$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft File: lRKEJmSsUb9nhVvG5PRr41UaTaM.mft (raw, json) Hash identifier: A3CR2hOa1oiu7fnjdhuYCAzsQQ04NOLMmU9UKrLSrBI= Subject key identifier: 23:A6:95:83:7D:0A:96:D6:34:CA:F1:79:88:99:B2:6F:04:60:05:33 Authority key identifier: 95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 Certificate issuer: /CN=A916B7B2/serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Certificate serial: 0255 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft Manifest number: 024E Signing time: Sat 23 Nov 2024 01:19:33 +0000 Manifest this update: Sat 23 Nov 2024 01:19:33 +0000 Manifest next update: Sat 30 Nov 2024 01:19:33 +0000 Files and hashes: 1: lRKEJmSsUb9nhVvG5PRr41UaTaM.crl (hash: y4woUA9FRFIYkePJi5rU+poqeyHl2ckZ8WULBpX6iSM=) 2: 2A4EA10EFB7F11EC8FB58E4AC4F9AE02.roa (hash: ysruRwci+2YdWcWGjjenGU03TfndDBIRkaEgaw2RJEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 597 (0x255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7B2/serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Validity Not Before: Nov 23 01:19:33 2024 GMT Not After : Nov 30 01:19:33 2024 GMT Subject: CN=67412da5-5a5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b2:ed:6b:fb:6e:23:5c:26:89:43:bc:60:a0: 91:ec:73:8b:fa:ed:96:1f:48:4b:ef:ea:63:2c:aa: f3:ef:86:7b:bf:b3:38:df:68:5b:cb:dd:84:dc:53: da:7d:ab:8b:33:07:22:82:9f:6e:46:70:25:6a:25: 89:1f:94:2c:d6:15:b9:00:1d:c2:98:10:48:e4:86: 1f:0e:80:0b:8d:af:45:39:5a:95:1c:91:f4:1b:9c: 85:ca:57:e3:10:cb:2b:f0:05:41:db:ca:4c:46:5e: 6d:1a:c5:a9:a2:48:f7:3c:41:42:c4:cc:70:0d:b8: df:a4:67:ee:bb:63:55:04:7c:c5:28:ea:f0:8e:22: c8:2f:a9:1e:a5:f4:2d:b2:7d:89:f4:2f:10:bd:3b: 54:49:c2:de:09:34:db:c7:81:2a:78:6d:8d:97:c7: f0:7c:a2:6c:e4:36:11:ae:5e:02:8c:ee:ea:75:05: db:0b:52:77:d4:43:4c:21:07:60:79:ae:a3:96:55: 67:62:f0:b9:9b:cf:b5:34:7d:35:93:01:44:88:c3: f1:0c:11:e8:89:ec:8d:6f:ab:bf:9b:74:d6:00:90: 52:8e:c0:55:a9:cc:c4:ab:a4:e1:94:67:b6:83:4c: 9b:3d:dc:f1:ad:50:2a:5e:fc:a0:87:f6:b2:b4:fe: 7f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:A6:95:83:7D:0A:96:D6:34:CA:F1:79:88:99:B2:6F:04:60:05:33 X509v3 Authority Key Identifier: keyid:95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:51:0e:65:d6:4c:09:70:9f:88:a6:1f:60:de:ed:18:92:70: 28:9e:74:9f:78:bc:fe:20:63:25:c3:ad:c6:49:b1:18:eb:36: df:08:fe:6c:b2:cc:e3:85:f3:a5:46:43:e8:aa:88:52:92:7f: c2:2c:ca:09:54:4b:64:4d:6f:1f:32:5d:cb:1b:94:73:4d:64: 91:fa:ef:1c:93:aa:c1:34:23:af:7a:8e:a2:9c:90:31:83:c4: 5c:d7:8d:8c:64:34:e8:81:86:fa:92:ec:9d:79:bf:f4:f8:d2: 3f:a0:d9:72:da:17:e2:e0:e8:69:f1:b3:88:b6:4e:e6:85:30: 7f:ca:c6:fc:42:db:23:7d:d8:82:d2:59:d8:d5:18:56:44:b7: a7:a1:fc:aa:d5:c9:83:63:ef:aa:c1:ac:e5:c1:9c:81:d4:07: 27:d0:41:25:ba:60:fd:69:72:20:06:26:d4:8b:88:eb:32:09: 41:bb:c6:15:2c:02:f6:87:34:b3:92:a6:3f:e4:47:fb:0f:b1: 3d:57:58:a8:a0:77:5a:77:e2:e3:21:a1:56:c9:fe:da:a8:aa: a5:bf:64:e2:1b:7c:22:00:af:c3:22:ea:c0:d0:f5:8e:57:3c: 37:b4:c5:b1:0c:22:63:05:9a:d6:b2:65:d0:e2:2a:a7:88:8c: 13:73:22:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3QjIxMTAvBgNVBAUTKDk1MTI4NDI2NjRBQzUxQkY2Nzg1NUJDNkU0RjQ2QkUz NTUxQTREQTMwHhcNMjQxMTIzMDExOTMzWhcNMjQxMTMwMDExOTMzWjAYMRYwFAYD VQQDEw02NzQxMmRhNS01YTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LLta/tuI1wmiUO8YKCR7HOL+u2WH0hL7+pjLKrz74Z7v7M432hby92E3FPa fauLMwcigp9uRnAlaiWJH5Qs1hW5AB3CmBBI5IYfDoALja9FOVqVHJH0G5yFylfj EMsr8AVB28pMRl5tGsWpokj3PEFCxMxwDbjfpGfuu2NVBHzFKOrwjiLIL6kepfQt sn2J9C8QvTtUScLeCTTbx4EqeG2Nl8fwfKJs5DYRrl4CjO7qdQXbC1J31ENMIQdg ea6jllVnYvC5m8+1NH01kwFEiMPxDBHoieyNb6u/m3TWAJBSjsBVqczEq6ThlGe2 g0ybPdzxrVAqXvygh/aytP5/JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOmlYN9 CpbWNMrxeYiZsm8EYAUzMB8GA1UdIwQYMBaAFJUShCZkrFG/Z4VbxuT0a+NVGk2j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjdCMi8wRTYzMjE5NEZC N0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1ViOW5oVnZHNVBScjQxVWFU YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0VKbVNzVWI5bmhWdkc1UFJyNDFVYVRhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjdCMi8wRTYzMjE5NEZCN0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1Vi OW5oVnZHNVBScjQxVWFUYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJUQ5l1kwJcJ+Iph9g3u0YknAonnSfeLz+IGMlw63GSbEY6zbfCP5s sszjhfOlRkPoqohSkn/CLMoJVEtkTW8fMl3LG5RzTWSR+u8ck6rBNCOveo6inJAx g8Rc142MZDTogYb6kuydeb/0+NI/oNly2hfi4Ohp8bOItk7mhTB/ysb8QtsjfdiC 0lnY1RhWRLenofyq1cmDY++qwazlwZyB1Acn0EElumD9aXIgBibUi4jrMglBu8YV LAL2hzSzkqY/5Ef7D7E9V1iooHdad+LjIaFWyf7aqKqlv2TiG3wiAK/DIurA0PWO Vzw3tMWxDCJjBZrWsmXQ4iqniIwTcyKR -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org