$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft File: LHtdhHIAPPNDas_lth6J7Isa2Ks.mft (raw, json) Hash identifier: HBgPJbCbQkSW4IHDiS47HsrumWry4wUwrvYtlETxwAg= Subject key identifier: 9A:24:BA:FC:41:B4:14:96:77:02:47:E0:9C:25:C0:B2:9A:13:5B:60 Authority key identifier: 2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB Certificate issuer: /CN=A91E0CA1/serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft Manifest number: 16 Signing time: Tue 22 Oct 2024 19:36:41 +0000 Manifest this update: Tue 22 Oct 2024 19:36:41 +0000 Manifest next update: Tue 29 Oct 2024 19:36:41 +0000 Files and hashes: 1: LHtdhHIAPPNDas_lth6J7Isa2Ks.crl (hash: 0KU4ppErxC+Ix89wwT0m+F8ueWgfYKuE8FQYNxEfEio=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 19:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1/serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Validity Not Before: Oct 22 19:36:41 2024 GMT Not After : Oct 29 19:36:41 2024 GMT Subject: CN=6717fec9-ff8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:cc:00:e7:a4:d9:3d:dc:d9:76:5f:ce:5e:a9: fc:62:f5:4c:d2:85:dd:fb:da:69:31:46:a3:f8:4d: c0:40:cb:e1:cd:3f:bf:1c:5e:53:9a:8d:af:11:44: 14:3d:13:31:32:54:0c:a3:1d:3b:5f:1f:d5:ff:3f: 83:09:63:5f:dd:e6:9d:2c:5c:31:e8:2b:a3:4a:7f: 95:d8:dc:c2:f7:5d:47:d7:94:4d:33:03:8b:a2:b7: f4:88:c8:38:eb:4d:1f:0c:44:f9:dc:30:f1:21:49: c6:4c:f5:55:de:85:6c:2c:e4:fc:dc:85:e8:40:50: 2d:e7:e6:ea:92:8c:b4:8d:cd:ab:f0:ab:23:bc:72: 1b:37:ec:cd:6a:5a:d4:d5:47:86:f3:2a:77:6b:56: 8f:87:4b:53:26:51:be:4b:10:a3:d6:e6:7a:7f:4a: e2:ed:77:92:db:6a:92:e7:0e:e1:54:2a:6b:62:a7: 42:6d:4e:ba:69:d0:37:3e:66:86:f8:5f:f7:30:d2: 07:cd:5f:8b:f5:48:db:57:de:21:24:15:69:7f:af: 1a:18:a5:a6:96:ac:d1:1b:93:50:47:39:9b:07:f4: 41:20:e0:f7:57:57:a2:3e:65:ef:af:d2:4d:6a:b1: ba:fd:9d:e6:ad:35:3f:f1:8d:0c:c1:b8:8e:14:49: d4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:24:BA:FC:41:B4:14:96:77:02:47:E0:9C:25:C0:B2:9A:13:5B:60 X509v3 Authority Key Identifier: keyid:2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:e4:30:de:e3:1f:ae:84:c1:df:0f:af:9d:78:8a:df:ab:32: 31:c6:4c:e6:2c:73:d4:e9:9d:22:3e:9f:86:ef:98:c6:7e:d4: 93:f9:36:87:22:94:bf:06:04:9f:71:8d:62:c6:37:41:e8:eb: 02:a5:f6:8b:7b:f3:9c:92:ac:75:b1:3e:d6:aa:ff:0a:b1:54: 39:25:7a:60:3d:17:a9:b0:40:b7:f8:11:43:16:b2:15:85:3c: ad:64:c4:8c:24:bd:be:ae:16:c5:d0:f2:4f:75:bb:3e:05:bd: 5e:fc:53:ef:1b:d9:ba:6d:5a:ec:21:b8:dc:91:f3:07:59:35: de:69:8f:9a:cf:d2:99:e8:d4:0a:eb:f4:f1:6a:2b:11:fd:ed: 16:f0:ab:e2:c8:1a:d5:a8:29:82:84:25:c9:bc:7f:1d:5e:c3: 45:54:89:e2:64:a1:bf:ee:5a:7a:c9:4c:dd:a4:a1:7f:81:cd: 14:62:b2:a7:b5:41:56:b7:b3:8a:41:04:64:08:81:8f:63:d1: 33:25:f1:ae:7b:3c:3b:8c:f1:f8:d0:e3:da:ae:83:14:b6:b7: 83:33:52:cf:7b:e4:31:f1:17:31:f1:ac:76:48:a4:db:96:5c: 0a:cd:4c:cd:f1:86:fa:e4:7b:59:21:e3:63:e3:42:ad:a9:18: 6e:a0:67:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MENBMTExMC8GA1UEBRMoMkM3QjVEODQ3MjAwM0NGMzQzNkFDRkU1QjYxRTg5RUM4 QjFBRDhBQjAeFw0yNDEwMjIxOTM2NDFaFw0yNDEwMjkxOTM2NDFaMBgxFjAUBgNV BAMTDTY3MTdmZWM5LWZmOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpzADnpNk93Nl2X85eqfxi9UzShd372mkxRqP4TcBAy+HNP78cXlOaja8RRBQ9 EzEyVAyjHTtfH9X/P4MJY1/d5p0sXDHoK6NKf5XY3ML3XUfXlE0zA4uit/SIyDjr TR8MRPncMPEhScZM9VXehWws5PzchehAUC3n5uqSjLSNzavwqyO8chs37M1qWtTV R4bzKndrVo+HS1MmUb5LEKPW5np/SuLtd5LbapLnDuFUKmtip0JtTrpp0Dc+Zob4 X/cw0gfNX4v1SNtX3iEkFWl/rxoYpaaWrNEbk1BHOZsH9EEg4PdXV6I+Ze+v0k1q sbr9neatNT/xjQzBuI4USdQdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmiS6/EG0 FJZ3AkfgnCXAspoTW2AwHwYDVR0jBBgwFoAULHtdhHIAPPNDas/lth6J7Isa2Ksw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwQ0ExLzRFMTFGNEQ2NzE5 MDExRUY4M0M0QkY3QUM0RjlBRTAyL0xIdGRoSElBUFBORGFzX2x0aDZKN0lzYTJL cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTEh0ZGhISUFQUE5EYXNfbHRoNko3SXNhMktzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUw Q0ExLzRFMTFGNEQ2NzE5MDExRUY4M0M0QkY3QUM0RjlBRTAyL0xIdGRoSElBUFBO RGFzX2x0aDZKN0lzYTJLcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAArkMN7jH66Ewd8Pr514it+rMjHGTOYsc9TpnSI+n4bvmMZ+1JP5Noci lL8GBJ9xjWLGN0Ho6wKl9ot785ySrHWxPtaq/wqxVDklemA9F6mwQLf4EUMWshWF PK1kxIwkvb6uFsXQ8k91uz4FvV78U+8b2bptWuwhuNyR8wdZNd5pj5rP0pno1Arr 9PFqKxH97Rbwq+LIGtWoKYKEJcm8fx1ew0VUieJkob/uWnrJTN2koX+BzRRisqe1 QVa3s4pBBGQIgY9j0TMl8a57PDuM8fjQ49qugxS2t4MzUs975DHxFzHxrHZIpNuW XArNTM3xhvrke1kh42PjQq2pGG6gZ88= -----END CERTIFICATE-----Generated at Tue Oct 22 21:25:55 2024 by rpki-client on console-fra.rpki-client.org