$ rpki-client -vvf rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft File: lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft (raw, json) Hash identifier: EAnOhCmG7jw77XGvR2bOPK+J3JoL4Q4SlN3ePbrUKBM= Subject key identifier: 1C:EA:8D:0B:3C:AA:F1:CC:ED:B3:3D:DA:11:08:7E:8F:32:73:A0:16 Authority key identifier: 94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 Certificate issuer: /CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft Manifest number: E9 Signing time: Sat 23 Nov 2024 03:31:53 +0000 Manifest this update: Sat 23 Nov 2024 03:31:52 +0000 Manifest next update: Sat 30 Nov 2024 03:31:52 +0000 Files and hashes: 1: lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl (hash: +tDQBsErrXG0ZRjVEo55lQGKWXLMQVsuAjz0QLImmKc=) 2: A155911C4BCA11EEBC8C8B82C4F9AE02.roa (hash: hWNFLgRLV5rq9DJdXOOCkETTtq81cKwNe+EsCM4by08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Validity Not Before: Nov 23 03:31:52 2024 GMT Not After : Nov 30 03:31:52 2024 GMT Subject: CN=67414ca8-2d8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:19:df:6d:89:70:8f:78:d4:0e:c4:38:db:4a: 29:6f:78:1a:00:c7:fb:96:23:c8:fb:3c:62:15:64: a6:7b:a4:32:14:4b:0f:2a:8f:13:05:f8:77:93:15: e0:e1:d7:43:db:a4:5d:75:9d:ff:c7:f1:8a:17:e6: 35:74:21:47:7d:8c:5a:9b:4c:60:9f:98:a2:e4:c6: e4:13:d7:21:0e:8c:f5:30:92:d9:ca:c5:70:6b:48: 7c:a4:c3:c6:23:34:6c:b8:21:d5:e4:b9:d3:46:f8: 24:91:b3:59:6d:0b:36:d8:a0:58:c6:25:8a:8f:57: 76:7a:f5:91:e3:26:28:37:05:b9:9c:0e:16:d5:64: 79:76:6b:57:71:b8:07:54:49:76:42:ce:1e:31:18: 28:5b:b4:77:a9:8d:61:f2:5c:a2:91:4d:07:38:6b: 66:ce:db:d9:52:82:ad:a4:43:59:9c:01:f6:10:21: 4c:ba:8f:df:2f:73:7f:80:a2:17:d9:b8:da:32:01: da:5a:ea:55:6c:be:d4:a3:04:cc:36:f1:a3:3f:88: b9:91:27:36:31:93:f8:92:07:77:cc:7b:be:ca:69: e3:ff:a1:e9:19:05:26:01:c3:8e:8d:95:0a:ae:43: 6b:c0:8c:ab:5a:a5:7d:cb:10:9d:71:5d:5c:36:74: 8f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:EA:8D:0B:3C:AA:F1:CC:ED:B3:3D:DA:11:08:7E:8F:32:73:A0:16 X509v3 Authority Key Identifier: keyid:94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:09:fc:98:66:e7:ea:31:d2:a1:ca:b1:1c:e2:dd:9e:fc:cb: aa:25:cf:1a:d1:76:32:0c:03:3d:b7:7d:bb:bc:be:8b:6f:47: fc:2e:4a:fa:16:b3:4a:87:1a:cf:6b:07:6b:af:e7:49:9f:7a: cf:4c:f1:c7:5e:cf:de:3f:a3:61:fc:8a:c7:28:2c:7a:06:f6: dd:ed:02:a2:23:c8:d3:84:d6:38:2e:c4:72:a4:e7:39:3d:6d: 75:a7:54:94:92:d0:d3:d7:c7:6a:e8:64:64:fa:d7:cf:c2:a7: 91:a7:e2:14:d7:13:dd:11:a7:a3:ee:e0:90:83:9a:88:c7:ad: a8:12:b8:53:5e:87:f9:37:b0:5c:3e:17:b6:9c:37:4d:0b:1c: 36:1d:3f:de:ee:dc:0c:d6:61:f7:b3:65:4b:d2:71:e3:61:9f: 0a:83:73:90:ce:bf:be:9b:46:df:83:15:45:bf:2d:b0:3b:f9: e3:ba:33:db:43:34:aa:46:b8:b9:ad:f4:d4:0c:24:33:4b:93: 4d:dd:b5:7d:25:13:64:ac:44:77:4f:f9:43:65:14:35:03:8e: 49:24:f2:ec:3a:a4:83:c8:e4:24:b9:1c:41:ab:44:a3:2e:de: 99:fa:f8:65:bc:48:e1:ae:3a:72:9e:03:94:fd:f9:03:e2:21: bd:d4:76:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0REODUxMTAvBgNVBAUTKDk0NDM3RUREQ0M4RDA2OTg5RTA5NTAwNTQzQzkxQkRG MEQzRjQ4RTUwHhcNMjQxMTIzMDMzMTUyWhcNMjQxMTMwMDMzMTUyWjAYMRYwFAYD VQQDEw02NzQxNGNhOC0yZDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+RnfbYlwj3jUDsQ420opb3gaAMf7liPI+zxiFWSme6QyFEsPKo8TBfh3kxXg 4ddD26RddZ3/x/GKF+Y1dCFHfYxam0xgn5ii5MbkE9chDoz1MJLZysVwa0h8pMPG IzRsuCHV5LnTRvgkkbNZbQs22KBYxiWKj1d2evWR4yYoNwW5nA4W1WR5dmtXcbgH VEl2Qs4eMRgoW7R3qY1h8lyikU0HOGtmztvZUoKtpENZnAH2ECFMuo/fL3N/gKIX 2bjaMgHaWupVbL7UowTMNvGjP4i5kSc2MZP4kgd3zHu+ymnj/6HpGQUmAcOOjZUK rkNrwIyrWqV9yxCdcV1cNnSPAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzqjQs8 qvHM7bM92hEIfo8yc6AWMB8GA1UdIwQYMBaAFJRDft3MjQaYnglQBUPJG98NP0jl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REQ4NS84NDZGNEE2ODRC QzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJwaWVDVkFGUThrYjN3MF9T T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xFTi0zY3lOQnBpZUNWQUZROGtiM3cwX1NPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REQ4NS84NDZGNEE2ODRCQzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJw aWVDVkFGUThrYjN3MF9TT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSCfyYZufqMdKhyrEc4t2e/MuqJc8a0XYyDAM9t327vL6Lb0f8Lkr6 FrNKhxrPawdrr+dJn3rPTPHHXs/eP6Nh/IrHKCx6Bvbd7QKiI8jThNY4LsRypOc5 PW11p1SUktDT18dq6GRk+tfPwqeRp+IU1xPdEaej7uCQg5qIx62oErhTXof5N7Bc Phe2nDdNCxw2HT/e7twM1mH3s2VL0nHjYZ8Kg3OQzr++m0bfgxVFvy2wO/njujPb QzSqRri5rfTUDCQzS5NN3bV9JRNkrER3T/lDZRQ1A45JJPLsOqSDyOQkuRxBq0Sj Lt6Z+vhlvEjhrjpyngOU/fkD4iG91Hai -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org