$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: MisZXhRuoIsVGaRwDthz8Fdl/r4t4I59cmMKP81gSDM= Subject key identifier: 00:53:96:CD:2A:80:B3:14:8B:27:2F:36:F4:A1:58:F5:00:D1:3D:1C Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 344B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 3436 Signing time: Fri 22 Nov 2024 15:21:20 +0000 Manifest this update: Fri 22 Nov 2024 15:21:19 +0000 Manifest next update: Fri 29 Nov 2024 15:21:19 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: 7PMKgmoKOX+GvdDEanVq2jDgrhsx23lBKrkit2kXjC0=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: INyUubVzyzPFDA6zTyRhkIRyBY0HoCb9vhAv2oVdZVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13387 (0x344b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Nov 22 15:21:19 2024 GMT Not After : Nov 29 15:21:19 2024 GMT Subject: CN=6740a170-eedd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d8:54:a2:90:73:e4:18:14:b1:ad:2f:0d:c8: 7f:71:d1:6f:06:4e:4e:2e:f8:0f:57:77:0d:e6:0d: 40:30:fd:0e:f2:9d:86:36:dd:38:2d:1d:3d:ff:68: bd:fe:15:06:36:eb:ed:b5:02:5c:5b:48:60:ec:47: 80:98:d4:69:c4:45:ae:9e:15:19:29:d5:72:00:86: f0:b7:c2:50:c6:9d:9a:59:36:e3:4f:d7:ba:24:d2: 30:7b:8f:9c:5a:a8:3c:de:f0:92:b0:f8:f4:6a:18: 36:f4:40:db:93:f3:e7:7b:40:af:79:01:5b:bf:63: 32:c7:11:e6:52:cd:c4:7e:f0:5c:a9:21:79:10:d9: 56:0f:eb:29:7e:ab:11:e9:aa:cf:7a:1d:dd:f4:92: 9f:46:2a:35:b5:f2:1c:14:b8:74:c3:76:41:a6:33: ff:f7:1d:0c:5d:e0:08:d2:95:3a:7b:3a:15:d7:68: 87:04:bc:01:84:57:b4:c5:b9:0d:ac:2e:28:a2:0e: 3a:7d:9a:a7:e6:d1:10:48:f0:ab:c0:f4:d2:54:98: ea:58:4a:88:f9:5b:f6:2f:5f:c1:5a:cd:37:8e:87: 70:9d:d6:44:78:f1:29:d0:e6:0b:9b:81:a1:db:77: 37:b0:78:f4:d3:33:fe:89:56:dd:b1:9d:f7:e9:98: a9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:53:96:CD:2A:80:B3:14:8B:27:2F:36:F4:A1:58:F5:00:D1:3D:1C X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:b0:ec:ea:5e:b8:28:63:bd:89:bc:49:fa:b6:3a:af:2a:8b: bf:7a:32:1e:8a:b7:38:fe:07:fc:9f:1a:6b:de:24:95:36:df: 52:1f:75:d3:41:88:e7:19:90:6b:f1:de:d9:6b:bc:4b:b1:2a: ae:28:4f:df:58:24:e5:31:ed:07:06:f6:5f:61:5e:14:7c:c8: 29:8c:b1:34:c5:c2:92:98:77:71:e0:d2:5e:ed:4f:42:5c:d7: 9e:25:de:f8:d7:ac:5e:10:7f:0a:c6:8c:d5:9d:71:15:72:c2: 75:22:54:97:be:6c:fa:df:43:13:08:00:c5:7b:8e:04:a9:39: 63:e8:1f:3c:57:b6:9c:a3:0a:d1:23:56:5e:55:8c:b0:4b:99: 39:8c:aa:97:78:17:98:28:ec:59:ab:5a:92:b2:4f:06:20:39: 7b:cb:b0:ce:dc:0e:7d:25:d6:63:eb:c5:36:15:75:07:9b:03: 3a:9d:cc:36:cc:18:47:cf:12:d8:65:19:21:03:a7:d2:6b:f0: da:01:02:c0:ff:ab:db:91:23:0a:d9:bf:7a:69:f6:b2:73:6c: 22:94:ce:d6:a6:56:11:e9:05:d1:b3:c9:15:f4:2b:d0:6f:64: 62:6d:c3:30:b6:ce:1e:fe:d9:24:e2:f8:c0:48:46:39:85:f5: cf:47:39:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjQxMTIyMTUyMTE5WhcNMjQxMTI5MTUyMTE5WjAYMRYwFAYD VQQDEw02NzQwYTE3MC1lZWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNhUopBz5BgUsa0vDch/cdFvBk5OLvgPV3cN5g1AMP0O8p2GNt04LR09/2i9 /hUGNuvttQJcW0hg7EeAmNRpxEWunhUZKdVyAIbwt8JQxp2aWTbjT9e6JNIwe4+c Wqg83vCSsPj0ahg29EDbk/Pne0CveQFbv2MyxxHmUs3EfvBcqSF5ENlWD+spfqsR 6arPeh3d9JKfRio1tfIcFLh0w3ZBpjP/9x0MXeAI0pU6ezoV12iHBLwBhFe0xbkN rC4oog46fZqn5tEQSPCrwPTSVJjqWEqI+Vv2L1/BWs03jodwndZEePEp0OYLm4Gh 23c3sHj00zP+iVbdsZ336Zip7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFABTls0q gLMUiycvNvShWPUA0T0cMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1sOzqXrgoY72JvEn6tjqvKou/ejIeirc4/gf8nxpr3iSVNt9SH3XT QYjnGZBr8d7Za7xLsSquKE/fWCTlMe0HBvZfYV4UfMgpjLE0xcKSmHdx4NJe7U9C XNeeJd7416xeEH8KxozVnXEVcsJ1IlSXvmz630MTCADFe44EqTlj6B88V7acowrR I1ZeVYywS5k5jKqXeBeYKOxZq1qSsk8GIDl7y7DO3A59JdZj68U2FXUHmwM6ncw2 zBhHzxLYZRkhA6fSa/DaAQLA/6vbkSMK2b96afayc2wilM7WplYR6QXRs8kV9CvQ b2RibcMwts4e/tkk4vjASEY5hfXPRznb -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:15 2024 by rpki-client on console-ams.rpki-client.org