$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft File: u-KUkERtaHB2W05h1-ubIsYARjg.mft (raw, json) Hash identifier: Li+cZATgeY64/rt7H1KbKYn40/S+FsFf7J8abBV3UcM= Subject key identifier: 2F:BB:8C:12:FC:A7:BF:FF:66:CB:1E:7C:50:96:0B:BE:90:5C:33:4B Authority key identifier: BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 Certificate issuer: /CN=A9186D83/serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Certificate serial: 0C0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft Manifest number: 0BF7 Signing time: Fri 22 Nov 2024 18:28:07 +0000 Manifest this update: Fri 22 Nov 2024 18:28:07 +0000 Manifest next update: Fri 29 Nov 2024 18:28:07 +0000 Files and hashes: 1: u-KUkERtaHB2W05h1-ubIsYARjg.crl (hash: 3OltojD/8eR06j2B5Gc+3EfaS2H5Ny5vi785iyT+mYY=) 2: 8BA504FCB27911EB978CE10AC4F9AE02.roa (hash: I8Ss/Oj3Q9umSrFxZnObaXQe/cu017hGcC027pv/vs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:28:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3087 (0xc0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D83/serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Validity Not Before: Nov 22 18:28:07 2024 GMT Not After : Nov 29 18:28:07 2024 GMT Subject: CN=6740cd37-938a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f6:8a:cc:24:08:d4:7a:06:8e:79:44:ca:8d: 6e:02:51:b8:46:62:0d:39:f0:b7:1f:9e:8f:f2:d4: cf:4f:ed:25:11:fa:07:fc:8e:6c:c4:58:46:72:21: 53:cd:55:22:4c:4e:d3:c9:d7:a3:04:b8:0b:b5:bd: 6e:78:4d:2e:df:93:7a:f9:74:90:f9:b0:11:46:e5: e6:52:e2:d5:36:d4:a3:3c:df:c0:75:7b:83:e5:19: 8c:37:bb:04:9e:54:9b:7f:88:77:17:23:04:db:5d: 4e:ce:94:e4:58:83:23:37:f3:82:58:5f:be:8b:de: 17:db:ce:93:13:e0:06:a5:f8:f4:bc:a6:02:cf:e4: 03:44:9f:89:27:bd:82:ac:d2:ef:05:79:e3:24:b5: bc:7a:ae:77:f8:64:4d:55:d0:60:01:86:25:1e:df: 52:fc:0a:64:5b:2f:6d:b7:3c:48:e3:93:65:8e:fe: ff:f1:10:f1:c6:da:21:22:09:e1:2c:0f:91:8b:54: 32:fc:05:57:df:26:96:92:92:ad:81:86:0f:c5:90: 1c:8b:4c:89:80:51:d6:f0:bf:97:f7:3f:06:57:e9: 3f:30:40:d6:c1:35:62:c8:a0:21:e4:74:23:c3:c8: b7:b2:fb:f7:5d:46:6f:78:35:0c:b1:69:a9:13:4c: 60:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BB:8C:12:FC:A7:BF:FF:66:CB:1E:7C:50:96:0B:BE:90:5C:33:4B X509v3 Authority Key Identifier: keyid:BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:a8:fb:ef:e4:ab:93:39:05:42:f5:b8:84:55:91:ee:84:7c: 1c:68:d7:4f:05:d2:e9:55:da:1b:d4:07:2e:fb:b1:02:fc:78: 52:f8:82:c1:21:d0:40:be:56:b3:6d:1e:b0:9f:e5:93:e2:b6: 30:08:79:a4:04:77:52:6e:96:98:e3:b9:8a:8b:4c:06:2d:03: 0c:e1:1e:52:46:05:69:11:b4:3a:75:04:92:0b:b9:fa:86:78: 11:58:d1:d3:66:db:f1:e3:7c:a5:f4:8a:ba:ee:a5:16:6e:48: 62:d9:cc:63:71:94:b7:69:9d:e3:65:b3:7d:f0:8c:22:60:d1: 12:5d:39:31:cc:b4:22:e3:87:4a:63:d0:f4:28:4a:9b:3c:5e: b7:41:59:8a:e7:fd:59:6e:08:57:a3:11:30:bb:3b:8c:7d:e3: 96:11:f0:c5:36:92:60:d1:5b:2d:1c:e0:ae:ce:13:43:80:e8: b0:5a:de:40:ce:20:a8:14:42:8d:30:be:ed:4e:32:19:e5:ca: 03:0c:76:24:8b:1c:71:04:f3:f9:a9:c9:f2:fd:0c:52:d7:f1: 86:fc:bb:3c:a9:6f:c9:4e:8c:40:63:e8:35:3e:05:31:41:8f: 0c:3b:03:85:82:3e:46:b4:fa:1c:a5:57:5e:9e:0b:b0:1e:4e: ab:8a:b5:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEODMxMTAvBgNVBAUTKEJCRTI5NDkwNDQ2RDY4NzA3NjVCNEU2MUQ3RUI5QjIy QzYwMDQ2MzgwHhcNMjQxMTIyMTgyODA3WhcNMjQxMTI5MTgyODA3WjAYMRYwFAYD VQQDEw02NzQwY2QzNy05MzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovaKzCQI1HoGjnlEyo1uAlG4RmINOfC3H56P8tTPT+0lEfoH/I5sxFhGciFT zVUiTE7TydejBLgLtb1ueE0u35N6+XSQ+bARRuXmUuLVNtSjPN/AdXuD5RmMN7sE nlSbf4h3FyME211OzpTkWIMjN/OCWF++i94X286TE+AGpfj0vKYCz+QDRJ+JJ72C rNLvBXnjJLW8eq53+GRNVdBgAYYlHt9S/ApkWy9ttzxI45Nljv7/8RDxxtohIgnh LA+Ri1Qy/AVX3yaWkpKtgYYPxZAci0yJgFHW8L+X9z8GV+k/MEDWwTViyKAh5HQj w8i3svv3XUZveDUMsWmpE0xghQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+7jBL8 p7//ZssefFCWC76QXDNLMB8GA1UdIwQYMBaAFLvilJBEbWhwdltOYdfrmyLGAEY4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ4My8xNDk3NDdCRTA2 MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFIQjJXMDVoMS11YklzWUFS amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtS1VrRVJ0YUhCMlcwNWgxLXViSXNZQVJqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ4My8xNDk3NDdCRTA2MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFI QjJXMDVoMS11YklzWUFSamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwqPvv5KuTOQVC9biEVZHuhHwcaNdPBdLpVdob1Acu+7EC/HhS+ILB IdBAvlazbR6wn+WT4rYwCHmkBHdSbpaY47mKi0wGLQMM4R5SRgVpEbQ6dQSSC7n6 hngRWNHTZtvx43yl9Iq67qUWbkhi2cxjcZS3aZ3jZbN98IwiYNESXTkxzLQi44dK Y9D0KEqbPF63QVmK5/1ZbghXoxEwuzuMfeOWEfDFNpJg0VstHOCuzhNDgOiwWt5A ziCoFEKNML7tTjIZ5coDDHYkixxxBPP5qcny/QxS1/GG/Ls8qW/JToxAY+g1PgUx QY8MOwOFgj5GtPocpVdenguwHk6rirUs -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org