$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft File: aLP_FmWJyEQaRP3KYfQrOmOuESk.mft (raw, json) Hash identifier: S/oyA6gJqdNNw+dXN8ExmHBsCrSUGnTJJgw19MWcbG8= Subject key identifier: 3E:BC:53:73:3D:43:86:F8:7E:09:E9:22:D1:9D:A7:3E:E0:6B:42:11 Authority key identifier: 68:B3:FF:16:65:89:C8:44:1A:44:FD:CA:61:F4:2B:3A:63:AE:11:29 Certificate issuer: /CN=A91A2C5D/serialNumber=68B3FF166589C8441A44FDCA61F42B3A63AE1129 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft Manifest number: B7 Signing time: Sat 23 Nov 2024 04:04:40 +0000 Manifest this update: Sat 23 Nov 2024 04:04:40 +0000 Manifest next update: Sat 30 Nov 2024 04:04:40 +0000 Files and hashes: 1: aLP_FmWJyEQaRP3KYfQrOmOuESk.crl (hash: 5zhNOgunG/xBhLf1nJIJqVBmIeGhDD/5LbAZrrv7S5s=) 2: 3425A8A695C211EEBA1ABE46C4F9AE02.roa (hash: UqjYJ5RSufOCb7UTGicYFIf84Nm162ZbjYkdoMwRQiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.crl rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2C5D/serialNumber=68B3FF166589C8441A44FDCA61F42B3A63AE1129 Validity Not Before: Nov 23 04:04:40 2024 GMT Not After : Nov 30 04:04:40 2024 GMT Subject: CN=67415458-2b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:33:9c:bb:37:5f:cb:47:a0:ec:fa:37:f2:42: 06:90:d1:7f:11:c4:c8:6c:a6:8b:09:0b:fd:bb:2f: 4e:b2:1a:67:8c:32:e2:96:28:47:3c:f9:43:aa:6d: 63:cd:6e:5b:34:d3:a9:0c:ff:44:d1:35:c0:5a:9c: f8:1a:a1:ec:f4:df:a2:67:dd:4e:fa:47:b5:80:13: f5:ef:1d:35:f1:92:46:46:61:35:27:ac:05:d7:65: 39:f1:1b:f3:ce:fc:68:c3:bb:ae:98:9f:df:60:43: 91:96:f8:ef:62:35:26:3f:a0:6a:15:cb:16:eb:be: 2a:7e:76:85:ca:11:33:c9:f8:e6:83:3d:21:a5:65: 18:55:ef:c5:9d:a0:bc:eb:ad:1c:a7:cb:dc:85:8e: cc:ea:11:ce:8a:08:34:fb:32:af:0d:8d:f8:f1:f5: f3:e2:50:05:8c:54:f6:67:89:a7:69:f3:95:be:e6: cc:73:5f:82:53:3a:47:7e:25:83:e5:e3:82:22:97: 57:94:29:8a:47:fc:e9:db:49:d1:56:e0:d9:a1:68: 9f:5c:7c:80:99:e2:15:2a:b6:fc:a7:78:a6:5d:bd: a2:2f:81:b4:ae:e7:4c:fe:b4:5e:23:94:a8:d9:4e: e4:c8:73:8f:b4:98:9d:31:8a:af:66:f3:e5:b6:65: 53:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:BC:53:73:3D:43:86:F8:7E:09:E9:22:D1:9D:A7:3E:E0:6B:42:11 X509v3 Authority Key Identifier: keyid:68:B3:FF:16:65:89:C8:44:1A:44:FD:CA:61:F4:2B:3A:63:AE:11:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:21:87:c3:f3:76:6f:a2:e5:3a:64:be:45:9a:f7:2b:4f:80: 21:82:0c:68:ba:5a:13:8c:97:57:5c:6d:c0:1e:a8:a7:da:cd: 50:4d:50:37:6d:c0:f5:75:4e:1e:a4:5f:06:82:a3:df:0c:df: 95:bb:a6:5a:57:1e:1b:06:f0:22:8b:22:87:c2:05:25:20:62: 64:01:de:8b:d8:62:6a:36:1e:a9:03:7a:62:59:e5:77:da:fe: 45:ea:61:c4:b7:1c:59:f7:a5:bf:86:39:18:06:b3:2f:5b:52: bc:fa:4e:ff:39:7e:2c:5e:ac:43:ba:f5:4d:a1:09:f3:9d:a6: 55:41:85:ef:be:b1:7c:34:3e:0e:08:6a:a7:57:20:cd:07:f0: 69:73:7f:49:62:74:a6:b3:6c:1b:40:5d:17:e8:da:bd:c6:a4: 7c:dd:84:02:6d:b0:3d:74:2e:7a:64:a3:9e:d0:87:16:63:62: 23:18:be:13:39:e3:b5:7f:32:19:d2:e8:f9:20:2d:e1:a0:ea: 58:93:9d:c5:7c:f1:73:0e:e9:2d:18:9e:e0:8a:c6:d9:bc:49: 6a:68:ae:2d:2f:44:41:0c:e3:01:fc:ac:f3:71:02:3c:8d:84: f5:a6:1e:96:a6:91:5c:0c:e6:fa:b7:ea:d8:b3:dc:48:7f:d1: c6:ac:31:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJDNUQxMTAvBgNVBAUTKDY4QjNGRjE2NjU4OUM4NDQxQTQ0RkRDQTYxRjQyQjNB NjNBRTExMjkwHhcNMjQxMTIzMDQwNDQwWhcNMjQxMTMwMDQwNDQwWjAYMRYwFAYD VQQDEw02NzQxNTQ1OC0yYjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjOcuzdfy0eg7Po38kIGkNF/EcTIbKaLCQv9uy9OshpnjDLilihHPPlDqm1j zW5bNNOpDP9E0TXAWpz4GqHs9N+iZ91O+ke1gBP17x018ZJGRmE1J6wF12U58Rvz zvxow7uumJ/fYEORlvjvYjUmP6BqFcsW674qfnaFyhEzyfjmgz0hpWUYVe/FnaC8 660cp8vchY7M6hHOigg0+zKvDY348fXz4lAFjFT2Z4mnafOVvubMc1+CUzpHfiWD 5eOCIpdXlCmKR/zp20nRVuDZoWifXHyAmeIVKrb8p3imXb2iL4G0rudM/rReI5So 2U7kyHOPtJidMYqvZvPltmVTwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD68U3M9 Q4b4fgnpItGdpz7ga0IRMB8GA1UdIwQYMBaAFGiz/xZlichEGkT9ymH0KzpjrhEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkM1RC8zQjlERDQxMDky QzQxMUVFQjUyMUJCNDlDNEY5QUUwMi9hTFBfRm1XSnlFUWFSUDNLWWZRck9tT3VF U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMUF9GbVdKeUVRYVJQM0tZZlFyT21PdUVTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkM1RC8zQjlERDQxMDkyQzQxMUVFQjUyMUJCNDlDNEY5QUUwMi9hTFBfRm1XSnlF UWFSUDNLWWZRck9tT3VFU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFIYfD83ZvouU6ZL5FmvcrT4AhggxouloTjJdXXG3AHqin2s1QTVA3 bcD1dU4epF8GgqPfDN+Vu6ZaVx4bBvAiiyKHwgUlIGJkAd6L2GJqNh6pA3piWeV3 2v5F6mHEtxxZ96W/hjkYBrMvW1K8+k7/OX4sXqxDuvVNoQnznaZVQYXvvrF8ND4O CGqnVyDNB/Bpc39JYnSms2wbQF0X6Nq9xqR83YQCbbA9dC56ZKOe0IcWY2IjGL4T OeO1fzIZ0uj5IC3hoOpYk53FfPFzDuktGJ7gisbZvElqaK4tL0RBDOMB/KzzcQI8 jYT1ph6WppFcDOb6t+rYs9xIf9HGrDE0 -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:18 2024 by rpki-client on console-ams.rpki-client.org