$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: eGPRrft03FQvalz0ZpVwZeLBxq6ZDwegELDk4Ylpe9Q= Subject key identifier: C3:35:0C:AB:22:AB:47:E3:C2:3A:5C:98:0B:B4:07:5A:6A:47:0D:65 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 0125 Signing time: Sat 23 Nov 2024 02:52:41 +0000 Manifest this update: Sat 23 Nov 2024 02:52:41 +0000 Manifest next update: Sat 30 Nov 2024 02:52:41 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: OahbFxR8YgrRPAeE3MQ+vSD5MfZyE9ULkW5inDjO+TY=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: wrAqXtR5cQSmhUWLr1y8UjgIlTpfMqLqNlgVaZhEGts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Nov 23 02:52:41 2024 GMT Not After : Nov 30 02:52:41 2024 GMT Subject: CN=67414379-7542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a0:e3:c6:23:fd:7d:f5:cd:fc:4d:1b:e6:31: 9a:53:8b:a2:88:a2:17:05:14:79:3a:2d:8d:a5:b5: 60:fc:7d:97:18:32:c8:8d:95:4f:af:2b:eb:d3:47: 75:10:ec:fd:30:57:b5:be:d4:dd:b5:a1:82:82:ee: 9f:fe:62:6d:70:b2:47:42:2b:97:d6:9d:64:73:9c: 53:aa:f3:ae:81:f7:0a:84:c7:2e:89:a1:7f:a3:29: e5:ae:bf:38:af:5c:67:e3:50:21:91:9c:81:2d:81: 63:c8:75:d6:80:15:8f:f7:a2:40:e6:1d:0b:ed:de: b3:86:4a:92:33:1c:74:b0:2d:36:9a:1a:c9:a6:14: e9:36:02:4e:bf:44:2b:a6:eb:18:49:76:67:f9:fd: 52:17:a2:3d:fa:a3:39:7e:60:cb:b6:c7:21:cc:4f: 7e:e6:20:92:cb:ef:9a:87:61:69:99:6c:4a:e5:ec: 09:34:42:56:33:4f:f1:f4:c1:46:2b:8d:43:a9:89: a9:ef:4b:d5:46:76:58:c7:e8:f9:87:54:e9:7d:c0: a0:1d:5c:c4:62:4b:1c:17:07:ec:9b:42:13:ed:33: ff:6a:fb:02:81:d1:58:b8:2f:1d:c1:0b:3d:f2:08: 82:fe:3d:9d:08:8a:ca:01:0e:f7:0e:5e:5a:3b:b2: 55:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:35:0C:AB:22:AB:47:E3:C2:3A:5C:98:0B:B4:07:5A:6A:47:0D:65 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:1c:ce:c7:94:e8:2f:63:5b:02:fc:01:1d:9c:be:26:63:14: b8:ae:76:16:e1:a9:da:bc:06:bb:20:fe:ae:94:ed:6f:2f:5c: 63:9d:01:67:47:35:60:2d:20:8c:79:10:5a:50:a9:74:82:19: 18:d1:33:e2:91:3c:4d:b7:2a:b0:cd:5a:35:95:4c:5c:79:cf: 63:6f:95:6e:fa:7b:52:a5:2f:df:91:24:d1:1f:80:9a:ad:11: c3:2f:f4:85:05:2c:fc:70:9a:e9:f2:1e:c2:0c:e9:d1:34:70: 50:ef:9f:74:ef:67:60:fe:96:3c:67:c2:d9:54:94:4f:41:e4: bb:1b:da:17:6f:77:fd:9f:04:b0:6f:c3:39:e1:bc:a6:a7:f2: 89:76:85:0e:3f:43:2d:6d:bf:7a:02:ed:f6:60:4f:7f:5e:1b: e5:34:cf:96:c7:39:47:5d:ce:65:af:ec:68:58:c1:a6:46:82: dc:6c:42:20:e6:05:9a:12:ae:2a:5e:06:b0:d2:4d:67:12:e4: 82:b2:61:4d:7a:7e:46:65:2f:b8:9e:9d:54:53:a7:a1:f1:f8: 5e:5f:a0:16:6a:df:78:3e:ea:c9:9d:13:85:09:aa:88:78:1e: ed:74:b4:03:b4:64:b9:f0:fa:17:73:7d:5c:65:5f:9a:2c:7f: a2:24:98:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjQxMTIzMDI1MjQxWhcNMjQxMTMwMDI1MjQxWjAYMRYwFAYD VQQDEw02NzQxNDM3OS03NTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6DjxiP9ffXN/E0b5jGaU4uiiKIXBRR5Oi2NpbVg/H2XGDLIjZVPryvr00d1 EOz9MFe1vtTdtaGCgu6f/mJtcLJHQiuX1p1kc5xTqvOugfcKhMcuiaF/oynlrr84 r1xn41AhkZyBLYFjyHXWgBWP96JA5h0L7d6zhkqSMxx0sC02mhrJphTpNgJOv0Qr pusYSXZn+f1SF6I9+qM5fmDLtschzE9+5iCSy++ah2FpmWxK5ewJNEJWM0/x9MFG K41DqYmp70vVRnZYx+j5h1TpfcCgHVzEYkscFwfsm0IT7TP/avsCgdFYuC8dwQs9 8giC/j2dCIrKAQ73Dl5aO7JVwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMM1DKsi q0fjwjpcmAu0B1pqRw1lMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHHM7HlOgvY1sC/AEdnL4mYxS4rnYW4anavAa7IP6ulO1vL1xjnQFn RzVgLSCMeRBaUKl0ghkY0TPikTxNtyqwzVo1lUxcec9jb5Vu+ntSpS/fkSTRH4Ca rRHDL/SFBSz8cJrp8h7CDOnRNHBQ759072dg/pY8Z8LZVJRPQeS7G9oXb3f9nwSw b8M54bymp/KJdoUOP0Mtbb96Au32YE9/XhvlNM+WxzlHXc5lr+xoWMGmRoLcbEIg 5gWaEq4qXgaw0k1nEuSCsmFNen5GZS+4np1UU6eh8fheX6AWat94PurJnROFCaqI eB7tdLQDtGS58PoXc31cZV+aLH+iJJjX -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:36 2024 by rpki-client on console-ams.rpki-client.org