$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft File: UxLzmab36w3c1RwDn4P3t6R6Xwk.mft (raw, json) Hash identifier: wE+C4DgjrFqqjBcGYvk3XJKO9e6ToqJfXxeQLWMwcUM= Subject key identifier: 36:EC:F8:E0:45:D1:04:6B:A5:48:6A:6C:39:8D:17:76:C7:3E:AF:0B Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 3468 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft Manifest number: 33D6 Signing time: Fri 22 Nov 2024 15:22:32 +0000 Manifest this update: Fri 22 Nov 2024 15:22:31 +0000 Manifest next update: Fri 29 Nov 2024 15:22:31 +0000 Files and hashes: 1: UxLzmab36w3c1RwDn4P3t6R6Xwk.crl (hash: ZnxMrxYSnVUfiBc1iBf/A1utwaOB17NpNE1E9Q4L1Pc=) 2: E48E2E94017211EBA18CC269C4F9AE02.roa (hash: ICLuCqdPid1RG8G/uczcAZrYY/Vhg9vDB0Y4ZuWrsgg=) 3: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (hash: esENVVA6EiNHoh8zYMrrGIlsPVgfxlInP1Q1Dqp1TX0=) 4: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (hash: vlPdQwiOxGdbOdhmlbrhpezVJ256bDBMeryFLzti+9k=) 5: 7350B2AE2BB011EEBF8C0962C4F9AE02.roa (hash: t0X2DtahA6cVGvL8LAxWIioK5JV3S/HBQuQOiXYnF58=) 6: 03C522BA8CF211ED8699F014C4F9AE02.roa (hash: K0+ynt0M9kKJ3bLbS3OrAAjvrKtkvccz1wgSBWyKmCQ=) 7: E367308E8D8811EDB3C13D6CC4F9AE02.roa (hash: pxP+7JsX1QXgZ6389EUW7Rq0A265BP9eId8bGB02ABI=) 8: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (hash: 3Qq37sSxACv5Ldn7kCrtNWP8w5ga3g9Ur/m7mESYzt4=) 9: 56C4FAF42D4511EAB70F247AC4F9AE02.roa (hash: 5OfOPHDKno3z0OXXcGhOFxPs0axjwDkS/h/HmudH3qQ=) 10: EF1D0466455311E98FA31F68C4F9AE02.roa (hash: OqgL79PVwss/L9YJSqF29Xvq2wNOU6UYyi3JyoLgqms=) 11: E474AF108D8811EDB3C13D6CC4F9AE02.roa (hash: hzE638zELYjKoWqOncVd2PWwcT0doUZBbmbjdlD3Egk=) 12: C2F17AB22DCE11EEA2884670C4F9AE02.roa (hash: V1fSCsWS5cdJM7voSc5ZTQaks8azUpLSc/ONX61tIJU=) 13: 2F20ECAE554211EF82D40732C4F9AE02.roa (hash: kXSKiPTBMMpV/v8BhM7mqRhZb0qkCrS5RGh8ixYaHOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13416 (0x3468) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Nov 22 15:22:31 2024 GMT Not After : Nov 29 15:22:31 2024 GMT Subject: CN=6740a1b7-3802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d1:56:84:2d:c4:67:cf:fa:fb:4c:14:fe:99: ae:83:ad:f8:ef:ea:52:21:d4:35:cd:d1:dd:7d:58: 6c:dc:6a:b8:b4:8c:59:4f:4f:cb:50:c0:c8:c1:3a: 63:de:cd:d9:f1:3a:c8:b9:fc:48:18:98:fb:f8:9d: bf:02:a8:85:cc:f6:19:35:72:a5:20:a1:0b:ff:06: fa:6d:ad:7b:09:c7:82:8d:c8:a8:44:07:1e:8b:7c: 6a:c5:5c:70:f1:ca:99:38:a5:33:79:c9:d3:68:a1: 89:62:ff:b0:85:bb:17:f4:65:4b:c4:fe:78:48:af: c7:bf:90:cb:c4:c1:c5:66:08:e3:d4:19:c9:e2:b4: ab:a8:c7:bf:f2:8b:89:0f:6f:98:01:ed:49:a8:1d: 61:bc:23:5c:72:63:5c:ad:f8:4f:e2:01:ce:d8:b8: fe:24:87:69:6d:1a:90:09:7d:51:17:b8:99:1c:dd: c7:a3:43:f1:d7:43:8c:93:7b:ef:07:80:dc:f3:6b: 9e:ba:6f:ff:57:d7:d0:17:0b:2e:9e:0a:0e:3f:8d: d5:02:92:a9:c3:e5:d0:e5:55:9c:9d:b4:f1:f8:b1: b3:1e:dd:6a:bc:84:67:8a:d1:42:0b:a5:38:15:22: db:7d:7f:83:31:a4:c6:07:70:a1:07:a9:c9:f5:32: 26:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:EC:F8:E0:45:D1:04:6B:A5:48:6A:6C:39:8D:17:76:C7:3E:AF:0B X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:ef:7a:6f:68:f1:cd:93:2a:b2:f5:a0:20:57:11:db:8e:aa: ee:b9:55:88:4f:dc:b4:17:39:d6:fc:f0:3b:05:0b:95:ce:0b: 3e:1c:f9:0f:3c:d2:5d:03:93:26:0b:84:f4:c8:f6:4d:c7:12: 93:6f:75:cd:ce:9e:da:69:ab:fe:f9:ed:b7:c5:f6:de:21:41: 5f:f7:ec:16:93:f4:71:ef:84:1b:83:3c:5b:a8:16:e3:2b:c8: 08:1d:e1:31:bf:32:bf:42:d1:c9:8c:47:5f:8d:39:5d:86:25: 68:f5:99:97:b2:98:2b:e9:ab:94:5c:ef:94:6c:f6:06:50:fa: 71:ca:1e:aa:2a:10:51:46:07:be:ad:ef:f9:92:32:79:e0:b4: 23:ff:90:af:55:91:d5:91:ab:9d:a1:3b:23:73:bf:71:db:d8: 04:96:08:0d:d9:f0:af:16:fe:ac:d0:f1:f4:0d:a4:17:33:d8: 9e:b4:df:cd:f8:b6:7a:34:e1:81:9a:c9:ec:48:e4:b5:5d:7e: eb:7d:9f:73:5a:21:5d:44:f5:43:20:cc:68:cb:70:5b:54:79: 35:55:e6:06:44:8e:c8:24:ba:fa:f6:e8:0b:0b:36:96:bf:92: c3:e2:50:3a:0e:72:4f:28:0b:9d:02:20:55:f3:aa:b4:ee:8f: d3:94:b7:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjQxMTIyMTUyMjMxWhcNMjQxMTI5MTUyMjMxWjAYMRYwFAYD VQQDEw02NzQwYTFiNy0zODAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdFWhC3EZ8/6+0wU/pmug6347+pSIdQ1zdHdfVhs3Gq4tIxZT0/LUMDIwTpj 3s3Z8TrIufxIGJj7+J2/AqiFzPYZNXKlIKEL/wb6ba17CceCjcioRAcei3xqxVxw 8cqZOKUzecnTaKGJYv+whbsX9GVLxP54SK/Hv5DLxMHFZgjj1BnJ4rSrqMe/8ouJ D2+YAe1JqB1hvCNccmNcrfhP4gHO2Lj+JIdpbRqQCX1RF7iZHN3Ho0Px10OMk3vv B4Dc82ueum//V9fQFwsungoOP43VApKpw+XQ5VWcnbTx+LGzHt1qvIRnitFCC6U4 FSLbfX+DMaTGB3ChB6nJ9TImOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbs+OBF 0QRrpUhqbDmNF3bHPq8LMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkM3QS80QzUyOEY3ODQ1MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3 M2MxUndEbjRQM3Q2UjZYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ73pvaPHNkyqy9aAgVxHbjqruuVWIT9y0FznW/PA7BQuVzgs+HPkP PNJdA5MmC4T0yPZNxxKTb3XNzp7aaav++e23xfbeIUFf9+wWk/Rx74QbgzxbqBbj K8gIHeExvzK/QtHJjEdfjTldhiVo9ZmXspgr6auUXO+UbPYGUPpxyh6qKhBRRge+ re/5kjJ54LQj/5CvVZHVkaudoTsjc79x29gElggN2fCvFv6s0PH0DaQXM9ietN/N +LZ6NOGBmsnsSOS1XX7rfZ9zWiFdRPVDIMxoy3BbVHk1VeYGRI7IJLr69ugLCzaW v5LD4lA6DnJPKAudAiBV86q07o/TlLfc -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:44 2024 by rpki-client on console-fra.rpki-client.org