$ rpki-client -vvf rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft File: LDTzNZTMO-PAfo54N2v8QzJjFUg.mft (raw, json) Hash identifier: 6bYgEjEOQ4o8IuvHm3V23jl6s/BjebVn/fPgggS/NhQ= Subject key identifier: DA:92:89:F9:02:5D:69:D0:13:4E:08:DC:49:32:EB:27:48:EB:25:B0 Authority key identifier: 2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48 Certificate issuer: /CN=A914ADD8/serialNumber=2C34F33594CC3BE3C07E8E78376BFC4332631548 Certificate serial: 3424 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft Manifest number: 3423 Signing time: Fri 22 Nov 2024 14:28:15 +0000 Manifest this update: Fri 22 Nov 2024 14:28:14 +0000 Manifest next update: Fri 29 Nov 2024 14:28:14 +0000 Files and hashes: 1: LDTzNZTMO-PAfo54N2v8QzJjFUg.crl (hash: FtNd30sVb6ZvCUXAmTJ98fOjKKlr1RVhntrQ7PVM+wg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.crl rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13348 (0x3424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ADD8/serialNumber=2C34F33594CC3BE3C07E8E78376BFC4332631548 Validity Not Before: Nov 22 14:28:14 2024 GMT Not After : Nov 29 14:28:14 2024 GMT Subject: CN=674094fe-0571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d9:9e:cf:e1:30:72:20:5a:32:cd:58:de:72: 33:94:94:b1:d0:b2:36:3f:82:f7:6e:fa:89:51:57: 60:84:e7:b1:8e:b1:89:89:fb:ad:1f:42:28:1c:2a: 14:ba:bc:8d:70:6d:76:8a:3a:6b:88:f5:11:e9:d2: 31:bc:60:05:de:4f:a2:5d:ee:d6:51:36:7d:0d:8c: 36:05:7d:39:6e:30:9d:e8:f7:f7:18:e5:73:0b:10: d9:4b:ab:1a:73:d4:df:74:cc:af:ca:8b:9f:73:7b: ef:b4:da:e9:4d:16:f8:c9:17:43:66:60:08:62:1a: 62:8e:ec:4f:dc:58:fc:75:9c:2d:6a:4f:ec:73:de: 2f:35:c3:08:55:69:e2:ac:67:70:e8:8e:46:1d:96: 7d:ef:9f:f0:15:8e:8b:f2:20:d2:0c:48:93:37:74: c0:fb:6c:06:08:63:2d:23:f6:76:1c:80:71:ab:30: 8d:3e:1c:5f:ac:c0:25:c6:43:c8:b0:c9:80:94:f9: 38:72:75:9b:d5:48:8a:59:4e:4e:26:0c:4c:48:00: 84:19:49:32:eb:c7:13:04:e4:ee:3e:73:fb:46:bf: 32:70:e5:82:49:2f:60:c3:02:32:83:27:0f:23:7c: 52:97:ed:93:b2:60:36:0f:32:b5:a6:2e:bf:b9:c2: 25:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:92:89:F9:02:5D:69:D0:13:4E:08:DC:49:32:EB:27:48:EB:25:B0 X509v3 Authority Key Identifier: keyid:2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:37:1b:e2:f5:16:e7:fd:8a:52:56:25:dd:ab:fc:a1:01:ab: a2:45:63:cd:87:2e:f0:ea:73:99:05:a9:dd:cc:11:c9:dc:a7: 08:45:c6:90:c4:7e:3c:ff:5e:83:eb:a2:9c:31:9a:e6:3f:82: 40:9e:74:21:00:3f:9a:58:48:e1:25:c1:d8:bd:85:3e:43:a1: 6d:66:67:c9:45:7e:44:7b:6c:47:03:93:83:46:cc:46:0d:45: 4c:e3:0d:36:8d:eb:9f:22:98:f7:c1:20:0a:5a:1c:5e:b0:51: ee:4e:fc:90:15:ce:84:41:7e:ed:2b:69:d1:38:48:b5:63:d0: 70:cb:5e:07:05:b5:ad:e1:f9:4e:d5:a6:06:62:82:3e:91:e9: 60:27:66:e8:ea:ec:d0:e9:e8:dd:c0:1a:04:23:7a:a9:5f:0f: bf:e8:87:6a:5f:52:8f:4a:1c:b0:a5:9a:e2:1e:90:30:8d:e1: 09:9d:a0:61:b3:3f:cc:33:c5:22:30:25:da:be:b9:0a:8c:18: 29:13:19:fc:48:1e:ac:b0:ea:7e:e0:63:51:1c:a1:fd:71:d6: fa:59:bb:f1:8e:7c:c6:43:11:36:e2:07:f5:dc:b5:79:ec:fb: 7d:eb:de:16:e1:9b:3a:9a:c5:bf:13:8c:04:fa:86:16:6b:04: a7:9f:df:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFERDgxMTAvBgNVBAUTKDJDMzRGMzM1OTRDQzNCRTNDMDdFOEU3ODM3NkJGQzQz MzI2MzE1NDgwHhcNMjQxMTIyMTQyODE0WhcNMjQxMTI5MTQyODE0WjAYMRYwFAYD VQQDEw02NzQwOTRmZS0wNTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9mez+EwciBaMs1Y3nIzlJSx0LI2P4L3bvqJUVdghOexjrGJifutH0IoHCoU uryNcG12ijpriPUR6dIxvGAF3k+iXe7WUTZ9DYw2BX05bjCd6Pf3GOVzCxDZS6sa c9TfdMyvyoufc3vvtNrpTRb4yRdDZmAIYhpijuxP3Fj8dZwtak/sc94vNcMIVWni rGdw6I5GHZZ975/wFY6L8iDSDEiTN3TA+2wGCGMtI/Z2HIBxqzCNPhxfrMAlxkPI sMmAlPk4cnWb1UiKWU5OJgxMSACEGUky68cTBOTuPnP7Rr8ycOWCSS9gwwIygycP I3xSl+2TsmA2DzK1pi6/ucIl3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqSifkC XWnQE04I3Eky6ydI6yWwMB8GA1UdIwQYMBaAFCw08zWUzDvjwH6OeDdr/EMyYxVI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUREOC9BNEQ4MTA0RTFE ODcxMUUyODM0Q0I5REYwOEIwMkNEMi9MRFR6TlpUTU8tUEFmbzU0TjJ2OFF6SmpG VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEVHpOWlRNTy1QQWZvNTROMnY4UXpKakZVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUREOC9BNEQ4MTA0RTFEODcxMUUyODM0Q0I5REYwOEIwMkNEMi9MRFR6TlpUTU8t UEFmbzU0TjJ2OFF6SmpGVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMNxvi9Rbn/YpSViXdq/yhAauiRWPNhy7w6nOZBandzBHJ3KcIRcaQ xH48/16D66KcMZrmP4JAnnQhAD+aWEjhJcHYvYU+Q6FtZmfJRX5Ee2xHA5ODRsxG DUVM4w02jeufIpj3wSAKWhxesFHuTvyQFc6EQX7tK2nROEi1Y9Bwy14HBbWt4flO 1aYGYoI+kelgJ2bo6uzQ6ejdwBoEI3qpXw+/6IdqX1KPShywpZriHpAwjeEJnaBh sz/MM8UiMCXavrkKjBgpExn8SB6ssOp+4GNRHKH9cdb6WbvxjnzGQxE24gf13LV5 7Pt9694W4Zs6msW/E4wE+oYWawSnn9/J -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:18 2024 by rpki-client on console-ams.rpki-client.org