$ rpki-client -vvf rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft File: iUNmPc-DCfonSkZS-oOr0m2EJk8.mft (raw, json) Hash identifier: DEMZ+sIMCI6iBepF90z+0lY7E+wZfXxi6XTPCu5F/UQ= Subject key identifier: 2C:1C:54:BE:80:E0:72:69:49:53:8B:C8:BE:A0:82:FA:2B:91:C7:F7 Authority key identifier: 89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F Certificate issuer: /CN=A913097A/serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Certificate serial: 0436 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft Manifest number: 0432 Signing time: Fri 22 Nov 2024 23:52:06 +0000 Manifest this update: Fri 22 Nov 2024 23:52:05 +0000 Manifest next update: Fri 29 Nov 2024 23:52:05 +0000 Files and hashes: 1: iUNmPc-DCfonSkZS-oOr0m2EJk8.crl (hash: bL3WzyNfSWxLhpL1vkOK6+1/cnO0PSKLDyjakC8atrE=) 2: F9343F063B0911EC82AE0828C4F9AE02.roa (hash: pIsS/aAz3NlTfiRznLCHJWwJfZnRVJbtBleuPSnoEO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1078 (0x436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913097A/serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Validity Not Before: Nov 22 23:52:05 2024 GMT Not After : Nov 29 23:52:05 2024 GMT Subject: CN=67411925-bb97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d6:18:a9:d5:e0:c6:ae:ab:2c:84:72:d9:e8: aa:bd:bd:e3:b6:a6:48:49:9d:7b:2c:6e:00:0d:f2: b6:c9:f4:33:fb:e3:f2:d9:f2:7a:b4:72:66:25:66: 9b:6e:6a:95:ad:b5:17:2d:6a:01:96:22:a7:4d:25: 9e:30:ef:59:09:bb:f2:6a:32:69:c6:d2:af:08:53: 28:5f:7c:6d:41:f1:8c:15:de:4f:73:85:7a:90:ce: 7c:bb:14:b8:b9:18:f6:a3:ad:bc:e0:51:2e:7e:49: 4b:83:1a:0a:2e:ff:fe:b6:82:5c:cb:33:55:cc:59: 1a:3d:a5:d2:77:90:d8:d6:f5:00:34:83:f6:e3:00: 68:09:af:af:ce:2f:74:32:bb:2e:6a:a8:a1:dd:bb: 03:b2:88:0d:f5:01:13:bf:c1:1a:b0:d9:42:56:12: 7b:44:b5:12:6f:eb:7d:89:4d:87:d1:94:c6:cd:df: ad:1b:8c:60:a7:c4:5e:06:b8:ee:07:82:47:f2:f0: b6:43:e8:94:31:3c:de:0f:f8:99:bc:94:8a:02:be: 45:ab:9c:bd:74:c0:f7:3f:9c:96:49:9b:38:7b:46: d4:9b:88:16:e2:2f:8d:2c:98:4d:29:75:e8:6f:65: 4d:e5:5c:48:76:cc:73:14:d4:bb:ed:2d:4a:ee:a1: b3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1C:54:BE:80:E0:72:69:49:53:8B:C8:BE:A0:82:FA:2B:91:C7:F7 X509v3 Authority Key Identifier: keyid:89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:26:64:c4:3c:93:2b:02:f8:13:ef:71:db:1c:37:6a:34:0b: 0f:bb:c6:c7:f8:35:96:ab:64:d7:3a:4f:a9:1e:ca:98:4d:29: 7c:1b:85:d8:37:03:1c:0b:8b:ba:60:a9:be:a9:7c:06:05:01: d4:36:7f:b1:2f:0d:ed:87:ad:30:8c:b7:42:f8:e6:b5:16:35: cb:1d:11:53:ad:87:89:fc:7f:83:8d:ac:97:16:a6:e3:98:d5: e0:21:47:c2:bb:3a:46:7c:95:25:27:22:c1:c5:15:01:90:27: 1e:36:63:74:c5:9b:8e:9f:96:68:14:2a:18:84:51:a4:9b:61: 2c:e0:26:48:ca:ee:bf:b1:b6:8d:f5:bd:28:2a:f1:a7:f6:e7: f1:e7:ca:dd:9b:d7:a4:66:13:b6:d3:1f:df:7d:ac:21:fc:38: 22:c1:31:78:3f:c1:5a:cf:b2:5a:6f:f8:bc:6b:92:75:ba:6e: 09:46:6c:17:c2:39:88:99:09:47:d2:40:fe:43:53:ed:08:57: 6b:ba:84:bb:1f:63:4d:49:8b:96:54:75:49:19:e3:20:2f:2b: af:c2:e0:1a:63:e3:fc:8d:0c:af:cf:77:b2:85:97:72:75:29: 04:e6:61:74:26:a5:1e:22:ef:7e:27:4b:de:69:95:e0:21:38: 42:93:6e:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA5N0ExMTAvBgNVBAUTKDg5NDM2NjNEQ0Y4MzA5RkEyNzRBNDY1MkZBODNBQkQy NkQ4NDI2NEYwHhcNMjQxMTIyMjM1MjA1WhcNMjQxMTI5MjM1MjA1WjAYMRYwFAYD VQQDEw02NzQxMTkyNS1iYjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNYYqdXgxq6rLIRy2eiqvb3jtqZISZ17LG4ADfK2yfQz++Py2fJ6tHJmJWab bmqVrbUXLWoBliKnTSWeMO9ZCbvyajJpxtKvCFMoX3xtQfGMFd5Pc4V6kM58uxS4 uRj2o6284FEufklLgxoKLv/+toJcyzNVzFkaPaXSd5DY1vUANIP24wBoCa+vzi90 Mrsuaqih3bsDsogN9QETv8EasNlCVhJ7RLUSb+t9iU2H0ZTGzd+tG4xgp8ReBrju B4JH8vC2Q+iUMTzeD/iZvJSKAr5Fq5y9dMD3P5yWSZs4e0bUm4gW4i+NLJhNKXXo b2VN5VxIdsxzFNS77S1K7qGz8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwcVL6A 4HJpSVOLyL6ggvorkcf3MB8GA1UdIwQYMBaAFIlDZj3Pgwn6J0pGUvqDq9JthCZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDk3QS82MTY3QTZEMjNC MDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENmb25Ta1pTLW9PcjBtMkVK azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVTm1QYy1EQ2ZvblNrWlMtb09yMG0yRUprOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDk3QS82MTY3QTZEMjNCMDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENm b25Ta1pTLW9PcjBtMkVKazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHJmTEPJMrAvgT73HbHDdqNAsPu8bH+DWWq2TXOk+pHsqYTSl8G4XY NwMcC4u6YKm+qXwGBQHUNn+xLw3th60wjLdC+Oa1FjXLHRFTrYeJ/H+DjayXFqbj mNXgIUfCuzpGfJUlJyLBxRUBkCceNmN0xZuOn5ZoFCoYhFGkm2Es4CZIyu6/sbaN 9b0oKvGn9ufx58rdm9ekZhO20x/ffawh/DgiwTF4P8Faz7Jab/i8a5J1um4JRmwX wjmImQlH0kD+Q1PtCFdruoS7H2NNSYuWVHVJGeMgLyuvwuAaY+P8jQyvz3eyhZdy dSkE5mF0JqUeIu9+J0veaZXgIThCk26K -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:20 2024 by rpki-client on console-ams.rpki-client.org