:c5:00:4e:f4:d3:8a:92:06:20:f3:e4: de:dc:ee:25:ad:59:89:7d:26:39:28:74:88:47:eb: 43:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:77:2D:B4:B1:63:BB:10:D3:8E:7A:01:2B:42:F2:44:C6:59:9C:D1 X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:16:71:45:b1:c6:7b:df:f3:58:2c:12:fe:ad:a6:61:b3:fe: 16:55:b0:6a:7d:b5:90:cf:3c:8a:c6:dc:f8:33:1a:63:a4:24: 31:c0:80:49:07:b4:40:a3:26:ee:8f:25:f5:ba:fe:eb:7a:16: 27:1c:9d:19:64:20:da:2c:a8:6d:b7:af:47:cc:1c:df:02:1e: fe:51:2c:b6:20:0d:93:f0:7d:5e:0c:b9:22:e5:b3:8d:b1:2e: c9:7c:9c:94:cf:ea:2a:56:43:72:aa:36:8b:41:a3:54:7e:a0: 80:b0:34:c6:f6:4b:b0:ad:1b:a4:b1:29:4e:94:e2:f7:d2:4a: 0c:72:08:94:27:44:16:cd:be:27:cc:ef:92:21:3a:c6:30:8e: c9:5e:9e:9c:7a:fd:c5:f0:e8:c5:65:c8:31:dd:99:cc:82:50: aa:e8:19:ad:e4:a2:3f:e8:a0:65:cf:94:d3:4b:bd:72:08:d5: aa:79:a4:13:ce:83:fe:61:50:22:6b:67:16:72:08:d5:24:49: db:69:70:8a:72:bb:30:35:5a:ef:d5:86:d8:6b:7c:d7:97:16: 22:d9:30:9a:7d:d9:5f:d9:70:3a:2d:78:85:58:d8:a1:41:1b: bb:be:cf:3b:3a:78:a2:a1:42:5e:a1:f9:e1:1e:47:e0:e3:ae: 5e:a9:a6:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjQxMTIzMDE0NDIyWhcNMjQxMTMwMDE0NDIyWjAYMRYwFAYD VQQDEw02NzQxMzM3Ni1hZThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvq36GUDwGTlsUKJr1lsYaoRl2K6a0zz4VSp4aqXmASeH9XdqhT9nKT/xltt0 ukND7PQozV+T8YqGVduMxTZqJ5EnjzqB+4QHSazypFD+wChSIEz5B+0XRRn1kJaH mjmOeBEnZMzrW4NgqiijjOU0Pc1DQucK6kDYLHucOp3D3ceQMB45X5jpAe2M4fPS +WeEXojOhoiwNaayHcwCY5x4m9wWRoB7ju22hgU4cm2IeGdQ3KUD7EJXeYIDjRqn im+HPPbPrygDenEbt6VBe7e+ObQq2sJupEmBGPWvQfE9Ek363a8sxQBO9NOKkgYg 8+Te3O4lrVmJfSY5KHSIR+tDZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFx3LbSx Y7sQ0456AStC8kTGWZzRMB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QyOC80QkRBRUVEQzI4Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0 QmpQX21Kc2YweWwzUHNPcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPFnFFscZ73/NYLBL+raZhs/4WVbBqfbWQzzyKxtz4MxpjpCQxwIBJ B7RAoybujyX1uv7rehYnHJ0ZZCDaLKhtt69HzBzfAh7+USy2IA2T8H1eDLki5bON sS7JfJyUz+oqVkNyqjaLQaNUfqCAsDTG9kuwrRuksSlOlOL30koMcgiUJ0QWzb4n zO+SITrGMI7JXp6cev3F8OjFZcgx3ZnMglCq6Bmt5KI/6KBlz5TTS71yCNWqeaQT zoP+YVAia2cWcgjVJEnbaXCKcrswNVrv1YbYa3zXlxYi2TCafdlf2XA6LXiFWNih QRu7vs87OniioUJeofnhHkfg465eqaaM -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org