$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: KJ29Jc6o/ZTSPy2uvr23kT4jeb4Wgj7dR+59xiX1rZU= Subject key identifier: 5D:31:D8:BC:BD:30:98:6F:0F:0B:33:7B:14:DB:9D:77:F0:CC:39:B8 Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 05AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 05A3 Signing time: Fri 22 Nov 2024 22:47:14 +0000 Manifest this update: Fri 22 Nov 2024 22:47:13 +0000 Manifest next update: Fri 29 Nov 2024 22:47:13 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: 616yu1zWookAtuxQS5qgZp1E4cGEtZLyTinnsSIl+2w=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: tUpWMGgns2Ra5uYPNGoUZuaPcBF5972rD5DY0SVhjt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1455 (0x5af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Nov 22 22:47:13 2024 GMT Not After : Nov 29 22:47:13 2024 GMT Subject: CN=674109f1-f7b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:df:ce:7c:90:ff:6c:36:28:6b:33:03:1a:a8: 8e:87:6b:77:28:da:4d:7c:bc:95:a8:19:95:47:ef: f0:56:58:0b:84:d5:f2:53:66:e4:70:dd:2e:bf:2e: e7:ce:26:95:75:df:ef:f2:5b:ca:79:7b:1f:08:6a: ec:c7:19:74:6f:e2:dc:f4:b1:59:68:85:0a:24:72: d3:8c:a0:f8:00:d1:d9:ef:da:df:e8:eb:0e:93:d3: ab:6d:04:b6:62:7e:45:f3:19:ae:f6:16:86:ae:7d: 90:7b:a1:44:53:bc:8c:f8:92:fa:f0:71:db:aa:58: 2d:94:3b:f1:6f:6f:1d:ef:5f:7b:85:c1:bd:9c:c1: 44:33:96:b1:84:fd:6f:ab:1d:8d:e6:0a:8b:1b:1e: eb:66:9c:5a:c3:78:43:16:1c:99:f3:f8:ba:65:87: 66:d8:b0:a5:07:cd:9f:73:bb:ea:a6:c4:47:aa:9f: 7e:d6:21:76:a0:66:59:5d:10:ea:86:e1:62:ed:37: 0a:57:46:36:2a:4f:99:8d:f3:c4:3a:1f:d8:56:c3: cc:33:62:97:ea:16:4c:93:f7:b6:80:91:5c:f7:ba: c7:76:b6:b4:11:56:64:d8:60:5e:36:ad:df:d6:37: 30:f0:3d:48:dd:3e:bc:45:54:2a:66:7e:69:b4:04: 67:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:31:D8:BC:BD:30:98:6F:0F:0B:33:7B:14:DB:9D:77:F0:CC:39:B8 X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:f7:25:c3:5c:c7:95:6d:d1:0b:04:9d:ee:98:c9:08:59:27: ee:aa:6f:db:77:c1:e3:6d:42:2f:9b:99:92:26:60:30:0b:e6: 8d:99:b9:7c:b3:e8:ac:41:57:75:04:43:29:52:eb:4b:0b:dc: bc:50:fd:b1:aa:55:9e:90:cf:1d:d9:94:63:78:d8:ca:b4:dc: d3:2d:45:e1:e2:77:a9:7e:41:09:8e:18:db:a9:bc:fd:34:5c: 5e:06:e8:83:b5:8e:43:d5:d3:35:b0:24:8f:a7:e6:7e:07:93: 46:b3:ec:29:0a:b2:50:27:52:5e:e8:ba:1c:f0:54:a7:b6:fa: 9c:90:80:b2:c4:70:ac:fb:1c:0e:cc:c8:5e:8e:9a:39:10:15: 6f:c8:02:8a:1e:2d:65:1b:44:9f:32:0b:f9:61:5c:33:c5:53: 6d:49:a2:4e:82:c6:58:69:49:7f:c7:37:a2:4a:38:a8:96:87: 3e:8b:3e:4c:a1:74:ec:a2:fe:80:0e:5c:8b:0c:04:19:44:ea: 0f:b3:1a:11:b1:28:87:d1:2e:17:73:f7:47:29:b7:62:ce:ba: a4:47:6c:5a:e6:bf:b3:03:91:91:49:a8:94:7e:fe:fa:2c:18: 4b:39:06:81:58:1a:21:7f:64:62:df:75:27:d4:90:5d:53:bb: cf:e7:f9:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjQxMTIyMjI0NzEzWhcNMjQxMTI5MjI0NzEzWjAYMRYwFAYD VQQDEw02NzQxMDlmMS1mN2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19/OfJD/bDYoazMDGqiOh2t3KNpNfLyVqBmVR+/wVlgLhNXyU2bkcN0uvy7n ziaVdd/v8lvKeXsfCGrsxxl0b+Lc9LFZaIUKJHLTjKD4ANHZ79rf6OsOk9OrbQS2 Yn5F8xmu9haGrn2Qe6FEU7yM+JL68HHbqlgtlDvxb28d7197hcG9nMFEM5axhP1v qx2N5gqLGx7rZpxaw3hDFhyZ8/i6ZYdm2LClB82fc7vqpsRHqp9+1iF2oGZZXRDq huFi7TcKV0Y2Kk+ZjfPEOh/YVsPMM2KX6hZMk/e2gJFc97rHdra0EVZk2GBeNq3f 1jcw8D1I3T68RVQqZn5ptARnRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0x2Ly9 MJhvDwszexTbnXfwzDm4MB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB69yXDXMeVbdELBJ3umMkIWSfuqm/bd8HjbUIvm5mSJmAwC+aNmbl8 s+isQVd1BEMpUutLC9y8UP2xqlWekM8d2ZRjeNjKtNzTLUXh4nepfkEJjhjbqbz9 NFxeBuiDtY5D1dM1sCSPp+Z+B5NGs+wpCrJQJ1Je6Loc8FSntvqckICyxHCs+xwO zMhejpo5EBVvyAKKHi1lG0SfMgv5YVwzxVNtSaJOgsZYaUl/xzeiSjioloc+iz5M oXTsov6ADlyLDAQZROoPsxoRsSiH0S4Xc/dHKbdizrqkR2xa5r+zA5GRSaiUfv76 LBhLOQaBWBohf2Ri33Un1JBdU7vP5/nE -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:34 2024 by rpki-client on console-fra.rpki-client.org