$ rpki-client -vvf rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft File: lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft (raw, json) Hash identifier: MsfJQ79dHHZX2ggI1OYRfTbmQ3NUPbEZ/kYerAYNtVg= Subject key identifier: 92:A7:AF:F2:7E:5D:CA:E7:B1:75:BF:7A:3D:F7:3C:9B:7E:CE:59:35 Authority key identifier: 95:3E:C2:A1:BE:70:25:9E:6A:2F:D9:CE:8D:48:3B:D9:BD:1A:E3:3F Certificate issuer: /CN=A91B075B/serialNumber=953EC2A1BE70259E6A2FD9CE8D483BD9BD1AE33F Certificate serial: 0408 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft Manifest number: 0405 Signing time: Fri 22 Nov 2024 23:59:36 +0000 Manifest this update: Fri 22 Nov 2024 23:59:36 +0000 Manifest next update: Fri 29 Nov 2024 23:59:36 +0000 Files and hashes: 1: lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl (hash: UoMHfN5jGV4b6ri6MkMfP4a0AhIhMRv46WCHb8OL7CI=) 2: 85A82A144C1311ECB5708257C4F9AE02.roa (hash: EZ0C93RRgxM1+OA5teU4M7qZFeuET3Gg7L9gPM+xBew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1032 (0x408) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B075B/serialNumber=953EC2A1BE70259E6A2FD9CE8D483BD9BD1AE33F Validity Not Before: Nov 22 23:59:36 2024 GMT Not After : Nov 29 23:59:36 2024 GMT Subject: CN=67411ae8-c775 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ca:93:22:81:f7:d9:7e:a5:ad:fc:67:b5:b0: 65:03:90:0c:71:58:67:a6:96:d0:f0:e6:b3:c4:21: 8f:5f:6e:96:3b:6e:23:e2:9d:cb:54:1a:06:b0:c6: dc:9c:51:d7:17:16:61:b2:5d:8d:68:6a:d5:ae:2b: 77:9c:d9:83:50:7c:8d:80:01:42:b3:69:0c:8a:1d: 1c:04:d6:d1:09:42:b3:82:05:a0:31:56:b4:1d:cd: e8:9f:6f:2f:2c:c3:58:4b:5e:ab:da:d9:f0:1e:66: 8f:a5:fc:d7:2a:ea:f6:d5:5b:76:4f:31:c7:b2:75: e7:76:ef:e5:be:11:0f:b0:bf:7e:bd:ed:f8:74:04: da:8d:8d:55:8a:f1:4b:1d:0f:15:91:6d:13:43:ac: 62:76:a9:a9:fb:8b:31:95:aa:53:0b:07:d8:36:3a: 8b:a4:54:7e:cb:5b:d9:90:28:52:b1:4d:74:a1:d1: 8a:27:fc:5f:7c:c1:44:c9:fa:dd:74:66:06:78:d6: fc:cc:b9:ac:80:df:5c:20:e5:c9:ed:3f:45:63:86: dc:d6:db:38:cf:63:e4:b9:ea:39:32:6e:f1:8e:72: 82:70:76:34:3e:e8:56:29:2a:59:39:2e:40:ba:4f: f1:d2:b1:e7:1f:73:6b:68:38:c7:a3:81:40:41:5e: be:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A7:AF:F2:7E:5D:CA:E7:B1:75:BF:7A:3D:F7:3C:9B:7E:CE:59:35 X509v3 Authority Key Identifier: keyid:95:3E:C2:A1:BE:70:25:9E:6A:2F:D9:CE:8D:48:3B:D9:BD:1A:E3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:e1:b9:0c:06:eb:85:4c:3b:3a:42:c3:9e:ad:31:7c:8b:d2: d7:19:35:7e:20:81:04:1e:9c:d8:17:ce:d1:3b:be:8f:dc:9c: 0e:0e:24:4d:95:15:57:66:df:29:a5:e6:fe:69:58:28:ce:16: 1c:a6:8d:79:49:84:a2:e3:dc:7b:01:78:88:9e:16:b0:af:10: ef:26:f5:9b:04:9e:da:fb:8b:5b:06:cc:b1:c7:a8:b3:84:94: 6f:c9:96:8c:3f:9a:a7:84:cd:6a:44:85:0a:fb:71:84:57:db: 44:b7:19:f8:20:20:c8:da:5d:8b:95:69:73:2a:bd:23:0d:79: aa:dc:c0:8a:2e:0c:76:9a:62:e3:66:17:5c:f0:58:8f:5d:37: 6f:ad:1c:80:38:df:77:dd:85:c3:8b:85:5c:0b:d6:f1:de:fd: 1e:71:63:83:b6:01:52:49:9f:8b:11:69:10:ca:89:87:94:46: cd:4a:ab:a1:9e:94:21:0c:eb:88:00:22:80:1a:32:26:38:a1: a6:a7:8e:28:27:d7:62:d8:1c:27:b4:e3:33:6e:28:77:f7:7b: 0d:49:8b:79:09:e5:4d:c4:54:a5:6b:e4:5d:bc:6a:b1:a6:7b: ac:b4:70:0b:19:62:e2:60:8b:86:7e:5e:af:0f:33:dc:7d:c9: 47:b0:f0:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NUIxMTAvBgNVBAUTKDk1M0VDMkExQkU3MDI1OUU2QTJGRDlDRThENDgzQkQ5 QkQxQUUzM0YwHhcNMjQxMTIyMjM1OTM2WhcNMjQxMTI5MjM1OTM2WjAYMRYwFAYD VQQDEw02NzQxMWFlOC1jNzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMqTIoH32X6lrfxntbBlA5AMcVhnppbQ8OazxCGPX26WO24j4p3LVBoGsMbc nFHXFxZhsl2NaGrVrit3nNmDUHyNgAFCs2kMih0cBNbRCUKzggWgMVa0Hc3on28v LMNYS16r2tnwHmaPpfzXKur21Vt2TzHHsnXndu/lvhEPsL9+ve34dATajY1VivFL HQ8VkW0TQ6xidqmp+4sxlapTCwfYNjqLpFR+y1vZkChSsU10odGKJ/xffMFEyfrd dGYGeNb8zLmsgN9cIOXJ7T9FY4bc1ts4z2Pkueo5Mm7xjnKCcHY0PuhWKSpZOS5A uk/x0rHnH3NraDjHo4FAQV6+owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKnr/J+ XcrnsXW/ej33PJt+zlk1MB8GA1UdIwQYMBaAFJU+wqG+cCWeai/Zzo1IO9m9GuM/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc1Qi80NEExM0I0RTRD MTAxMUVDQTVEMkE5NEZDNEY5QUUwMi9sVDdDb2I1d0paNXFMOW5PalVnNzJiMGE0 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUN0NvYjV3Slo1cUw5bk9qVWc3MmIwYTR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDc1Qi80NEExM0I0RTRDMTAxMUVDQTVEMkE5NEZDNEY5QUUwMi9sVDdDb2I1d0pa NXFMOW5PalVnNzJiMGE0ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM4bkMBuuFTDs6QsOerTF8i9LXGTV+IIEEHpzYF87RO76P3JwODiRN lRVXZt8ppeb+aVgozhYcpo15SYSi49x7AXiInhawrxDvJvWbBJ7a+4tbBsyxx6iz hJRvyZaMP5qnhM1qRIUK+3GEV9tEtxn4ICDI2l2LlWlzKr0jDXmq3MCKLgx2mmLj Zhdc8FiPXTdvrRyAON933YXDi4VcC9bx3v0ecWODtgFSSZ+LEWkQyomHlEbNSquh npQhDOuIACKAGjImOKGmp44oJ9di2BwntOMzbih393sNSYt5CeVNxFSla+RdvGqx pnustHALGWLiYIuGfl6vDzPcfclHsPCr -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:27 2024 by rpki-client on console-ams.rpki-client.org