$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: z3zOR6Fjajj162CblKY7zCiyRP+OeWoGH+z7y1fX3N8= Subject key identifier: 2A:BA:3D:9F:5B:52:C3:9E:DC:EC:14:EF:54:F5:F7:3A:C9:B5:B7:32 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 84 Signing time: Thu 21 Nov 2024 04:42:27 +0000 Manifest this update: Thu 21 Nov 2024 04:42:26 +0000 Manifest next update: Thu 28 Nov 2024 04:42:26 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: W9wZ91APz6dDvGxPpI2a+tOPtTpASGSQFYdEzjgYXxo=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: xVEJPm+31bLznblOWhCpwIQYSTvCz1YQ0x0L0sMQxuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Nov 21 04:42:26 2024 GMT Not After : Nov 28 04:42:26 2024 GMT Subject: CN=673eba33-d8c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:95:39:c5:65:67:bb:88:0f:4b:17:dd:f2:f4: 88:a1:3a:40:57:85:c5:08:4b:52:f7:3d:9c:aa:f2: 01:e8:43:4a:ae:43:9e:cd:6a:42:76:04:11:23:70: d6:c1:71:4a:90:fc:5c:83:1c:3e:60:47:94:18:50: cd:7d:0f:5c:4f:79:e6:e3:67:83:82:0f:0a:4c:37: e2:1a:a0:0d:60:ff:b6:22:fe:bd:9b:b6:f7:4f:e9: 28:7f:7f:99:44:b9:88:b1:03:2a:86:b8:c1:0b:d9: 15:4d:fd:22:ba:13:ad:6c:2f:ba:b4:91:f9:24:f9: b7:c0:98:19:a3:ff:f1:55:6f:cf:28:10:51:a0:08: a1:6b:53:cc:80:f1:99:17:29:55:9d:b9:47:65:68: 2c:1d:88:22:19:6d:c4:2a:d2:37:3c:1a:e4:1f:df: dd:25:5e:f3:ed:b6:44:c6:04:e4:3c:93:05:a2:3b: f1:b7:0c:57:8a:6c:81:2f:84:d3:03:38:a3:d5:81: 19:a3:91:6f:2e:53:b3:9a:fa:c0:01:05:9b:55:ad: b2:70:3c:26:1d:f1:85:76:e2:0b:c3:2c:bb:4d:9d: cc:6e:5c:2d:b8:b8:db:dc:cb:6b:cb:bf:ba:97:d4: c9:c6:bb:58:98:f5:78:f2:90:6a:c5:54:08:00:a1: 51:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:BA:3D:9F:5B:52:C3:9E:DC:EC:14:EF:54:F5:F7:3A:C9:B5:B7:32 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:1d:a9:36:f0:ce:e0:ab:ef:b8:96:b0:53:47:9a:f7:f1:32: 08:00:bd:26:c2:b9:30:b7:d7:48:94:54:a4:77:bf:29:57:27: 9a:cc:c5:77:de:37:ca:45:ae:8d:b5:fc:76:25:3c:d1:85:51: fb:24:cc:33:8d:d4:45:2c:f5:7d:3f:14:22:f4:bd:be:ad:a6: e3:87:c1:2d:80:8b:0b:20:1a:48:11:15:2f:33:7a:b1:e6:b5: 26:d5:7c:36:1a:1f:e9:c3:91:95:c9:13:3c:c6:1e:ca:0c:37: d7:d5:29:50:ea:e4:19:43:67:ac:61:c1:ad:ba:74:9d:70:50: 12:20:cf:b5:7a:ba:9f:b5:85:2f:23:f3:b9:54:e1:7b:12:e8: 51:ca:04:03:57:05:01:8e:8b:42:9c:71:54:ab:4d:9a:2e:38: 66:4d:ba:70:f5:a8:1a:06:f9:0a:4c:fa:1d:92:8c:9c:64:18: 0b:bd:b7:c4:f4:08:32:2a:8c:dc:9f:48:bb:7e:cd:d7:aa:90: 3e:ce:0a:46:06:c0:84:e3:8b:70:71:8a:c4:ff:44:84:4b:84: 45:42:59:84:9b:fc:dd:01:0b:70:54:5c:21:88:93:ad:36:1f: d9:62:57:be:a1:dd:74:9a:e0:bc:dd:17:d3:99:a9:35:14:17: ba:c3:43:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjQxMTIxMDQ0MjI2WhcNMjQxMTI4MDQ0MjI2WjAYMRYwFAYD VQQDEw02NzNlYmEzMy1kOGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZU5xWVnu4gPSxfd8vSIoTpAV4XFCEtS9z2cqvIB6ENKrkOezWpCdgQRI3DW wXFKkPxcgxw+YEeUGFDNfQ9cT3nm42eDgg8KTDfiGqANYP+2Iv69m7b3T+kof3+Z RLmIsQMqhrjBC9kVTf0iuhOtbC+6tJH5JPm3wJgZo//xVW/PKBBRoAiha1PMgPGZ FylVnblHZWgsHYgiGW3EKtI3PBrkH9/dJV7z7bZExgTkPJMFojvxtwxXimyBL4TT Azij1YEZo5FvLlOzmvrAAQWbVa2ycDwmHfGFduILwyy7TZ3MblwtuLjb3Mtry7+6 l9TJxrtYmPV48pBqxVQIAKFRdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCq6PZ9b UsOe3OwU71T19zrJtbcyMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+Hak28M7gq++4lrBTR5r38TIIAL0mwrkwt9dIlFSkd78pVyeazMV3 3jfKRa6Ntfx2JTzRhVH7JMwzjdRFLPV9PxQi9L2+rabjh8EtgIsLIBpIERUvM3qx 5rUm1Xw2Gh/pw5GVyRM8xh7KDDfX1SlQ6uQZQ2esYcGtunSdcFASIM+1erqftYUv I/O5VOF7EuhRygQDVwUBjotCnHFUq02aLjhmTbpw9agaBvkKTPodkoycZBgLvbfE 9AgyKozcn0i7fs3XqpA+zgpGBsCE44twcYrE/0SES4RFQlmEm/zdAQtwVFwhiJOt Nh/ZYle+od10muC83RfTmak1FBe6w0PY -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:47 2024 by rpki-client on console-fra.rpki-client.org