$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft File: LzabRI0hcVlrosk82-JY6vMxdZQ.mft (raw, json) Hash identifier: vTWyra6k9RZHK3FqBNDnTz7TkOYUA2ngtvopGV+lJAM= Subject key identifier: FD:7A:DA:60:48:AC:8C:30:77:63:21:D5:A3:E9:28:D7:5C:27:F6:07 Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 Certificate issuer: /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Certificate serial: 0654 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft Manifest number: 064D Signing time: Fri 22 Nov 2024 22:01:46 +0000 Manifest this update: Fri 22 Nov 2024 22:01:46 +0000 Manifest next update: Fri 29 Nov 2024 22:01:46 +0000 Files and hashes: 1: LzabRI0hcVlrosk82-JY6vMxdZQ.crl (hash: kXC/oJmR+kReDSrSY/56dJHLyJHqa7Px9t7SfGUpVtY=) 2: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (hash: WR1DbVbaQ/9PlcfupDSU3lPtOXXUq5mwwlQCdWOBvqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1620 (0x654) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Validity Not Before: Nov 22 22:01:46 2024 GMT Not After : Nov 29 22:01:46 2024 GMT Subject: CN=6740ff4a-4c86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d9:ee:f2:90:20:e5:6f:11:d9:54:fc:1b:99: 49:70:29:64:30:06:d2:70:d9:65:80:ff:08:9e:af: e4:0b:9f:71:04:76:0b:d2:e3:83:fd:51:86:ff:b2: 71:78:e4:e5:37:66:30:dc:da:e5:c1:fc:2e:65:56: 04:b8:08:3c:9f:cf:82:42:57:90:6a:6b:00:16:17: d2:25:e5:3c:98:85:80:2f:b4:2f:33:5e:0c:18:cd: 06:62:53:a3:2b:f2:ca:b4:bf:fb:75:12:e1:af:e7: 10:47:f0:f4:3a:d7:70:33:a0:f4:5d:47:54:46:ef: 2c:40:1e:d3:52:22:b2:0b:2a:28:7a:b6:1b:7e:3c: 08:4b:0e:7f:83:c2:41:d1:ed:99:db:42:dd:18:1f: ca:26:d0:de:19:ad:1a:26:41:4d:3c:86:99:7f:6b: 7f:99:17:cb:2a:0f:39:97:ff:9f:f0:44:64:04:13: bf:d5:1e:b6:b1:63:7b:bd:f2:74:ee:06:70:14:72: 34:3b:ca:b1:ff:99:7b:65:c9:8f:31:d0:d3:90:c3: 16:54:f2:82:48:61:a9:14:bd:ea:40:23:08:14:fc: ac:c5:80:9e:62:99:96:1d:87:e5:c6:74:5f:b8:14: 14:3f:c7:86:95:a3:71:78:ef:0e:7f:fb:2d:0a:1c: 66:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:7A:DA:60:48:AC:8C:30:77:63:21:D5:A3:E9:28:D7:5C:27:F6:07 X509v3 Authority Key Identifier: keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:e9:36:ed:ec:19:d0:dd:53:42:a9:cf:fd:90:b8:a2:4a:f2: dc:4c:68:0d:5f:1b:1d:10:88:9d:e3:6d:55:55:5c:e7:2b:fe: 1c:fc:4b:ed:15:f3:d6:b6:eb:c1:07:89:4d:d5:a6:3d:e2:56: 31:c8:e6:37:f4:2d:e8:b7:11:20:2f:7c:43:cc:ec:83:96:14: db:74:85:fa:20:be:d0:a9:50:65:55:8b:bc:01:79:83:f2:e9: ae:50:53:6d:e8:e8:35:74:55:fb:ef:e9:cc:e2:3c:29:1d:85: 50:0b:83:47:e8:26:b3:ea:f0:74:19:ce:3f:21:84:3c:07:33: 82:19:9d:19:e1:72:6d:a3:4d:e7:4a:c4:18:b5:fb:1b:38:ea: 7e:41:77:2d:5f:eb:f1:12:f6:0c:e5:4c:e5:91:80:c0:86:07: 14:4c:ab:b0:5b:ed:cb:3a:fb:1c:a7:da:79:91:35:45:b7:bc: 5f:04:7b:6c:c2:d9:8d:a6:e0:00:7f:ec:05:4e:0f:eb:51:f8: 6d:6c:1b:62:bc:73:6c:e7:67:2f:5f:5c:4e:58:a9:12:7c:e8: 49:c8:3c:00:5c:02:6a:d3:3e:a2:76:89:83:e9:a2:16:28:3f: b9:d3:fc:ab:24:9f:9b:6c:fd:13:fd:25:8e:bc:a0:b2:4a:f2: 74:fb:5a:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB RjMzMTc1OTQwHhcNMjQxMTIyMjIwMTQ2WhcNMjQxMTI5MjIwMTQ2WjAYMRYwFAYD VQQDEw02NzQwZmY0YS00Yzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9nu8pAg5W8R2VT8G5lJcClkMAbScNllgP8Inq/kC59xBHYL0uOD/VGG/7Jx eOTlN2Yw3NrlwfwuZVYEuAg8n8+CQleQamsAFhfSJeU8mIWAL7QvM14MGM0GYlOj K/LKtL/7dRLhr+cQR/D0OtdwM6D0XUdURu8sQB7TUiKyCyooerYbfjwISw5/g8JB 0e2Z20LdGB/KJtDeGa0aJkFNPIaZf2t/mRfLKg85l/+f8ERkBBO/1R62sWN7vfJ0 7gZwFHI0O8qx/5l7ZcmPMdDTkMMWVPKCSGGpFL3qQCMIFPysxYCeYpmWHYflxnRf uBQUP8eGlaNxeO8Of/stChxmaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP162mBI rIwwd2Mh1aPpKNdcJ/YHMB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1 RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1QS9COEJCNTY4RTY1RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNW bHJvc2s4Mi1KWTZ2TXhkWlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/6Tbt7BnQ3VNCqc/9kLiiSvLcTGgNXxsdEIid421VVVznK/4c/Evt FfPWtuvBB4lN1aY94lYxyOY39C3otxEgL3xDzOyDlhTbdIX6IL7QqVBlVYu8AXmD 8umuUFNt6Og1dFX77+nM4jwpHYVQC4NH6Caz6vB0Gc4/IYQ8BzOCGZ0Z4XJto03n SsQYtfsbOOp+QXctX+vxEvYM5UzlkYDAhgcUTKuwW+3LOvscp9p5kTVFt7xfBHts wtmNpuAAf+wFTg/rUfhtbBtivHNs52cvX1xOWKkSfOhJyDwAXAJq0z6idomD6aIW KD+50/yrJJ+bbP0T/SWOvKCySvJ0+1rh -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:41 2024 by rpki-client on console-ams.rpki-client.org