$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: VhKpySaRdR6BMcTL2ymJgJCM772wHTW5UAd5081uEp0= Subject key identifier: 16:E1:9C:9C:3C:6A:B7:43:3F:AD:05:F9:0E:D8:A5:69:D5:ED:17:5E Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 01EE Signing time: Sat 23 Nov 2024 02:16:30 +0000 Manifest this update: Sat 23 Nov 2024 02:16:30 +0000 Manifest next update: Sat 30 Nov 2024 02:16:30 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: QnjuoIL96ARYObLB81/kTEO86Sgbzy5DZsVKY9qv/Cw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Nov 23 02:16:30 2024 GMT Not After : Nov 30 02:16:30 2024 GMT Subject: CN=67413afe-b374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:15:cd:d2:33:03:71:f1:82:f7:39:be:6d:76: 98:aa:ed:09:8f:d5:d5:2a:7a:4f:ac:1b:a5:05:a8: 17:3b:b5:e1:3f:51:7b:b8:b1:5e:22:01:01:b0:b1: e2:d6:85:a2:c9:55:95:de:4b:90:75:02:a4:01:9d: e5:6f:cd:08:bc:57:5c:39:f9:83:39:02:84:76:e5: a6:84:92:59:58:2e:33:5f:14:5d:15:d2:69:8d:29: 75:5a:80:44:bd:93:e0:bd:90:a1:9e:5c:82:fa:32: 45:7c:1b:96:fe:ef:1d:e7:1e:cb:2e:9c:17:35:cc: 40:f7:63:d3:88:f4:d8:cc:05:5a:58:fd:47:0c:d9: 4e:db:a8:bc:48:0e:c9:ef:f7:08:a8:ba:08:33:5a: 16:69:4a:42:0e:a5:52:27:d5:94:35:cd:1a:2c:10: 22:47:ae:34:c9:2a:a6:aa:32:7c:8e:46:9b:ab:de: c7:42:a6:6b:fa:87:a3:e3:83:de:55:d4:30:2e:c6: 25:f6:bd:77:dd:60:0d:62:d6:85:46:7d:5b:cc:c0: 52:af:e8:e6:9f:b5:5e:79:2c:51:1f:3c:a1:16:ef: 21:33:76:7e:e8:0b:16:ac:f6:44:cf:65:32:00:73: 9d:c9:65:a4:12:31:0d:7e:82:ef:ae:d1:c6:38:fd: 00:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:E1:9C:9C:3C:6A:B7:43:3F:AD:05:F9:0E:D8:A5:69:D5:ED:17:5E X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:49:b5:05:22:65:a3:53:15:25:e4:2b:1f:5d:13:5f:a5:03: 3a:99:5e:b4:7e:7e:4a:e1:92:28:eb:9c:ba:34:f9:1a:c9:cf: 0d:41:e1:b2:22:7b:eb:19:19:4f:8b:a8:a2:6f:8d:74:81:80: f7:52:51:58:b5:6f:bc:7f:38:2a:ac:77:89:7f:4e:fa:be:06: 0a:c9:7f:19:d6:dd:56:e3:8f:7c:8e:5a:29:45:f5:1f:8c:6b: 03:23:75:b2:d1:4e:f6:43:3b:af:f6:3f:4b:38:08:eb:15:43: ee:fd:36:ff:76:98:f4:f2:d6:80:a8:fa:77:cf:bf:18:af:b6: f6:70:86:ef:21:3f:16:9c:81:28:a0:ca:2e:66:d0:af:9b:dd: 04:d4:af:e5:9d:b9:d0:5f:3f:52:25:28:4f:8c:6f:05:d7:8c: 5a:fc:8d:f2:b3:53:03:63:01:43:fa:27:af:dc:fb:25:6e:6b: 7d:95:28:ad:61:59:00:9a:03:f3:6b:2c:89:85:14:3d:cb:bf: 28:6c:73:ab:5c:75:8b:51:14:15:eb:84:e9:23:41:57:99:e7: 29:ec:7e:2d:be:fa:f4:81:eb:fa:7f:02:4c:9c:b1:cf:85:20: 7f:05:36:5c:4b:18:5b:6d:6d:5a:7a:a7:1e:1f:cf:42:5b:27: ea:9e:22:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjQxMTIzMDIxNjMwWhcNMjQxMTMwMDIxNjMwWjAYMRYwFAYD VQQDEw02NzQxM2FmZS1iMzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxXN0jMDcfGC9zm+bXaYqu0Jj9XVKnpPrBulBagXO7XhP1F7uLFeIgEBsLHi 1oWiyVWV3kuQdQKkAZ3lb80IvFdcOfmDOQKEduWmhJJZWC4zXxRdFdJpjSl1WoBE vZPgvZChnlyC+jJFfBuW/u8d5x7LLpwXNcxA92PTiPTYzAVaWP1HDNlO26i8SA7J 7/cIqLoIM1oWaUpCDqVSJ9WUNc0aLBAiR640ySqmqjJ8jkabq97HQqZr+oej44Pe VdQwLsYl9r133WANYtaFRn1bzMBSr+jmn7VeeSxRHzyhFu8hM3Z+6AsWrPZEz2Uy AHOdyWWkEjENfoLvrtHGOP0AhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbhnJw8 ardDP60F+Q7YpWnV7RdeMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQSbUFImWjUxUl5CsfXRNfpQM6mV60fn5K4ZIo65y6NPkayc8NQeGy InvrGRlPi6iib410gYD3UlFYtW+8fzgqrHeJf076vgYKyX8Z1t1W4498jlopRfUf jGsDI3Wy0U72Qzuv9j9LOAjrFUPu/Tb/dpj08taAqPp3z78Yr7b2cIbvIT8WnIEo oMouZtCvm90E1K/lnbnQXz9SJShPjG8F14xa/I3ys1MDYwFD+iev3Pslbmt9lSit YVkAmgPzayyJhRQ9y78obHOrXHWLURQV64TpI0FXmecp7H4tvvr0gev6fwJMnLHP hSB/BTZcSxhbbW1aeqceH89CWyfqniIc -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:58 2024 by rpki-client on console-ams.rpki-client.org