$ rpki-client -vvf rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft File: llSi8IRZeiuRrAAqdgfhPBXQlJE.mft (raw, json) Hash identifier: llCBfm73IwXaCmqimSQUCUVOtMtgcW0/Y+c/6k1ty8E= Subject key identifier: 6A:56:88:64:C6:B9:3E:8D:B1:7B:B8:2C:73:C5:74:A9:17:02:D8:AD Authority key identifier: 96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 Certificate issuer: /CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft Manifest number: 45 Signing time: Thu 21 Nov 2024 05:26:08 +0000 Manifest this update: Thu 21 Nov 2024 05:26:07 +0000 Manifest next update: Thu 28 Nov 2024 05:26:07 +0000 Files and hashes: 1: llSi8IRZeiuRrAAqdgfhPBXQlJE.crl (hash: ScpsSgnQLF9cVDBC2V8luWzwltMzEowmfQFVk7EGH9s=) 2: 29A436623FE111EFB5A50814C4F9AE02.roa (hash: i8BI9IvwuikO1+xMVefOXZH2ufnANITPzuMSdPax+Fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Validity Not Before: Nov 21 05:26:07 2024 GMT Not After : Nov 28 05:26:07 2024 GMT Subject: CN=673ec46f-dbb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c1:67:1f:cc:ff:9d:1b:81:a0:1c:b6:00:e8: b2:03:84:7a:bd:9d:6c:96:04:5c:c2:9b:0a:f3:64: b6:44:35:d6:7c:56:9f:07:4e:99:00:4e:6b:37:fe: 5c:21:e0:07:5c:7b:93:0f:c0:d7:77:8c:e8:b3:73: 22:3b:dc:fc:2e:4d:15:bd:35:b1:03:69:90:1f:6e: f6:29:34:1c:45:1a:0a:34:ef:54:a9:a7:fd:48:74: 0c:80:58:2f:1d:4c:92:06:6c:40:fe:f3:b6:26:0a: 75:5f:11:b0:83:df:25:75:9f:c1:ec:4b:9f:91:3b: 34:cd:17:a9:5d:20:dc:60:e8:19:53:db:86:10:ad: 04:ff:18:2c:1b:e2:e5:7a:b8:35:4c:86:7a:06:f3: fb:3e:f6:60:47:07:ef:2b:c1:ea:32:a3:90:32:df: 73:2a:77:b7:10:db:67:5b:46:6a:5d:7e:59:4b:68: a8:08:07:9f:b5:a6:7e:96:d5:4f:89:08:c9:26:fb: 99:35:80:b6:6f:6a:6a:44:58:3e:f7:a9:5b:8f:07: 9d:6d:f9:51:14:c0:76:23:ca:ba:d6:4d:62:71:ed: 22:c4:e0:a1:a4:d1:7d:af:f5:4f:2b:38:cd:b3:03: c2:b8:c7:72:b5:7d:bd:be:cc:87:02:6b:39:f4:0a: 88:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:56:88:64:C6:B9:3E:8D:B1:7B:B8:2C:73:C5:74:A9:17:02:D8:AD X509v3 Authority Key Identifier: keyid:96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:a6:b5:f1:f3:bb:13:c4:0c:00:a2:ff:ea:05:69:1f:84:92: 96:89:84:a9:57:27:06:84:ad:55:d7:48:d6:c3:88:91:55:6b: 0e:b3:b6:d7:e7:93:5b:44:82:c8:51:ea:c9:53:42:14:01:e3: c6:24:fc:ad:83:1e:d3:f1:b9:df:17:2e:f2:0c:6a:43:3e:35: a4:a7:eb:2e:cb:ed:30:c1:a4:0d:35:16:1d:a5:80:01:56:ea: 43:c8:d5:55:92:ad:df:92:ae:12:2b:a9:03:ce:10:2d:1e:ca: a6:d4:6e:45:09:3d:4f:df:3d:e6:b9:65:e4:cf:ca:0e:c0:7f: 75:62:9f:86:06:e3:d2:83:55:a0:07:29:56:da:67:b2:5c:1f: 25:49:01:84:8c:5c:be:fe:d0:32:70:8f:13:63:e8:34:3b:4b: 72:3f:14:46:c8:f7:9a:61:31:da:a6:0e:dd:57:c6:d8:73:a5: ac:b6:c3:52:20:25:fd:26:73:21:09:49:0f:ab:cd:6e:94:34: e3:d6:c4:35:7a:da:3f:21:bc:f6:7a:ba:47:76:6f:ff:8b:75: c5:08:61:36:99:db:2e:a3:82:64:40:22:58:ce:12:ea:64:6d: 23:97:d2:a8:a1:25:79:69:e9:26:f5:44:25:83:a4:1f:fb:13: 98:91:f0:29 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzMwMzExMC8GA1UEBRMoOTY1NEEyRjA4NDU5N0EyQjkxQUMwMDJBNzYwN0UxM0Mx NUQwOTQ5MTAeFw0yNDExMjEwNTI2MDdaFw0yNDExMjgwNTI2MDdaMBgxFjAUBgNV BAMTDTY3M2VjNDZmLWRiYjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtwWcfzP+dG4GgHLYA6LIDhHq9nWyWBFzCmwrzZLZENdZ8Vp8HTpkATms3/lwh 4Adce5MPwNd3jOizcyI73PwuTRW9NbEDaZAfbvYpNBxFGgo071Spp/1IdAyAWC8d TJIGbED+87YmCnVfEbCD3yV1n8HsS5+ROzTNF6ldINxg6BlT24YQrQT/GCwb4uV6 uDVMhnoG8/s+9mBHB+8rweoyo5Ay33Mqd7cQ22dbRmpdfllLaKgIB5+1pn6W1U+J CMkm+5k1gLZvampEWD73qVuPB51t+VEUwHYjyrrWTWJx7SLE4KGk0X2v9U8rOM2z A8K4x3K1fb2+zIcCazn0CoixAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUalaIZMa5 Po2xe7gsc8V0qRcC2K0wHwYDVR0jBBgwFoAUllSi8IRZeiuRrAAqdgfhPBXQlJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzMzAzLzgwQkYxQTYyM0ZF MDExRUY4NjM1RDcxMkM0RjlBRTAyL2xsU2k4SVJaZWl1UnJBQXFkZ2ZoUEJYUWxK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGxTaThJUlplaXVSckFBcWRnZmhQQlhRbEpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz MzAzLzgwQkYxQTYyM0ZFMDExRUY4NjM1RDcxMkM0RjlBRTAyL2xsU2k4SVJaZWl1 UnJBQXFkZ2ZoUEJYUWxKRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABimtfHzuxPEDACi/+oFaR+EkpaJhKlXJwaErVXXSNbDiJFVaw6zttfn k1tEgshR6slTQhQB48Yk/K2DHtPxud8XLvIMakM+NaSn6y7L7TDBpA01Fh2lgAFW 6kPI1VWSrd+SrhIrqQPOEC0eyqbUbkUJPU/fPea5ZeTPyg7Af3Vin4YG49KDVaAH KVbaZ7JcHyVJAYSMXL7+0DJwjxNj6DQ7S3I/FEbI95phMdqmDt1Xxthzpay2w1Ig Jf0mcyEJSQ+rzW6UNOPWxDV62j8hvPZ6ukd2b/+LdcUIYTaZ2y6jgmRAIljOEupk bSOX0qihJXlp6Sb1RCWDpB/7E5iR8Ck= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:04 2024 by rpki-client on console-ams.rpki-client.org