$ rpki-client -vvf rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft File: lVqjNNYHfBfALW18rdIVmRIeTvo.mft (raw, json) Hash identifier: tcC84LCVGOaYxWeqEINOwmzsXk3C6V8VppgtazRRjtM= Subject key identifier: 92:E0:5A:10:A3:CA:C9:42:F8:3D:AB:B0:2C:29:2D:BA:1B:E1:CD:68 Authority key identifier: 95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA Certificate issuer: /CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Certificate serial: 077B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft Manifest number: 0774 Signing time: Fri 22 Nov 2024 20:55:29 +0000 Manifest this update: Fri 22 Nov 2024 20:55:28 +0000 Manifest next update: Fri 29 Nov 2024 20:55:28 +0000 Files and hashes: 1: lVqjNNYHfBfALW18rdIVmRIeTvo.crl (hash: oZoTsq9EwkZ82gTkZmTZnoubLT5qWVZrYs1k+RAunqU=) 2: AD797FA2F17E11EAA3CC597BC4F9AE02.roa (hash: h5ITx5pXE/9NCEhkkWyRU4Y7R0J0MFf0GXuloXcx21g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1915 (0x77b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Validity Not Before: Nov 22 20:55:28 2024 GMT Not After : Nov 29 20:55:28 2024 GMT Subject: CN=6740efc1-4bdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a7:5b:76:e7:ed:35:34:98:42:2f:db:0d:0e: e7:75:c6:57:44:1e:fb:a0:51:c8:51:8c:b3:e4:d7: 16:d2:33:40:9f:a7:8f:f5:4d:a0:1a:b0:8f:7e:fa: e4:97:98:2e:f9:39:9f:3c:ec:0d:bf:90:c3:ea:d6: 7c:62:a4:c5:58:7f:11:42:42:90:4e:76:f3:05:98: 11:bb:05:dd:c7:86:59:9a:aa:b4:e0:58:ec:f2:9c: 4b:73:82:04:41:e3:ce:56:18:87:dd:e6:af:32:be: f1:bb:c6:29:07:f1:63:ee:ff:90:4f:7f:68:e6:e5: 5a:cf:ca:99:6b:91:f7:27:1c:07:98:04:93:6a:62: dd:17:14:f8:9b:54:0b:51:09:b4:2d:f6:53:be:e0: f6:9a:75:67:f3:c9:00:84:aa:6a:bc:3c:92:7a:b5: 6e:f5:36:e8:8b:12:e6:c1:04:d0:4e:98:2b:c8:d1: e1:f3:04:15:e9:6f:86:c9:db:ee:d7:b2:ec:bd:ea: fb:65:74:04:4e:e9:fb:01:44:97:8e:d4:3b:01:fc: 77:e8:c8:be:4d:5e:7a:0b:da:54:53:82:58:c0:79: 99:10:5d:9d:04:3a:97:c9:7c:a1:a6:0b:c4:5f:d0: cb:9a:2f:9e:e3:07:4b:04:fa:5e:25:e9:36:24:90: d6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E0:5A:10:A3:CA:C9:42:F8:3D:AB:B0:2C:29:2D:BA:1B:E1:CD:68 X509v3 Authority Key Identifier: keyid:95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:66:84:07:fc:2e:c9:d2:e6:90:5a:19:6d:9e:e2:e8:63:c3: 1e:78:f9:4f:09:3a:01:32:99:2a:3e:27:73:3b:a7:83:1c:d3: 46:3f:7d:b2:48:65:15:32:c2:4c:38:17:3d:2e:29:d2:bb:91: 8d:00:12:11:c7:68:b3:36:b7:cb:e1:97:ca:8e:70:55:3c:84: 5f:fe:b4:cf:ca:28:01:28:d4:03:af:a6:cf:fa:ef:b1:9a:67: 32:5b:ae:60:01:44:81:4d:86:ee:d7:f6:d0:ca:15:20:d7:d4: a4:5e:68:77:d6:b8:46:6b:0c:5c:c6:44:33:99:f3:4a:66:e5: 16:83:96:26:72:c8:a8:6f:6b:ce:d7:5f:13:b9:3e:07:23:d1: 76:12:b9:77:ea:41:db:96:43:da:3f:32:ec:96:74:d2:e3:bb: 79:52:98:b2:7f:ef:79:d0:ce:92:56:94:a7:7f:45:85:5f:b0: ef:92:75:c6:5b:77:ae:28:f9:25:40:ed:69:24:f0:35:47:e0: 13:0b:f8:e0:f7:e0:40:db:36:58:ba:6a:9c:a8:9b:db:7c:04: 85:97:c3:9a:eb:d5:85:79:90:14:40:08:da:12:50:8a:3e:06: b4:50:f2:d4:82:e6:dc:ef:56:3c:02:60:75:a3:46:32:66:2d: 2b:12:a2:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAxQUYxMTAvBgNVBAUTKDk1NUFBMzM0RDYwNzdDMTdDMDJENkQ3Q0FERDIxNTk5 MTIxRTRFRkEwHhcNMjQxMTIyMjA1NTI4WhcNMjQxMTI5MjA1NTI4WjAYMRYwFAYD VQQDEw02NzQwZWZjMS00YmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk6dbduftNTSYQi/bDQ7ndcZXRB77oFHIUYyz5NcW0jNAn6eP9U2gGrCPfvrk l5gu+TmfPOwNv5DD6tZ8YqTFWH8RQkKQTnbzBZgRuwXdx4ZZmqq04Fjs8pxLc4IE QePOVhiH3eavMr7xu8YpB/Fj7v+QT39o5uVaz8qZa5H3JxwHmASTamLdFxT4m1QL UQm0LfZTvuD2mnVn88kAhKpqvDySerVu9TboixLmwQTQTpgryNHh8wQV6W+Gydvu 17Lsver7ZXQETun7AUSXjtQ7Afx36Mi+TV56C9pUU4JYwHmZEF2dBDqXyXyhpgvE X9DLmi+e4wdLBPpeJek2JJDWQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLgWhCj yslC+D2rsCwpLbob4c1oMB8GA1UdIwQYMBaAFJVaozTWB3wXwC1tfK3SFZkSHk76 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDFBRi9DRDdFNzBEOEYx N0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZCZkFMVzE4cmRJVm1SSWVU dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xWcWpOTllIZkJmQUxXMThyZElWbVJJZVR2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDFBRi9DRDdFNzBEOEYxN0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZC ZkFMVzE4cmRJVm1SSWVUdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBZoQH/C7J0uaQWhltnuLoY8MeePlPCToBMpkqPidzO6eDHNNGP32y SGUVMsJMOBc9LinSu5GNABIRx2izNrfL4ZfKjnBVPIRf/rTPyigBKNQDr6bP+u+x mmcyW65gAUSBTYbu1/bQyhUg19SkXmh31rhGawxcxkQzmfNKZuUWg5Ymcsiob2vO 118TuT4HI9F2Erl36kHblkPaPzLslnTS47t5Upiyf+950M6SVpSnf0WFX7DvknXG W3euKPklQO1pJPA1R+ATC/jg9+BA2zZYumqcqJvbfASFl8Oa69WFeZAUQAjaElCK Pga0UPLUgubc71Y8AmB1o0YyZi0rEqIu -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org