$ rpki-client -vvf rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft File: U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft (raw, json) Hash identifier: 641d/wQ6Gp+D9SmMBTcgW9PvVNWdxKrE8alF0SdtJv0= Subject key identifier: C8:63:43:C2:D7:41:3E:32:17:61:B5:1B:18:FD:DA:8A:BA:07:A1:3A Authority key identifier: 53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF Certificate issuer: /CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Certificate serial: 0446 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft Manifest number: 0440 Signing time: Fri 22 Nov 2024 23:49:49 +0000 Manifest this update: Fri 22 Nov 2024 23:49:48 +0000 Manifest next update: Fri 29 Nov 2024 23:49:48 +0000 Files and hashes: 1: U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl (hash: CNFDoYFlyWNUUrATAhscE20eXjm6ULfK89/NIJtWHPM=) 2: 1C032F5A36E711EC9581EC54C4F9AE02.roa (hash: +tCUTtxnIQqqquc3K0vLgojNJZtRQoBeN844N0y2nGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1094 (0x446) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Validity Not Before: Nov 22 23:49:48 2024 GMT Not After : Nov 29 23:49:48 2024 GMT Subject: CN=6741189c-a820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:13:a0:ec:28:7c:c9:d9:06:92:68:47:98:0c: fc:8b:12:f4:34:8f:40:ac:3c:a7:45:96:cb:9b:00: fd:81:c4:7d:64:eb:8f:01:f0:61:db:ed:26:b7:ef: 73:16:b0:82:9d:1d:5b:03:10:39:43:45:1f:f8:e5: 81:21:9e:63:46:e6:7a:c6:75:17:a4:f3:31:57:17: 7f:5c:4a:16:14:cd:ae:2c:2e:4f:05:31:98:ba:1d: ad:f4:b5:75:2e:6b:2c:f7:4e:28:8f:62:b6:f7:ea: 88:6f:ff:39:20:93:9f:d1:8d:4f:36:bd:c4:17:a5: bc:19:81:16:30:d6:96:04:56:b1:92:96:b6:53:0e: 89:5e:fe:44:27:d5:09:af:61:c0:20:02:2b:aa:f5: 35:bb:fd:6c:9a:f5:56:66:e2:3e:72:be:f9:c6:7c: 2d:e5:93:b5:f7:a0:a1:57:d3:eb:86:3c:e2:7b:28: 59:da:5f:25:2c:bd:ff:58:47:4b:05:42:b7:cf:f2: 2d:a3:a6:95:76:e8:7a:b2:8c:8b:94:ac:47:d0:7e: 52:25:55:ae:56:af:b9:88:0a:65:ac:a7:55:70:3b: 67:d7:eb:8d:54:bb:bb:e2:6b:32:8e:99:bf:bc:29: 13:5a:71:9c:e3:34:7f:9a:71:2d:66:0d:ba:d0:91: 57:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:63:43:C2:D7:41:3E:32:17:61:B5:1B:18:FD:DA:8A:BA:07:A1:3A X509v3 Authority Key Identifier: keyid:53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:b2:0f:e5:27:bd:b1:9d:21:f6:41:41:81:6e:ec:f6:bc:00: ca:88:85:f0:b6:84:2a:15:c6:f1:23:b4:b8:3b:ca:5c:7e:49: 28:35:69:1d:5f:f3:47:8d:e1:89:46:02:03:7e:ad:00:07:5a: e8:eb:00:5b:68:1b:7d:df:e7:70:4f:fa:96:20:ac:1a:1e:40: dd:ea:a8:a6:ce:8c:65:db:6f:72:b7:20:27:ec:2c:65:c8:74: dc:7e:b5:1c:d6:00:7a:25:9c:fb:9b:26:c3:20:90:a9:65:cd: ff:f1:cf:f2:34:5d:99:4e:bd:f1:24:36:98:0b:9b:e0:5b:a1: 46:78:c1:c8:fb:e0:20:f6:9a:48:04:4f:2e:63:ab:24:36:29: a4:f3:0e:e5:3e:fd:1b:44:3c:1f:3c:59:43:a9:b8:ef:d3:eb: a1:a7:c7:58:ee:a8:d5:2e:65:ec:99:89:e2:9f:80:cc:38:38: 68:0b:aa:f1:e6:d7:07:55:7a:10:6f:c3:ba:bf:67:b1:9f:46: 2e:d6:0f:87:23:29:8d:4c:d9:50:9c:97:77:99:1c:3e:9b:50: ae:7c:48:16:a3:a4:7d:e8:93:1d:cd:a8:39:81:c0:da:be:d4: f9:5c:14:fa:1f:ac:fa:a4:4c:43:df:95:88:ef:9e:62:24:f9: d1:b0:a8:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4MzcxMTAvBgNVBAUTKDUzNjhCOEM4RDY5NjNFQUQ4Mzk5MDVBNDg2RjUzQzQ0 QjA0MUE1RUYwHhcNMjQxMTIyMjM0OTQ4WhcNMjQxMTI5MjM0OTQ4WjAYMRYwFAYD VQQDEw02NzQxMTg5Yy1hODIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBOg7Ch8ydkGkmhHmAz8ixL0NI9ArDynRZbLmwD9gcR9ZOuPAfBh2+0mt+9z FrCCnR1bAxA5Q0Uf+OWBIZ5jRuZ6xnUXpPMxVxd/XEoWFM2uLC5PBTGYuh2t9LV1 Lmss904oj2K29+qIb/85IJOf0Y1PNr3EF6W8GYEWMNaWBFaxkpa2Uw6JXv5EJ9UJ r2HAIAIrqvU1u/1smvVWZuI+cr75xnwt5ZO196ChV9PrhjzieyhZ2l8lLL3/WEdL BUK3z/Ito6aVduh6soyLlKxH0H5SJVWuVq+5iAplrKdVcDtn1+uNVLu74msyjpm/ vCkTWnGc4zR/mnEtZg260JFXAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhjQ8LX QT4yF2G1Gxj92oq6B6E6MB8GA1UdIwQYMBaAFFNouMjWlj6tg5kFpIb1PESwQaXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDgzNy9FM0Y4N0NCMjM2 RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1BxMkRtUVdraHZVOFJMQkJw ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UyaTR5TmFXUHEyRG1RV2todlU4UkxCQnBlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDgzNy9FM0Y4N0NCMjM2RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1Bx MkRtUVdraHZVOFJMQkJwZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApsg/lJ72xnSH2QUGBbuz2vADKiIXwtoQqFcbxI7S4O8pcfkkoNWkd X/NHjeGJRgIDfq0AB1ro6wBbaBt93+dwT/qWIKwaHkDd6qimzoxl229ytyAn7Cxl yHTcfrUc1gB6JZz7mybDIJCpZc3/8c/yNF2ZTr3xJDaYC5vgW6FGeMHI++Ag9ppI BE8uY6skNimk8w7lPv0bRDwfPFlDqbjv0+uhp8dY7qjVLmXsmYnin4DMODhoC6rx 5tcHVXoQb8O6v2exn0Yu1g+HIymNTNlQnJd3mRw+m1CufEgWo6R96JMdzag5gcDa vtT5XBT6H6z6pExD35WI755iJPnRsKj3 -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org