$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json) Hash identifier: dl5BG+lHz/6vrJ3zokwAvqwG84CaG+QpNHPeXUA58Eo= Subject key identifier: 4B:78:2B:86:A2:BE:7A:71:3A:BD:F0:9B:AB:D0:F9:82:63:90:96:C4 Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft Manifest number: 0E Signing time: Wed 23 Oct 2024 06:45:09 +0000 Manifest this update: Wed 23 Oct 2024 06:45:09 +0000 Manifest next update: Wed 30 Oct 2024 06:45:09 +0000 Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: LEdbCd7fNCLfyc7JEZJ+wcbVoEu8y1qgyHVR97N7e2I=) 2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: QmeMLe3zHSz7gk9gq16CkmBIAgYCod6kVBmzDpdZxiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: Oct 23 06:45:09 2024 GMT Not After : Oct 30 06:45:09 2024 GMT Subject: CN=67189b75-8d69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b2:f9:08:7a:87:3c:59:cb:e4:c0:74:a3:8f: 4a:81:d0:dd:9c:bf:98:44:d7:03:c0:58:f2:53:4c: 70:be:0d:56:61:8d:59:d3:a0:0f:d7:b8:95:62:e1: f2:8b:a0:13:f4:d5:6d:35:d7:68:95:3c:65:15:bd: d6:f0:67:be:5e:da:e2:24:ea:2f:35:d5:a0:a5:91: 01:25:b6:f1:5a:3c:f2:55:3e:53:6a:be:5e:b1:9d: 1c:9b:81:4e:fc:a3:6c:35:e2:91:26:0d:d9:83:2e: 05:22:f6:e5:8f:f6:d0:af:61:b1:f4:2d:ae:c3:7b: 75:04:59:d4:84:e2:dc:05:ef:e1:f8:d5:a5:78:fb: 29:4e:6c:9f:68:95:ba:21:26:2b:b8:ac:9f:7a:29: 3c:31:dd:c2:ea:76:4d:07:a8:bf:41:db:fc:c2:49: 14:68:86:da:63:a0:f9:5b:cd:c5:01:75:a7:55:89: 44:8a:cf:c7:19:80:3b:1a:0b:a5:1a:0d:d4:e9:08: 87:42:73:7f:e6:bd:89:9b:93:c6:7c:89:91:7c:35: 0b:ed:6e:fc:09:bc:7f:ad:43:5c:2b:f8:62:6f:13: e8:50:4c:4e:4d:cb:7a:fe:cf:27:d4:48:84:c1:4e: 1a:97:b5:d2:68:19:f2:b7:f7:01:8e:b4:a7:5a:67: ac:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:78:2B:86:A2:BE:7A:71:3A:BD:F0:9B:AB:D0:F9:82:63:90:96:C4 X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:fa:b6:82:fe:60:ae:3d:55:93:4f:7b:ca:20:40:53:e2:68: d1:93:5f:8d:0a:93:dc:f7:69:d1:72:b3:a4:87:ba:75:e8:eb: 10:85:53:6f:84:63:77:97:c5:73:08:f2:d5:60:06:f7:88:57: 4a:61:81:d7:8f:32:bf:bc:47:f2:dd:bc:85:6f:87:50:4b:56: e7:8b:90:7d:3e:6a:95:ea:ef:87:3e:30:8c:a9:5d:bb:52:97: 13:a0:6e:1a:92:38:63:8d:37:2b:c3:60:ee:58:9a:68:bb:1e: 82:87:41:98:e9:be:b0:85:7c:0e:93:1d:b9:72:d6:c5:ea:a9: be:da:91:81:fd:07:54:c2:49:04:20:62:9f:b3:c3:a1:1b:15: 08:76:cc:df:87:b4:e4:b7:d3:ba:ae:00:55:1a:14:55:0f:e9: 59:84:27:a8:42:17:67:59:b1:3e:a9:d5:fe:d3:63:e7:4b:f1: c7:ba:16:c6:ba:50:83:88:2c:ec:49:d1:e9:e9:c2:e9:1d:eb: 04:6b:7e:e0:cb:83:fe:18:e8:5c:eb:ea:5b:1f:a6:04:11:d6: 6a:81:fb:fb:1b:2e:3f:15:f8:7c:64:53:57:f9:10:1c:82:ef: 3f:be:7a:11:d2:18:09:e1:06:9d:9c:40:18:85:40:ff:66:f9: 53:49:25:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEIwRTExMC8GA1UEBRMoOTU3RTUwQTc1RkJFNTAyRjM4RTNFREJGM0Y0QUFBRTY2 NUFFMTQ4QjAeFw0yNDEwMjMwNjQ1MDlaFw0yNDEwMzAwNjQ1MDlaMBgxFjAUBgNV BAMTDTY3MTg5Yjc1LThkNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAsvkIeoc8WcvkwHSjj0qB0N2cv5hE1wPAWPJTTHC+DVZhjVnToA/XuJVi4fKL oBP01W0112iVPGUVvdbwZ75e2uIk6i811aClkQEltvFaPPJVPlNqvl6xnRybgU78 o2w14pEmDdmDLgUi9uWP9tCvYbH0La7De3UEWdSE4twF7+H41aV4+ylObJ9olboh Jiu4rJ96KTwx3cLqdk0HqL9B2/zCSRRohtpjoPlbzcUBdadViUSKz8cZgDsaC6Ua DdTpCIdCc3/mvYmbk8Z8iZF8NQvtbvwJvH+tQ1wr+GJvE+hQTE5Ny3r+zyfUSITB ThqXtdJoGfK39wGOtKdaZ6zVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUS3grhqK+ enE6vfCbq9D5gmOQlsQwHwYDVR0jBBgwFoAUlX5Qp1++UC844+2/P0qq5mWuFIsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQjBFLzRFNkNCNEY2ODA2 OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJ cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFg1UXAxLS1VQzg0NC0yX1AwcXE1bVd1RklzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QjBFLzRFNkNCNEY2ODA2OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2xYNVFwMS0tVUM4 NDQtMl9QMHFxNW1XdUZJcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACz6toL+YK49VZNPe8ogQFPiaNGTX40Kk9z3adFys6SHunXo6xCFU2+E Y3eXxXMI8tVgBveIV0phgdePMr+8R/LdvIVvh1BLVueLkH0+apXq74c+MIypXbtS lxOgbhqSOGONNyvDYO5Ymmi7HoKHQZjpvrCFfA6THbly1sXqqb7akYH9B1TCSQQg Yp+zw6EbFQh2zN+HtOS307quAFUaFFUP6VmEJ6hCF2dZsT6p1f7TY+dL8ce6Fsa6 UIOILOxJ0enpwukd6wRrfuDLg/4Y6Fzr6lsfpgQR1mqB+/sbLj8V+HxkU1f5EByC 7z++ehHSGAnhBp2cQBiFQP9m+VNJJWM= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:03 2024 by rpki-client on console-ams.rpki-client.org