$ rpki-client -vvf rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft File: lRaRgJV2AETnT6qlSX0GcwraXzI.mft (raw, json) Hash identifier: vI8QoUiPwwo5hys2y400MsIdZkv1EIUKH2imFllcUSQ= Subject key identifier: 00:77:34:7F:B1:68:86:A6:92:9B:9C:D0:19:4E:54:37:2A:33:77:7C Authority key identifier: 95:16:91:80:95:76:00:44:E7:4F:AA:A5:49:7D:06:73:0A:DA:5F:32 Certificate issuer: /CN=A91B334D/serialNumber=9516918095760044E74FAAA5497D06730ADA5F32 Certificate serial: 05FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft Manifest number: 05F7 Signing time: Fri 22 Nov 2024 22:20:51 +0000 Manifest this update: Fri 22 Nov 2024 22:20:51 +0000 Manifest next update: Fri 29 Nov 2024 22:20:50 +0000 Files and hashes: 1: lRaRgJV2AETnT6qlSX0GcwraXzI.crl (hash: 0z9vXKBLFa5VzSi+Uq+7ZRgTHbsFWCLD+swVAacyWME=) 2: 589FBEDC860311EBAFE18309C4F9AE02.roa (hash: 60iJClNHfCYL5vJ0EICnhz/EaXVeffgn8z0vbfJvk+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.crl rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1533 (0x5fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B334D/serialNumber=9516918095760044E74FAAA5497D06730ADA5F32 Validity Not Before: Nov 22 22:20:51 2024 GMT Not After : Nov 29 22:20:50 2024 GMT Subject: CN=674103c3-ca68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b9:54:c1:77:09:dd:0a:58:09:12:d1:7a:28: 8e:63:bf:3c:11:8a:64:e7:f1:23:92:dd:50:3c:5b: 00:44:04:a3:d2:65:9f:02:f0:95:8c:87:49:f9:e8: fa:75:bf:f7:d0:85:a2:fb:84:17:a1:42:25:a6:19: e3:6c:65:6a:fc:b6:a2:76:0c:29:95:72:64:48:2b: 4a:0c:94:f4:39:0a:af:52:da:22:d1:ab:f7:73:2c: 65:92:7d:82:f8:ff:8c:22:e7:10:78:b6:6f:c5:83: b2:df:bb:ff:0f:4c:48:00:16:9b:5c:91:17:23:59: d8:72:1c:3d:88:53:83:b8:36:f1:00:09:06:70:92: 9f:9f:a1:bf:cf:4d:10:51:22:e3:d3:2b:8a:bf:3a: a1:7b:b7:94:1a:ed:be:8e:90:5b:2d:f4:36:cc:7a: dc:6c:72:2c:d1:20:40:c0:f8:ff:78:0b:b5:35:ef: 7c:31:0d:5b:86:d8:11:48:98:b7:ec:64:b0:65:1f: 51:a3:be:03:8b:06:01:d2:42:80:66:45:78:3b:e1: ad:12:01:1e:aa:78:0f:1e:1d:ab:32:e0:7b:be:6f: 67:74:ad:cf:52:f6:fb:33:31:de:53:6a:88:f5:ae: b5:5f:f0:f8:5e:1f:4e:6e:8e:6d:2c:da:a2:b5:bf: 80:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:77:34:7F:B1:68:86:A6:92:9B:9C:D0:19:4E:54:37:2A:33:77:7C X509v3 Authority Key Identifier: keyid:95:16:91:80:95:76:00:44:E7:4F:AA:A5:49:7D:06:73:0A:DA:5F:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:26:c6:b3:74:e6:38:b7:c6:8b:33:d3:34:98:6b:dc:f9:13: f0:ad:cf:0b:61:12:fe:c1:ac:4f:0c:b8:ba:0e:e6:36:49:66: 08:7a:5e:b7:b2:85:2d:bc:2d:cb:34:df:2b:c6:9f:54:38:48: 77:28:0e:31:c6:ea:a6:30:77:61:26:99:c1:ea:60:c4:ee:f4: f2:fd:08:67:02:b3:6d:53:b5:38:95:a6:55:a0:db:74:10:a0: 4c:a2:f9:29:16:d9:d8:7f:8f:53:df:69:03:5b:d1:29:9e:38: e8:88:bc:bb:22:3d:1a:71:dd:49:d2:21:90:de:07:49:ed:cf: ab:30:1d:c2:b7:f6:f8:4b:cb:db:71:de:1e:0e:63:03:cb:ad: 96:1d:a1:4b:1a:ca:6c:2f:04:a0:af:82:0d:68:5f:83:1d:48: 64:85:65:96:4f:fb:8d:41:88:a6:06:ab:f4:11:bf:26:54:ac: a6:d9:80:0b:ef:47:e5:ac:b5:af:0c:ab:0d:8b:da:6a:6e:06: 76:cf:89:03:43:40:4b:5d:60:9f:72:61:0f:a8:fa:52:4e:2e: 64:81:12:38:62:dd:13:a7:39:55:17:2b:f2:89:c9:45:59:64: b0:9d:0c:95:4f:b5:59:30:af:b0:0e:6f:26:c5:7c:46:88:2f: 23:57:70:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMzNEQxMTAvBgNVBAUTKDk1MTY5MTgwOTU3NjAwNDRFNzRGQUFBNTQ5N0QwNjcz MEFEQTVGMzIwHhcNMjQxMTIyMjIyMDUxWhcNMjQxMTI5MjIyMDUwWjAYMRYwFAYD VQQDEw02NzQxMDNjMy1jYTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxblUwXcJ3QpYCRLReiiOY788EYpk5/Ejkt1QPFsARASj0mWfAvCVjIdJ+ej6 db/30IWi+4QXoUIlphnjbGVq/LaidgwplXJkSCtKDJT0OQqvUtoi0av3cyxlkn2C +P+MIucQeLZvxYOy37v/D0xIABabXJEXI1nYchw9iFODuDbxAAkGcJKfn6G/z00Q USLj0yuKvzqhe7eUGu2+jpBbLfQ2zHrcbHIs0SBAwPj/eAu1Ne98MQ1bhtgRSJi3 7GSwZR9Ro74DiwYB0kKAZkV4O+GtEgEeqngPHh2rMuB7vm9ndK3PUvb7MzHeU2qI 9a61X/D4Xh9Obo5tLNqitb+AvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAB3NH+x aIamkpuc0BlOVDcqM3d8MB8GA1UdIwQYMBaAFJUWkYCVdgBE50+qpUl9BnMK2l8y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzM0RC8yN0U4NjFEODg1 RjcxMUVCOTIwODE3MTFDNEY5QUUwMi9sUmFSZ0pWMkFFVG5UNnFsU1gwR2N3cmFY ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSYVJnSlYyQUVUblQ2cWxTWDBHY3dyYVh6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzM0RC8yN0U4NjFEODg1RjcxMUVCOTIwODE3MTFDNEY5QUUwMi9sUmFSZ0pWMkFF VG5UNnFsU1gwR2N3cmFYekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6JsazdOY4t8aLM9M0mGvc+RPwrc8LYRL+waxPDLi6DuY2SWYIel63 soUtvC3LNN8rxp9UOEh3KA4xxuqmMHdhJpnB6mDE7vTy/QhnArNtU7U4laZVoNt0 EKBMovkpFtnYf49T32kDW9EpnjjoiLy7Ij0acd1J0iGQ3gdJ7c+rMB3Ct/b4S8vb cd4eDmMDy62WHaFLGspsLwSgr4INaF+DHUhkhWWWT/uNQYimBqv0Eb8mVKym2YAL 70flrLWvDKsNi9pqbgZ2z4kDQ0BLXWCfcmEPqPpSTi5kgRI4Yt0TpzlVFyvyiclF WWSwnQyVT7VZMK+wDm8mxXxGiC8jV3Be -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:48 2024 by rpki-client on console-ams.rpki-client.org