$ rpki-client -vvf rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft File: uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft (raw, json) Hash identifier: N486p3AkVC4WNSsqnMjczcGkdrinnPyJBr78pEJtPZs= Subject key identifier: F7:73:08:79:3C:58:EA:34:10:D1:51:63:A8:8C:C0:DF:69:C3:E6:43 Authority key identifier: B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 Certificate issuer: /CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Certificate serial: 0331 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft Manifest number: 0329 Signing time: Sat 23 Nov 2024 00:44:32 +0000 Manifest this update: Sat 23 Nov 2024 00:44:31 +0000 Manifest next update: Sat 30 Nov 2024 00:44:31 +0000 Files and hashes: 1: uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl (hash: KkxLToY2IwYrCDtXbzaDCBAUusUfdUsiqVBaI2/ju58=) 2: 931A51C07F5811EE82ECE456C4F9AE02.roa (hash: 3ujH7nfRItY8BxT80xm2zxGd128K9q6N1aAV7Q13w4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 817 (0x331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Validity Not Before: Nov 23 00:44:31 2024 GMT Not After : Nov 30 00:44:31 2024 GMT Subject: CN=67412570-1889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:10:f4:f7:d3:81:d8:62:0d:05:5b:4c:07:1b: 1e:d2:a2:cb:ee:02:8e:97:ec:fe:a6:d7:56:06:11: fa:08:6f:66:7b:ca:77:ab:65:4c:90:01:db:a7:85: 8a:46:e0:91:58:d5:35:d7:1c:d1:d0:1f:a2:70:f6: 81:57:de:d8:cc:62:8d:51:30:66:04:e6:e8:d9:9b: 25:4b:f2:c0:bb:e2:cd:31:e5:67:0f:ea:79:cd:08: 37:7e:49:06:50:83:20:18:a6:78:f6:e1:88:44:57: 81:ea:db:aa:65:2f:0d:c6:dd:49:9c:a6:72:fe:62: 32:f3:39:b7:23:74:93:61:7e:d8:08:fa:58:c5:75: 68:3b:80:82:c4:63:6b:2e:11:ef:2b:76:ed:d6:54: f9:74:77:fa:a5:bd:e1:bc:8e:54:74:01:bd:91:7c: 27:c5:d4:9a:98:c1:85:17:9d:9a:82:3c:9a:8e:92: 41:77:c2:09:ff:16:4b:bc:34:d2:33:11:68:0c:4e: 91:c1:e7:69:76:54:2e:af:2a:ae:90:04:2e:c3:93: 3b:df:80:99:83:56:87:2e:8d:40:6a:fa:62:5f:41: 55:67:ab:17:80:8e:e6:16:38:56:05:45:3e:c1:cb: ad:d0:01:8e:1f:5a:bc:ca:17:21:44:f1:b1:51:db: b8:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:73:08:79:3C:58:EA:34:10:D1:51:63:A8:8C:C0:DF:69:C3:E6:43 X509v3 Authority Key Identifier: keyid:B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:62:ae:dd:ab:4f:1f:0c:63:b5:54:c6:f8:e5:eb:e8:f8:3f: b5:43:a5:05:b0:6e:0e:0f:49:a3:17:e0:12:87:b4:77:fe:29: f6:4c:2c:5d:dd:8f:34:08:a7:73:03:28:03:fa:29:a5:2d:31: 69:32:5d:6d:26:56:36:5a:9e:48:13:d4:17:22:03:eb:9a:0e: 6f:00:28:47:ed:36:ce:77:f5:9d:f9:1c:6c:29:2b:e0:fa:dc: 93:de:50:09:a1:a3:b6:7f:f8:ae:ab:f8:89:c7:00:00:6c:e8: 9b:6f:de:39:89:5d:85:3a:0d:4e:38:a4:d5:a8:f5:a9:53:73: 70:24:5c:a1:e3:8e:e9:93:d2:f4:01:0c:1e:91:cd:9f:6d:6f: d1:2c:1d:bb:79:4f:c7:6a:d8:66:ab:f5:b1:a8:62:4e:87:a2: 43:31:a9:8d:a8:da:c1:e8:a1:8c:5c:01:b9:18:e8:02:d1:5f: 9d:e6:4b:91:84:fd:12:9e:84:7a:dc:b2:70:be:5e:27:ad:2d: 63:43:39:eb:25:19:4b:55:98:d6:96:c3:5a:73:7f:00:62:35: 62:f5:13:45:67:de:13:91:7b:fc:f8:c2:fc:fc:ed:ae:d9:3b: ff:11:24:4b:53:ed:c0:58:23:8c:6b:37:40:76:43:38:80:b7: 74:42:95:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzQ0YxMTAvBgNVBAUTKEI4QUQ4RDkxNkNEOTQ4MkI2REE1NUQzMDdDRTk1QzA3 QTk1QjJGNzQwHhcNMjQxMTIzMDA0NDMxWhcNMjQxMTMwMDA0NDMxWjAYMRYwFAYD VQQDEw02NzQxMjU3MC0xODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxD099OB2GINBVtMBxse0qLL7gKOl+z+ptdWBhH6CG9me8p3q2VMkAHbp4WK RuCRWNU11xzR0B+icPaBV97YzGKNUTBmBObo2ZslS/LAu+LNMeVnD+p5zQg3fkkG UIMgGKZ49uGIRFeB6tuqZS8Nxt1JnKZy/mIy8zm3I3STYX7YCPpYxXVoO4CCxGNr LhHvK3bt1lT5dHf6pb3hvI5UdAG9kXwnxdSamMGFF52agjyajpJBd8IJ/xZLvDTS MxFoDE6RwedpdlQuryqukAQuw5M734CZg1aHLo1AavpiX0FVZ6sXgI7mFjhWBUU+ wcut0AGOH1q8yhchRPGxUdu4fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdzCHk8 WOo0ENFRY6iMwN9pw+ZDMB8GA1UdIwQYMBaAFLitjZFs2UgrbaVdMHzpXAepWy90 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDNDRi8xN0Q2RTRDMkE2 OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlNDdHRwVjB3Zk9sY0I2bGJM M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLMk5rV3paU0N0dHBWMHdmT2xjQjZsYkwzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDNDRi8xN0Q2RTRDMkE2OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlND dHRwVjB3Zk9sY0I2bGJMM1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyYq7dq08fDGO1VMb45evo+D+1Q6UFsG4OD0mjF+ASh7R3/in2TCxd 3Y80CKdzAygD+imlLTFpMl1tJlY2Wp5IE9QXIgPrmg5vAChH7TbOd/Wd+RxsKSvg +tyT3lAJoaO2f/iuq/iJxwAAbOibb945iV2FOg1OOKTVqPWpU3NwJFyh447pk9L0 AQwekc2fbW/RLB27eU/Hathmq/WxqGJOh6JDMamNqNrB6KGMXAG5GOgC0V+d5kuR hP0SnoR63LJwvl4nrS1jQznrJRlLVZjWlsNac38AYjVi9RNFZ94TkXv8+ML8/O2u 2Tv/ESRLU+3AWCOMazdAdkM4gLd0QpVA -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:30 2024 by rpki-client on console-fra.rpki-client.org