$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft File: L4dzyVEFOxQ4vCfsxV45KvteK7I.mft (raw, json) Hash identifier: PO+JuJj1ue/DcTCPzypoLTI51rLNf/Nx+oo7FsUmLJs= Subject key identifier: 4B:BA:37:CF:C4:A0:18:70:EC:56:76:99:24:99:EA:06:0D:81:E5:03 Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Certificate serial: 0AF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft Manifest number: 0AE1 Signing time: Wed 20 Nov 2024 19:05:39 +0000 Manifest this update: Wed 20 Nov 2024 19:05:38 +0000 Manifest next update: Wed 27 Nov 2024 19:05:38 +0000 Files and hashes: 1: L4dzyVEFOxQ4vCfsxV45KvteK7I.crl (hash: V/DYlgO1AQ5STRhtfna4EnP+cFQtvZh7DGL8AkriyQw=) 2: 84AC17989B0811EDB5FDAF75C4F9AE02.roa (hash: oocbcY3iFDyepn5SUv3wuDXzWJtrjmxt4UkH5Dd68Ak=) 3: 837821AA9B0811EDB5FDAF75C4F9AE02.roa (hash: kTlw3wh1lAf36RxrCeqt67ctmc2qb6ZS1z3/jQIhcLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2805 (0xaf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Validity Not Before: Nov 20 19:05:38 2024 GMT Not After : Nov 27 19:05:38 2024 GMT Subject: CN=673e3302-8de8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:20:81:10:c0:99:de:d1:19:b2:f9:3f:99:34: f9:08:e2:5e:fe:1c:d5:56:07:af:cd:a8:7f:6f:a9: 11:53:cd:f9:77:2b:a6:c4:cb:88:56:ec:0b:ce:7f: df:ec:66:00:31:e5:54:a5:89:01:81:03:0f:83:8c: e9:c9:5e:01:3f:9a:f3:5b:64:e9:ff:59:57:a9:af: 53:ae:e8:f7:12:f1:cf:95:05:7f:8f:d1:a1:cb:f5: 7d:66:73:1b:7d:47:b8:d2:28:7c:0f:4a:7a:80:45: b8:08:dc:02:e2:33:d5:a3:71:5a:b0:90:3e:1e:ee: 77:f5:78:2f:f6:c0:e6:12:a3:74:95:84:bd:a8:5b: 3a:f3:21:e9:58:b6:8a:99:55:53:67:27:d7:e9:1a: d5:e7:a3:4b:4c:a3:4a:c8:79:18:70:2b:36:ef:2d: 3f:af:53:0f:ae:1c:35:ff:dc:55:b6:10:db:f8:08: 5e:ca:43:1f:24:4f:bd:f8:47:ba:1f:b3:52:7e:3a: 1a:f2:fd:a7:1c:c3:5d:dc:b6:1d:61:e1:8e:1b:06: 45:a9:7b:ec:3d:a9:d6:92:f4:42:30:7f:cd:b9:df: 53:0d:f0:ce:29:cc:4d:98:53:03:8d:92:a1:7c:5c: 98:30:38:ad:96:2c:fe:29:32:33:c0:10:a4:a1:c7: 2b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:BA:37:CF:C4:A0:18:70:EC:56:76:99:24:99:EA:06:0D:81:E5:03 X509v3 Authority Key Identifier: keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:5e:11:56:23:e4:b4:9e:3f:ce:81:e1:da:c2:17:72:41:17: 77:f1:53:34:af:5a:07:5e:44:45:a4:9a:9f:9b:50:d6:f6:59: 0b:f9:38:c3:1a:40:57:72:85:10:3b:15:c2:25:d8:63:dd:40: 9c:7e:79:11:d2:3b:1b:b9:21:4d:23:fe:a1:6a:7f:f2:f1:f7: c7:80:db:65:14:5c:20:d7:f6:f5:b1:4a:bf:7f:92:52:49:4a: 6f:cf:c5:56:07:b1:6e:0d:b2:fa:26:4c:df:83:19:82:f8:78: bb:6b:8e:76:08:56:89:2e:f5:c2:8d:61:d6:3d:5e:f2:dd:e8: dc:29:d9:71:ad:16:9a:ce:9a:77:17:b4:c3:86:7f:53:78:f1: e3:b6:4a:f8:c7:47:50:a3:88:78:87:a4:4c:c4:65:cd:ec:01: fa:20:1d:37:f6:3f:14:f6:66:47:dd:c3:48:d0:e6:ac:92:5d: b0:5c:2f:c6:f4:32:48:26:8b:33:7f:b9:aa:65:76:ba:7f:c5: d3:5a:1e:5d:48:5f:41:7e:1e:f1:f0:6f:d7:2c:e7:ca:38:2d: 8e:05:9b:ab:d0:96:79:13:80:a7:b2:c8:c7:0c:d8:17:4d:02: 14:d3:d9:46:bb:c7:65:dc:2e:36:52:44:e2:f5:16:22:a8:f1: 43:5a:57:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2RjAxMTAvBgNVBAUTKDJGODc3M0M5NTEwNTNCMTQzOEJDMjdFQ0M1NUUzOTJB RkI1RTJCQjIwHhcNMjQxMTIwMTkwNTM4WhcNMjQxMTI3MTkwNTM4WjAYMRYwFAYD VQQDEw02NzNlMzMwMi04ZGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyCBEMCZ3tEZsvk/mTT5COJe/hzVVgevzah/b6kRU835dyumxMuIVuwLzn/f 7GYAMeVUpYkBgQMPg4zpyV4BP5rzW2Tp/1lXqa9Truj3EvHPlQV/j9Ghy/V9ZnMb fUe40ih8D0p6gEW4CNwC4jPVo3FasJA+Hu539Xgv9sDmEqN0lYS9qFs68yHpWLaK mVVTZyfX6RrV56NLTKNKyHkYcCs27y0/r1MPrhw1/9xVthDb+AheykMfJE+9+Ee6 H7NSfjoa8v2nHMNd3LYdYeGOGwZFqXvsPanWkvRCMH/Nud9TDfDOKcxNmFMDjZKh fFyYMDitliz+KTIzwBCkoccrTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEu6N8/E oBhw7FZ2mSSZ6gYNgeUDMB8GA1UdIwQYMBaAFC+Hc8lRBTsUOLwn7MVeOSr7Xiuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTZGMC83RDY3RTRENDM4 NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94UTR2Q2ZzeFY0NUt2dGVL N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0ZHp5VkVGT3hRNHZDZnN4VjQ1S3Z0ZUs3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTZGMC83RDY3RTRENDM4NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94 UTR2Q2ZzeFY0NUt2dGVLN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoXhFWI+S0nj/OgeHawhdyQRd38VM0r1oHXkRFpJqfm1DW9lkL+TjD GkBXcoUQOxXCJdhj3UCcfnkR0jsbuSFNI/6han/y8ffHgNtlFFwg1/b1sUq/f5JS SUpvz8VWB7FuDbL6JkzfgxmC+Hi7a452CFaJLvXCjWHWPV7y3ejcKdlxrRaazpp3 F7TDhn9TePHjtkr4x0dQo4h4h6RMxGXN7AH6IB039j8U9mZH3cNI0Oaskl2wXC/G 9DJIJoszf7mqZXa6f8XTWh5dSF9Bfh7x8G/XLOfKOC2OBZur0JZ5E4CnssjHDNgX TQIU09lGu8dl3C42UkTi9RYiqPFDWldd -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:27 2024 by rpki-client on console-fra.rpki-client.org