$ rpki-client -vvf rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft File: _U2MY5rcFYR8e0kRFZ3nG9gTk64.mft (raw, json) Hash identifier: UUX0G1oRmPRCbq6hTXzk03OfoXD8/fbnlwqMXqctJbE= Subject key identifier: FE:94:9E:8B:B7:B6:F0:A9:F7:22:0C:6D:88:A5:4D:F2:5B:E4:61:0A Authority key identifier: FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE Certificate issuer: /CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Certificate serial: 07AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft Manifest number: 07A9 Signing time: Fri 22 Nov 2024 20:46:40 +0000 Manifest this update: Fri 22 Nov 2024 20:46:39 +0000 Manifest next update: Fri 29 Nov 2024 20:46:39 +0000 Files and hashes: 1: _U2MY5rcFYR8e0kRFZ3nG9gTk64.crl (hash: YTv2pY/rOKPyamTTNT7p5OkBAFpIOrPCjtf0MdCF0ns=) 2: 4149D206DC4711EA80D5D916C4F9AE02.roa (hash: k50ZB9p61nq4gYFWFacngoDcN0U36+Btc6YIKa1PUKA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1966 (0x7ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Validity Not Before: Nov 22 20:46:39 2024 GMT Not After : Nov 29 20:46:39 2024 GMT Subject: CN=6740edb0-305d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:93:ea:76:ba:e1:e7:42:c8:1f:29:b8:93:f9: ce:05:11:2b:06:19:bc:cc:02:65:3d:75:9c:4b:ac: 01:a9:ec:46:5b:02:65:ab:62:55:8e:ee:4e:0d:ca: 57:d3:14:3e:73:39:62:c8:cd:7f:21:05:3c:d8:b1: 30:ad:52:9c:ac:3b:cd:c4:99:53:e8:b1:b7:09:50: f0:05:08:a7:24:eb:e3:16:69:55:73:6a:ed:9f:28: ab:0d:03:0f:86:f2:93:1c:7b:3e:82:8c:5b:70:08: 47:fe:bd:b9:6b:15:6d:66:4f:f7:58:6a:5d:8f:8b: 6f:69:36:ea:ed:f9:fb:6c:bf:a9:88:4b:39:d9:0a: 84:dd:a4:29:4f:e6:5a:ac:3f:ad:37:7f:36:6e:19: 83:77:9b:e4:1d:4e:28:36:d7:9e:7a:9e:96:92:aa: 87:51:74:09:93:29:61:c7:bf:0b:4a:64:bd:38:fa: 06:8a:9b:f7:70:08:f2:12:52:55:9e:70:5d:71:e6: 03:f2:77:a2:5e:0a:02:72:fa:d9:a9:14:44:f3:57: 61:4e:2e:8c:91:12:e3:31:94:d8:1c:4c:a9:32:40: 5c:10:52:17:a9:d2:75:20:3d:f2:9e:46:45:f5:87: f8:88:3e:78:c6:d3:7e:49:b6:ed:32:1f:a5:02:40: 79:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:94:9E:8B:B7:B6:F0:A9:F7:22:0C:6D:88:A5:4D:F2:5B:E4:61:0A X509v3 Authority Key Identifier: keyid:FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:ae:01:52:22:cf:bb:18:04:62:cd:8e:5f:e2:b9:a2:ec:c8: 56:7e:48:b1:b9:6a:22:2c:d9:38:f3:d6:a0:77:fb:7b:4f:64: 39:11:49:a9:2c:76:17:94:ec:01:f5:15:ab:75:f1:fb:07:4e: 7a:7b:20:90:46:64:fe:39:cb:1b:12:44:39:f1:b2:f8:1c:d3: 38:28:8a:eb:3a:6e:e3:2d:48:d6:90:a3:64:38:e1:d3:b9:a4: ee:0c:75:02:64:e6:57:58:d1:16:15:18:f1:9a:7d:57:85:44: 90:c1:f8:25:3c:36:98:fc:5b:97:62:a3:33:19:cd:7a:7e:ea: 74:e7:69:36:97:3d:ca:89:af:8f:ec:7e:b9:02:b6:ae:27:77: ef:45:c5:0d:a8:ae:b2:4e:95:5e:97:61:ba:ae:87:05:e7:3f: a5:e2:fa:75:bd:c1:d4:89:ea:3d:0f:e3:8e:cf:c9:8f:8e:8a: 31:a7:cf:60:e1:28:d1:57:2a:5a:96:f4:b5:81:b9:0c:c6:e0: 35:88:72:94:a1:99:75:0e:38:90:c1:1f:98:1a:aa:96:75:9f: c5:4e:ce:27:80:e1:85:78:53:e7:26:7a:d6:75:c6:cc:d1:97: 16:3b:ff:2b:e2:1f:0d:4e:ea:b0:bc:5a:39:22:79:55:f2:08: f6:92:21:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0NjIxMTAvBgNVBAUTKEZENEQ4QzYzOUFEQzE1ODQ3QzdCNDkxMTE1OURFNzFC RDgxMzkzQUUwHhcNMjQxMTIyMjA0NjM5WhcNMjQxMTI5MjA0NjM5WjAYMRYwFAYD VQQDEw02NzQwZWRiMC0zMDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpPqdrrh50LIHym4k/nOBRErBhm8zAJlPXWcS6wBqexGWwJlq2JVju5ODcpX 0xQ+czliyM1/IQU82LEwrVKcrDvNxJlT6LG3CVDwBQinJOvjFmlVc2rtnyirDQMP hvKTHHs+goxbcAhH/r25axVtZk/3WGpdj4tvaTbq7fn7bL+piEs52QqE3aQpT+Za rD+tN382bhmDd5vkHU4oNteeep6WkqqHUXQJkylhx78LSmS9OPoGipv3cAjyElJV nnBdceYD8neiXgoCcvrZqRRE81dhTi6MkRLjMZTYHEypMkBcEFIXqdJ1ID3ynkZF 9Yf4iD54xtN+SbbtMh+lAkB5/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6Unou3 tvCp9yIMbYilTfJb5GEKMB8GA1UdIwQYMBaAFP1NjGOa3BWEfHtJERWd5xvYE5Ou MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjQ2Mi8zMkM3NTdFNkRD NDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZUjhlMGtSRlozbkc5Z1Rr NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VMk1ZNXJjRllSOGUwa1JGWjNuRzlnVGs2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjQ2Mi8zMkM3NTdFNkRDNDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZ UjhlMGtSRlozbkc5Z1RrNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvrgFSIs+7GARizY5f4rmi7MhWfkixuWoiLNk489agd/t7T2Q5EUmp LHYXlOwB9RWrdfH7B056eyCQRmT+OcsbEkQ58bL4HNM4KIrrOm7jLUjWkKNkOOHT uaTuDHUCZOZXWNEWFRjxmn1XhUSQwfglPDaY/FuXYqMzGc16fup052k2lz3Kia+P 7H65ArauJ3fvRcUNqK6yTpVel2G6rocF5z+l4vp1vcHUieo9D+OOz8mPjooxp89g 4SjRVypalvS1gbkMxuA1iHKUoZl1DjiQwR+YGqqWdZ/FTs4ngOGFeFPnJnrWdcbM 0ZcWO/8r4h8NTuqwvFo5InlV8gj2kiHI -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:08 2024 by rpki-client on console-fra.rpki-client.org