$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft File: lFlKrsbtZqaAoVv-tc2leC1MLYg.mft (raw, json) Hash identifier: cMwLb0JQTGX713lQAGnv2ZHpGgN+F6DVrDOadSJoASM= Subject key identifier: B9:84:17:F9:25:F3:A8:31:21:F1:65:13:87:AA:43:9D:CE:4C:08:38 Authority key identifier: 94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 Certificate issuer: /CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft Manifest number: 33 Signing time: Sat 23 Nov 2024 05:35:08 +0000 Manifest this update: Sat 23 Nov 2024 05:35:08 +0000 Manifest next update: Sat 30 Nov 2024 05:35:08 +0000 Files and hashes: 1: lFlKrsbtZqaAoVv-tc2leC1MLYg.crl (hash: eOO96evSHWdWQ0fDbdIKu81PvL4iT8JFYXMKM6or0u4=) 2: D926DBDA605211EF90C2C621C4F9AE02.roa (hash: tkJcG248FdMtD+BEeatR1cEXQikLyK5thc50Bl6i7SE=) 3: E7C7DBF8A0E411EF98A7340EC4F9AE02.roa (hash: pj9zFotWrwFIMY7z2MN0YoTNhTDJRj2Cmy9L8TSwoAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Validity Not Before: Nov 23 05:35:08 2024 GMT Not After : Nov 30 05:35:08 2024 GMT Subject: CN=6741698c-7a18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:14:12:16:ec:ca:93:8a:bb:97:59:56:8d:40: ce:f8:dc:8a:fc:f5:c3:25:51:8d:45:3d:ea:52:be: 76:57:fc:1e:36:f8:8c:0b:34:13:4d:f2:1c:c4:01: 61:32:da:e6:ef:6e:51:8f:9d:b1:3f:d7:e5:ac:27: 05:88:28:d8:25:f3:38:2a:f7:32:81:fc:1a:a0:96: a7:8b:f3:e2:c5:7a:22:04:b8:9c:13:36:5a:fa:31: e7:dc:c6:b3:d6:77:82:ea:5f:1a:1d:f9:d9:73:96: 1c:5e:6b:b1:36:61:ea:15:e9:63:d0:6a:e8:93:f8: f3:9b:ec:86:d7:0c:3e:ee:eb:83:69:53:2c:2a:dd: 37:41:9b:df:a3:24:25:9d:3f:21:3c:96:4f:0a:23: 83:65:b1:c6:e4:c4:f2:d0:b3:9a:b6:4d:4b:d2:d6: f8:8b:22:b9:55:cc:51:1f:03:c9:b7:5f:70:64:06: 46:c4:72:29:cb:77:52:c7:7d:37:1c:c9:d3:3d:41: 2c:7b:d8:4b:09:d0:46:ed:a9:50:af:64:46:81:91: 2b:ed:d7:cf:de:42:92:2b:cc:d2:ce:3c:3b:b7:ac: af:73:78:95:45:08:19:8b:e0:78:88:c1:75:c7:ba: d3:f6:a9:44:a5:3a:ca:09:04:b1:b8:c7:3c:dc:96: 34:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:84:17:F9:25:F3:A8:31:21:F1:65:13:87:AA:43:9D:CE:4C:08:38 X509v3 Authority Key Identifier: keyid:94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:52:de:70:15:02:4d:0c:81:b1:37:a9:79:03:03:de:8a:39: 56:0f:16:6e:50:fa:c9:aa:14:4b:b3:29:21:34:5f:c5:d7:e3: a8:47:13:b0:4c:7f:39:45:3e:3d:ca:68:92:70:7c:1f:30:9a: 82:4a:7b:ea:c8:49:15:05:10:55:c9:88:5f:41:18:3a:26:8f: 27:a8:b3:10:81:24:07:2f:bd:92:6f:bc:88:23:66:fd:ad:00: 36:85:0e:42:11:90:d1:d3:88:92:d2:6e:8d:71:ad:24:30:50: 00:8f:82:ec:01:c2:42:23:7a:40:0e:8c:14:47:7e:d9:5e:50: ce:83:02:03:1d:2c:9e:12:65:38:b3:b7:a1:6c:3f:d3:4e:68: fb:5c:75:62:0c:07:f6:dd:8f:f3:06:e5:8c:bf:58:51:92:b4: 1a:d4:72:4a:75:fc:71:3d:44:38:eb:31:d9:ed:58:1b:53:63: 10:f3:29:9a:1c:62:70:93:c9:cd:af:d4:cf:38:e1:46:91:02: fc:ae:89:ed:e7:97:88:a5:4c:af:91:36:ca:d9:ea:f0:00:aa: 28:f5:4f:07:9c:0f:c4:28:f6:be:9b:c7:44:4b:d7:13:80:fd: 29:58:68:f9:cb:3f:94:ab:eb:7e:d9:c7:b1:9d:83:e1:05:9d: 52:f2:1a:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGOTExMC8GA1UEBRMoOTQ1OTRBQUVDNkVENjZBNjgwQTE1QkZFQjVDREE1Nzgy RDRDMkQ4ODAeFw0yNDExMjMwNTM1MDhaFw0yNDExMzAwNTM1MDhaMBgxFjAUBgNV BAMTDTY3NDE2OThjLTdhMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUFBIW7MqTiruXWVaNQM743Ir89cMlUY1FPepSvnZX/B42+IwLNBNN8hzEAWEy 2ubvblGPnbE/1+WsJwWIKNgl8zgq9zKB/BqglqeL8+LFeiIEuJwTNlr6MefcxrPW d4LqXxod+dlzlhxea7E2YeoV6WPQauiT+POb7IbXDD7u64NpUywq3TdBm9+jJCWd PyE8lk8KI4NlscbkxPLQs5q2TUvS1viLIrlVzFEfA8m3X3BkBkbEcinLd1LHfTcc ydM9QSx72EsJ0EbtqVCvZEaBkSvt18/eQpIrzNLOPDu3rK9zeJVFCBmL4HiIwXXH utP2qUSlOsoJBLG4xzzcljRfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuYQX+SXz qDEh8WUTh6pDnc5MCDgwHwYDVR0jBBgwFoAUlFlKrsbtZqaAoVv+tc2leC1MLYgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUY5LzgwNEQ2QkYwNjA1 MjExRUZCMjg2RkQyMEM0RjlBRTAyL2xGbEtyc2J0WnFhQW9Wdi10YzJsZUMxTUxZ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEZsS3JzYnRacWFBb1Z2LXRjMmxlQzFNTFlnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUY5LzgwNEQ2QkYwNjA1MjExRUZCMjg2RkQyMEM0RjlBRTAyL2xGbEtyc2J0WnFh QW9Wdi10YzJsZUMxTUxZZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF5S3nAVAk0MgbE3qXkDA96KOVYPFm5Q+smqFEuzKSE0X8XX46hHE7BM fzlFPj3KaJJwfB8wmoJKe+rISRUFEFXJiF9BGDomjyeosxCBJAcvvZJvvIgjZv2t ADaFDkIRkNHTiJLSbo1xrSQwUACPguwBwkIjekAOjBRHftleUM6DAgMdLJ4SZTiz t6FsP9NOaPtcdWIMB/bdj/MG5Yy/WFGStBrUckp1/HE9RDjrMdntWBtTYxDzKZoc YnCTyc2v1M844UaRAvyuie3nl4ilTK+RNsrZ6vAAqij1TwecD8Qo9r6bx0RL1xOA /SlYaPnLP5Sr637Zx7Gdg+EFnVLyGh4= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org