$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: FX/BUEi4sV5FxVY7MeiUWycXgzZqpzY39I1mv8abl18= Subject key identifier: 3F:AB:C9:84:68:82:84:09:AC:F7:11:66:58:A7:D4:88:B2:AB:D0:76 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 0376 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 0370 Signing time: Sat 23 Nov 2024 00:27:54 +0000 Manifest this update: Sat 23 Nov 2024 00:27:54 +0000 Manifest next update: Sat 30 Nov 2024 00:27:54 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: lVdYc6hGTQLHQ/gMT9aczKt8SsTt2Oor/fsU0JCu8HY=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: 1ectacXYc5Ni/B4LKjKjy/yz6JJ0/bOlgffCGf02HwU=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: ZoKh3xhYxhnJLBqf+U3DzxssrG+AkkH4yvT0tAoB9Aw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 886 (0x376) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Nov 23 00:27:54 2024 GMT Not After : Nov 30 00:27:54 2024 GMT Subject: CN=6741218a-f677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fe:ab:f2:ae:29:76:e6:22:ad:b5:b5:20:4c: e8:43:28:e2:11:8d:59:d0:d1:30:b1:af:c5:aa:81: e5:e5:27:6d:60:ff:a8:c4:b4:06:78:c4:6e:5f:24: 50:88:d2:a0:56:be:a8:5a:e8:f4:8b:d3:02:72:f4: 93:28:fe:fb:ec:29:f0:0a:38:0a:29:ac:0c:52:e2: c9:88:65:1d:47:bd:b8:e3:0f:5a:bf:12:19:e0:9d: 6a:09:64:29:a6:06:a6:a7:d6:82:17:72:e5:0f:b1: 02:ca:78:ee:c1:c1:21:85:a6:6a:e7:4c:80:73:8e: 74:29:f1:5d:66:2f:a3:6d:00:c6:fa:68:95:52:ac: 81:51:d4:ad:77:0a:76:7b:67:9c:73:e6:64:c7:69: 71:87:2b:81:3e:07:4f:b8:d2:09:c2:d4:af:5a:2e: ce:c4:bd:d7:64:24:9d:f4:7b:90:22:f1:01:61:44: 5d:71:a8:95:0e:36:b1:d7:92:9c:39:9e:50:64:8b: ec:76:e9:ff:bf:8f:6e:b9:9a:65:84:f4:5c:e4:03: cf:48:48:7b:d2:71:be:1a:5e:c1:ae:52:1a:ca:d1: af:d7:72:90:31:c1:14:e5:0d:78:51:7c:5e:67:38: bd:0e:08:27:a5:9d:bb:6a:44:32:ef:7e:d8:d0:f0: 83:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:AB:C9:84:68:82:84:09:AC:F7:11:66:58:A7:D4:88:B2:AB:D0:76 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:4a:93:f3:1b:ea:a3:f0:92:30:88:ac:ed:ee:da:b4:db:28: e3:52:de:89:b6:45:ba:2c:9c:1c:c1:15:88:ed:2c:73:52:22: 51:d5:b0:76:21:c8:ac:c3:b3:98:87:5a:de:e9:ee:82:30:91: 9d:8f:2d:58:79:48:2f:fe:ae:b9:12:37:6c:55:1a:e4:bd:c9: e2:c2:9a:c7:3b:d5:37:eb:ec:01:1e:41:47:cc:9e:25:33:67: 5b:1a:5c:9c:14:09:b8:d1:98:4a:df:e2:18:4b:a0:9f:73:3a: e6:3a:d3:be:a5:74:d7:b6:61:13:de:63:c1:ae:bc:da:46:88: 00:18:8c:8a:b0:c4:28:88:32:8e:22:7c:f8:d2:06:2f:65:e0: 89:e1:51:0e:73:4e:fe:c8:ee:91:59:6e:5e:4c:3b:e7:a4:a3: 06:a2:e5:65:02:49:68:94:28:3c:e9:4b:10:a1:6e:b5:fb:c4: 12:c7:18:2e:c6:ab:5b:f9:4c:d4:54:4e:23:9a:a0:a6:3d:77: 8c:17:72:a0:6b:08:9b:9a:c5:16:a1:4c:8f:9c:0e:27:79:37: d7:c1:60:04:00:24:a6:78:63:64:c3:f6:ee:14:e7:14:7f:14: 64:96:ba:0b:59:f7:ec:66:8b:b4:20:90:ad:15:fe:ac:82:ed: d1:49:d6:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjQxMTIzMDAyNzU0WhcNMjQxMTMwMDAyNzU0WjAYMRYwFAYD VQQDEw02NzQxMjE4YS1mNjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqv6r8q4pduYirbW1IEzoQyjiEY1Z0NEwsa/FqoHl5SdtYP+oxLQGeMRuXyRQ iNKgVr6oWuj0i9MCcvSTKP777CnwCjgKKawMUuLJiGUdR7244w9avxIZ4J1qCWQp pgamp9aCF3LlD7ECynjuwcEhhaZq50yAc450KfFdZi+jbQDG+miVUqyBUdStdwp2 e2ecc+Zkx2lxhyuBPgdPuNIJwtSvWi7OxL3XZCSd9HuQIvEBYURdcaiVDjax15Kc OZ5QZIvsdun/v49uuZplhPRc5APPSEh70nG+Gl7BrlIaytGv13KQMcEU5Q14UXxe Zzi9DggnpZ27akQy737Y0PCDHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+ryYRo goQJrPcRZlin1Iiyq9B2MB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiSpPzG+qj8JIwiKzt7tq02yjjUt6JtkW6LJwcwRWI7SxzUiJR1bB2 Icisw7OYh1re6e6CMJGdjy1YeUgv/q65EjdsVRrkvcniwprHO9U36+wBHkFHzJ4l M2dbGlycFAm40ZhK3+IYS6CfczrmOtO+pXTXtmET3mPBrrzaRogAGIyKsMQoiDKO Inz40gYvZeCJ4VEOc07+yO6RWW5eTDvnpKMGouVlAklolCg86UsQoW61+8QSxxgu xqtb+UzUVE4jmqCmPXeMF3KgawibmsUWoUyPnA4neTfXwWAEACSmeGNkw/buFOcU fxRklroLWffsZou0IJCtFf6sgu3RSdaD -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:48 2024 by rpki-client on console-fra.rpki-client.org