$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: L/9qYHw4m2CG/ZQU3j4rvu0BCxamgJXuVxaEttQTgEI= Subject key identifier: 1D:E2:94:BB:7B:86:EB:62:EF:6E:8E:55:64:C5:3F:F5:08:66:9C:FC Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 0441 Signing time: Mon 25 Nov 2024 00:42:16 +0000 Manifest this update: Mon 25 Nov 2024 00:42:15 +0000 Manifest next update: Mon 02 Dec 2024 00:42:15 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: /MhQ8ixMwHhcTVLi/NhJDsFYykZgV5GvZXShkjvJ2Y8=) 2: C310EE5AACD311ED84BAA06EC4F9AE02.roa (hash: NPYNnjaBYs2qmRUfu8/y0KOBedXU4EghxnWja8r1cbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Nov 25 00:42:15 2024 GMT Not After : Dec 2 00:42:15 2024 GMT Subject: CN=6743c7e8-45e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:25:52:27:68:ac:a6:8c:0b:fe:1e:b4:1e:cf: ed:c4:ee:9f:20:ac:f0:50:64:dd:a8:a8:19:85:4e: dd:d9:83:8f:7b:e5:2d:ae:98:82:d1:ae:00:aa:ed: 14:69:5b:d8:94:0b:0d:95:64:62:21:43:8a:13:7b: fa:1a:04:73:21:03:1a:12:50:2f:1f:94:78:54:5f: a0:bc:a0:be:1c:a6:77:94:6e:ec:3b:e1:1c:01:4c: bf:1b:3d:23:56:f1:9f:44:4d:ed:96:32:a2:25:a7: 12:ff:c2:24:c2:39:b7:d3:e3:1f:05:71:4d:b5:a8: 55:78:65:2c:41:32:7a:cb:10:c1:58:fe:fd:03:d5: 03:22:db:93:0d:b8:45:14:db:4d:93:0a:27:c9:b1: 7b:b1:67:70:b6:2c:a5:95:cf:91:eb:a0:bd:f1:d4: 29:46:21:6f:9b:4e:fb:33:f6:01:db:bf:d7:6b:23: 01:87:78:a9:57:c3:1d:7a:82:35:3f:5d:10:e9:1d: 51:ea:6c:26:fa:22:ee:07:ea:3f:c6:33:76:6e:3d: a4:97:c2:d3:de:5e:60:88:35:ce:ec:0d:88:12:e7: 3c:58:7f:49:8c:5d:51:0d:eb:89:9b:6c:a0:2b:86: 12:86:75:71:d6:99:94:4f:ba:0e:83:73:a1:12:bf: 67:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E2:94:BB:7B:86:EB:62:EF:6E:8E:55:64:C5:3F:F5:08:66:9C:FC X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:9a:32:16:26:46:42:f4:22:eb:bd:50:b5:ba:5d:30:f4:d2: 74:4a:6a:e3:da:85:45:e4:34:d9:a6:14:49:a0:d6:df:f5:68: a3:10:0d:3d:8a:5b:26:d5:c7:2c:23:60:ba:bf:ad:a5:6a:81: 95:74:3f:ce:da:94:83:35:76:0b:7e:e6:f2:7a:53:1d:23:b1: 3d:36:67:66:87:47:48:81:91:2f:f4:96:b7:51:9e:5e:f5:7e: 9f:09:1b:b4:3d:e5:f6:3b:df:5d:38:42:8c:11:d7:6f:03:ab: 52:44:64:95:f9:ab:0d:9e:38:f5:6a:7d:30:8f:87:f8:a0:32: a5:b2:ff:65:c2:e2:7b:b3:96:7a:c9:26:2f:bc:3d:60:dd:45: 10:4d:d5:89:6a:fc:9b:44:03:ed:3d:f0:d2:8f:1d:ea:d1:d3: a3:63:88:90:b7:ed:2b:bb:8e:35:3f:70:65:4e:23:a8:1c:00: fd:d3:cd:3d:dd:23:02:59:7b:b9:28:91:90:04:41:e1:5e:65: 95:e9:4e:71:1e:a3:8b:fd:e9:fc:f0:81:0d:19:e0:00:11:13: 0e:8e:f4:d4:47:2d:6d:3f:f1:3b:f8:36:b3:c1:2a:3d:64:d7: bd:c2:7e:9c:14:1d:fa:a3:5a:54:fb:14:b7:56:3f:6a:b4:04: d3:38:09:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjQxMTI1MDA0MjE1WhcNMjQxMjAyMDA0MjE1WjAYMRYwFAYD VQQDEw02NzQzYzdlOC00NWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSVSJ2ispowL/h60Hs/txO6fIKzwUGTdqKgZhU7d2YOPe+UtrpiC0a4Aqu0U aVvYlAsNlWRiIUOKE3v6GgRzIQMaElAvH5R4VF+gvKC+HKZ3lG7sO+EcAUy/Gz0j VvGfRE3tljKiJacS/8Ikwjm30+MfBXFNtahVeGUsQTJ6yxDBWP79A9UDItuTDbhF FNtNkwonybF7sWdwtiyllc+R66C98dQpRiFvm077M/YB27/XayMBh3ipV8MdeoI1 P10Q6R1R6mwm+iLuB+o/xjN2bj2kl8LT3l5giDXO7A2IEuc8WH9JjF1RDeuJm2yg K4YShnVx1pmUT7oOg3OhEr9nxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3ilLt7 huti726OVWTFP/UIZpz8MB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQComjIWJkZC9CLrvVC1ul0w9NJ0Smrj2oVF5DTZphRJoNbf9WijEA09 ilsm1ccsI2C6v62laoGVdD/O2pSDNXYLfubyelMdI7E9Nmdmh0dIgZEv9Ja3UZ5e 9X6fCRu0PeX2O99dOEKMEddvA6tSRGSV+asNnjj1an0wj4f4oDKlsv9lwuJ7s5Z6 ySYvvD1g3UUQTdWJavybRAPtPfDSjx3q0dOjY4iQt+0ru441P3BlTiOoHAD90809 3SMCWXu5KJGQBEHhXmWV6U5xHqOL/en88IENGeAAERMOjvTURy1tP/E7+DazwSo9 ZNe9wn6cFB36o1pU+xS3Vj9qtATTOAnA -----END CERTIFICATE-----Generated at Mon Nov 25 02:48:58 2024 by rpki-client on console-ams.rpki-client.org