$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: +rimeUu1deokOModt5/FHCemdaiU+3XJmt5cC3nN+eo= Subject key identifier: 9A:6B:7A:DD:3C:B8:C6:B7:69:18:50:3B:C4:68:23:07:85:C8:66:1C Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: 7E Signing time: Sat 23 Nov 2024 04:42:18 +0000 Manifest this update: Sat 23 Nov 2024 04:42:17 +0000 Manifest next update: Sat 30 Nov 2024 04:42:17 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: ykxWFKLsBqMWZ45ovjjk9ghxNd8+lA9wkzsKwX0CIXQ=) 2: 33B566F2E80811EEB4888B0FC4F9AE02.roa (hash: NoXuOW0Fxe9kbmt2KuqfmbmSgijDj9PUL7XzIgwj6mw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: Nov 23 04:42:17 2024 GMT Not After : Nov 30 04:42:17 2024 GMT Subject: CN=67415d2a-87a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:24:58:cd:a4:1f:b9:ef:a5:35:ce:cc:4c:d6: 39:6c:17:86:b9:eb:cf:c2:f0:e6:8d:1e:45:1b:6d: d9:1a:2b:4b:09:23:b4:9e:4e:d0:e7:94:e4:e8:4a: 59:73:74:ba:f6:f0:87:6b:59:68:07:7b:77:ae:ca: aa:a6:d1:ed:d1:98:93:30:16:f3:b5:89:06:9c:75: 10:17:e8:74:83:65:09:97:8c:27:ad:06:d5:64:f5: 92:22:f7:f3:96:e7:7a:67:9e:24:38:53:5f:aa:a5: ac:f0:00:c7:65:9d:82:95:8b:a6:c8:62:58:08:f9: b0:5f:43:a0:cd:dd:94:4d:69:ce:1e:3f:87:ef:23: c2:5b:0e:5c:2d:f9:1c:85:12:f8:83:cd:25:0e:e0: 26:f1:14:60:44:c0:ac:e2:d8:2f:7c:1f:df:2b:16: fe:ea:b7:6f:f8:16:ac:0d:99:86:82:f7:42:9a:22: 41:11:e2:1c:3e:f6:e5:2f:48:a0:fa:2d:3a:31:38: 0a:28:42:96:ad:3c:c1:78:67:33:4c:f8:6f:56:0e: 91:de:10:fe:0c:ec:0d:7b:ad:a0:57:87:f0:4c:bb: 99:25:9f:f9:5b:d8:5f:9a:69:24:eb:22:7f:b9:98: c7:c7:a7:50:6c:1c:71:08:b5:a2:32:12:54:a1:ca: 33:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:6B:7A:DD:3C:B8:C6:B7:69:18:50:3B:C4:68:23:07:85:C8:66:1C X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:94:3c:75:21:9c:2f:0c:b8:df:5a:b1:17:1b:28:cb:a2:0e: 6f:f8:1f:f9:9e:00:be:1c:44:21:9b:74:da:37:46:49:c7:bf: 39:ab:2c:b5:9a:79:5e:04:0d:87:a3:ad:cc:09:02:04:d5:25: e3:03:c2:7c:6e:50:cd:b3:db:d0:54:2a:da:a8:e8:76:62:7e: 54:41:0d:37:66:59:19:ee:46:51:e4:c1:72:94:d4:d9:da:fa: a9:98:23:84:10:23:de:06:f1:54:0d:c6:e3:6f:01:7a:d6:46: 59:04:ca:71:ab:f3:c6:9a:ee:47:ec:7d:3c:78:64:37:86:b8: 63:b7:9b:04:61:aa:97:fb:4c:27:c5:66:44:22:62:28:81:fc: 28:6a:4f:36:1b:a4:18:5c:37:08:3d:ab:ee:30:48:9a:60:82: 44:f5:42:3a:b3:86:70:17:0f:3f:c7:c8:40:b5:40:55:60:40: 62:ac:fb:d0:0b:b5:d8:88:f6:3c:c8:c0:6c:5f:36:7a:20:21: 75:90:8d:4e:78:ce:ca:a9:45:b0:a1:ba:5b:7e:0a:98:65:45: 6e:e6:0d:b9:05:ed:43:58:69:74:bb:57:9f:74:85:12:45:82: 1c:3c:4d:57:57:01:8f:ef:7a:9e:28:64:a8:92:2a:ac:26:27: 16:78:28:74 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QUQyRDExMC8GA1UEBRMoOTRBOTUwQjMwM0I0NjkwMERENUEzMDYxMDMwQzg5QTQ4 OTY4MDNBRjAeFw0yNDExMjMwNDQyMTdaFw0yNDExMzAwNDQyMTdaMBgxFjAUBgNV BAMTDTY3NDE1ZDJhLTg3YTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiJFjNpB+576U1zsxM1jlsF4a568/C8OaNHkUbbdkaK0sJI7SeTtDnlOToSllz dLr28IdrWWgHe3euyqqm0e3RmJMwFvO1iQacdRAX6HSDZQmXjCetBtVk9ZIi9/OW 53pnniQ4U1+qpazwAMdlnYKVi6bIYlgI+bBfQ6DN3ZRNac4eP4fvI8JbDlwt+RyF EviDzSUO4CbxFGBEwKzi2C98H98rFv7qt2/4FqwNmYaC90KaIkER4hw+9uUvSKD6 LToxOAooQpatPMF4ZzNM+G9WDpHeEP4M7A17raBXh/BMu5kln/lb2F+aaSTrIn+5 mMfHp1BsHHEItaIyElShyjOXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmmt63Ty4 xrdpGFA7xGgjB4XIZhwwHwYDVR0jBBgwFoAUlKlQswO0aQDdWjBhAwyJpIloA68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBRDJELzkwODhFRTVBRTgw MTExRUVBRDZDNTAzMEM0RjlBRTAyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEtsUXN3TzBhUURkV2pCaEF3eUpwSWxvQTY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB RDJELzkwODhFRTVBRTgwMTExRUVBRDZDNTAzMEM0RjlBRTAyL2xLbFFzd08wYVFE ZFdqQmhBd3lKcElsb0E2OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAuUPHUhnC8MuN9asRcbKMuiDm/4H/meAL4cRCGbdNo3RknHvzmrLLWa eV4EDYejrcwJAgTVJeMDwnxuUM2z29BUKtqo6HZiflRBDTdmWRnuRlHkwXKU1Nna +qmYI4QQI94G8VQNxuNvAXrWRlkEynGr88aa7kfsfTx4ZDeGuGO3mwRhqpf7TCfF ZkQiYiiB/ChqTzYbpBhcNwg9q+4wSJpggkT1QjqzhnAXDz/HyEC1QFVgQGKs+9AL tdiI9jzIwGxfNnogIXWQjU54zsqpRbChult+CphlRW7mDbkF7UNYaXS7V590hRJF ghw8TVdXAY/vep4oZKiSKqwmJxZ4KHQ= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org