$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft File: ujgt6jovW4xMIgXskp9gG-NP538.mft (raw, json) Hash identifier: NN2/T9KjuctEdnDZvuP+9AIEU/Ez1yWP8iaP+0hfS4c= Subject key identifier: C5:8D:13:07:F1:2C:0F:41:27:FA:FD:CD:0A:01:78:51:96:73:A2:1B Authority key identifier: BA:38:2D:EA:3A:2F:5B:8C:4C:22:05:EC:92:9F:60:1B:E3:4F:E7:7F Certificate issuer: /CN=A91B7B34/serialNumber=BA382DEA3A2F5B8C4C2205EC929F601BE34FE77F Certificate serial: 0BE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujgt6jovW4xMIgXskp9gG-NP538.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft Manifest number: 0BDB Signing time: Fri 22 Nov 2024 18:29:19 +0000 Manifest this update: Fri 22 Nov 2024 18:29:19 +0000 Manifest next update: Fri 29 Nov 2024 18:29:19 +0000 Files and hashes: 1: ujgt6jovW4xMIgXskp9gG-NP538.crl (hash: 8oB4prHtxx4LkPxGI+gdZ/av6u+21pwXaLyeFnYmSME=) 2: 52E56FA806C711EA84978821C4F9AE02.roa (hash: hOu5ZeqxYN16DF3xRjjzQeKfwsoZQp+9xHJC5zCyNDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.crl rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujgt6jovW4xMIgXskp9gG-NP538.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:29:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3044 (0xbe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B34/serialNumber=BA382DEA3A2F5B8C4C2205EC929F601BE34FE77F Validity Not Before: Nov 22 18:29:19 2024 GMT Not After : Nov 29 18:29:19 2024 GMT Subject: CN=6740cd7f-37f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:72:5b:94:96:39:cd:03:ea:29:a3:5c:77:2a: 93:3b:37:2b:d3:1d:5c:3c:17:14:07:9b:5d:88:0e: a4:08:5b:d9:24:ad:f6:d9:71:ef:e4:c4:1f:37:df: e6:44:4c:a1:de:78:f1:d9:2f:57:2d:43:65:6a:55: 2d:fa:08:3c:70:3c:49:48:bb:f8:13:13:9f:3d:fe: 00:46:10:47:11:be:df:c6:4f:5e:85:1b:06:c4:c6: 79:6a:9f:cf:7a:f1:9d:7b:25:bf:62:89:ff:9e:fa: 8a:7f:5e:f7:e6:26:d5:e7:99:e3:e4:67:e1:b6:6f: 89:e4:2e:ba:94:ff:8f:68:03:ca:e6:e5:ec:6d:03: a0:89:09:54:16:1e:e0:47:1c:28:9d:25:98:5d:6c: ee:98:80:a3:0d:d1:dc:84:56:b5:af:97:df:38:44: b5:e3:f7:cf:d2:66:fe:e1:ed:90:43:12:00:47:59: 58:2f:c9:35:86:8e:99:1d:05:2c:d2:ec:ab:86:df: 9c:fc:e5:61:98:50:dd:42:d2:0b:52:52:34:47:6d: 05:3f:fd:5b:53:b5:e8:a3:cb:60:52:63:12:f6:98: b6:7c:a9:9e:e4:4b:29:7c:1f:5d:de:44:9e:6f:59: 33:bb:fe:ad:61:a5:de:a7:3f:f0:9d:df:e4:7c:25: 58:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:8D:13:07:F1:2C:0F:41:27:FA:FD:CD:0A:01:78:51:96:73:A2:1B X509v3 Authority Key Identifier: keyid:BA:38:2D:EA:3A:2F:5B:8C:4C:22:05:EC:92:9F:60:1B:E3:4F:E7:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujgt6jovW4xMIgXskp9gG-NP538.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:60:0a:8c:33:94:99:12:79:95:0d:68:ca:c7:51:b9:ff:14: c5:bb:92:8c:b0:7a:5e:78:94:b6:c9:e0:31:01:69:0c:ea:bf: 6a:8f:fe:f6:e0:20:18:a3:0f:e6:b6:3c:7b:5f:9f:49:b8:b6: b7:1d:07:44:7e:cd:d9:34:02:7c:47:dc:d2:2c:fe:d2:a1:88: 84:6d:db:36:05:70:db:37:28:01:2b:4c:31:c1:f3:76:47:9e: 1f:49:1c:df:f4:77:cf:58:34:53:a5:84:da:8e:47:e5:22:d5: b8:02:7c:94:5c:b1:9e:57:14:1b:75:0e:a3:f4:f0:e9:97:a9: 9d:a6:15:a8:ae:89:b4:c7:bb:07:e0:10:26:f3:4d:33:63:50: 9f:b1:2d:4e:e0:e0:a0:1d:57:d9:b5:a6:05:5a:1a:33:93:7f: bb:b2:72:88:46:35:67:20:94:44:8a:96:40:10:84:77:76:53: 98:ac:57:87:2e:e6:c1:d6:39:4b:f7:94:3c:53:f2:6f:7c:c4: 63:3e:16:c0:44:8d:08:03:57:43:9b:b2:55:2c:f3:88:ed:94: 59:44:5d:d5:59:7a:f4:34:c8:55:86:8e:d7:4f:83:fd:78:57: 37:24:df:d5:ba:49:31:2a:1f:34:b1:4c:81:9a:66:8e:d3:96: 48:7c:a0:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMzQxMTAvBgNVBAUTKEJBMzgyREVBM0EyRjVCOEM0QzIyMDVFQzkyOUY2MDFC RTM0RkU3N0YwHhcNMjQxMTIyMTgyOTE5WhcNMjQxMTI5MTgyOTE5WjAYMRYwFAYD VQQDEw02NzQwY2Q3Zi0zN2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHJblJY5zQPqKaNcdyqTOzcr0x1cPBcUB5tdiA6kCFvZJK322XHv5MQfN9/m REyh3njx2S9XLUNlalUt+gg8cDxJSLv4ExOfPf4ARhBHEb7fxk9ehRsGxMZ5ap/P evGdeyW/Yon/nvqKf1735ibV55nj5Gfhtm+J5C66lP+PaAPK5uXsbQOgiQlUFh7g RxwonSWYXWzumICjDdHchFa1r5ffOES14/fP0mb+4e2QQxIAR1lYL8k1ho6ZHQUs 0uyrht+c/OVhmFDdQtILUlI0R20FP/1bU7Xoo8tgUmMS9pi2fKme5EspfB9d3kSe b1kzu/6tYaXepz/wnd/kfCVYDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWNEwfx LA9BJ/r9zQoBeFGWc6IbMB8GA1UdIwQYMBaAFLo4Leo6L1uMTCIF7JKfYBvjT+d/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IzNC9ERUNFM0VCQTA2 QzYxMUVBQTUxQTYwMjFDNEY5QUUwMi91amd0Nmpvdlc0eE1JZ1hza3A5Z0ctTlA1 MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VqZ3Q2am92VzR4TUlnWHNrcDlnRy1OUDUzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IzNC9ERUNFM0VCQTA2QzYxMUVBQTUxQTYwMjFDNEY5QUUwMi91amd0Nmpvdlc0 eE1JZ1hza3A5Z0ctTlA1MzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMYAqMM5SZEnmVDWjKx1G5/xTFu5KMsHpeeJS2yeAxAWkM6r9qj/72 4CAYow/mtjx7X59JuLa3HQdEfs3ZNAJ8R9zSLP7SoYiEbds2BXDbNygBK0wxwfN2 R54fSRzf9HfPWDRTpYTajkflItW4AnyUXLGeVxQbdQ6j9PDpl6mdphWorom0x7sH 4BAm800zY1CfsS1O4OCgHVfZtaYFWhozk3+7snKIRjVnIJREipZAEIR3dlOYrFeH LubB1jlL95Q8U/JvfMRjPhbARI0IA1dDm7JVLPOI7ZRZRF3VWXr0NMhVho7XT4P9 eFc3JN/VukkxKh80sUyBmmaO05ZIfKDH -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org