$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: c1epxdyKPzZaf/FdbrADwyz8lQTqJrdqLdriz01GArU= Subject key identifier: 27:90:66:76:93:CF:51:8E:65:9B:68:9B:2A:26:E0:BD:08:B7:D4:4C Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: 21 Signing time: Wed 23 Oct 2024 06:34:41 +0000 Manifest this update: Wed 23 Oct 2024 06:34:40 +0000 Manifest next update: Wed 30 Oct 2024 06:34:40 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: M/M11oqlGY+UAcGcx0yRkmQemEKrpWQUcHyjQug1xsE=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: r6mTJvt8SukGGtNb+WgynqBgaxV1KBCRpaFxjoCbFH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Validity Not Before: Oct 23 06:34:40 2024 GMT Not After : Oct 30 06:34:40 2024 GMT Subject: CN=67189900-5e25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:28:e0:c8:65:40:c7:ff:ab:d2:d5:89:af:5f: b0:2f:ab:51:b5:6b:ce:32:f0:31:33:18:a5:35:6f: 33:61:a4:8a:e4:bb:56:3c:ad:e9:1b:06:54:17:05: 8d:93:f7:29:b0:9d:63:bf:28:da:5b:5a:4b:62:88: 66:b4:e0:5c:4a:55:1b:ca:4e:e8:f9:4d:7c:5e:59: c3:06:43:c7:c9:b6:c9:54:33:b1:39:3b:60:dc:67: 48:66:cf:36:f8:71:96:1b:14:7e:96:88:c9:d4:26: 1a:c0:7f:3b:6f:ca:cd:dd:49:0d:09:ea:1a:9e:7b: c4:32:5c:ab:b3:54:0b:f7:0b:9e:69:71:ed:e7:48: 4e:15:e4:ba:a3:d6:bc:b6:f6:de:96:34:18:48:56: 69:51:a5:cc:1d:88:7e:0d:b6:3c:a3:84:54:61:0e: 19:7a:27:cc:c6:37:12:14:22:c2:6d:ef:86:47:fd: 60:00:57:e6:a1:e6:5f:7e:96:ab:8e:22:0a:1b:a9: 93:71:25:8b:61:c4:b7:13:4e:bb:f7:80:47:ff:89: d6:aa:a2:3c:1d:1b:cc:03:75:59:8b:bd:0c:4e:39: c9:a3:0d:f0:01:01:3e:d3:d4:cb:36:b8:9e:a2:8d: b5:66:79:9b:49:4a:92:0b:19:af:e5:78:e7:c1:79: 4f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:90:66:76:93:CF:51:8E:65:9B:68:9B:2A:26:E0:BD:08:B7:D4:4C X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:f4:99:de:48:fa:16:43:c9:f1:75:71:7c:8d:2d:a5:3a:57: 3d:40:0c:7a:4f:83:94:e2:e2:13:53:83:28:07:3e:66:55:0a: 5d:8e:eb:05:11:34:0e:7e:f0:64:82:24:de:1e:57:f6:db:33: f1:58:71:65:e2:fd:73:c6:d4:01:06:61:d6:55:63:6c:90:3f: 65:f8:fc:70:68:98:b0:7f:84:d4:0f:a3:d1:d2:30:49:a1:a4: bf:d1:a9:ec:01:4b:c6:8b:67:25:fb:01:98:c7:1c:67:ab:38: 12:9f:d2:42:09:8f:d9:78:b4:a9:62:68:67:45:42:16:ba:aa: a0:d2:ce:12:bc:8b:a3:db:cd:1d:5e:0b:ff:dd:59:52:f4:0f: d7:b2:03:cc:f1:0a:f9:92:11:5d:52:6d:45:2b:72:50:b8:c1: 9b:32:34:c9:fe:3c:e7:b3:09:3f:d4:84:60:9b:5c:90:ad:b6: fa:1f:c2:7c:76:83:9c:c1:f1:f3:e1:25:93:32:5a:45:af:b7: 16:e0:f1:11:cf:6e:50:c8:a7:1d:e3:8f:b2:11:38:44:89:5c: 45:70:5e:f3:96:a2:7d:32:3b:52:08:65:da:4f:c1:49:4c:8f: 3d:29:ea:49:1f:08:50:58:37:63:7f:85:f3:bf:0b:21:e3:30: ff:e1:09:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDRCRTExMC8GA1UEBRMoOTVGMDlENUU1QjhCQ0Q2RjRCNEQ2OUI1QzkzNkM5MTJG NzdEMkNGRDAeFw0yNDEwMjMwNjM0NDBaFw0yNDEwMzAwNjM0NDBaMBgxFjAUBgNV BAMTDTY3MTg5OTAwLTVlMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZKODIZUDH/6vS1YmvX7Avq1G1a84y8DEzGKU1bzNhpIrku1Y8rekbBlQXBY2T 9ymwnWO/KNpbWktiiGa04FxKVRvKTuj5TXxeWcMGQ8fJtslUM7E5O2DcZ0hmzzb4 cZYbFH6WiMnUJhrAfztvys3dSQ0J6hqee8QyXKuzVAv3C55pce3nSE4V5Lqj1ry2 9t6WNBhIVmlRpcwdiH4NtjyjhFRhDhl6J8zGNxIUIsJt74ZH/WAAV+ah5l9+lquO IgobqZNxJYthxLcTTrv3gEf/idaqojwdG8wDdVmLvQxOOcmjDfABAT7T1Ms2uJ6i jbVmeZtJSpILGa/leOfBeU8NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJ5BmdpPP UY5lm2ibKibgvQi31EwwHwYDVR0jBBgwFoAUlfCdXluLzW9LTWm1yTbJEvd9LP0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0NEJFLzAyOEFCRTQyNjky MjExRUZCRjg3QkIwRUM0RjlBRTAyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbGZDZFhsdUx6VzlMVFdtMXlUYkpFdmQ5TFAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 NEJFLzAyOEFCRTQyNjkyMjExRUZCRjg3QkIwRUM0RjlBRTAyL2xmQ2RYbHVMelc5 TFRXbTF5VGJKRXZkOUxQMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB30md5I+hZDyfF1cXyNLaU6Vz1ADHpPg5Ti4hNTgygHPmZVCl2O6wUR NA5+8GSCJN4eV/bbM/FYcWXi/XPG1AEGYdZVY2yQP2X4/HBomLB/hNQPo9HSMEmh pL/RqewBS8aLZyX7AZjHHGerOBKf0kIJj9l4tKliaGdFQha6qqDSzhK8i6PbzR1e C//dWVL0D9eyA8zxCvmSEV1SbUUrclC4wZsyNMn+POezCT/UhGCbXJCttvofwnx2 g5zB8fPhJZMyWkWvtxbg8RHPblDIpx3jj7IROESJXEVwXvOWon0yO1IIZdpPwUlM jz0p6kkfCFBYN2N/hfO/CyHjMP/hCT0= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:03 2024 by rpki-client on console-ams.rpki-client.org