$ rpki-client -vvf rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft File: luWqcIJLjRPdz-YfzJogytZeYME.mft (raw, json) Hash identifier: iUc67TUMz+VpcwlAQMPCawoBVOdGvzql3RCqz3kleRs= Subject key identifier: 7E:3A:17:B3:26:E4:B0:77:FA:D3:AF:1C:EB:0F:C4:F7:22:EB:E4:15 Authority key identifier: 96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 Certificate issuer: /CN=A9155688/serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Certificate serial: 060C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft Manifest number: 0605 Signing time: Fri 22 Nov 2024 22:17:27 +0000 Manifest this update: Fri 22 Nov 2024 22:17:27 +0000 Manifest next update: Fri 29 Nov 2024 22:17:27 +0000 Files and hashes: 1: luWqcIJLjRPdz-YfzJogytZeYME.crl (hash: g7ZvQJqdjQ5izYaaezQrD0MvXd2ZiEPGs20OUt+NAmg=) 2: 6656B366814C11EB913AEC78C4F9AE02.roa (hash: 1SLFE0qnXhzMWp508BSvW25KNRqWfMvK7tRODXuYoxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1548 (0x60c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155688/serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Validity Not Before: Nov 22 22:17:27 2024 GMT Not After : Nov 29 22:17:27 2024 GMT Subject: CN=674102f7-694f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:76:10:2b:50:2f:af:b0:ee:9b:b5:0a:65:85: 36:b4:4a:a1:2c:2d:8c:5b:11:f1:dc:91:74:bc:39: 37:75:e8:87:e2:e5:43:cf:89:b8:1d:bf:85:f6:51: 92:54:51:ee:12:a5:b1:f0:19:2f:4d:00:dd:a6:bb: f3:4e:66:22:85:92:d7:3c:09:f1:62:f9:74:86:4a: 34:7b:ad:e0:c9:4f:be:50:63:37:72:40:d8:88:82: 17:b3:70:85:9d:1d:2c:d5:37:6b:17:24:c4:db:ce: 76:cd:78:df:c0:cf:c2:4f:69:f2:77:b2:d7:d3:b1: 40:1b:70:82:f8:cf:a6:d2:00:6d:26:35:5e:55:a4: 1c:ac:ea:f7:b7:35:06:7e:3d:3b:72:d5:84:3b:61: d2:89:3e:99:51:e8:c6:d0:81:36:94:b0:7d:e5:a6: 57:67:f5:05:37:9f:6f:e8:4c:71:ae:09:18:4b:c1: 4f:e5:80:b7:7f:67:84:51:04:d3:c9:36:81:6e:da: f8:db:50:22:94:08:45:90:d2:24:0b:45:4a:28:dd: 46:4f:7a:97:33:ab:d1:d9:d5:f6:a4:7b:51:62:16: ac:05:31:e0:4e:01:1a:ad:7c:ac:46:8c:35:c4:67: f6:6c:23:73:8e:fb:ed:d7:29:bd:89:69:00:b9:80: d8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:3A:17:B3:26:E4:B0:77:FA:D3:AF:1C:EB:0F:C4:F7:22:EB:E4:15 X509v3 Authority Key Identifier: keyid:96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:0c:37:75:d6:2d:4c:5b:a8:b9:ed:e1:f9:41:68:32:11:10: 32:0b:23:23:72:e1:7b:3d:b0:b5:4b:a2:51:61:cc:29:79:c9: 72:12:a1:d4:59:02:30:b2:32:67:5c:a3:d0:34:bf:ad:9c:be: 86:85:27:ec:72:1a:b4:98:2c:d3:19:6c:57:0b:a7:22:e8:0d: 8d:df:cb:51:e0:fb:16:2a:64:48:b8:9f:85:dd:82:8a:73:5a: 31:45:7a:6d:9f:0d:93:b4:68:24:fa:8b:23:67:b2:0a:98:b5: cf:cf:fa:2e:76:15:1c:6d:c6:cc:ab:06:1e:77:a2:e6:f6:2c: 78:69:12:04:45:c3:59:e2:9c:99:e9:4b:5a:db:56:b2:71:c5: 6c:76:a3:ac:74:01:a1:63:44:e2:d7:6b:1f:21:14:a8:3c:76: 97:54:06:fd:4c:a5:50:68:49:d1:32:cd:64:5c:a3:9a:0e:d8: 01:30:c2:7f:a0:72:5a:28:b6:2b:8a:6f:f3:40:d3:92:bd:2c: bc:ed:75:93:54:ea:7d:e2:2f:07:64:f2:5a:dc:91:80:74:01: f6:73:24:e3:3c:c8:e9:05:b1:0e:41:b3:17:e5:30:8c:3f:e0: 3d:54:30:7d:98:b6:b9:a4:88:d8:ef:34:d4:dd:be:a4:62:74: 4d:e0:d3:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2ODgxMTAvBgNVBAUTKDk2RTVBQTcwODI0QjhEMTNERENGRTYxRkNDOUEyMENB RDY1RTYwQzEwHhcNMjQxMTIyMjIxNzI3WhcNMjQxMTI5MjIxNzI3WjAYMRYwFAYD VQQDEw02NzQxMDJmNy02OTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3YQK1Avr7Dum7UKZYU2tEqhLC2MWxHx3JF0vDk3deiH4uVDz4m4Hb+F9lGS VFHuEqWx8BkvTQDdprvzTmYihZLXPAnxYvl0hko0e63gyU++UGM3ckDYiIIXs3CF nR0s1TdrFyTE2852zXjfwM/CT2nyd7LX07FAG3CC+M+m0gBtJjVeVaQcrOr3tzUG fj07ctWEO2HSiT6ZUejG0IE2lLB95aZXZ/UFN59v6ExxrgkYS8FP5YC3f2eEUQTT yTaBbtr421AilAhFkNIkC0VKKN1GT3qXM6vR2dX2pHtRYhasBTHgTgEarXysRow1 xGf2bCNzjvvt1ym9iWkAuYDYeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH46F7Mm 5LB3+tOvHOsPxPci6+QVMB8GA1UdIwQYMBaAFJblqnCCS40T3c/mH8yaIMrWXmDB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY4OC85RDU2MjlBMDgx NDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpSUGR6LVlmekpvZ3l0WmVZ TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1V3FjSUpMalJQZHotWWZ6Sm9neXRaZVlNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTY4OC85RDU2MjlBMDgxNDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpS UGR6LVlmekpvZ3l0WmVZTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTDDd11i1MW6i57eH5QWgyERAyCyMjcuF7PbC1S6JRYcwpeclyEqHU WQIwsjJnXKPQNL+tnL6GhSfschq0mCzTGWxXC6ci6A2N38tR4PsWKmRIuJ+F3YKK c1oxRXptnw2TtGgk+osjZ7IKmLXPz/oudhUcbcbMqwYed6Lm9ix4aRIERcNZ4pyZ 6Uta21ayccVsdqOsdAGhY0Ti12sfIRSoPHaXVAb9TKVQaEnRMs1kXKOaDtgBMMJ/ oHJaKLYrim/zQNOSvSy87XWTVOp94i8HZPJa3JGAdAH2cyTjPMjpBbEOQbMX5TCM P+A9VDB9mLa5pIjY7zTU3b6kYnRN4NPB -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:40 2024 by rpki-client on console-ams.rpki-client.org