$ rpki-client -vvf rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft File: uMGYUq7H2lGkUL59p9lYc77eNzQ.mft (raw, json) Hash identifier: Wb+KjdwhUvy9zAW0ItC6u+NQd0o20e1grKT2/sRr26U= Subject key identifier: 17:EB:E9:84:E8:C9:3A:62:AE:B0:65:22:72:A9:F0:5C:32:5E:65:B8 Authority key identifier: B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 Certificate issuer: /CN=A917C78E/serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft Manifest number: 19 Signing time: Sat 23 Nov 2024 05:52:46 +0000 Manifest this update: Sat 23 Nov 2024 05:52:46 +0000 Manifest next update: Sat 30 Nov 2024 05:52:46 +0000 Files and hashes: 1: uMGYUq7H2lGkUL59p9lYc77eNzQ.crl (hash: a2vASeupHUKiYmVGC4NnM4295kVtQuQw7lVPPkHyQUE=) 2: 91F29F5E86DD11EFB3D7A929C4F9AE02.roa (hash: YiOcP7W7AOtNltDYNBm9P2k2HnzTcQ0cTjwg3ge15m4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C78E/serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Validity Not Before: Nov 23 05:52:46 2024 GMT Not After : Nov 30 05:52:46 2024 GMT Subject: CN=67416dae-fdd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:22:19:f2:f9:11:b2:df:97:d7:1b:a8:a8:b7: d0:b9:53:56:34:57:35:b8:58:9a:46:e5:9c:43:f8: b1:fd:ae:69:3f:c2:62:f8:8a:3f:28:68:f6:50:6d: 19:17:2f:59:a5:de:90:1a:48:d6:aa:db:0c:ca:52: 6d:6f:34:6d:fc:ee:67:de:ac:8e:03:ca:2e:96:db: 93:f5:ad:14:6a:aa:ed:d3:f7:ab:6b:9d:42:ff:58: 14:92:7f:38:0e:66:bb:f7:7c:a4:cb:9d:c0:7e:59: 51:db:c4:9a:a8:7a:b7:70:2b:68:dc:d0:f3:6f:cd: 0d:f0:45:dc:13:65:63:70:14:47:13:25:78:7a:66: 7d:84:b8:9b:18:89:51:51:cc:b6:33:ed:67:88:ff: 6b:09:a3:37:b0:d0:77:25:c7:22:ce:46:d7:46:39: 04:bd:fe:4f:d5:6e:1e:cd:cd:a8:92:a7:37:55:5f: 2f:96:9b:df:9a:2c:6f:5b:2f:c5:f9:46:8c:78:b2: bc:25:82:24:1c:f4:ba:c9:e1:35:eb:de:50:a1:e7: bc:b3:59:f5:45:9e:33:9d:47:3a:ef:70:2b:ac:09: fe:7b:27:9f:c4:79:f5:07:32:81:12:68:1a:8e:d4: 36:e4:fa:86:ef:d0:58:35:f0:1c:e9:75:68:21:d6: 14:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:EB:E9:84:E8:C9:3A:62:AE:B0:65:22:72:A9:F0:5C:32:5E:65:B8 X509v3 Authority Key Identifier: keyid:B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:0f:fd:ad:80:cf:0b:83:ab:f2:14:85:18:2d:e1:be:f2:a6: f4:29:20:3c:31:33:78:25:4b:8c:bd:86:8c:bb:68:2f:5d:ea: 76:16:95:b3:55:19:36:f9:a9:87:14:2f:14:e1:58:c5:81:9c: d1:f1:7f:4a:0f:61:0b:cb:48:82:ee:66:e9:95:54:78:cc:c6: f5:33:a9:ab:5d:2e:eb:c4:80:92:49:90:91:61:e8:72:1f:32: 6a:0f:ce:fc:09:ed:37:87:b7:aa:35:22:3a:db:0c:81:3e:06: 86:4d:c0:c9:8e:63:f8:c3:e7:7c:10:54:a1:e4:56:69:0a:b3: e9:56:58:d1:4a:75:55:41:ab:2d:46:8b:2d:60:ca:c2:bb:83: b5:3f:19:45:54:b7:5e:01:be:60:50:2b:e7:02:6f:fc:e1:2b: bd:31:93:45:cb:11:5e:80:c5:e4:8a:4c:7d:18:35:d5:3e:4e: 28:b9:52:44:0f:a7:c3:fb:c9:a8:81:29:4e:d6:db:95:82:b6: 18:67:ea:e4:74:6d:80:88:40:63:77:8f:39:d0:3e:59:96:bc: f7:3b:99:7b:b3:91:75:55:b5:ca:01:5c:65:be:b9:11:69:d8: be:ec:7a:83:f6:06:d8:b0:c9:ba:5d:9b:cc:c1:65:77:ad:31: ca:2c:8e:9f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Qzc4RTExMC8GA1UEBRMoQjhDMTk4NTJBRUM3REE1MUE0NTBCRTdEQTdEOTU4NzNC RURFMzczNDAeFw0yNDExMjMwNTUyNDZaFw0yNDExMzAwNTUyNDZaMBgxFjAUBgNV BAMTDTY3NDE2ZGFlLWZkZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9Ihny+RGy35fXG6iot9C5U1Y0VzW4WJpG5ZxD+LH9rmk/wmL4ij8oaPZQbRkX L1ml3pAaSNaq2wzKUm1vNG387mferI4Dyi6W25P1rRRqqu3T96trnUL/WBSSfzgO Zrv3fKTLncB+WVHbxJqoerdwK2jc0PNvzQ3wRdwTZWNwFEcTJXh6Zn2EuJsYiVFR zLYz7WeI/2sJozew0HclxyLORtdGOQS9/k/Vbh7NzaiSpzdVXy+Wm9+aLG9bL8X5 Rox4srwlgiQc9LrJ4TXr3lCh57yzWfVFnjOdRzrvcCusCf57J5/EefUHMoESaBqO 1Dbk+obv0Fg18BzpdWgh1hSVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUF+vphOjJ OmKusGUicqnwXDJeZbgwHwYDVR0jBBgwFoAUuMGYUq7H2lGkUL59p9lYc77eNzQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDNzhFL0EwMjAxQjIwODZE QzExRUZCOUVBRDAyN0M0RjlBRTAyL3VNR1lVcTdIMmxHa1VMNTlwOWxZYzc3ZU56 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdU1HWVVxN0gybEdrVUw1OXA5bFljNzdlTnpRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD NzhFL0EwMjAxQjIwODZEQzExRUZCOUVBRDAyN0M0RjlBRTAyL3VNR1lVcTdIMmxH a1VMNTlwOWxZYzc3ZU56US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEMP/a2AzwuDq/IUhRgt4b7ypvQpIDwxM3glS4y9hoy7aC9d6nYWlbNV GTb5qYcULxThWMWBnNHxf0oPYQvLSILuZumVVHjMxvUzqatdLuvEgJJJkJFh6HIf MmoPzvwJ7TeHt6o1IjrbDIE+BoZNwMmOY/jD53wQVKHkVmkKs+lWWNFKdVVBqy1G iy1gysK7g7U/GUVUt14BvmBQK+cCb/zhK70xk0XLEV6AxeSKTH0YNdU+Tii5UkQP p8P7yaiBKU7W25WCthhn6uR0bYCIQGN3jznQPlmWvPc7mXuzkXVVtcoBXGW+uRFp 2L7seoP2Btiwybpdm8zBZXetMcosjp8= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:03 2024 by rpki-client on console-ams.rpki-client.org