$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft File: UT8gd9itkRrHe1tcWbPiFMeLAjs.mft (raw, json) Hash identifier: ua2VIhgh9eMrMAlkhPn1lt6qH8Q1CdffqElVHYQheXo= Subject key identifier: 73:A9:A2:D1:D7:16:BA:CA:65:34:63:F9:A7:CE:67:A0:14:E9:9F:48 Authority key identifier: 51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B Certificate issuer: /CN=A917E1B9/serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Certificate serial: 0555 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft Manifest number: 0550 Signing time: Fri 22 Nov 2024 22:59:22 +0000 Manifest this update: Fri 22 Nov 2024 22:59:22 +0000 Manifest next update: Fri 29 Nov 2024 22:59:22 +0000 Files and hashes: 1: UT8gd9itkRrHe1tcWbPiFMeLAjs.crl (hash: aEQCrV3gR165WezHVo2BQqupdPoddwdEByw/PMngLIo=) 2: 7F27A9D6C88211EBB7A6F948C4F9AE02.roa (hash: iMlOmr2fNq87x6S0R4H0l10i8IQao1B6aqgg50klXMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1365 (0x555) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1B9/serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Validity Not Before: Nov 22 22:59:22 2024 GMT Not After : Nov 29 22:59:22 2024 GMT Subject: CN=67410cca-a039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:37:d3:27:0d:fa:62:27:61:21:01:fb:46:55: 36:1b:6c:cb:8c:2a:c8:82:f3:4f:20:63:f9:7b:ad: 91:22:a8:06:90:fc:0f:bf:da:7c:78:01:a4:52:0f: 34:79:3b:ab:ed:be:36:06:97:e9:03:66:79:33:fd: 53:9c:cf:76:22:9f:03:49:12:89:68:bf:f3:4e:8d: 40:f9:d1:0e:67:cd:24:15:f6:a3:42:64:41:b2:b0: 30:74:d2:6f:c0:25:6d:33:4d:7d:ab:fd:f8:45:4e: ad:64:b6:9b:65:88:43:16:2c:7c:b8:61:59:ad:52: c7:c7:51:93:e7:e0:08:32:54:d8:8f:1f:d4:ed:08: 15:7d:ba:a3:aa:d8:77:d5:af:1b:60:fa:37:67:91: 15:04:b1:03:17:0b:f8:23:b9:4c:30:8d:e8:fe:72: 16:9c:f3:09:16:60:9f:d2:71:5f:2d:f5:6b:03:58: 52:f4:56:b7:88:5d:e4:79:7b:cc:06:6a:96:9c:9a: 19:14:d4:32:ab:66:ee:87:d4:bb:49:f1:da:18:a5: d2:9c:53:d8:55:a2:c4:72:96:18:ba:a2:69:45:ba: 66:82:9f:ee:25:81:1f:3d:b2:5b:f7:fa:eb:ad:29: 7b:50:6c:16:01:ec:56:7b:44:ae:61:1c:54:7a:4f: f3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A9:A2:D1:D7:16:BA:CA:65:34:63:F9:A7:CE:67:A0:14:E9:9F:48 X509v3 Authority Key Identifier: keyid:51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:33:a3:d9:55:3b:d9:eb:3f:39:6c:c9:c5:8f:4e:45:95:ba: 82:39:95:46:2c:a0:6b:df:7f:7f:68:af:c8:3e:db:1d:17:83: 64:3f:64:b4:31:de:6e:b6:49:80:bf:88:a9:c7:b5:a5:3f:de: 51:68:17:ff:59:62:21:34:49:ff:12:b8:48:57:f7:f9:2d:d4: a7:e6:bc:aa:48:a1:4a:02:df:81:4c:37:13:e5:20:19:66:c3: 2e:9b:f0:d7:9d:af:0a:f7:6b:26:1d:cc:c3:a2:f5:96:a9:bc: 46:c7:f9:99:e5:48:8f:ee:9f:85:12:1d:e1:77:b3:aa:6b:7b: 5b:bc:97:8e:04:90:f5:6f:84:c0:6d:91:1d:8a:be:a6:5b:0e: 41:aa:6c:23:1d:5a:b7:ee:5e:5e:0a:51:b0:e6:95:a1:4c:d4: 1e:3b:d4:f9:dc:16:c3:52:c8:25:43:b8:48:11:49:fa:4b:b4: 71:3f:55:c9:ac:55:9b:d5:57:5c:1f:9f:4d:e8:09:07:37:36: fb:de:d9:b0:b8:00:3f:22:5a:ee:9e:9a:64:60:4a:01:86:ce: ff:19:8d:78:a0:33:02:96:5f:3f:08:23:be:07:4d:32:64:d1: 78:1d:5b:f3:22:00:d3:c7:0d:48:35:a5:7e:b4:22:23:a0:e4: 66:4e:46:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxQjkxMTAvBgNVBAUTKDUxM0YyMDc3RDhBRDkxMUFDNzdCNUI1QzU5QjNFMjE0 Qzc4QjAyM0IwHhcNMjQxMTIyMjI1OTIyWhcNMjQxMTI5MjI1OTIyWjAYMRYwFAYD VQQDEw02NzQxMGNjYS1hMDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zfTJw36YidhIQH7RlU2G2zLjCrIgvNPIGP5e62RIqgGkPwPv9p8eAGkUg80 eTur7b42BpfpA2Z5M/1TnM92Ip8DSRKJaL/zTo1A+dEOZ80kFfajQmRBsrAwdNJv wCVtM019q/34RU6tZLabZYhDFix8uGFZrVLHx1GT5+AIMlTYjx/U7QgVfbqjqth3 1a8bYPo3Z5EVBLEDFwv4I7lMMI3o/nIWnPMJFmCf0nFfLfVrA1hS9Fa3iF3keXvM BmqWnJoZFNQyq2buh9S7SfHaGKXSnFPYVaLEcpYYuqJpRbpmgp/uJYEfPbJb9/rr rSl7UGwWAexWe0SuYRxUek/z4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOpotHX FrrKZTRj+afOZ6AU6Z9IMB8GA1UdIwQYMBaAFFE/IHfYrZEax3tbXFmz4hTHiwI7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFCOS9DREI3MDJGNkM4 N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtSckhlMXRjV2JQaUZNZUxB anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VUOGdkOWl0a1JySGUxdGNXYlBpRk1lTEFqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFCOS9DREI3MDJGNkM4N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtS ckhlMXRjV2JQaUZNZUxBanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsM6PZVTvZ6z85bMnFj05FlbqCOZVGLKBr339/aK/IPtsdF4NkP2S0 Md5utkmAv4ipx7WlP95RaBf/WWIhNEn/ErhIV/f5LdSn5ryqSKFKAt+BTDcT5SAZ ZsMum/DXna8K92smHczDovWWqbxGx/mZ5UiP7p+FEh3hd7Oqa3tbvJeOBJD1b4TA bZEdir6mWw5BqmwjHVq37l5eClGw5pWhTNQeO9T53BbDUsglQ7hIEUn6S7RxP1XJ rFWb1VdcH59N6AkHNzb73tmwuAA/IlrunppkYEoBhs7/GY14oDMCll8/CCO+B00y ZNF4HVvzIgDTxw1INaV+tCIjoORmTkYp -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:29 2024 by rpki-client on console-fra.rpki-client.org