$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: YbsxRceW3d5zyiGqOlYulSN8WCY1xiOPsBl8AE5VC7U= Subject key identifier: 9D:43:7B:07:37:C4:D6:59:3F:D7:D8:07:CD:88:29:B6:DD:8C:54:A8 Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 017D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 017A Signing time: Sat 23 Nov 2024 02:03:48 +0000 Manifest this update: Sat 23 Nov 2024 02:03:48 +0000 Manifest next update: Sat 30 Nov 2024 02:03:48 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: ZDjTbd+szVPVlETKAsrbLylBsfjOYexlvb73MCtVlhQ=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: vqnq1ln0jacCM48xfrENGgLrWxqslFbyB5Snj9ZJdaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:03:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: Nov 23 02:03:48 2024 GMT Not After : Nov 30 02:03:48 2024 GMT Subject: CN=67413804-b4db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:81:c3:fb:47:94:4b:04:02:d5:e5:90:c4:f1: 0a:6a:73:30:63:55:98:0f:9b:30:27:0b:da:51:e5: 61:e3:e5:95:c3:e9:90:39:d1:81:52:33:0a:c6:4a: a9:f1:9e:58:96:5a:d1:03:c6:4d:a3:76:d1:1e:43: 39:3e:07:40:e2:85:cb:f1:a4:e2:48:1d:f4:61:ce: 98:8b:7f:a2:b3:5e:75:3d:67:d0:77:a4:09:b2:55: fa:16:27:d3:4d:85:c6:e3:ca:58:4f:16:8c:e7:4d: ef:19:b7:c1:4e:c7:e7:af:4b:85:71:9b:26:18:c7: 42:d8:53:af:cb:a5:36:d6:b9:be:8a:8e:ac:54:b8: 3f:28:67:5d:49:1b:70:2e:b7:26:7b:a4:62:58:5a: bd:26:08:d6:b5:bd:96:7e:ab:65:37:cf:ff:5c:3c: 5e:31:71:e5:91:0f:0a:87:03:92:76:9f:ad:23:c2: f6:69:18:c5:40:e4:4e:3e:be:36:73:85:fd:a5:f0: 5d:0e:bd:fb:ee:47:55:d3:26:7d:04:07:b5:6d:7f: 26:dd:e4:8a:2c:e5:e5:c0:bf:9a:49:f7:18:68:4c: 1e:fb:cc:02:2e:89:b4:c9:b9:be:ed:17:44:e9:84: c6:8f:5a:df:32:ff:11:06:70:d1:4b:9d:5a:d8:6d: bc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:43:7B:07:37:C4:D6:59:3F:D7:D8:07:CD:88:29:B6:DD:8C:54:A8 X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:60:ff:3b:1e:1a:04:6a:5b:12:91:d5:1e:58:52:3c:c6:bb: f8:8d:c6:95:89:d8:dd:bd:0d:01:fb:e4:42:50:e2:1a:45:95: 71:75:53:7b:d5:a4:20:e0:20:31:fc:81:0c:f5:ed:6b:af:c8: eb:4c:7b:0e:a9:78:a6:5e:d3:cf:08:ca:15:02:16:6c:e2:d2: 67:ea:eb:ce:a7:3b:1a:54:c6:3b:a5:90:10:c5:00:ab:53:ad: 17:c1:c8:d4:15:4f:5e:7e:35:9d:14:a2:59:48:2d:30:61:94: bd:cd:1c:c7:af:e3:56:2d:59:64:5f:60:f4:3e:52:cf:7d:7e: 64:62:d9:05:6a:4f:d7:a0:bf:a6:a7:dd:3a:7f:3a:bb:bb:63: 79:c1:49:be:7e:45:52:cc:a7:9b:0c:8d:77:dd:f1:bf:69:7f: 7f:db:39:46:17:ff:9a:39:e4:b2:2e:6c:bc:a4:25:ca:9b:23: 28:cb:d5:1c:c5:fa:d5:d7:92:7a:5b:a1:0d:9d:e7:b8:a8:2a: de:07:bc:3f:8b:e8:c1:e2:01:b9:63:f0:bb:d6:35:09:2c:12: 97:d5:09:3d:aa:25:ae:36:4a:51:ea:30:4d:c7:51:a5:94:30: b7:e9:89:dd:bf:83:19:00:4c:5b:cd:32:c9:44:58:6e:1d:fe: 68:3b:f3:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjQxMTIzMDIwMzQ4WhcNMjQxMTMwMDIwMzQ4WjAYMRYwFAYD VQQDEw02NzQxMzgwNC1iNGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YHD+0eUSwQC1eWQxPEKanMwY1WYD5swJwvaUeVh4+WVw+mQOdGBUjMKxkqp 8Z5YllrRA8ZNo3bRHkM5PgdA4oXL8aTiSB30Yc6Yi3+is151PWfQd6QJslX6FifT TYXG48pYTxaM503vGbfBTsfnr0uFcZsmGMdC2FOvy6U21rm+io6sVLg/KGddSRtw Lrcme6RiWFq9JgjWtb2WfqtlN8//XDxeMXHlkQ8KhwOSdp+tI8L2aRjFQOROPr42 c4X9pfBdDr377kdV0yZ9BAe1bX8m3eSKLOXlwL+aSfcYaEwe+8wCLom0ybm+7RdE 6YTGj1rfMv8RBnDRS51a2G28iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1Dewc3 xNZZP9fYB82IKbbdjFSoMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpYP87HhoEalsSkdUeWFI8xrv4jcaVidjdvQ0B++RCUOIaRZVxdVN7 1aQg4CAx/IEM9e1rr8jrTHsOqXimXtPPCMoVAhZs4tJn6uvOpzsaVMY7pZAQxQCr U60XwcjUFU9efjWdFKJZSC0wYZS9zRzHr+NWLVlkX2D0PlLPfX5kYtkFak/XoL+m p906fzq7u2N5wUm+fkVSzKebDI133fG/aX9/2zlGF/+aOeSyLmy8pCXKmyMoy9Uc xfrV15J6W6ENnee4qCreB7w/i+jB4gG5Y/C71jUJLBKX1Qk9qiWuNkpR6jBNx1Gl lDC36Yndv4MZAExbzTLJRFhuHf5oO/MF -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:48 2024 by rpki-client on console-fra.rpki-client.org