$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft File: lDuBQuFVPslGJaRyTlaYKhVY_pw.mft (raw, json) Hash identifier: kC0fTRfp6mkToOMK4Kxj19gbMSnbHoQ3yCSpS9y/HgE= Subject key identifier: 9E:E2:CD:99:C9:6F:DB:42:15:FF:E6:C1:46:7F:F3:2F:13:90:2B:0C Authority key identifier: 94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C Certificate issuer: /CN=A91582D9/serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Certificate serial: 1732 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft Manifest number: 1ECA Signing time: Fri 22 Nov 2024 16:37:30 +0000 Manifest this update: Fri 22 Nov 2024 16:37:30 +0000 Manifest next update: Fri 29 Nov 2024 16:37:30 +0000 Files and hashes: 1: lDuBQuFVPslGJaRyTlaYKhVY_pw.crl (hash: /Q17vTb2+5FIUkSqr92cj0JEGJYQ3pHr5hwIrprygzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5938 (0x1732) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9/serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Validity Not Before: Nov 22 16:37:30 2024 GMT Not After : Nov 29 16:37:30 2024 GMT Subject: CN=6740b34a-60ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:93:03:ca:cc:5a:44:98:1e:4e:f7:d5:e2:e3: ec:79:9a:bc:d3:ed:2c:f4:d1:26:41:ea:9d:58:a5: 69:ba:27:20:d4:4f:57:35:1d:95:d3:4f:cb:25:e1: 0a:5d:8c:f3:cc:34:f3:32:0d:2b:da:74:a9:39:e4: 1c:cb:27:98:90:3f:90:a6:e1:eb:01:22:bc:8c:53: ac:b2:dc:be:bc:07:a9:4b:77:00:58:05:a1:57:3c: db:1f:4d:73:52:bb:f9:f9:59:fe:5c:13:51:c1:80: c1:01:06:86:ee:66:eb:da:45:2e:78:62:4f:cc:e8: cc:02:6c:f7:2b:e0:7f:93:17:4f:ef:56:e6:8d:57: 8e:0e:0c:a5:da:1f:2f:f9:bb:71:1d:f5:c2:32:f5: 2e:99:f3:cc:0a:17:f2:27:e6:35:e1:a6:60:d8:38: 40:0f:3f:f3:f6:e3:34:5b:fb:8e:65:be:d2:b3:9b: 51:5f:bf:97:e1:38:d5:35:96:74:d1:be:84:20:32: 9c:c2:1a:ba:af:09:8d:b9:c2:bb:d4:fc:2e:fb:3c: 95:17:da:df:38:d6:9a:9c:4c:5e:82:d1:cc:be:67: 64:c1:26:7d:9a:cd:66:e6:b5:44:e7:b9:1d:ac:ee: f9:cf:14:b2:63:8d:ff:41:ff:3c:25:08:4d:8d:c6: 27:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E2:CD:99:C9:6F:DB:42:15:FF:E6:C1:46:7F:F3:2F:13:90:2B:0C X509v3 Authority Key Identifier: keyid:94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:ca:94:06:f3:a0:ab:2c:0f:8c:fd:5f:5b:af:52:eb:7c:a5: 74:a5:d8:0c:ba:42:d4:f2:32:81:6f:02:32:98:34:8e:8d:1e: 15:7e:99:42:98:c8:e6:53:6b:8e:55:f9:3f:0c:da:ae:14:8a: bb:76:7d:07:5f:aa:4d:9a:a3:2c:40:41:47:ca:41:fd:b2:21: 26:d5:f1:92:9e:ba:9d:a5:4e:89:00:aa:db:5f:7c:c7:77:c6: bc:a3:a3:e6:d0:f3:49:9b:c6:5e:cd:99:6f:66:f4:79:e0:8e: 16:a7:87:73:93:9c:c6:09:a0:1c:77:a9:d2:4f:33:6a:ca:a6: fc:d7:64:3a:1f:44:7f:1e:11:ec:b7:c5:cb:91:da:8e:5b:56: 0d:a6:d9:09:68:8f:37:6c:8c:a5:06:1b:5d:7c:79:3b:6a:b2: c9:a3:c5:05:65:ac:0a:56:c1:9c:e1:e5:9c:79:7b:c9:19:c4: fb:36:8a:9d:a4:6a:3f:1a:33:58:65:8e:2a:f3:e5:55:77:96: 35:48:60:0d:5b:98:5b:a0:d8:48:50:b7:48:13:86:b2:4a:2b: 00:ba:45:46:c9:70:b8:e8:95:84:f6:3d:10:75:f2:3d:6c:fe: 59:ba:af:20:45:bf:cd:b1:2e:1d:a6:a1:14:11:43:d0:d2:80: 95:e2:47:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDk0M0I4MTQyRTE1NTNFQzk0NjI1QTQ3MjRFNTY5ODJB MTU1OEZFOUMwHhcNMjQxMTIyMTYzNzMwWhcNMjQxMTI5MTYzNzMwWjAYMRYwFAYD VQQDEw02NzQwYjM0YS02MGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JMDysxaRJgeTvfV4uPseZq80+0s9NEmQeqdWKVpuicg1E9XNR2V00/LJeEK XYzzzDTzMg0r2nSpOeQcyyeYkD+QpuHrASK8jFOssty+vAepS3cAWAWhVzzbH01z Urv5+Vn+XBNRwYDBAQaG7mbr2kUueGJPzOjMAmz3K+B/kxdP71bmjVeODgyl2h8v +btxHfXCMvUumfPMChfyJ+Y14aZg2DhADz/z9uM0W/uOZb7Ss5tRX7+X4TjVNZZ0 0b6EIDKcwhq6rwmNucK71Pwu+zyVF9rfONaanExegtHMvmdkwSZ9ms1m5rVE57kd rO75zxSyY43/Qf88JQhNjcYnkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7izZnJ b9tCFf/mwUZ/8y8TkCsMMB8GA1UdIwQYMBaAFJQ7gULhVT7JRiWkck5WmCoVWP6c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBzbEdKYVJ5VGxhWUtoVllf cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xEdUJRdUZWUHNsR0phUnlUbGFZS2hWWV9wdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBz bEdKYVJ5VGxhWUtoVllfcHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7ypQG86CrLA+M/V9br1LrfKV0pdgMukLU8jKBbwIymDSOjR4VfplC mMjmU2uOVfk/DNquFIq7dn0HX6pNmqMsQEFHykH9siEm1fGSnrqdpU6JAKrbX3zH d8a8o6Pm0PNJm8ZezZlvZvR54I4Wp4dzk5zGCaAcd6nSTzNqyqb812Q6H0R/HhHs t8XLkdqOW1YNptkJaI83bIylBhtdfHk7arLJo8UFZawKVsGc4eWceXvJGcT7Noqd pGo/GjNYZY4q8+VVd5Y1SGANW5hboNhIULdIE4aySisAukVGyXC46JWE9j0QdfI9 bP5Zuq8gRb/NsS4dpqEUEUPQ0oCV4kel -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org