$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft File: LIi8YKOEeXk7VUcMN37SPqAtByI.mft (raw, json) Hash identifier: 5JtDdJEOvdu2IbJWHtL8v4XpumtiVL0bJty/3iFMas0= Subject key identifier: 7C:88:CA:30:DA:BA:FC:15:88:78:0B:F3:21:53:11:0A:48:DF:12:B6 Authority key identifier: 2C:88:BC:60:A3:84:79:79:3B:55:47:0C:37:7E:D2:3E:A0:2D:07:22 Certificate issuer: /CN=A91D5114/serialNumber=2C88BC60A38479793B55470C377ED23EA02D0722 Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIi8YKOEeXk7VUcMN37SPqAtByI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft Manifest number: 012B Signing time: Thu 21 Nov 2024 02:54:39 +0000 Manifest this update: Thu 21 Nov 2024 02:54:39 +0000 Manifest next update: Thu 28 Nov 2024 02:54:39 +0000 Files and hashes: 1: LIi8YKOEeXk7VUcMN37SPqAtByI.crl (hash: FaCrLlzybXtMWtZf/qMwHVvynk6YevvrziYIKj5BovQ=) 2: 97EFA28EE5A911ED80EF757BC4F9AE02.roa (hash: AWrudQQgzJLS7MSlB50m43MehkidwQ5Ce89Ne/Grvwo=) 3: ED0DECA6E5A611EDADDD1074C4F9AE02.roa (hash: z3xacBjovMyDRqTM7g6iTpB77mlZVh09tcUD0xiN+xY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.crl rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIi8YKOEeXk7VUcMN37SPqAtByI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:54:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5114/serialNumber=2C88BC60A38479793B55470C377ED23EA02D0722 Validity Not Before: Nov 21 02:54:39 2024 GMT Not After : Nov 28 02:54:39 2024 GMT Subject: CN=673ea0ef-c238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:3b:9b:39:ef:7f:cc:23:c7:e8:33:49:15:36: 67:21:6f:0c:ba:82:f8:c1:34:7f:02:19:70:cb:0b: 84:7f:4f:39:97:e5:64:5a:31:e0:b1:b8:27:7f:c0: 6e:25:6e:04:77:3f:7f:39:12:08:9a:f1:9d:d6:ea: b8:f8:5a:2f:83:1a:13:f3:56:93:28:fc:a0:16:3f: 3c:e9:52:21:5c:a3:8a:2b:83:14:ea:3d:b1:60:82: a1:b0:6e:87:d1:cf:e7:81:d7:56:1d:d4:6c:ca:1a: 23:b2:e5:70:66:14:d3:63:d2:bc:1b:3c:e4:ea:aa: 1c:2f:65:ff:53:f0:ea:6f:76:51:67:26:c4:29:65: 95:2c:ec:17:c1:4f:cd:5c:fe:cb:86:ff:11:94:c9: da:ff:86:d3:6b:9e:8a:73:a5:49:32:ad:72:60:28: ed:ea:36:c4:15:06:d6:29:e8:e5:98:68:d0:3f:9a: 7a:0c:83:b4:c4:36:21:a0:fe:c5:7c:2c:a7:32:57: 36:59:e6:83:b5:bb:fd:e6:22:41:f5:2e:f8:e3:7a: e6:72:de:49:e5:86:a5:28:76:0b:2e:d0:db:f0:c1: 71:1e:c7:08:53:0a:a1:32:96:c1:ac:bb:2d:b6:f1: 59:bc:a2:1b:0a:ff:3b:d7:d5:96:55:50:02:ce:a5: 63:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:88:CA:30:DA:BA:FC:15:88:78:0B:F3:21:53:11:0A:48:DF:12:B6 X509v3 Authority Key Identifier: keyid:2C:88:BC:60:A3:84:79:79:3B:55:47:0C:37:7E:D2:3E:A0:2D:07:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIi8YKOEeXk7VUcMN37SPqAtByI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:b3:67:fb:dc:a2:66:ca:ad:51:a4:9f:45:3a:42:16:79:0a: fd:ff:e3:9f:74:19:38:34:e3:bc:99:ce:83:c8:3f:08:3f:2f: ee:8a:63:40:0e:7e:b4:d5:37:e0:0d:e1:24:df:6f:8c:67:6d: 66:85:16:a1:98:22:72:a3:a6:c1:94:c1:1e:32:2c:db:23:ee: 07:4d:37:5d:37:8b:0a:32:c8:40:e4:a4:14:c8:1d:74:56:99: cf:10:ad:d3:81:b5:b5:09:d8:46:ce:41:f7:98:94:42:12:14: e3:f2:dc:1d:35:6c:ed:2b:27:8c:ad:92:c3:22:dc:7b:de:f3: 61:54:24:c1:80:45:6c:63:4e:0b:08:e5:67:6a:ba:d9:83:52: a4:be:2c:7d:8c:ed:65:d9:61:cc:d5:db:35:a2:34:12:cb:90: 34:03:b1:c1:a1:18:a8:85:51:16:a8:c5:81:30:c1:b3:25:97: 19:1e:58:0b:11:f9:81:a2:ec:8e:d4:98:b8:70:37:2d:b1:ae: a8:d5:6c:63:aa:e9:da:c0:97:19:78:58:65:59:b1:58:da:b0: d4:20:db:f7:e4:2c:a7:c6:69:c9:ca:a6:8c:18:37:19:ae:8b: 75:ca:69:36:d7:c2:ae:47:65:28:b3:47:ee:4f:38:13:58:a7: b5:36:6c:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxMTQxMTAvBgNVBAUTKDJDODhCQzYwQTM4NDc5NzkzQjU1NDcwQzM3N0VEMjNF QTAyRDA3MjIwHhcNMjQxMTIxMDI1NDM5WhcNMjQxMTI4MDI1NDM5WjAYMRYwFAYD VQQDEw02NzNlYTBlZi1jMjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlDubOe9/zCPH6DNJFTZnIW8MuoL4wTR/AhlwywuEf085l+VkWjHgsbgnf8Bu JW4Edz9/ORIImvGd1uq4+FovgxoT81aTKPygFj886VIhXKOKK4MU6j2xYIKhsG6H 0c/ngddWHdRsyhojsuVwZhTTY9K8Gzzk6qocL2X/U/Dqb3ZRZybEKWWVLOwXwU/N XP7Lhv8RlMna/4bTa56Kc6VJMq1yYCjt6jbEFQbWKejlmGjQP5p6DIO0xDYhoP7F fCynMlc2WeaDtbv95iJB9S7443rmct5J5YalKHYLLtDb8MFxHscIUwqhMpbBrLst tvFZvKIbCv8719WWVVACzqVjMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyIyjDa uvwViHgL8yFTEQpI3xK2MB8GA1UdIwQYMBaAFCyIvGCjhHl5O1VHDDd+0j6gLQci MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTExNC8zNEUxOUU4OEU1 QTIxMUVEODA4Q0YzNzdDNEY5QUUwMi9MSWk4WUtPRWVYazdWVWNNTjM3U1BxQXRC eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xJaThZS09FZVhrN1ZVY01OMzdTUHFBdEJ5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTExNC8zNEUxOUU4OEU1QTIxMUVEODA4Q0YzNzdDNEY5QUUwMi9MSWk4WUtPRWVY azdWVWNNTjM3U1BxQXRCeUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOs2f73KJmyq1RpJ9FOkIWeQr9/+OfdBk4NOO8mc6DyD8IPy/uimNA Dn601TfgDeEk32+MZ21mhRahmCJyo6bBlMEeMizbI+4HTTddN4sKMshA5KQUyB10 VpnPEK3TgbW1CdhGzkH3mJRCEhTj8twdNWztKyeMrZLDItx73vNhVCTBgEVsY04L COVnarrZg1Kkvix9jO1l2WHM1ds1ojQSy5A0A7HBoRiohVEWqMWBMMGzJZcZHlgL EfmBouyO1Ji4cDctsa6o1WxjqunawJcZeFhlWbFY2rDUINv35CynxmnJyqaMGDcZ rot1ymk218KuR2Uos0fuTzgTWKe1NmzM -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:05 2024 by rpki-client on console-fra.rpki-client.org