$ rpki-client -vvf rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft File: UnWd41wCZ5226TLqiGidwQ1czK4.mft (raw, json) Hash identifier: uFmYhhrcg8vKDjMfiSnBewbEQ5VrJA1k/xoWsO7IHR4= Subject key identifier: BD:B3:45:D7:FB:CE:54:AC:AC:68:20:E9:56:07:27:33:BB:26:6F:F0 Authority key identifier: 52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE Certificate issuer: /CN=A919014C/serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft Manifest number: E1 Signing time: Sat 23 Nov 2024 03:36:28 +0000 Manifest this update: Sat 23 Nov 2024 03:36:28 +0000 Manifest next update: Sat 30 Nov 2024 03:36:28 +0000 Files and hashes: 1: UnWd41wCZ5226TLqiGidwQ1czK4.crl (hash: rqJsl0Port6Atu1wewl8TtpKN99fiE2+fqVgKk+XfpE=) 2: 503DC7FA547F11EE9512EE75C4F9AE02.roa (hash: 33db+G2HmqK4GM+/q2Pot6yftpHMysN5n0HwgMWkack=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919014C/serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Validity Not Before: Nov 23 03:36:28 2024 GMT Not After : Nov 30 03:36:28 2024 GMT Subject: CN=67414dbc-2a82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:96:5d:83:57:83:ad:07:df:bf:ae:df:e8:c7: 20:a6:cd:ed:70:0a:00:c7:ca:fd:e7:fb:eb:f3:4d: f0:5d:95:a3:4b:82:2f:b8:fb:a4:bd:76:7f:12:df: 5d:fa:98:f9:dd:af:0d:90:b6:ab:c7:2a:83:df:66: 95:95:b4:06:38:de:68:f8:07:76:1e:e4:99:c1:2f: 3f:17:68:81:f6:4c:96:40:d1:85:49:92:72:89:3f: 56:ac:b2:b7:2b:6a:ba:ca:cd:f8:e0:9f:79:24:0d: 24:53:25:ae:72:ef:10:80:f7:6b:b3:3a:73:87:27: ce:f0:8b:0a:fb:f6:92:70:7c:c7:75:ab:4b:26:05: a6:f1:7b:c5:6b:5a:f1:d0:2f:41:3a:d5:d0:fb:dc: ea:85:b0:98:8f:3b:56:47:fa:d3:40:7f:78:c6:e0: 5c:a8:27:61:ba:b4:ff:3d:86:c1:37:eb:00:f9:54: cf:48:cd:e0:b9:3c:e3:d6:7d:3f:85:14:59:0d:46: 00:2d:78:b7:2e:9b:d3:0f:b9:86:ea:98:2b:10:04: bf:73:84:71:41:e7:e4:02:f4:e6:c4:17:e4:c0:ee: d0:65:e0:e8:e5:5a:6b:45:b5:76:3a:fa:0f:1d:3c: 05:8e:4e:02:3a:e0:2c:1a:b7:d5:47:bb:e5:f7:4d: a1:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:B3:45:D7:FB:CE:54:AC:AC:68:20:E9:56:07:27:33:BB:26:6F:F0 X509v3 Authority Key Identifier: keyid:52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:c8:c7:bc:46:c7:72:6f:33:09:c3:b0:0e:4b:61:7a:1d:48: 51:b6:5f:40:0d:d3:77:9c:b4:6c:53:5b:c0:f8:ea:2f:23:7b: 5f:c6:88:ad:92:7e:6b:5c:8f:5a:f8:66:b6:25:d9:37:6a:69: 32:c7:6a:c0:34:79:12:41:e9:c6:1e:45:ce:e2:6b:2c:85:d2: a5:39:0f:a2:fa:d9:99:37:0c:2a:63:03:07:f4:bd:ec:30:64: b1:52:5c:7a:87:cf:fd:1e:4b:69:fb:21:73:4a:15:ae:bd:79: 52:f0:9c:2c:22:8b:37:cc:dc:47:53:79:fe:ea:64:56:9d:c2: 49:2a:c5:37:70:76:eb:21:ad:b3:14:c1:fc:34:65:8d:e1:bc: 05:63:8a:c7:21:01:70:3a:05:d5:ca:01:43:23:ba:1d:5f:c2: 87:bf:13:2a:e2:fe:d9:98:80:f9:76:6d:e9:f3:f0:31:10:f0: 22:4c:95:28:78:e3:2b:6d:1b:36:ce:0c:68:4c:e1:aa:eb:4d: cf:5e:fc:13:1f:93:0d:26:b9:14:11:6a:9b:4d:a4:53:9f:98: d6:28:ec:8c:8c:5d:11:b1:eb:a2:96:67:8a:83:20:40:34:61: a0:56:c8:46:1e:28:3f:d9:8f:5f:53:f8:fe:e4:da:88:5f:64: 08:36:ac:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTAxNEMxMTAvBgNVBAUTKDUyNzU5REUzNUMwMjY3OURCNkU5MzJFQTg4Njg5REMx MEQ1Q0NDQUUwHhcNMjQxMTIzMDMzNjI4WhcNMjQxMTMwMDMzNjI4WjAYMRYwFAYD VQQDEw02NzQxNGRiYy0yYTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+5Zdg1eDrQffv67f6Mcgps3tcAoAx8r95/vr803wXZWjS4IvuPukvXZ/Et9d +pj53a8NkLarxyqD32aVlbQGON5o+Ad2HuSZwS8/F2iB9kyWQNGFSZJyiT9WrLK3 K2q6ys344J95JA0kUyWucu8QgPdrszpzhyfO8IsK+/aScHzHdatLJgWm8XvFa1rx 0C9BOtXQ+9zqhbCYjztWR/rTQH94xuBcqCdhurT/PYbBN+sA+VTPSM3guTzj1n0/ hRRZDUYALXi3LpvTD7mG6pgrEAS/c4RxQefkAvTmxBfkwO7QZeDo5VprRbV2OvoP HTwFjk4COuAsGrfVR7vl902h7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2zRdf7 zlSsrGgg6VYHJzO7Jm/wMB8GA1UdIwQYMBaAFFJ1neNcAmedtuky6ohoncENXMyu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDE0Qy8xNTRGQUMyQzU0 N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1MjI2VExxaUdpZHdRMWN6 SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VuV2Q0MXdDWjUyMjZUTHFpR2lkd1ExY3pLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDE0Qy8xNTRGQUMyQzU0N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1 MjI2VExxaUdpZHdRMWN6SzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIyMe8RsdybzMJw7AOS2F6HUhRtl9ADdN3nLRsU1vA+OovI3tfxoit kn5rXI9a+Ga2Jdk3amkyx2rANHkSQenGHkXO4msshdKlOQ+i+tmZNwwqYwMH9L3s MGSxUlx6h8/9Hktp+yFzShWuvXlS8JwsIos3zNxHU3n+6mRWncJJKsU3cHbrIa2z FMH8NGWN4bwFY4rHIQFwOgXVygFDI7odX8KHvxMq4v7ZmID5dm3p8/AxEPAiTJUo eOMrbRs2zgxoTOGq603PXvwTH5MNJrkUEWqbTaRTn5jWKOyMjF0RseuilmeKgyBA NGGgVshGHig/2Y9fU/j+5NqIX2QINqyJ -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:14 2024 by rpki-client on console-ams.rpki-client.org