$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: DNk8k7ZsWP81JEdh83GNp99hbBlmcE9lP5yyXnZfQVE= Subject key identifier: 03:38:3F:08:75:B7:13:B5:AD:D1:36:C9:39:95:E4:4D:24:7C:9C:41 Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 3449 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 3438 Signing time: Sun 24 Nov 2024 14:29:13 +0000 Manifest this update: Sun 24 Nov 2024 14:29:13 +0000 Manifest next update: Sun 01 Dec 2024 14:29:13 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: 0JBNhpaJ2LBqLQBBsnfnYOb/1OLamgjoIKT9tqSpySA=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: CO44ykdfCTQ7Mv5nVqTIPuTfPATeSesiwshtkZkvJFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13385 (0x3449) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Nov 24 14:29:13 2024 GMT Not After : Dec 1 14:29:13 2024 GMT Subject: CN=67433839-e32a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e5:1b:86:84:39:92:06:33:20:81:3b:fc:86: 5a:7d:b3:0b:1b:3c:45:6b:82:01:13:54:23:33:85: c2:60:75:b7:49:8e:30:d1:92:f5:0b:06:77:fe:85: b3:89:56:03:4f:b4:f8:2f:5b:23:2f:b2:b8:f8:b6: 39:5c:14:08:57:12:fc:4a:ef:90:a1:47:92:d6:93: 2b:8d:ee:51:cf:aa:df:90:0d:a1:d8:23:42:01:84: 23:27:19:e9:12:7a:cb:5a:a5:dd:f9:ed:6b:3e:37: 74:06:7b:f5:d8:ac:44:9d:57:f6:32:26:7f:e9:24: 56:30:e5:bc:c2:1f:f2:21:49:60:a1:1f:e6:4c:55: 01:de:f6:b3:3a:33:d8:47:02:af:38:89:d6:3b:dd: cb:e6:fa:af:05:4e:9e:3c:af:79:f9:7c:7d:8a:39: 05:41:bc:74:59:47:24:f4:d6:67:81:fd:b1:e9:b9: 5b:54:57:48:f3:3c:2d:85:15:e8:c6:53:86:d2:f7: 69:24:b4:21:c0:8f:bb:80:c5:2c:e3:7a:a3:b8:6c: 18:68:3a:08:b6:85:a0:36:23:7b:94:6e:ce:e2:90: f6:d0:26:05:8d:92:67:55:07:d7:4a:2e:fa:07:ab: dd:46:a3:90:16:3d:d2:28:e0:04:e8:ab:73:f9:38: 8e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:38:3F:08:75:B7:13:B5:AD:D1:36:C9:39:95:E4:4D:24:7C:9C:41 X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ad:1c:0f:c9:d0:88:9c:0b:3e:19:84:dd:ce:ab:d1:0d:a3: 56:15:c8:5f:8d:47:fe:dc:1a:ee:55:95:0a:c6:87:9b:ea:4a: 26:80:aa:9b:26:7c:71:ca:c4:10:60:6f:5f:d8:ee:f8:09:40: b3:5b:75:02:35:47:86:1d:3e:d8:06:7a:a4:5b:33:a7:bb:8a: e5:f9:ee:37:26:74:4e:23:f5:cc:a6:e3:a7:cb:9c:92:43:2c: 8b:4b:8b:47:2a:63:15:db:64:9d:06:a4:f9:e1:d1:dc:52:4f: 41:82:1b:38:d0:59:c7:50:d9:9d:63:ab:15:8d:16:66:30:40: 87:52:ee:5d:b9:4f:ff:4c:ab:4f:30:73:9d:fc:10:83:f9:4e: 89:5f:34:30:ad:65:1a:f8:b9:5b:c3:cf:a8:50:8b:8b:98:5f: 19:11:16:ed:93:78:8f:ce:34:0f:57:a4:8d:7f:74:9f:58:56: 9a:fc:b9:9a:73:41:8d:22:19:75:03:80:fc:f4:a3:56:2b:86: 0c:21:4e:b8:24:d4:dc:08:0a:98:c7:60:a7:72:42:0b:4e:e0: ac:03:07:09:71:8c:3a:cc:c9:94:fb:bb:15:80:71:d1:d2:c0: a8:67:52:34:5a:00:07:40:f3:b8:80:5b:6d:52:51:ae:25:c3: db:37:97:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjQxMTI0MTQyOTEzWhcNMjQxMjAxMTQyOTEzWjAYMRYwFAYD VQQDEw02NzQzMzgzOS1lMzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+UbhoQ5kgYzIIE7/IZafbMLGzxFa4IBE1QjM4XCYHW3SY4w0ZL1CwZ3/oWz iVYDT7T4L1sjL7K4+LY5XBQIVxL8Su+QoUeS1pMrje5Rz6rfkA2h2CNCAYQjJxnp EnrLWqXd+e1rPjd0Bnv12KxEnVf2MiZ/6SRWMOW8wh/yIUlgoR/mTFUB3vazOjPY RwKvOInWO93L5vqvBU6ePK95+Xx9ijkFQbx0WUck9NZngf2x6blbVFdI8zwthRXo xlOG0vdpJLQhwI+7gMUs43qjuGwYaDoItoWgNiN7lG7O4pD20CYFjZJnVQfXSi76 B6vdRqOQFj3SKOAE6Ktz+TiOpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAM4Pwh1 txO1rdE2yTmV5E0kfJxBMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwrRwPydCInAs+GYTdzqvRDaNWFchfjUf+3BruVZUKxoeb6komgKqb JnxxysQQYG9f2O74CUCzW3UCNUeGHT7YBnqkWzOnu4rl+e43JnROI/XMpuOny5yS QyyLS4tHKmMV22SdBqT54dHcUk9Bghs40FnHUNmdY6sVjRZmMECHUu5duU//TKtP MHOd/BCD+U6JXzQwrWUa+Llbw8+oUIuLmF8ZERbtk3iPzjQPV6SNf3SfWFaa/Lma c0GNIhl1A4D89KNWK4YMIU64JNTcCAqYx2CnckILTuCsAwcJcYw6zMmU+7sVgHHR 0sCoZ1I0WgAHQPO4gFttUlGuJcPbN5fJ -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:21 2024 by rpki-client on console-ams.rpki-client.org