$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: O6ZRSX99y/ATj3RuQIgvOpgy9tTIaVacoL9JMHL0dXI= Subject key identifier: 1F:5E:98:B1:AB:6E:BE:F5:74:32:37:6E:0C:AA:16:D7:CA:28:28:76 Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 344E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 343B Signing time: Sun 24 Nov 2024 14:45:12 +0000 Manifest this update: Sun 24 Nov 2024 14:45:11 +0000 Manifest next update: Sun 01 Dec 2024 14:45:11 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: ANQJZ79ZVKdb/xt0jmQCyS8wFtCXTWuBd5y4Y4HFGgU=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: J0n8zynWewxBVfoDX3OB8RbfuIjzjZ2KDx4R2TodoBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13390 (0x344e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: Nov 24 14:45:11 2024 GMT Not After : Dec 1 14:45:11 2024 GMT Subject: CN=67433bf7-959a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:98:0c:18:3f:a0:a9:85:9f:b2:03:3a:f2:c2: df:16:02:c9:52:68:e5:f2:be:b3:08:eb:2e:08:fa: 80:4b:d6:ed:70:cb:51:28:85:df:fa:2c:1d:7b:db: 42:30:ba:8a:52:41:90:03:a8:86:0e:df:16:41:d7: 2a:55:94:22:0f:19:4b:60:48:a4:ba:e1:8b:d6:1f: 02:79:0f:72:57:4d:d1:d9:ce:64:70:e3:de:54:a5: a6:b8:ff:25:91:5b:82:88:39:95:40:db:26:c7:60: f9:43:94:38:21:be:79:cb:68:c5:13:d4:e0:ec:da: 14:f1:b9:fc:f5:3e:b4:63:96:2f:3a:87:0b:e8:f7: 49:6c:4b:ad:e1:92:4e:d9:78:9c:3f:1d:49:ce:a3: 25:c3:d1:2a:f9:ad:70:13:07:ec:38:4c:dc:7a:3d: 4c:5b:b5:d2:7a:2b:65:a4:c6:7b:f1:06:88:25:76: 17:65:b2:36:d8:74:af:23:c3:3e:35:97:ab:2f:de: 0b:46:1a:2e:bc:de:20:d5:9b:3a:6a:bc:1d:bf:ac: cc:33:b2:46:b7:3a:c2:92:05:0e:40:a1:32:87:2b: 74:eb:87:6e:35:d7:ff:bc:bb:b4:71:5d:dc:87:13: f0:44:c7:e3:79:a3:c6:f6:1a:e7:d7:6d:c8:bd:fb: 2f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:5E:98:B1:AB:6E:BE:F5:74:32:37:6E:0C:AA:16:D7:CA:28:28:76 X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:b7:06:3e:67:da:c7:10:a0:04:f2:e6:0c:e9:61:a3:7a:d7: 53:55:15:94:36:6a:b5:89:2c:75:00:9c:7f:e3:0c:fe:71:d9: 35:2f:2d:ce:bf:fa:c4:a0:54:22:76:1f:85:ef:c9:58:e0:bd: 7f:ef:74:1e:ad:72:f1:d1:d4:42:a5:ce:b3:ac:de:f7:44:ac: b0:da:67:99:a1:86:bc:f4:8a:f8:c6:e2:e0:4b:db:2a:81:0e: 14:5d:2c:84:91:d0:3b:ac:ab:b7:0b:b9:6b:ff:b9:5e:3c:e5: cd:ef:01:06:22:a4:99:fc:dd:f8:d5:c1:81:6a:a1:9f:66:6a: ee:56:15:ae:96:4c:95:f4:f1:fe:58:14:cc:de:ac:6d:85:52: 64:16:f7:a5:38:d9:ee:c1:72:8a:75:98:2a:13:4b:52:44:94: db:e6:d2:96:0b:6e:a7:8d:44:28:58:dc:31:43:95:c1:70:40: 7d:b9:a0:0a:de:cd:3c:14:ab:f1:c9:27:13:8e:c5:4c:c7:88: 94:e8:3a:5e:05:89:95:f6:52:33:28:21:91:f1:7b:fd:8e:b3: fb:c7:1f:c6:e9:6e:0e:55:b5:54:a0:44:71:fc:c4:66:12:04: ce:73:60:16:74:07:7c:4a:b8:f5:78:b6:c5:5b:31:fa:0b:36: 6c:1a:94:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjQxMTI0MTQ0NTExWhcNMjQxMjAxMTQ0NTExWjAYMRYwFAYD VQQDEw02NzQzM2JmNy05NTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpgMGD+gqYWfsgM68sLfFgLJUmjl8r6zCOsuCPqAS9btcMtRKIXf+iwde9tC MLqKUkGQA6iGDt8WQdcqVZQiDxlLYEikuuGL1h8CeQ9yV03R2c5kcOPeVKWmuP8l kVuCiDmVQNsmx2D5Q5Q4Ib55y2jFE9Tg7NoU8bn89T60Y5YvOocL6PdJbEut4ZJO 2XicPx1JzqMlw9Eq+a1wEwfsOEzcej1MW7XSeitlpMZ78QaIJXYXZbI22HSvI8M+ NZerL94LRhouvN4g1Zs6arwdv6zMM7JGtzrCkgUOQKEyhyt064duNdf/vLu0cV3c hxPwRMfjeaPG9hrn123IvfsvVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9emLGr br71dDI3bgyqFtfKKCh2MB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUtwY+Z9rHEKAE8uYM6WGjetdTVRWUNmq1iSx1AJx/4wz+cdk1Ly3O v/rEoFQidh+F78lY4L1/73QerXLx0dRCpc6zrN73RKyw2meZoYa89Ir4xuLgS9sq gQ4UXSyEkdA7rKu3C7lr/7lePOXN7wEGIqSZ/N341cGBaqGfZmruVhWulkyV9PH+ WBTM3qxthVJkFvelONnuwXKKdZgqE0tSRJTb5tKWC26njUQoWNwxQ5XBcEB9uaAK 3s08FKvxyScTjsVMx4iU6DpeBYmV9lIzKCGR8Xv9jrP7xx/G6W4OVbVUoERx/MRm EgTOc2AWdAd8Srj1eLbFWzH6CzZsGpTP -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:13 2024 by rpki-client on console-ams.rpki-client.org