$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: W23UsmiHeiTxr9ibiEAciCleFn3sqVG+86oDDywprhw= Subject key identifier: D5:9C:D0:AA:96:C1:D1:B7:8E:E7:D8:58:E2:8C:99:65:5B:0E:AE:3A Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 0825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 081F Signing time: Fri 22 Nov 2024 20:33:13 +0000 Manifest this update: Fri 22 Nov 2024 20:33:12 +0000 Manifest next update: Fri 29 Nov 2024 20:33:12 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: 0C1yyAQRJVkhCQ6d0DUg3b65ooDCfBVcRErzmuAig6c=) 2: 2C74B00CF70011EA8EFF4C67C4F9AE02.roa (hash: tCsERzsAtsk+5phQVU01aXCd1wv6EXGawIRg0i0oP6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:33:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2085 (0x825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Nov 22 20:33:12 2024 GMT Not After : Nov 29 20:33:12 2024 GMT Subject: CN=6740ea89-a3bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4f:6b:d8:db:a1:e2:cc:70:b6:2e:82:e4:72: 33:36:59:81:27:51:ca:cc:2a:f6:62:73:52:fb:60: e4:64:99:2f:e5:0d:09:92:36:f4:bc:2e:f7:3c:ff: 00:f3:59:01:1c:ee:98:4c:f7:28:35:45:66:d4:0d: ba:a4:f5:68:01:50:f4:cf:78:6c:bf:48:59:6c:4d: f3:76:93:ba:2c:8d:19:17:7a:d3:5c:28:7e:20:73: b8:d6:5d:00:d3:84:9e:1e:63:cf:96:f3:76:8e:65: 52:ef:3c:5f:6b:76:a0:ea:04:15:d2:1c:29:eb:8c: 5d:1a:72:3c:f4:22:e4:19:fe:e9:09:57:b1:f5:f4: ae:bb:f7:92:49:2a:90:2e:a4:c5:88:2f:a0:0f:68: 42:4a:55:e2:20:ea:72:08:99:6a:ef:fd:15:fd:0e: 62:de:3b:70:67:9a:07:c9:a0:06:37:8e:8d:91:bc: 3e:79:71:dd:18:9e:8e:d5:d5:ff:a2:77:90:fc:f8: d8:37:58:4e:bc:90:e8:67:d8:1f:45:c1:a8:2b:d1: f5:79:67:e1:89:cb:af:6a:57:92:2e:bf:df:ba:ef: b1:ba:37:ce:8d:12:6a:d1:78:39:fa:96:1d:03:84: 57:d2:bb:c0:d6:2e:16:37:e7:4c:27:80:eb:61:4e: 81:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9C:D0:AA:96:C1:D1:B7:8E:E7:D8:58:E2:8C:99:65:5B:0E:AE:3A X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:bb:12:56:05:fe:2b:57:80:ec:b2:6d:12:e8:52:6b:33:9c: fb:03:9a:af:a5:99:9a:f2:b1:a1:f9:3f:7c:b6:78:b2:19:b3: dc:0a:22:1a:c4:67:d7:d5:5b:18:72:cc:f7:d9:3c:bb:d0:6e: 4b:e3:d5:09:74:c7:80:78:c5:55:dc:0d:14:d2:b5:72:e9:ec: bc:d2:4a:5a:a9:65:49:fe:35:99:b3:57:78:5c:ea:cc:c3:1f: 51:3d:a8:ae:44:58:63:9d:ed:8f:c7:f6:88:e4:25:33:b6:2b: 17:51:20:bd:12:22:47:db:25:8c:e7:6c:4b:61:54:b4:2e:5b: f6:5c:1b:1a:4b:7a:00:e9:bc:63:f5:1d:2e:8d:29:14:f6:c7: f8:1a:6c:55:4d:64:e2:38:10:5a:21:30:7f:40:33:f3:06:32: ba:50:c0:2c:4f:af:f7:fe:d6:3b:a6:cb:34:12:94:7a:12:9d: b2:cb:d4:59:fc:4c:fb:01:eb:35:9c:58:97:a4:b3:89:a6:57: f0:76:6f:9f:c1:fc:db:b9:4a:fa:5c:c9:c6:85:ba:dd:0c:5d: 79:41:1c:6e:d1:04:c1:8e:eb:0d:d8:8b:31:bf:1d:30:14:b3: 93:48:64:12:90:bf:b7:05:e5:d1:b7:5c:34:e5:10:02:45:da: f7:2a:fa:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjQxMTIyMjAzMzEyWhcNMjQxMTI5MjAzMzEyWjAYMRYwFAYD VQQDEw02NzQwZWE4OS1hM2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuU9r2Nuh4sxwti6C5HIzNlmBJ1HKzCr2YnNS+2DkZJkv5Q0Jkjb0vC73PP8A 81kBHO6YTPcoNUVm1A26pPVoAVD0z3hsv0hZbE3zdpO6LI0ZF3rTXCh+IHO41l0A 04SeHmPPlvN2jmVS7zxfa3ag6gQV0hwp64xdGnI89CLkGf7pCVex9fSuu/eSSSqQ LqTFiC+gD2hCSlXiIOpyCJlq7/0V/Q5i3jtwZ5oHyaAGN46Nkbw+eXHdGJ6O1dX/ oneQ/PjYN1hOvJDoZ9gfRcGoK9H1eWfhicuvaleSLr/fuu+xujfOjRJq0Xg5+pYd A4RX0rvA1i4WN+dMJ4DrYU6BfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNWc0KqW wdG3jufYWOKMmWVbDq46MB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiuxJWBf4rV4Dssm0S6FJrM5z7A5qvpZma8rGh+T98tniyGbPcCiIa xGfX1VsYcsz32Ty70G5L49UJdMeAeMVV3A0U0rVy6ey80kpaqWVJ/jWZs1d4XOrM wx9RPaiuRFhjne2Px/aI5CUztisXUSC9EiJH2yWM52xLYVS0Llv2XBsaS3oA6bxj 9R0ujSkU9sf4GmxVTWTiOBBaITB/QDPzBjK6UMAsT6/3/tY7pss0EpR6Ep2yy9RZ /Ez7Aes1nFiXpLOJplfwdm+fwfzbuUr6XMnGhbrdDF15QRxu0QTBjusN2Isxvx0w FLOTSGQSkL+3BeXRt1w05RACRdr3KvrK -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:48 2024 by rpki-client on console-ams.rpki-client.org