$ rpki-client -vvf rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.mft File: LNlBunzrUf5uFl4_yYBm1amZ5P4.mft (raw, json) Hash identifier: S4PGD93LxXBHwmvfGrvWOSoCQnSIomEYOg1Dk3HYhiY= Subject key identifier: 7C:CA:C7:C0:2E:56:32:3B:3B:D9:78:01:F7:69:2F:41:24:2D:49:F1 Authority key identifier: 2C:D9:41:BA:7C:EB:51:FE:6E:16:5E:3F:C9:80:66:D5:A9:99:E4:FE Certificate issuer: /CN=A912B635/serialNumber=2CD941BA7CEB51FE6E165E3FC98066D5A999E4FE Certificate serial: 05DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LNlBunzrUf5uFl4_yYBm1amZ5P4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.mft Manifest number: 05D9 Signing time: Fri 22 Nov 2024 22:30:09 +0000 Manifest this update: Fri 22 Nov 2024 22:30:08 +0000 Manifest next update: Fri 29 Nov 2024 22:30:08 +0000 Files and hashes: 1: LNlBunzrUf5uFl4_yYBm1amZ5P4.crl (hash: 4FD9KUXmbJTHMGfhc+JGFAEh4kOXw2u9o4reA9wQDu8=) 2: D44C47FE91D311EBBE8C7D54C4F9AE02.roa (hash: c2XK07fkTtqrWcB4fZ5IJUYP88fXxA7EytLu8uCG7Fk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.crl rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LNlBunzrUf5uFl4_yYBm1amZ5P4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1502 (0x5de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B635/serialNumber=2CD941BA7CEB51FE6E165E3FC98066D5A999E4FE Validity Not Before: Nov 22 22:30:08 2024 GMT Not After : Nov 29 22:30:08 2024 GMT Subject: CN=674105f1-ec48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:70:b7:41:fd:1a:bc:df:84:b1:c7:41:02:39: 7b:ea:d7:42:71:54:f0:2c:9f:8c:67:f9:f3:a8:3d: f6:44:e5:65:8f:74:3f:51:2b:08:21:58:4f:cb:56: e9:f4:88:26:42:c3:60:77:43:82:81:dd:f5:f2:9a: 5e:08:91:1e:33:d6:80:d8:12:d7:a6:90:b0:7e:29: 5b:9a:4b:1d:b8:40:e6:b0:2c:c8:5f:28:0c:22:28: f3:60:27:b6:58:29:b1:75:08:36:3b:ba:c1:2f:9a: d5:dc:d6:82:0c:d1:e0:c8:9e:87:86:4c:19:4a:ab: 64:fd:c3:69:a7:77:ff:27:1c:9e:4d:99:a6:07:8f: 6b:55:b9:35:f4:96:d1:c6:c1:6e:b2:18:f0:aa:e3: 55:64:cf:69:81:fc:b6:d4:62:3b:6a:c0:e3:ca:a4: 67:ce:bf:3e:c1:ce:a5:72:53:f6:18:b2:95:a5:84: 4d:9a:4f:aa:e6:46:e0:cd:85:99:62:30:f9:b9:d0: 8f:ec:d0:59:36:14:15:a7:ee:0d:28:44:a6:27:a2: 9d:21:b8:0d:46:de:9f:70:2c:06:c2:1f:7f:20:8c: 2c:9e:e6:02:bf:74:2c:c6:72:8e:3c:23:f0:a0:22: 14:8f:10:ce:6f:df:b6:5a:61:de:ed:e5:dc:1d:86: b2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:CA:C7:C0:2E:56:32:3B:3B:D9:78:01:F7:69:2F:41:24:2D:49:F1 X509v3 Authority Key Identifier: keyid:2C:D9:41:BA:7C:EB:51:FE:6E:16:5E:3F:C9:80:66:D5:A9:99:E4:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LNlBunzrUf5uFl4_yYBm1amZ5P4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:42:d0:86:67:96:4a:e1:d6:10:35:55:c8:c3:28:cf:88:e9: 75:41:74:fa:14:05:14:97:94:2a:aa:3a:bd:11:f1:75:6a:7b: ab:02:a1:20:37:b9:72:68:b0:9c:74:4b:c0:f3:ef:fd:2e:7b: 72:d8:73:99:0e:87:18:e3:6b:db:d8:b9:6d:1d:4e:43:6c:1d: cd:c4:2b:f9:fb:c2:0b:41:f2:78:8b:5f:78:53:21:5e:3f:49: d6:8f:31:a1:92:f0:58:e2:1c:3f:5f:6e:be:c8:dc:e9:17:99: e2:d4:e1:55:62:3f:ae:d5:ee:ba:28:78:c2:8d:32:cd:22:8d: 6a:12:e9:eb:35:33:13:3b:b5:d5:4a:93:fd:40:3c:3d:a1:42: 8f:60:88:9e:97:2a:cb:ba:00:dc:4f:ca:45:c3:4d:fc:26:b3: 21:20:0d:a6:8b:5c:d8:a5:72:08:9f:0c:0c:cf:a8:6a:29:f3: 7f:0a:a8:44:74:d8:3d:59:62:8a:52:d2:32:3e:8c:b4:32:ee: 97:5d:8c:01:d7:7c:13:cd:a1:23:9a:d2:b7:be:26:e9:a5:96: a3:0f:f3:2f:0d:01:dc:f1:a0:16:f0:97:58:8f:19:fa:23:b1: fb:c8:f7:35:61:cb:59:70:41:30:bf:5e:5f:c0:ea:c5:89:b0: 8c:a2:d8:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2MzUxMTAvBgNVBAUTKDJDRDk0MUJBN0NFQjUxRkU2RTE2NUUzRkM5ODA2NkQ1 QTk5OUU0RkUwHhcNMjQxMTIyMjIzMDA4WhcNMjQxMTI5MjIzMDA4WjAYMRYwFAYD VQQDEw02NzQxMDVmMS1lYzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0nC3Qf0avN+EscdBAjl76tdCcVTwLJ+MZ/nzqD32ROVlj3Q/USsIIVhPy1bp 9IgmQsNgd0OCgd318ppeCJEeM9aA2BLXppCwfilbmksduEDmsCzIXygMIijzYCe2 WCmxdQg2O7rBL5rV3NaCDNHgyJ6HhkwZSqtk/cNpp3f/JxyeTZmmB49rVbk19JbR xsFushjwquNVZM9pgfy21GI7asDjyqRnzr8+wc6lclP2GLKVpYRNmk+q5kbgzYWZ YjD5udCP7NBZNhQVp+4NKESmJ6KdIbgNRt6fcCwGwh9/IIwsnuYCv3QsxnKOPCPw oCIUjxDOb9+2WmHe7eXcHYaylwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzKx8Au VjI7O9l4AfdpL0EkLUnxMB8GA1UdIwQYMBaAFCzZQbp861H+bhZeP8mAZtWpmeT+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjYzNS81RDA3N0Q0QTkx RDIxMUVCOEI1MTEwNTNDNEY5QUUwMi9MTmxCdW56clVmNXVGbDRfeVlCbTFhbVo1 UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xObEJ1bnpyVWY1dUZsNF95WUJtMWFtWjVQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjYzNS81RDA3N0Q0QTkxRDIxMUVCOEI1MTEwNTNDNEY5QUUwMi9MTmxCdW56clVm NXVGbDRfeVlCbTFhbVo1UDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjQtCGZ5ZK4dYQNVXIwyjPiOl1QXT6FAUUl5Qqqjq9EfF1anurAqEg N7lyaLCcdEvA8+/9Lnty2HOZDocY42vb2LltHU5DbB3NxCv5+8ILQfJ4i194UyFe P0nWjzGhkvBY4hw/X26+yNzpF5ni1OFVYj+u1e66KHjCjTLNIo1qEunrNTMTO7XV SpP9QDw9oUKPYIielyrLugDcT8pFw038JrMhIA2mi1zYpXIInwwMz6hqKfN/CqhE dNg9WWKKUtIyPoy0Mu6XXYwB13wTzaEjmtK3vibppZajD/MvDQHc8aAW8JdYjxn6 I7H7yPc1YctZcEEwv15fwOrFibCMotiJ -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:23 2024 by rpki-client on console-fra.rpki-client.org