$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: NJWiRXEVVJZJaHCcwTJPzKpyf1stEsTcHRUNPQqtYts= Subject key identifier: 9B:CA:12:A8:85:B8:8F:D6:64:F5:6F:FD:29:F9:32:CE:BF:EF:60:F9 Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 10B4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 10AB Signing time: Wed 20 Nov 2024 17:16:50 +0000 Manifest this update: Wed 20 Nov 2024 17:16:50 +0000 Manifest next update: Wed 27 Nov 2024 17:16:50 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: QY9JGfbQeg4eTgQA5B6B8z+qu0UDLfwn50Mp6As38QI=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: /tJVaaLCTzYClGpQvcdtUybXo1hn6XUyjqkTeY+7mos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4276 (0x10b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Nov 20 17:16:50 2024 GMT Not After : Nov 27 17:16:50 2024 GMT Subject: CN=673e1982-9edd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:41:ee:48:54:3c:f5:e0:6c:f7:1e:51:63:a8: 1e:25:94:0a:bb:1c:23:e5:ad:2f:7e:b3:42:3e:b2: 99:25:f2:60:8f:0a:12:77:f4:8f:3b:59:8b:7b:5b: 14:d5:de:ae:ac:4a:25:04:5f:02:90:97:af:0e:f9: 25:7d:44:bf:5a:a1:b4:95:ff:c0:fa:61:80:03:5e: da:ab:db:a1:bb:c3:a8:45:7a:87:7d:8c:c3:7b:28: d5:f1:71:e2:f2:37:61:ca:fc:3a:b4:51:db:aa:7f: f4:44:8e:b3:18:ed:d6:5e:df:b0:de:ba:5b:4a:b9: 63:04:72:95:b1:93:8c:b4:7a:ad:d1:7a:d4:81:d6: 9b:09:fc:dc:84:98:ec:e5:1d:8a:c4:0b:a4:66:2a: ad:7c:aa:aa:bb:98:b1:1c:10:23:8e:dc:b5:bd:47: f8:fc:50:48:e8:47:18:72:48:aa:6c:e1:7f:45:76: 77:ea:7a:44:c2:21:48:45:0f:c0:8b:ce:55:33:6e: 23:d0:ca:5b:73:f3:ab:7b:ea:50:3c:2c:be:1b:42: 8b:df:8e:01:23:79:67:0b:c6:e8:93:1b:f7:0f:9e: c8:ed:9a:2b:62:25:d7:e7:d0:5d:99:87:db:69:58: c4:18:80:b2:7b:7c:91:81:d9:1b:8a:9c:65:1b:32: db:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CA:12:A8:85:B8:8F:D6:64:F5:6F:FD:29:F9:32:CE:BF:EF:60:F9 X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:a5:5c:4e:99:2a:97:11:24:6a:e4:91:8b:7c:0c:08:35:83: 55:7b:bc:d9:2a:c0:71:0e:98:fc:cb:c6:f3:7c:58:45:62:2f: 41:e6:68:c9:d8:9f:35:cd:3a:44:3a:14:05:c9:65:16:37:b3: a1:b8:3a:45:11:7e:c0:5b:fd:d3:de:94:b1:91:6e:71:3d:35: 53:0b:3c:5e:43:71:34:e6:57:cf:38:49:6c:f8:57:37:d3:80: 9a:6a:9c:85:8f:1b:54:0b:3f:a4:d0:59:36:f6:e0:6a:69:9d: 3b:e0:fc:8c:29:9d:d2:41:66:c8:34:12:51:10:d5:dc:a9:db: 40:62:1e:4c:b3:c7:78:54:c1:a1:8d:3e:f6:79:82:0f:8c:44: 64:63:27:c6:1c:ec:5b:98:80:70:77:27:25:55:36:cd:38:ae: 59:04:d6:b1:da:7f:0f:39:de:3d:e5:c9:dd:fe:82:9a:7c:84: 69:ab:b7:a7:da:9c:f0:0e:89:2b:f4:46:38:df:6b:7f:72:2c: 62:ca:7f:63:5d:18:26:ac:5e:8e:59:b4:f3:46:8f:41:4c:cb: 65:f3:17:cc:ea:fc:cd:b5:ca:78:01:c9:c0:be:bb:1c:a9:07: 77:76:4e:da:ad:4c:63:5b:d0:28:03:c8:e7:c9:7f:56:e8:67: 51:fe:ca:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjQxMTIwMTcxNjUwWhcNMjQxMTI3MTcxNjUwWjAYMRYwFAYD VQQDEw02NzNlMTk4Mi05ZWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6EHuSFQ89eBs9x5RY6geJZQKuxwj5a0vfrNCPrKZJfJgjwoSd/SPO1mLe1sU 1d6urEolBF8CkJevDvklfUS/WqG0lf/A+mGAA17aq9uhu8OoRXqHfYzDeyjV8XHi 8jdhyvw6tFHbqn/0RI6zGO3WXt+w3rpbSrljBHKVsZOMtHqt0XrUgdabCfzchJjs 5R2KxAukZiqtfKqqu5ixHBAjjty1vUf4/FBI6EcYckiqbOF/RXZ36npEwiFIRQ/A i85VM24j0Mpbc/Ore+pQPCy+G0KL344BI3lnC8bokxv3D57I7ZorYiXX59BdmYfb aVjEGICye3yRgdkbipxlGzLbWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvKEqiF uI/WZPVv/Sn5Ms6/72D5MB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3pVxOmSqXESRq5JGLfAwINYNVe7zZKsBxDpj8y8bzfFhFYi9B5mjJ 2J81zTpEOhQFyWUWN7OhuDpFEX7AW/3T3pSxkW5xPTVTCzxeQ3E05lfPOEls+Fc3 04CaapyFjxtUCz+k0Fk29uBqaZ074PyMKZ3SQWbINBJRENXcqdtAYh5Ms8d4VMGh jT72eYIPjERkYyfGHOxbmIBwdyclVTbNOK5ZBNax2n8POd495cnd/oKafIRpq7en 2pzwDokr9EY432t/cixiyn9jXRgmrF6OWbTzRo9BTMtl8xfM6vzNtcp4AcnAvrsc qQd3dk7arUxjW9AoA8jnyX9W6GdR/soF -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:02 2024 by rpki-client on console-fra.rpki-client.org