$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft File: LRgGu3n37GppfLCmWiHlyxIv3nY.mft (raw, json) Hash identifier: YZDOFt5aBQVSiN4FdfUt4YbgdsCwt/lHt2144HmEDgw= Subject key identifier: AE:16:7E:97:D5:40:90:48:36:13:61:94:8B:19:7F:6F:3F:8D:52:E5 Authority key identifier: 2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 Certificate issuer: /CN=A9165A58/serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft Manifest number: 10 Signing time: Wed 23 Oct 2024 06:43:53 +0000 Manifest this update: Wed 23 Oct 2024 06:43:53 +0000 Manifest next update: Wed 30 Oct 2024 06:43:53 +0000 Files and hashes: 1: LRgGu3n37GppfLCmWiHlyxIv3nY.crl (hash: sxs2b3wdEALez5k0HRvKPPfA9Jsuz8aPXs7NACfcQUY=) 2: BDBEED967C0011EFB63C7076C4F9AE02.roa (hash: Nz2FGej23dIiDwRtV6Sp50mpW+TP9HnxQFOScAwf8wk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A58/serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Validity Not Before: Oct 23 06:43:53 2024 GMT Not After : Oct 30 06:43:53 2024 GMT Subject: CN=67189b29-6655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:20:af:bb:6e:44:27:0e:01:d7:d8:3c:ae:1d: b9:b0:1a:65:dc:f6:a4:ba:94:ed:d3:af:fe:b9:e6: c6:23:da:0c:56:2a:02:57:e8:de:3c:d6:ad:98:52: a9:a6:c9:12:8c:d0:ab:ba:4c:35:50:a5:c1:0a:ed: aa:0f:24:94:e1:34:61:20:be:55:b4:53:a5:56:dc: 1c:04:1f:16:e3:03:8e:85:cd:4d:c2:88:fd:4e:67: db:99:ec:4c:86:89:ef:c8:74:63:cb:e7:84:96:82: 51:aa:de:3e:10:54:9a:71:9a:c2:5a:4d:62:5b:1e: 6c:73:ae:ed:b0:c4:9a:80:9d:c8:65:9a:77:e3:d5: bf:ca:1c:58:63:67:74:95:a6:5b:12:c6:ac:c3:8e: ee:bf:9c:95:e9:b5:c0:61:b3:b1:37:2f:cd:79:12: 17:b3:ae:ca:b6:d1:cc:a5:9b:73:58:26:ee:08:26: cc:07:bc:87:b3:c3:c0:e1:fc:54:3b:ea:14:b2:e8: da:fa:20:84:00:e2:a3:c4:92:b6:a0:e8:15:f4:bd: 94:67:88:57:98:46:05:d4:4b:bd:b5:60:ce:dd:82: 4e:a3:60:81:20:6d:dd:c3:19:a3:e2:69:d5:3a:36: 66:64:3f:1d:33:5e:a1:a1:ca:b3:65:9d:d2:86:7f: 20:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:16:7E:97:D5:40:90:48:36:13:61:94:8B:19:7F:6F:3F:8D:52:E5 X509v3 Authority Key Identifier: keyid:2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f1:ce:17:c3:96:ec:e2:f7:71:d6:79:f3:c7:fc:f1:03:6e:3c: ec:d8:b9:2f:9a:e4:4d:51:24:2d:f5:78:b6:f8:1e:89:ee:9d: 1e:5c:c9:e1:16:2f:4e:ba:3b:09:9f:fb:cb:5d:e9:28:3a:56: 7e:4f:b7:da:42:0d:97:46:99:66:43:90:9f:1a:46:d8:da:72: 8d:ee:4c:53:e2:8d:01:93:3f:f0:84:39:df:91:80:d8:5c:70: f2:bb:52:56:50:7a:e6:1f:a2:1d:83:a4:73:9e:5d:af:06:dd: 59:41:d7:69:ae:6c:32:fd:75:45:5e:44:b2:f4:32:b4:8b:15: 16:2a:69:f5:9a:2e:1c:98:d6:49:be:2b:b2:2e:89:c5:61:d4: 6b:da:7d:91:42:6d:19:67:3a:75:2b:43:0e:01:29:63:8c:a0: e8:13:c7:63:d7:f5:00:2e:8b:06:88:d6:37:8f:b2:4c:94:b7: 23:5f:c7:ce:d3:1b:76:d3:ff:22:4f:9d:00:3e:f6:4e:68:6d: 00:ac:4d:04:48:46:15:0f:14:c5:6d:88:7e:3c:fc:c9:34:88: 46:7f:73:da:3f:9b:1f:41:b2:aa:ce:d3:fe:cf:98:8e:9a:7c: 45:a3:0c:32:9f:07:80:33:2d:27:fd:6f:2e:5b:e1:75:6c:3c: b6:f4:ee:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NUE1ODExMC8GA1UEBRMoMkQxODA2QkI3OUY3RUM2QTY5N0NCMEE2NUEyMUU1Q0Ix MjJGREU3NjAeFw0yNDEwMjMwNjQzNTNaFw0yNDEwMzAwNjQzNTNaMBgxFjAUBgNV BAMTDTY3MTg5YjI5LTY2NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7IK+7bkQnDgHX2DyuHbmwGmXc9qS6lO3Tr/655sYj2gxWKgJX6N481q2YUqmm yRKM0Ku6TDVQpcEK7aoPJJThNGEgvlW0U6VW3BwEHxbjA46FzU3CiP1OZ9uZ7EyG ie/IdGPL54SWglGq3j4QVJpxmsJaTWJbHmxzru2wxJqAnchlmnfj1b/KHFhjZ3SV plsSxqzDju6/nJXptcBhs7E3L815Ehezrsq20cylm3NYJu4IJswHvIezw8Dh/FQ7 6hSy6Nr6IIQA4qPEkrag6BX0vZRniFeYRgXUS721YM7dgk6jYIEgbd3DGaPiadU6 NmZkPx0zXqGhyrNlndKGfyCDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrhZ+l9VA kEg2E2GUixl/bz+NUuUwHwYDVR0jBBgwFoAULRgGu3n37GppfLCmWiHlyxIv3nYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1QTU4L0RGNjk0QkE2N0JG RDExRUZBN0I4RUI1Q0M0RjlBRTAyL0xSZ0d1M24zN0dwcGZMQ21XaUhseXhJdjNu WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTFJnR3UzbjM3R3BwZkxDbVdpSGx5eEl2M25ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 QTU4L0RGNjk0QkE2N0JGRDExRUZBN0I4RUI1Q0M0RjlBRTAyL0xSZ0d1M24zN0dw cGZMQ21XaUhseXhJdjNuWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAPHOF8OW7OL3cdZ588f88QNuPOzYuS+a5E1RJC31eLb4HonunR5cyeEW L066Owmf+8td6Sg6Vn5Pt9pCDZdGmWZDkJ8aRtjaco3uTFPijQGTP/CEOd+RgNhc cPK7UlZQeuYfoh2DpHOeXa8G3VlB12mubDL9dUVeRLL0MrSLFRYqafWaLhyY1km+ K7IuicVh1GvafZFCbRlnOnUrQw4BKWOMoOgTx2PX9QAuiwaI1jePskyUtyNfx87T G3bT/yJPnQA+9k5obQCsTQRIRhUPFMVtiH48/Mk0iEZ/c9o/mx9BsqrO0/7PmI6a fEWjDDKfB4AzLSf9by5b4XVsPLb07lE= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:20 2024 by rpki-client on console-fra.rpki-client.org