$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: 3vS4MyTtXZskOf7o9Ps0dCxvFvhMMHgTO2QR6pR9FRU= Subject key identifier: 10:36:EE:7C:EB:28:32:8D:67:16:3A:9E:CB:85:0E:25:70:D1:9F:0A Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 095E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 0957 Signing time: Fri 22 Nov 2024 19:57:42 +0000 Manifest this update: Fri 22 Nov 2024 19:57:42 +0000 Manifest next update: Fri 29 Nov 2024 19:57:42 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: +NvAi96hpkFuP+gTdHHFGfdIHmkp1mpUB01jNSxcgns=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: jObq5WAnKWNNe1xvn+i1p17e0KpzbzVrnmTwIgH5Dh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2398 (0x95e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Validity Not Before: Nov 22 19:57:42 2024 GMT Not After : Nov 29 19:57:42 2024 GMT Subject: CN=6740e236-3e37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:81:ad:dd:bc:17:46:7a:e6:67:dd:ca:c7:08: c7:a6:8d:fc:0d:6b:a8:8c:01:ac:dd:4b:ec:eb:5e: 5f:3a:d9:8d:85:91:70:8e:46:a1:91:3f:b0:a0:a2: d0:f5:85:6d:9f:b9:80:cc:57:85:25:99:bc:c9:72: 5b:d3:c7:f0:86:f9:ec:64:1a:b7:3c:11:a1:fa:76: 3a:46:12:cf:13:7a:f4:23:a7:4c:9c:b3:4f:f5:46: 2b:22:f5:7a:c0:ec:bc:05:7f:95:99:0d:e3:9c:87: ce:a3:13:86:c2:bd:03:ef:41:ce:44:f5:12:f7:74: bd:89:37:4b:8f:b1:fa:31:3b:6f:dd:6a:eb:6d:21: b1:b9:c7:27:88:e7:22:f2:f7:30:b5:8a:2d:fb:3b: 43:03:a7:bc:6e:dc:b0:97:82:83:25:be:bb:07:84: 47:40:b8:e1:a4:89:7e:ba:33:3d:b1:5d:eb:cf:33: be:8e:24:84:a8:11:92:57:9f:0c:b9:fb:c4:98:9f: d2:44:65:df:26:20:66:31:38:de:ca:19:67:e8:d1: 64:6c:5b:c7:40:f1:87:16:a9:a7:83:2d:b8:6c:a9: 18:95:94:e9:aa:93:74:0e:7e:7c:b8:66:23:d5:68: 39:be:35:b9:aa:2f:5a:8b:4b:1e:41:24:fe:76:07: cd:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:36:EE:7C:EB:28:32:8D:67:16:3A:9E:CB:85:0E:25:70:D1:9F:0A X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:70:99:91:ec:78:5d:0b:27:04:fa:66:41:b2:ac:dd:4a:2c: 9c:32:39:32:f8:67:35:72:90:23:50:a8:39:11:41:a1:29:5b: 41:1e:d1:2a:dc:45:cd:55:52:f8:fa:c9:89:cc:04:fe:cd:05: 4b:8e:74:9b:04:4e:fc:a1:9c:e1:aa:ed:2c:80:c6:1f:60:00: c4:c4:24:3b:ed:0c:4a:10:12:9f:4b:b4:03:27:ee:7e:46:0c: c3:46:b5:74:b9:8a:96:65:bc:e1:6f:dc:7b:c5:82:27:c4:a5: 48:21:6f:5e:80:b4:00:2c:0b:c8:0e:70:0b:94:b1:5d:0d:b2: 7c:6b:a2:29:97:0b:fc:80:e0:23:bd:e0:67:91:56:b5:97:db: ea:31:94:b2:80:62:cc:6b:ab:7c:96:b5:48:c7:3c:e7:2e:f4: e3:b2:88:d1:65:2d:5c:37:14:73:78:ad:f5:e4:c9:2f:ec:8c: 2e:ef:55:a7:c6:ac:ee:85:93:d4:0d:bf:d8:4f:cb:dc:cf:c9: a4:9c:70:60:0d:d1:e0:1a:f1:97:27:41:b9:5d:ea:5b:12:a3: fb:00:27:84:4b:2b:cd:7e:de:a0:fd:dd:29:33:35:f7:53:c2: c6:c5:1f:81:b5:66:3f:4e:88:fd:a3:40:1d:e9:2c:e6:0c:ce: 9c:5e:b2:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjQxMTIyMTk1NzQyWhcNMjQxMTI5MTk1NzQyWjAYMRYwFAYD VQQDEw02NzQwZTIzNi0zZTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7IGt3bwXRnrmZ93KxwjHpo38DWuojAGs3Uvs615fOtmNhZFwjkahkT+woKLQ 9YVtn7mAzFeFJZm8yXJb08fwhvnsZBq3PBGh+nY6RhLPE3r0I6dMnLNP9UYrIvV6 wOy8BX+VmQ3jnIfOoxOGwr0D70HORPUS93S9iTdLj7H6MTtv3WrrbSGxuccniOci 8vcwtYot+ztDA6e8btywl4KDJb67B4RHQLjhpIl+ujM9sV3rzzO+jiSEqBGSV58M ufvEmJ/SRGXfJiBmMTjeyhln6NFkbFvHQPGHFqmngy24bKkYlZTpqpN0Dn58uGYj 1Wg5vjW5qi9ai0seQST+dgfNWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBA27nzr KDKNZxY6nsuFDiVw0Z8KMB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUcJmR7HhdCycE+mZBsqzdSiycMjky+Gc1cpAjUKg5EUGhKVtBHtEq 3EXNVVL4+smJzAT+zQVLjnSbBE78oZzhqu0sgMYfYADExCQ77QxKEBKfS7QDJ+5+ RgzDRrV0uYqWZbzhb9x7xYInxKVIIW9egLQALAvIDnALlLFdDbJ8a6Iplwv8gOAj veBnkVa1l9vqMZSygGLMa6t8lrVIxzznLvTjsojRZS1cNxRzeK315Mkv7Iwu71Wn xqzuhZPUDb/YT8vcz8mknHBgDdHgGvGXJ0G5XepbEqP7ACeESyvNft6g/d0pMzX3 U8LGxR+BtWY/Toj9o0Ad6SzmDM6cXrLy -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org