$ rpki-client -vvf rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.mft File: U1n0WpMqsOo84GFn1fzHBltN2IU.mft (raw, json) Hash identifier: L8Em7+oW/9zHkuniuLcAP5pW9pl65NBZTLsYGbLEQRk= Subject key identifier: FA:02:4E:16:E5:F0:FC:D9:28:C5:D1:9D:92:F7:A5:48:3B:D3:60:42 Authority key identifier: 53:59:F4:5A:93:2A:B0:EA:3C:E0:61:67:D5:FC:C7:06:5B:4D:D8:85 Certificate issuer: /CN=A911367F/serialNumber=5359F45A932AB0EA3CE06167D5FCC7065B4DD885 Certificate serial: 0BF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U1n0WpMqsOo84GFn1fzHBltN2IU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.mft Manifest number: 0BEB Signing time: Fri 22 Nov 2024 18:23:36 +0000 Manifest this update: Fri 22 Nov 2024 18:23:36 +0000 Manifest next update: Fri 29 Nov 2024 18:23:36 +0000 Files and hashes: 1: U1n0WpMqsOo84GFn1fzHBltN2IU.crl (hash: Tz0BSTdwhb/TteRHI5Xt+JzNar4ElS+L2r/cs3UbRUw=) 2: 6751E26C415511ECA2FD715CC4F9AE02.roa (hash: a/sC7ETDIVIboPEKOWwxdZFEr4Jd7KezTCrJldPHdYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.crl rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U1n0WpMqsOo84GFn1fzHBltN2IU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3062 (0xbf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911367F/serialNumber=5359F45A932AB0EA3CE06167D5FCC7065B4DD885 Validity Not Before: Nov 22 18:23:36 2024 GMT Not After : Nov 29 18:23:36 2024 GMT Subject: CN=6740cc28-f635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:be:9b:df:9f:a8:43:f4:09:62:c7:e7:90:96: 8b:28:b8:eb:01:e5:ae:02:d8:58:c4:a4:a3:ba:39: 63:cd:31:88:cf:26:76:39:2f:c6:b7:16:70:4f:19: 94:41:81:f8:9c:c7:a8:de:69:87:6e:3e:62:9f:b6: 48:9d:a0:72:0d:a7:87:97:23:fa:11:dd:bc:2b:e9: ad:27:49:0e:72:f2:7c:18:92:2b:86:57:f0:66:42: 84:c5:ba:93:23:3c:5c:df:05:b8:a1:fe:8d:90:3f: d7:cf:2c:6a:5f:b9:40:76:20:2c:ab:27:4f:1e:f3: 50:44:42:11:70:54:c3:56:67:4a:a4:c1:62:7d:55: 8a:75:2c:21:91:e0:1d:7d:68:e4:1a:e1:09:48:ad: d2:53:2d:7e:d9:69:56:d7:d6:b9:07:89:88:3b:66: 92:41:f6:b6:2d:cf:29:8e:e4:4f:cb:77:2c:4f:d7: fc:69:70:c3:13:ec:40:05:22:ad:d1:c8:4b:c7:66: 13:45:10:30:c9:e3:a4:fa:e5:1f:e1:3b:f3:12:ac: 3c:96:f0:d5:ed:a4:98:5a:26:ef:71:7c:39:a8:ee: bf:41:c6:69:c7:df:1c:e1:6a:d1:9c:b3:ce:4e:36: 50:b7:f1:ec:0b:20:af:92:21:62:79:d6:9e:3c:b0: ff:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:02:4E:16:E5:F0:FC:D9:28:C5:D1:9D:92:F7:A5:48:3B:D3:60:42 X509v3 Authority Key Identifier: keyid:53:59:F4:5A:93:2A:B0:EA:3C:E0:61:67:D5:FC:C7:06:5B:4D:D8:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U1n0WpMqsOo84GFn1fzHBltN2IU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:8e:5e:55:00:b9:72:f7:17:57:86:ce:90:7f:77:90:62:78: fe:e9:91:80:99:30:e7:1c:ed:be:1e:12:61:3a:b4:f0:87:1e: 1f:ff:aa:f6:9b:c4:ec:c4:14:8e:59:f4:0e:f4:f2:6d:b0:24: 35:78:48:11:13:22:47:4c:e4:8d:12:bd:f6:5e:ac:bd:0e:4e: d4:44:86:bf:7d:cc:f4:1c:b7:f7:a5:89:e5:a8:9e:c3:94:6a: 84:5b:de:26:a1:25:77:07:31:68:f8:32:d5:e1:36:9e:70:08: 89:b1:e3:1d:b9:e9:36:8c:b7:86:5e:5e:fb:38:9d:c5:a2:b4: 95:77:6f:0d:06:8a:17:55:16:6e:44:a8:40:a6:49:02:57:f9: 54:43:84:c0:53:85:b1:79:64:67:e5:db:4e:a3:bf:cb:53:3b: 3b:2d:89:2b:17:41:2a:85:ae:f3:c5:13:ce:f7:f1:f7:ce:1b: d8:29:66:e6:de:5b:d1:38:ec:f2:f9:67:46:8a:da:81:d4:35: e4:2e:d0:4b:f4:1c:d4:6c:81:18:65:9c:21:6c:92:fe:49:ca: ec:99:ca:a9:fa:96:d8:3e:f6:43:e1:4b:6c:61:87:25:a7:82: 71:7f:c2:72:84:19:0f:0b:c2:cb:e6:25:25:c4:b3:50:c5:13: 55:16:f5:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM2N0YxMTAvBgNVBAUTKDUzNTlGNDVBOTMyQUIwRUEzQ0UwNjE2N0Q1RkNDNzA2 NUI0REQ4ODUwHhcNMjQxMTIyMTgyMzM2WhcNMjQxMTI5MTgyMzM2WjAYMRYwFAYD VQQDEw02NzQwY2MyOC1mNjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsr6b35+oQ/QJYsfnkJaLKLjrAeWuAthYxKSjujljzTGIzyZ2OS/GtxZwTxmU QYH4nMeo3mmHbj5in7ZInaByDaeHlyP6Ed28K+mtJ0kOcvJ8GJIrhlfwZkKExbqT Izxc3wW4of6NkD/XzyxqX7lAdiAsqydPHvNQREIRcFTDVmdKpMFifVWKdSwhkeAd fWjkGuEJSK3SUy1+2WlW19a5B4mIO2aSQfa2Lc8pjuRPy3csT9f8aXDDE+xABSKt 0chLx2YTRRAwyeOk+uUf4TvzEqw8lvDV7aSYWibvcXw5qO6/QcZpx98c4WrRnLPO TjZQt/HsCyCvkiFiedaePLD//wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPoCThbl 8PzZKMXRnZL3pUg702BCMB8GA1UdIwQYMBaAFFNZ9FqTKrDqPOBhZ9X8xwZbTdiF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzY3Ri83QTk0RDEyODA0 NjExMUVBOUYwRjQwNDJDNEY5QUUwMi9VMW4wV3BNcXNPbzg0R0ZuMWZ6SEJsdE4y SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UxbjBXcE1xc09vODRHRm4xZnpIQmx0TjJJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzY3Ri83QTk0RDEyODA0NjExMUVBOUYwRjQwNDJDNEY5QUUwMi9VMW4wV3BNcXNP bzg0R0ZuMWZ6SEJsdE4ySVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVjl5VALly9xdXhs6Qf3eQYnj+6ZGAmTDnHO2+HhJhOrTwhx4f/6r2 m8TsxBSOWfQO9PJtsCQ1eEgREyJHTOSNEr32Xqy9Dk7URIa/fcz0HLf3pYnlqJ7D lGqEW94moSV3BzFo+DLV4TaecAiJseMduek2jLeGXl77OJ3ForSVd28NBooXVRZu RKhApkkCV/lUQ4TAU4WxeWRn5dtOo7/LUzs7LYkrF0Eqha7zxRPO9/H3zhvYKWbm 3lvROOzy+WdGitqB1DXkLtBL9BzUbIEYZZwhbJL+Scrsmcqp+pbYPvZD4UtsYYcl p4Jxf8JyhBkPC8LL5iUlxLNQxRNVFvUn -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:55 2024 by rpki-client on console-fra.rpki-client.org