$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft File: aUCPaxygKBZoPM5MCOAEkyUZRLI.mft (raw, json) Hash identifier: oUcFG6JNz6d+hMX8uM19dzehFSxUl6Duq9zMX81v+gA= Subject key identifier: AF:07:25:61:63:79:C7:CE:2C:5A:2B:43:5F:63:5C:8F:2B:26:8A:CD Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Certificate serial: 09D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft Manifest number: 09C6 Signing time: Fri 22 Nov 2024 19:45:32 +0000 Manifest this update: Fri 22 Nov 2024 19:45:31 +0000 Manifest next update: Fri 29 Nov 2024 19:45:31 +0000 Files and hashes: 1: aUCPaxygKBZoPM5MCOAEkyUZRLI.crl (hash: /eXrNEmbsdRftdvsKNdGGw9VYKqVqbJiMcmv7nQURZA=) 2: EA7A8118DCCC11ECAFD2715CC4F9AE02.roa (hash: jYfYvo6c9Uctow0tEjbRvX1Vhcvx4MlD93YOip7bp2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2519 (0x9d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Validity Not Before: Nov 22 19:45:31 2024 GMT Not After : Nov 29 19:45:31 2024 GMT Subject: CN=6740df5c-9a26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c4:7a:72:94:84:1a:b4:7c:81:73:46:b1:8c: 7e:14:38:8c:34:cf:ae:90:9f:5d:8f:16:a9:7f:7b: f8:6c:42:c8:aa:cb:86:cc:54:e2:6c:34:94:de:b0: 8a:1b:99:36:ef:12:72:6a:6a:80:cb:63:cc:93:b7: 72:84:d4:c4:78:18:a9:9a:95:c4:66:8c:61:a1:8e: ca:f1:74:7d:c5:3b:fa:c9:a0:d4:b1:a0:2c:79:8f: d6:57:e6:29:3c:d7:af:ee:05:fb:b4:1d:23:cb:88: c9:8f:a5:a0:7a:3c:75:df:18:b8:60:19:f6:35:6e: b7:10:5b:ec:48:ec:90:f9:4d:c3:da:ed:b0:55:c0: 5a:04:1b:19:60:3c:37:d3:8a:87:f1:e8:c5:ea:9c: cd:0b:f5:62:0f:5e:70:02:57:19:96:ce:a4:e5:04: 09:f9:f0:62:41:7c:75:eb:d1:10:de:20:2c:fb:93: 7e:fd:8d:b9:c9:62:af:4c:c2:e6:f6:4e:ad:11:cf: 32:b1:71:15:49:75:10:10:f6:a8:41:b6:72:3e:31: 9c:2b:da:3e:c0:de:ea:b5:df:2c:fe:1e:bf:c6:c9: a4:3d:e2:51:16:3c:1b:44:11:47:3a:36:81:2e:f5: d1:35:a2:37:c1:c7:d5:31:1b:f8:5c:36:f9:c4:a3: 5f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:07:25:61:63:79:C7:CE:2C:5A:2B:43:5F:63:5C:8F:2B:26:8A:CD X509v3 Authority Key Identifier: keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:4e:63:e5:e4:15:6d:1b:fe:6a:32:52:bc:e5:c0:0c:a2:3f: ac:32:61:1a:db:91:c1:53:4a:ac:a7:0b:58:8e:29:43:ef:8b: 4a:3f:90:71:b0:ed:22:ac:5e:f6:b8:05:f5:de:4f:35:bf:5b: 63:24:ab:be:2d:21:0d:12:4d:d6:a6:f9:bf:cc:51:ae:1f:e2: 20:64:b6:1b:70:73:a8:39:0f:6e:21:4b:01:26:55:e5:23:20: 18:a0:8c:51:52:86:38:8e:fd:e2:83:74:bd:fc:58:37:c5:c7: 4a:79:ea:c4:3c:37:62:69:7b:0e:39:f3:65:fb:79:8f:ea:a0: f6:db:e1:79:5c:72:e9:4e:e6:92:cb:cb:76:85:52:7c:76:07: 01:01:12:ba:79:ce:a5:b6:3e:c0:21:75:e3:ee:b2:52:eb:87: e9:db:66:68:e9:34:72:00:7e:16:4f:c4:ce:c6:ba:99:9a:94: dd:ed:5b:04:89:69:3b:24:ca:97:b5:d8:8b:e5:f2:b9:3e:db: 8e:03:31:91:42:74:7e:2b:17:d7:c3:35:22:61:6a:85:1e:a8: 38:fb:37:21:8b:63:d0:35:51:f8:53:63:88:02:3d:87:30:74: 69:3f:f1:65:86:6c:d5:b9:15:70:be:16:86:76:ed:97:0d:98: 98:f9:05:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RkMxMTAvBgNVBAUTKDY5NDA4RjZCMUNBMDI4MTY2ODNDQ0U0QzA4RTAwNDkz MjUxOTQ0QjIwHhcNMjQxMTIyMTk0NTMxWhcNMjQxMTI5MTk0NTMxWjAYMRYwFAYD VQQDEw02NzQwZGY1Yy05YTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocR6cpSEGrR8gXNGsYx+FDiMNM+ukJ9djxapf3v4bELIqsuGzFTibDSU3rCK G5k27xJyamqAy2PMk7dyhNTEeBipmpXEZoxhoY7K8XR9xTv6yaDUsaAseY/WV+Yp PNev7gX7tB0jy4jJj6Wgejx13xi4YBn2NW63EFvsSOyQ+U3D2u2wVcBaBBsZYDw3 04qH8ejF6pzNC/ViD15wAlcZls6k5QQJ+fBiQXx169EQ3iAs+5N+/Y25yWKvTMLm 9k6tEc8ysXEVSXUQEPaoQbZyPjGcK9o+wN7qtd8s/h6/xsmkPeJRFjwbRBFHOjaB LvXRNaI3wcfVMRv4XDb5xKNfRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8HJWFj ecfOLForQ19jXI8rJorNMB8GA1UdIwQYMBaAFGlAj2scoCgWaDzOTAjgBJMlGUSy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZGQy9BQjFGNEVDQTcy OUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tCWm9QTTVNQ09BRWt5VVpS TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVQ1BheHlnS0Jab1BNNU1DT0FFa3lVWlJMSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjZGQy9BQjFGNEVDQTcyOUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tC Wm9QTTVNQ09BRWt5VVpSTEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQTmPl5BVtG/5qMlK85cAMoj+sMmEa25HBU0qspwtYjilD74tKP5Bx sO0irF72uAX13k81v1tjJKu+LSENEk3Wpvm/zFGuH+IgZLYbcHOoOQ9uIUsBJlXl IyAYoIxRUoY4jv3ig3S9/Fg3xcdKeerEPDdiaXsOOfNl+3mP6qD22+F5XHLpTuaS y8t2hVJ8dgcBARK6ec6ltj7AIXXj7rJS64fp22Zo6TRyAH4WT8TOxrqZmpTd7VsE iWk7JMqXtdiL5fK5PtuOAzGRQnR+KxfXwzUiYWqFHqg4+zchi2PQNVH4U2OIAj2H MHRpP/FlhmzVuRVwvhaGdu2XDZiY+QUN -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:21 2024 by rpki-client on console-ams.rpki-client.org