$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: ZA3ocgugOie4Bc14+s406rOJIn6tHBWrj+obccKy9uE= Subject key identifier: 1F:01:0B:BE:4E:83:5E:2D:67:FF:15:F5:C9:B2:C2:08:45:E4:44:DD Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 024A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 0243 Signing time: Thu 21 Nov 2024 01:21:14 +0000 Manifest this update: Thu 21 Nov 2024 01:21:13 +0000 Manifest next update: Thu 28 Nov 2024 01:21:13 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: NUV31q+vlliB1WMoCZ7aXHAdhjf8ZuJ2bZPuQt0bgMY=) 2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: tal6R2lkJBoeIIUyi6mdxCD2dqzkhyqrKbW//gzTT04=) 3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: Qlo4+mbKJCym2bywU9/+B9nSR/lgPkj3tiR7WBd3VEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Nov 21 01:21:13 2024 GMT Not After : Nov 28 01:21:13 2024 GMT Subject: CN=673e8b0a-0b16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:58:49:9a:0d:62:f4:f9:fa:9a:69:2d:16:86: 4f:62:93:dd:28:63:6e:29:5b:aa:18:60:e3:85:4c: df:49:cb:bc:6b:8b:9a:74:ea:bf:21:1e:1c:4c:b2: 6d:03:d6:09:9c:a6:d0:32:1e:a2:f2:ac:ad:19:88: 8b:ad:82:d9:66:70:a6:3d:82:ed:49:1f:5d:43:1c: b8:e1:b7:ee:97:83:8c:ff:f6:5c:85:47:dd:86:80: d6:25:1f:01:26:87:a2:c6:f9:60:35:80:3b:66:6e: db:32:b0:03:be:68:bf:d1:cc:c7:9f:b0:54:d2:22: c6:cc:a0:46:20:ae:e0:4e:6d:24:a9:3e:e3:0c:d3: 41:b5:8f:02:18:d8:28:b9:72:44:30:9c:b8:13:0b: d4:3d:4e:3e:64:26:3a:a7:f0:bc:da:f6:cc:8f:93: ca:60:41:60:9d:a3:f7:be:c9:51:4c:47:e2:8c:e9: da:c4:82:85:e8:37:22:b3:ab:91:12:ac:3c:6d:b6: 53:ce:83:af:f1:20:84:87:18:3c:75:10:be:80:9b: 60:b2:8e:67:e3:43:03:7a:6a:04:18:51:42:de:6d: 1d:3d:56:6b:1c:96:e5:9e:5d:3f:be:88:9e:c0:62: 69:d4:ff:4d:bb:8b:94:ec:ef:94:83:ff:97:6b:fe: 9c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:01:0B:BE:4E:83:5E:2D:67:FF:15:F5:C9:B2:C2:08:45:E4:44:DD X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:a1:fa:1e:ee:d7:18:d6:8c:11:d1:ce:d9:0f:79:fb:27:02: 44:4f:0b:19:76:13:97:ab:ff:e0:5a:7a:7c:d3:e2:92:5d:7d: 54:61:f4:36:df:d0:e6:05:db:47:48:de:81:71:d7:04:30:2b: 75:d1:f0:80:32:45:40:79:2a:1b:f9:42:3d:a3:2b:a8:1a:42: bd:d4:d9:8b:8d:1d:03:6a:9a:86:a3:e1:40:7e:31:a7:43:56: 59:21:3b:a7:b8:bc:68:48:37:73:61:f4:ba:b8:ef:e2:e7:b9: 1f:7f:11:bf:e6:70:4d:ea:7d:86:f2:6f:f9:23:13:b6:38:e2: ac:0a:83:05:18:d3:ac:49:64:ae:f1:f2:79:2d:8a:15:f2:5e: 37:70:02:9f:52:76:60:91:3a:1f:43:fa:be:51:05:54:34:02: 8f:87:0f:bf:e5:16:45:78:e3:70:ff:52:3c:c5:9a:86:c7:02: c4:58:d4:12:09:36:37:31:ad:e7:2b:fe:f3:fc:b7:83:76:7b: d6:98:8c:4b:1e:5f:fa:86:55:75:15:f8:1a:59:f6:8c:c8:bd: ee:c5:84:6e:e2:b7:ac:af:a3:54:ed:30:04:48:38:95:c1:28: 66:2c:45:d1:f2:6c:28:c1:97:19:54:74:3e:08:37:e5:31:b8: 96:e7:81:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjQxMTIxMDEyMTEzWhcNMjQxMTI4MDEyMTEzWjAYMRYwFAYD VQQDEw02NzNlOGIwYS0wYjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6lhJmg1i9Pn6mmktFoZPYpPdKGNuKVuqGGDjhUzfScu8a4uadOq/IR4cTLJt A9YJnKbQMh6i8qytGYiLrYLZZnCmPYLtSR9dQxy44bful4OM//ZchUfdhoDWJR8B JoeixvlgNYA7Zm7bMrADvmi/0czHn7BU0iLGzKBGIK7gTm0kqT7jDNNBtY8CGNgo uXJEMJy4EwvUPU4+ZCY6p/C82vbMj5PKYEFgnaP3vslRTEfijOnaxIKF6Dcis6uR Eqw8bbZTzoOv8SCEhxg8dRC+gJtgso5n40MDemoEGFFC3m0dPVZrHJblnl0/voie wGJp1P9Nu4uU7O+Ug/+Xa/6cSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8BC75O g14tZ/8V9cmywghF5ETdMB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYofoe7tcY1owR0c7ZD3n7JwJETwsZdhOXq//gWnp80+KSXX1UYfQ2 39DmBdtHSN6BcdcEMCt10fCAMkVAeSob+UI9oyuoGkK91NmLjR0DapqGo+FAfjGn Q1ZZITunuLxoSDdzYfS6uO/i57kffxG/5nBN6n2G8m/5IxO2OOKsCoMFGNOsSWSu 8fJ5LYoV8l43cAKfUnZgkTofQ/q+UQVUNAKPhw+/5RZFeONw/1I8xZqGxwLEWNQS CTY3Ma3nK/7z/LeDdnvWmIxLHl/6hlV1FfgaWfaMyL3uxYRu4resr6NU7TAESDiV wShmLEXR8mwowZcZVHQ+CDflMbiW54Hf -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:59 2024 by rpki-client on console-fra.rpki-client.org