$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft File: lATO33S5SXRR7zK7ehK-1x0sI-U.mft (raw, json) Hash identifier: dfemM/OXC8JM1VANWJfl2cstRsSFE1dZrUGGUbE3rVA= Subject key identifier: B9:5E:AE:42:A7:48:4E:8A:A7:24:6F:57:AB:56:CE:95:C2:7C:CA:03 Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft Manifest number: 0109 Signing time: Sat 23 Nov 2024 03:12:40 +0000 Manifest this update: Sat 23 Nov 2024 03:12:40 +0000 Manifest next update: Sat 30 Nov 2024 03:12:40 +0000 Files and hashes: 1: lATO33S5SXRR7zK7ehK-1x0sI-U.crl (hash: ak41J/ntSex0hHch140dmT2/YS3LIeALvbzZ++ZH65k=) 2: AFF53F96556211EE9C34E435C4F9AE02.roa (hash: LM315PXaZ9khTUzGflBEPkGQjhCerawkLIiZZc3Qylg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Validity Not Before: Nov 23 03:12:40 2024 GMT Not After : Nov 30 03:12:40 2024 GMT Subject: CN=67414828-f519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:eb:81:96:d8:14:22:c5:15:6b:07:3b:d2:75: 20:a7:87:20:be:ae:f6:55:f3:48:c0:97:12:c8:a7: a7:b1:ba:31:c3:67:4e:b2:fb:53:24:70:59:24:e6: c8:f8:f3:2b:8d:cc:dc:3f:76:d4:2e:72:40:58:ac: 99:82:99:fe:f5:e3:5e:20:6c:8d:07:cf:ad:33:8c: ec:ba:f5:e1:63:c1:5f:43:86:50:df:b8:c7:12:a9: e0:2c:e6:e1:e7:31:25:65:c4:af:2e:4b:8b:e8:7e: 1c:78:f1:d5:bb:65:2b:a7:3d:a6:c3:51:c7:e0:8b: 11:36:30:25:18:98:c0:c2:39:a9:cc:97:8d:2b:4a: ad:6c:87:8d:fc:e5:3c:b6:5e:69:71:d8:e7:eb:de: e1:80:7c:ef:04:87:38:23:47:1e:78:33:94:c4:93: ad:79:57:82:dd:8b:18:de:44:5c:eb:cb:3a:a7:ca: c7:c6:3b:20:5f:9e:ea:b9:e9:b0:fb:99:05:7b:0b: 8a:32:bf:c4:6d:17:2c:d7:8f:5e:60:20:54:78:e4: 61:ce:ab:0c:3f:5e:fb:e4:b4:b8:08:10:31:e3:aa: d5:e3:c2:c1:7f:15:e3:d6:9a:4d:23:27:14:39:ab: 31:86:7d:7c:88:82:39:de:08:4a:a4:ee:dc:f9:ce: 72:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:5E:AE:42:A7:48:4E:8A:A7:24:6F:57:AB:56:CE:95:C2:7C:CA:03 X509v3 Authority Key Identifier: keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:b2:af:1c:89:69:e4:bb:de:d5:40:15:f0:d1:31:71:99:f6: 1a:5e:da:f2:55:3e:36:c4:ac:21:7b:66:ab:ff:ad:33:13:ae: f6:41:06:7a:de:40:b0:71:d1:e7:f8:c6:da:ed:98:53:07:50: 3a:b4:70:3d:63:b6:8b:83:9e:4d:b3:77:07:53:ce:72:6d:15: 60:a4:e3:76:d9:38:b6:40:9e:28:d8:ac:66:eb:cd:1e:bd:f4: fd:9a:76:bf:69:63:eb:9a:65:48:4b:af:f2:a4:2e:0e:50:60: ff:fb:1e:a8:8c:d8:6c:8c:32:17:83:35:e0:97:a4:3f:3b:80: 77:20:c3:3a:87:e4:14:5c:79:11:75:77:08:20:4e:46:9a:4d: dc:b2:5e:ec:63:40:97:6e:b2:99:07:3a:d3:32:c2:82:0c:56: c5:70:76:38:d1:b2:49:aa:b7:e9:ef:a5:28:85:5c:c9:9b:9b: e4:0c:08:86:ab:5b:98:4b:c2:66:05:19:c9:1b:f5:82:17:83: 16:53:d6:c2:94:50:63:16:fe:bf:bf:20:ba:23:1a:9c:47:f4: 4d:0f:de:d8:cc:62:c4:65:2c:3a:ce:83:d7:6d:2b:5e:c7:a4: 31:bb:a6:97:89:15:40:52:e8:72:df:c5:ca:a8:ce:a1:a5:a1: a1:34:67:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNCN0QxMTAvBgNVBAUTKDk0MDRDRURGNzRCOTQ5NzQ1MUVGMzJCQjdBMTJCRUQ3 MUQyQzIzRTUwHhcNMjQxMTIzMDMxMjQwWhcNMjQxMTMwMDMxMjQwWjAYMRYwFAYD VQQDEw02NzQxNDgyOC1mNTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOuBltgUIsUVawc70nUgp4cgvq72VfNIwJcSyKensboxw2dOsvtTJHBZJObI +PMrjczcP3bULnJAWKyZgpn+9eNeIGyNB8+tM4zsuvXhY8FfQ4ZQ37jHEqngLObh 5zElZcSvLkuL6H4cePHVu2Urpz2mw1HH4IsRNjAlGJjAwjmpzJeNK0qtbIeN/OU8 tl5pcdjn697hgHzvBIc4I0ceeDOUxJOteVeC3YsY3kRc68s6p8rHxjsgX57quemw +5kFewuKMr/EbRcs149eYCBUeORhzqsMP1775LS4CBAx46rV48LBfxXj1ppNIycU Oasxhn18iII53ghKpO7c+c5yXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlerkKn SE6KpyRvV6tWzpXCfMoDMB8GA1UdIwQYMBaAFJQEzt90uUl0Ue8yu3oSvtcdLCPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0I3RC9CMkIzRDc3QzFC NDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNYUlI3eks3ZWhLLTF4MHNJ LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBVE8zM1M1U1hSUjd6SzdlaEstMXgwc0ktVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0I3RC9CMkIzRDc3QzFCNDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNY UlI3eks3ZWhLLTF4MHNJLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASsq8ciWnku97VQBXw0TFxmfYaXtryVT42xKwhe2ar/60zE672QQZ6 3kCwcdHn+Mba7ZhTB1A6tHA9Y7aLg55Ns3cHU85ybRVgpON22Ti2QJ4o2Kxm680e vfT9mna/aWPrmmVIS6/ypC4OUGD/+x6ojNhsjDIXgzXgl6Q/O4B3IMM6h+QUXHkR dXcIIE5Gmk3csl7sY0CXbrKZBzrTMsKCDFbFcHY40bJJqrfp76UohVzJm5vkDAiG q1uYS8JmBRnJG/WCF4MWU9bClFBjFv6/vyC6IxqcR/RND97YzGLEZSw6zoPXbSte x6Qxu6aXiRVAUuhy38XKqM6hpaGhNGdi -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:04 2024 by rpki-client on console-ams.rpki-client.org