$ rpki-client -vvf rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft File: LT7zlg0opT_PYOmNAXAy6Sjqezk.mft (raw, json) Hash identifier: O58gfK/MORhJGj063olRW/JAuuOl8HkJJ3cWNLfhtDM= Subject key identifier: 01:F6:12:B2:F7:6B:A1:75:94:1B:53:CA:46:E5:66:08:38:B5:E3:2A Authority key identifier: 2D:3E:F3:96:0D:28:A5:3F:CF:60:E9:8D:01:70:32:E9:28:EA:7B:39 Certificate issuer: /CN=A9167278/serialNumber=2D3EF3960D28A53FCF60E98D017032E928EA7B39 Certificate serial: 06BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft Manifest number: 06B9 Signing time: Fri 22 Nov 2024 21:43:35 +0000 Manifest this update: Fri 22 Nov 2024 21:43:34 +0000 Manifest next update: Fri 29 Nov 2024 21:43:34 +0000 Files and hashes: 1: LT7zlg0opT_PYOmNAXAy6Sjqezk.crl (hash: ohZFjsY7LBpNnZMijLwQVXtYE3iEPWilpwaj6Kj0uEc=) 2: 1C017B163B3811EBB3FC7A77C4F9AE02.roa (hash: u4f2AhOEZ5LsFTZIbA/6gU0UEmVk6N2OiqEjoSnMP5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.crl rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1727 (0x6bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167278/serialNumber=2D3EF3960D28A53FCF60E98D017032E928EA7B39 Validity Not Before: Nov 22 21:43:34 2024 GMT Not After : Nov 29 21:43:34 2024 GMT Subject: CN=6740fb06-655b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c2:5d:bb:31:c2:fd:37:a6:de:2d:34:2b:63: 57:fb:0a:45:df:fe:5f:e4:d0:1e:91:33:61:4d:0d: e8:ed:be:55:56:f2:91:43:d4:0d:5a:bc:b1:e8:6c: 18:2a:ce:e2:b3:5d:68:ba:fc:fa:f5:36:08:59:38: 26:71:ba:a7:4b:ca:ad:8e:3f:52:de:59:88:ae:bf: 75:11:8f:57:cb:20:2b:c0:2c:53:d4:60:ef:c9:48: 93:4d:4d:12:5d:2a:35:5c:81:ef:7c:71:d7:68:6d: a1:32:e3:4e:2f:d3:60:ea:b3:40:58:e2:5c:15:7d: ee:71:b7:c0:a2:37:48:c5:05:8e:b3:01:78:11:1c: aa:21:09:63:32:aa:42:2a:47:c1:10:2e:16:38:78: e0:66:9e:62:a0:d3:9b:2a:c2:b5:41:09:98:5a:66: cf:71:3d:18:1f:4f:79:d1:b9:22:d7:d6:b9:ac:c9: 74:9b:b9:97:93:85:1a:0b:4e:1b:03:59:db:76:2e: a0:bb:91:7f:fa:5f:b1:bf:28:52:0e:62:25:f2:e7: 5f:b8:9e:46:8f:db:ca:65:5f:35:90:12:33:78:d3: 18:5e:14:e0:bd:ee:6b:c6:ed:f2:d6:63:e4:08:dc: ee:19:32:16:5a:aa:9d:46:0a:a8:74:a3:cf:c3:0e: ef:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:F6:12:B2:F7:6B:A1:75:94:1B:53:CA:46:E5:66:08:38:B5:E3:2A X509v3 Authority Key Identifier: keyid:2D:3E:F3:96:0D:28:A5:3F:CF:60:E9:8D:01:70:32:E9:28:EA:7B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:6e:6d:76:dd:82:06:5e:f1:7d:ab:d6:85:67:e2:fc:9e:5d: 50:85:71:e8:17:78:6f:7b:bf:d9:6f:5a:14:bb:25:cb:83:37: 5a:a2:c9:a3:4f:8f:f8:9d:1b:17:d2:16:74:bd:d5:e4:03:5a: 6a:82:e6:16:3d:21:b6:14:55:e8:c2:97:55:39:64:54:a2:77: 9f:6e:d2:1e:45:7c:e8:c6:1d:89:42:64:0e:28:cf:3c:5a:3d: fd:3f:d3:59:f7:4d:98:16:ce:0f:18:81:5b:0a:3a:c6:7f:c7: bf:b8:8f:e3:9a:0e:4a:a5:10:00:42:43:79:df:32:c7:2a:11: 83:58:ee:0b:06:65:fa:1d:b8:e7:f2:dc:53:87:35:e7:c7:85: 29:46:7d:0f:25:83:e2:6d:13:38:4e:34:83:e4:aa:47:54:7c: 04:80:2d:15:f4:b3:c3:71:b6:4f:37:4e:56:6c:03:ef:8b:93: ec:5a:70:6d:ce:5e:94:7a:20:dd:17:cd:d7:e6:df:08:bc:d0: c4:04:33:82:02:b2:23:55:6a:33:af:19:5e:65:10:67:3b:fa: 2c:d7:54:29:cc:02:e3:b4:a6:c9:fd:39:11:72:f9:40:a7:0b: d9:c5:2b:70:55:de:b9:86:4c:3a:ea:16:f7:ea:a6:b8:89:57: 3f:c5:d8:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcyNzgxMTAvBgNVBAUTKDJEM0VGMzk2MEQyOEE1M0ZDRjYwRTk4RDAxNzAzMkU5 MjhFQTdCMzkwHhcNMjQxMTIyMjE0MzM0WhcNMjQxMTI5MjE0MzM0WjAYMRYwFAYD VQQDEw02NzQwZmIwNi02NTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMJduzHC/Tem3i00K2NX+wpF3/5f5NAekTNhTQ3o7b5VVvKRQ9QNWryx6GwY Ks7is11ouvz69TYIWTgmcbqnS8qtjj9S3lmIrr91EY9XyyArwCxT1GDvyUiTTU0S XSo1XIHvfHHXaG2hMuNOL9Ng6rNAWOJcFX3ucbfAojdIxQWOswF4ERyqIQljMqpC KkfBEC4WOHjgZp5ioNObKsK1QQmYWmbPcT0YH0950bki19a5rMl0m7mXk4UaC04b A1nbdi6gu5F/+l+xvyhSDmIl8udfuJ5Gj9vKZV81kBIzeNMYXhTgve5rxu3y1mPk CNzuGTIWWqqdRgqodKPPww7voQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAH2ErL3 a6F1lBtTykblZgg4teMqMB8GA1UdIwQYMBaAFC0+85YNKKU/z2DpjQFwMuko6ns5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzI3OC8yQUUwQUQ2MDNC MzcxMUVCQTc1QjRENzdDNEY5QUUwMi9MVDd6bGcwb3BUX1BZT21OQVhBeTZTanFl emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUN3psZzBvcFRfUFlPbU5BWEF5NlNqcWV6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzI3OC8yQUUwQUQ2MDNCMzcxMUVCQTc1QjRENzdDNEY5QUUwMi9MVDd6bGcwb3BU X1BZT21OQVhBeTZTanFlemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5bm123YIGXvF9q9aFZ+L8nl1QhXHoF3hve7/Zb1oUuyXLgzdaosmj T4/4nRsX0hZ0vdXkA1pqguYWPSG2FFXowpdVOWRUonefbtIeRXzoxh2JQmQOKM88 Wj39P9NZ902YFs4PGIFbCjrGf8e/uI/jmg5KpRAAQkN53zLHKhGDWO4LBmX6Hbjn 8txThzXnx4UpRn0PJYPibRM4TjSD5KpHVHwEgC0V9LPDcbZPN05WbAPvi5PsWnBt zl6UeiDdF83X5t8IvNDEBDOCArIjVWozrxleZRBnO/os11QpzALjtKbJ/TkRcvlA pwvZxStwVd65hkw66hb36qa4iVc/xdjX -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:09 2024 by rpki-client on console-fra.rpki-client.org