$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: TsJWwUrUpy6ahUeJPRckpY0xArH2ll2+kwiwggkL7dM= Subject key identifier: E0:11:8E:F8:C1:55:75:54:01:88:6F:C2:35:21:D5:4A:3D:31:E4:BE Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0DDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0DD4 Signing time: Fri 22 Nov 2024 17:48:46 +0000 Manifest this update: Fri 22 Nov 2024 17:48:46 +0000 Manifest next update: Fri 29 Nov 2024 17:48:46 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: x8OHXBQRFhT+6UEYKFUMR8owWc5hpdvOAamtPWloDw4=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: 8FSx/7pmWfnqq5buFAKmXuNtb84bNl4hKWrDWfIfWSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:48:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3548 (0xddc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Nov 22 17:48:46 2024 GMT Not After : Nov 29 17:48:46 2024 GMT Subject: CN=6740c3fe-8fb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c7:c1:cc:ac:14:49:88:34:a1:74:b4:dd:de: db:9f:27:4b:b8:ad:17:6f:ba:85:82:83:17:38:a2: a2:09:2a:3a:0e:49:ce:da:f5:d8:00:6c:d2:31:3a: 9a:e2:49:1d:aa:d0:84:f7:23:c0:3b:8a:80:36:42: 69:85:12:02:87:09:dd:c3:9b:21:f5:48:2c:bb:cd: 8a:03:bc:56:82:95:2c:25:be:93:e0:16:9f:71:c1: 1a:c9:02:ad:5d:f5:e3:8a:8d:7d:75:ae:f6:c3:19: 51:14:2f:ea:cb:76:eb:33:72:a9:2b:81:9a:4a:06: 92:63:a4:c6:d5:58:f0:67:33:6c:04:e8:9f:53:7f: 5b:f8:e1:01:a1:ad:82:86:5c:81:aa:e0:9d:cb:9b: 44:b2:d5:61:eb:15:77:cb:42:42:03:5e:04:e4:af: dc:02:da:fb:22:cb:71:31:3f:5e:46:84:ce:30:af: 19:d2:f9:42:45:c6:06:25:91:8a:3c:b0:26:86:64: 15:66:57:00:98:fc:37:a5:5a:29:64:fc:b5:ef:f9: 31:e7:b4:ad:eb:91:99:1e:ff:6a:a9:c0:01:47:15: 27:92:5f:45:40:82:f8:3d:36:93:d4:d6:2b:a1:d2: 84:76:89:68:1b:19:f2:9e:86:c8:72:7d:9e:33:aa: 90:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:11:8E:F8:C1:55:75:54:01:88:6F:C2:35:21:D5:4A:3D:31:E4:BE X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:8f:6b:40:41:88:a5:e8:18:58:63:f9:b6:ac:c5:cd:5e:b7: 2e:a9:e7:d0:5c:ea:8a:cb:ac:82:5d:53:ac:8e:1c:5e:a1:81: e5:7d:5e:53:5a:b1:df:6e:ad:f4:18:06:14:47:79:72:c9:24: dc:ee:94:e9:65:73:52:e0:b1:44:60:f8:ef:7e:9a:ce:d0:26: 97:34:de:c6:a5:78:1c:1d:98:57:df:e5:10:44:5f:30:ee:c0: 95:e7:9e:20:09:18:6c:f9:e7:07:c5:64:0b:2f:bc:3d:9d:90: ec:14:08:c1:1d:93:3b:a1:a9:77:48:14:6b:1e:9e:a7:17:f4: d2:5c:11:c9:75:53:00:6c:04:86:77:59:64:81:a1:9c:a7:15: 1f:c1:f4:c6:23:f5:e6:03:68:00:59:d2:48:9e:17:4d:ea:31: 67:66:b9:66:da:32:53:15:80:14:1b:08:d3:c2:a9:63:1f:4c: a6:f0:b0:0e:3c:37:57:39:28:62:f8:5b:11:2b:18:d0:9c:3c: e2:50:d6:c2:cc:30:b7:ac:5c:02:f1:1c:ed:15:f3:07:a9:ec: f5:14:21:e9:68:80:d7:00:e5:d1:5f:4e:bc:53:aa:e0:6e:40: af:4f:30:7f:6e:5e:ba:8e:7b:73:ec:11:20:05:9a:27:2b:0a: 83:7d:56:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjQxMTIyMTc0ODQ2WhcNMjQxMTI5MTc0ODQ2WjAYMRYwFAYD VQQDEw02NzQwYzNmZS04ZmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sfBzKwUSYg0oXS03d7bnydLuK0Xb7qFgoMXOKKiCSo6DknO2vXYAGzSMTqa 4kkdqtCE9yPAO4qANkJphRIChwndw5sh9Ugsu82KA7xWgpUsJb6T4BafccEayQKt XfXjio19da72wxlRFC/qy3brM3KpK4GaSgaSY6TG1VjwZzNsBOifU39b+OEBoa2C hlyBquCdy5tEstVh6xV3y0JCA14E5K/cAtr7IstxMT9eRoTOMK8Z0vlCRcYGJZGK PLAmhmQVZlcAmPw3pVopZPy17/kx57St65GZHv9qqcABRxUnkl9FQIL4PTaT1NYr odKEdoloGxnynobIcn2eM6qQrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOARjvjB VXVUAYhvwjUh1Uo9MeS+MB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6j2tAQYil6BhYY/m2rMXNXrcuqefQXOqKy6yCXVOsjhxeoYHlfV5T WrHfbq30GAYUR3lyySTc7pTpZXNS4LFEYPjvfprO0CaXNN7GpXgcHZhX3+UQRF8w 7sCV554gCRhs+ecHxWQLL7w9nZDsFAjBHZM7oal3SBRrHp6nF/TSXBHJdVMAbASG d1lkgaGcpxUfwfTGI/XmA2gAWdJInhdN6jFnZrlm2jJTFYAUGwjTwqljH0ym8LAO PDdXOShi+FsRKxjQnDziUNbCzDC3rFwC8RztFfMHqez1FCHpaIDXAOXRX068U6rg bkCvTzB/bl66jntz7BEgBZonKwqDfVY+ -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org