$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft File: u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft (raw, json) Hash identifier: Ntd3dHoQd2PIJSHybjznT6Qn4P5TPVNeU9PYx9n5EKE= Subject key identifier: 41:CF:DA:26:C8:8B:1D:5C:79:A4:B8:5A:1F:60:6A:03:AA:E0:E9:7B Authority key identifier: BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 Certificate issuer: /CN=A919E3E3/serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Certificate serial: 0635 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft Manifest number: 0630 Signing time: Fri 22 Nov 2024 22:04:15 +0000 Manifest this update: Fri 22 Nov 2024 22:04:15 +0000 Manifest next update: Fri 29 Nov 2024 22:04:15 +0000 Files and hashes: 1: u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl (hash: WgDqPBTuH+p7fEVtOUySWtbMfi9NHexBceEYUBAr6to=) 2: 58B04DD46F3C11EB924C4E2AC4F9AE02.roa (hash: hT6PiTq4VuebMVKql1Edg2h7UOqDcrvg8gjAvmzNu5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1589 (0x635) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3E3/serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Validity Not Before: Nov 22 22:04:15 2024 GMT Not After : Nov 29 22:04:15 2024 GMT Subject: CN=6740ffdf-124d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:03:ae:40:37:0a:b8:85:53:0f:ff:67:3b:be: f2:ca:dc:a2:e8:bb:86:89:51:c3:dc:3d:35:3e:52: b2:c9:4a:12:76:b6:b4:73:83:73:03:4f:0b:fb:e3: ae:9b:44:55:8c:ca:b1:b3:65:97:4e:57:18:28:34: a8:d9:60:6b:9d:c0:7e:a5:bc:1d:c0:5d:0c:a4:be: 53:c7:f5:4d:b6:03:d9:f6:e5:0b:f2:84:ae:7a:eb: 06:6e:32:eb:7d:82:48:d8:2d:bf:e4:32:91:54:c7: d7:f5:04:cf:cc:70:6b:ad:1a:8a:48:a1:59:5c:be: 70:c9:3d:f5:4b:37:45:21:70:10:62:a9:65:70:82: bc:d2:d0:97:a7:51:84:00:7c:21:c6:97:a3:5c:2b: e9:e5:86:ba:91:a8:de:55:19:38:dc:28:23:c3:22: 99:44:46:c8:11:13:f8:52:60:2a:93:e7:bf:99:26: 9f:db:5b:9f:a9:26:d0:88:4c:e8:ac:b1:c5:18:cd: f0:e3:4c:2c:a3:40:60:12:a5:f1:a7:fb:2e:dc:a6: 3d:f9:bf:bc:7f:82:15:1e:45:c4:41:57:8b:20:23: 55:38:44:b7:91:b2:18:88:1a:17:9b:4d:e3:24:fe: b3:e5:1a:79:26:a5:95:25:12:46:33:36:49:8e:b1: f6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:CF:DA:26:C8:8B:1D:5C:79:A4:B8:5A:1F:60:6A:03:AA:E0:E9:7B X509v3 Authority Key Identifier: keyid:BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:94:08:8b:eb:13:c0:8e:37:d3:25:74:31:27:0e:c3:ac:04: 7e:da:64:a9:c0:ad:c5:74:51:a4:d3:c4:43:67:d8:00:dd:9e: 89:c3:8c:d9:7e:c0:0b:80:75:3c:43:b5:2e:4a:05:af:a9:ca: a6:9a:3f:bc:47:78:b1:5e:e7:2f:16:4c:1f:42:0c:eb:5d:f6: 37:44:60:82:03:23:c6:ae:8c:ea:22:c1:6d:7b:97:07:ad:cd: 35:28:70:e2:8c:27:2a:eb:dc:1d:67:6f:ba:de:68:9f:06:a2: b9:3f:e0:d8:89:ce:e3:8f:8e:36:b5:3a:60:0e:e0:d8:ec:18: fa:c2:ae:90:dd:f9:11:5f:a8:c0:45:01:19:c1:87:4c:40:40: 34:8d:0b:38:20:3c:67:ed:e5:11:7d:9f:9a:1b:c5:87:54:8e: d6:27:17:7d:a5:4c:ee:1d:fc:38:3e:5f:11:24:f8:83:45:11: 45:3e:ed:1d:2b:f8:e9:49:bd:7f:ae:0a:17:6c:71:28:ef:de: 90:a2:75:33:32:9b:9e:64:49:04:c2:10:4d:a1:60:94:24:c7: ac:12:41:aa:d9:05:4b:ec:6f:af:86:71:74:51:3d:ec:27:5b: 77:5c:2b:1d:b2:ac:69:1b:60:2e:a4:4c:97:c4:d3:09:57:84: ae:4a:4b:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRTMxMTAvBgNVBAUTKEJCQ0M3NjBBRkUzRTlGMEE5Qjg4QzhFQzdBNDlFRDdD REQwMzk2RjcwHhcNMjQxMTIyMjIwNDE1WhcNMjQxMTI5MjIwNDE1WjAYMRYwFAYD VQQDEw02NzQwZmZkZi0xMjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAOuQDcKuIVTD/9nO77yytyi6LuGiVHD3D01PlKyyUoSdra0c4NzA08L++Ou m0RVjMqxs2WXTlcYKDSo2WBrncB+pbwdwF0MpL5Tx/VNtgPZ9uUL8oSueusGbjLr fYJI2C2/5DKRVMfX9QTPzHBrrRqKSKFZXL5wyT31SzdFIXAQYqllcIK80tCXp1GE AHwhxpejXCvp5Ya6kajeVRk43CgjwyKZREbIERP4UmAqk+e/mSaf21ufqSbQiEzo rLHFGM3w40wso0BgEqXxp/su3KY9+b+8f4IVHkXEQVeLICNVOES3kbIYiBoXm03j JP6z5Rp5JqWVJRJGMzZJjrH29QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHP2ibI ix1ceaS4Wh9gagOq4Ol7MB8GA1UdIwQYMBaAFLvMdgr+Pp8Km4jI7HpJ7XzdA5b3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNFMy8wOEI4RDBEMjZG M0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53cWJpTWpzZWtudGZOMERs dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U4eDJDdjQtbndxYmlNanNla250Zk4wRGx2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNFMy8wOEI4RDBEMjZGM0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53 cWJpTWpzZWtudGZOMERsdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdlAiL6xPAjjfTJXQxJw7DrAR+2mSpwK3FdFGk08RDZ9gA3Z6Jw4zZ fsALgHU8Q7UuSgWvqcqmmj+8R3ixXucvFkwfQgzrXfY3RGCCAyPGrozqIsFte5cH rc01KHDijCcq69wdZ2+63mifBqK5P+DYic7jj442tTpgDuDY7Bj6wq6Q3fkRX6jA RQEZwYdMQEA0jQs4IDxn7eURfZ+aG8WHVI7WJxd9pUzuHfw4Pl8RJPiDRRFFPu0d K/jpSb1/rgoXbHEo796QonUzMpueZEkEwhBNoWCUJMesEkGq2QVL7G+vhnF0UT3s J1t3XCsdsqxpG2AupEyXxNMJV4SuSkvx -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:31 2024 by rpki-client on console-fra.rpki-client.org