$ rpki-client -vvf rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft File: lAmAjIoyxYSU2uV00F1rsiJyw1o.mft (raw, json) Hash identifier: DAfTl8aGvxdZ7LMiRfSqWWiDo4mnHyaost79w6CcWvE= Subject key identifier: D2:37:F8:F7:8B:6A:A4:D9:BE:5E:1D:29:3F:2E:CE:C8:6D:3F:25:60 Authority key identifier: 94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A Certificate issuer: /CN=A919C77D/serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Certificate serial: 1E1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft Manifest number: 1E10 Signing time: Fri 22 Nov 2024 16:05:14 +0000 Manifest this update: Fri 22 Nov 2024 16:05:13 +0000 Manifest next update: Fri 29 Nov 2024 16:05:13 +0000 Files and hashes: 1: lAmAjIoyxYSU2uV00F1rsiJyw1o.crl (hash: ijnZUVkaOcHvwH2BrupGbvlBZifXr7h8ORv9t5LRajE=) 2: 45865ED62B7411EF9E28ED19C4F9AE02.roa (hash: MZ9HXgsryJcIfgtcrkLJ15mrbJcfORIsxX9xU/rSMFM=) 3: C7D60D34CC0611EC93451840C4F9AE02.roa (hash: Q2GAHBziepubGCjFA5uNZNQTPbWA4VzAokc5hIjeXbI=) 4: 4664F7042B7411EF9E28ED19C4F9AE02.roa (hash: Aa7zYmJq6heh8Y7nRX8mflbiKrA5BuJIy7DgV5gkvRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7709 (0x1e1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C77D/serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Validity Not Before: Nov 22 16:05:13 2024 GMT Not After : Nov 29 16:05:13 2024 GMT Subject: CN=6740abb9-6a5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f2:73:46:98:48:33:bc:f1:7f:5a:3a:09:a4: 7a:f8:4b:75:d1:e8:5a:e4:63:95:dc:d5:af:d4:ea: cd:65:84:29:f7:63:39:3d:f5:74:37:66:56:34:53: f8:aa:f6:a0:dd:68:3d:63:78:49:1c:7a:13:0d:96: dc:d2:13:16:6b:92:e7:64:55:b8:2a:8b:73:5a:9c: 1a:1a:37:9a:e7:33:42:18:36:a3:7c:f3:1f:88:3f: 76:f7:44:cc:47:36:a2:6b:5c:63:19:bf:9f:d3:03: cf:a7:62:2c:11:b9:00:49:8f:0f:90:c5:d5:bd:b4: 2d:48:ca:b4:18:0f:21:13:19:8f:52:08:c5:df:47: 72:9f:92:3b:f0:49:2d:09:8f:c0:ef:67:f6:b7:22: 8b:ce:4e:e1:9d:78:17:dc:81:6c:82:fa:43:32:ee: b2:4d:cd:8c:db:26:4b:88:a6:f6:9c:b1:c9:80:a8: 26:f6:f9:13:6e:da:8d:ec:5d:5b:3b:e2:b1:48:0e: 36:e3:25:e9:03:74:52:1e:82:e9:51:a2:8b:55:08: 1b:9e:11:13:7b:65:0d:51:4b:a3:f4:50:19:a8:e9: 04:85:ee:85:d1:25:02:ab:0a:1c:01:7b:13:5a:ad: b4:af:b8:ca:4d:ee:57:60:5c:70:c0:17:81:b2:76: 14:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:37:F8:F7:8B:6A:A4:D9:BE:5E:1D:29:3F:2E:CE:C8:6D:3F:25:60 X509v3 Authority Key Identifier: keyid:94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:8c:84:04:0f:0a:c3:eb:97:66:f6:ea:40:27:ec:b7:b7:2f: ab:32:78:76:68:81:47:63:89:a6:bf:7d:a4:fa:c4:55:85:f7: 2c:83:c4:de:ce:12:1e:8d:92:65:60:10:2e:49:15:0d:8c:23: 35:ab:15:ed:d8:a2:f0:80:af:f0:02:b7:6a:88:29:ac:5c:9d: a1:d3:92:5c:fd:a6:6f:3b:e3:78:a3:7f:6d:6d:ff:97:10:02: e0:96:f6:aa:9d:d6:74:17:16:da:16:9b:50:b1:ba:05:8d:3f: 7e:42:d5:5f:78:50:32:eb:f2:27:15:af:83:93:48:5d:ad:d8: a5:0d:27:d0:25:77:93:e6:4b:b5:81:af:6c:64:99:8f:6e:a9: 3b:97:a3:ff:44:32:9f:bc:2a:43:f2:33:92:82:41:6b:1b:f3: 71:eb:5a:ba:9b:ba:0f:1c:1a:45:d0:84:b4:14:ee:49:af:32: 6e:6a:c7:06:1e:c8:b4:d8:4c:4c:be:5f:95:f0:5d:5f:ab:39: 19:ff:a0:2a:d1:63:67:25:0f:9f:da:28:e0:df:c4:ee:73:91: 2f:dc:85:94:70:70:2e:14:15:12:83:1a:0f:63:99:19:b1:6c: 78:97:9f:ce:86:01:7e:36:13:c6:53:5b:50:3c:15:4a:44:e5: 6c:62:4a:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3N0QxMTAvBgNVBAUTKDk0MDk4MDhDOEEzMkM1ODQ5NERBRTU3NEQwNUQ2QkIy MjI3MkMzNUEwHhcNMjQxMTIyMTYwNTEzWhcNMjQxMTI5MTYwNTEzWjAYMRYwFAYD VQQDEw02NzQwYWJiOS02YTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/JzRphIM7zxf1o6CaR6+Et10eha5GOV3NWv1OrNZYQp92M5PfV0N2ZWNFP4 qvag3Wg9Y3hJHHoTDZbc0hMWa5LnZFW4KotzWpwaGjea5zNCGDajfPMfiD9290TM Rzaia1xjGb+f0wPPp2IsEbkASY8PkMXVvbQtSMq0GA8hExmPUgjF30dyn5I78Ekt CY/A72f2tyKLzk7hnXgX3IFsgvpDMu6yTc2M2yZLiKb2nLHJgKgm9vkTbtqN7F1b O+KxSA424yXpA3RSHoLpUaKLVQgbnhETe2UNUUuj9FAZqOkEhe6F0SUCqwocAXsT Wq20r7jKTe5XYFxwwBeBsnYURwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNI3+PeL aqTZvl4dKT8uzshtPyVgMB8GA1UdIwQYMBaAFJQJgIyKMsWElNrldNBda7IicsNa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Qzc3RC83RDRCRkUwNjc0 OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZU1UydVYwMEYxcnNpSnl3 MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBbUFqSW95eFlTVTJ1VjAwRjFyc2lKeXcxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Qzc3RC83RDRCRkUwNjc0OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZ U1UydVYwMEYxcnNpSnl3MW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFjIQEDwrD65dm9upAJ+y3ty+rMnh2aIFHY4mmv32k+sRVhfcsg8Te zhIejZJlYBAuSRUNjCM1qxXt2KLwgK/wArdqiCmsXJ2h05Jc/aZvO+N4o39tbf+X EALglvaqndZ0FxbaFptQsboFjT9+QtVfeFAy6/InFa+Dk0hdrdilDSfQJXeT5ku1 ga9sZJmPbqk7l6P/RDKfvCpD8jOSgkFrG/Nx61q6m7oPHBpF0IS0FO5JrzJuascG Hsi02ExMvl+V8F1fqzkZ/6Aq0WNnJQ+f2ijg38Tuc5Ev3IWUcHAuFBUSgxoPY5kZ sWx4l5/OhgF+NhPGU1tQPBVKROVsYkq5 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org