$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft File: USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft (raw, json) Hash identifier: tn2G6LrxjZ/w44fBTT6qxYgq3gTNbMbw2eTHKB5onhE= Subject key identifier: 55:14:BD:1C:6F:9D:0C:9B:01:8C:A3:4B:44:59:B0:0B:37:76:D1:DB Authority key identifier: 51:26:19:DE:0C:1D:1B:B3:E5:77:99:4E:E0:C5:FF:30:D4:91:CD:0E Certificate issuer: /CN=A91B9AF0/serialNumber=512619DE0C1D1BB3E577994EE0C5FF30D491CD0E Certificate serial: 0690 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft Manifest number: 223D Signing time: Fri 22 Nov 2024 15:52:22 +0000 Manifest this update: Fri 22 Nov 2024 15:52:22 +0000 Manifest next update: Fri 29 Nov 2024 15:52:22 +0000 Files and hashes: 1: USYZ3gwdG7Pld5lO4MX_MNSRzQ4.crl (hash: GaaiFpeTLZbY7tkbxuVvgQwtNpfb5l2qzbMvKUzjGlk=) 2: CCC98C06516B11EBB8942876C4F9AE02.roa (hash: oQ+XeX3QPr5MKR/Pv82IWUhiWxAkN4R4paMHXTKKeg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.crl rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AF0/serialNumber=512619DE0C1D1BB3E577994EE0C5FF30D491CD0E Validity Not Before: Nov 22 15:52:22 2024 GMT Not After : Nov 29 15:52:22 2024 GMT Subject: CN=6740a8b6-dc3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:47:6d:62:00:21:9f:6f:46:e4:12:ff:79:8b: 92:ad:3f:4c:48:11:ff:7d:f5:ca:17:f4:f6:66:4f: 8b:dc:3d:85:fc:e3:ae:ce:f9:46:c6:a9:4e:dc:1f: 80:41:ed:ce:56:15:16:97:e3:71:be:c9:9d:91:8c: 04:72:3a:a0:e3:08:12:fb:31:77:84:75:9c:d3:d7: 81:b3:c6:71:6e:10:01:ca:05:18:3c:da:49:b9:47: 45:45:cc:23:8e:97:0e:9c:97:06:b7:6d:ee:06:52: 3d:c4:fe:58:77:46:6a:a0:d7:bc:8f:1b:49:99:b4: 1b:af:2c:4d:9e:79:34:b5:b6:7d:2f:dd:5d:fe:b1: 13:a9:41:df:44:aa:8f:ec:97:53:21:5a:b9:05:c3: 99:bf:4e:36:d1:80:7a:29:4b:d1:ca:93:72:47:f8: 7f:94:58:0e:eb:ca:69:24:30:af:7e:b1:8d:39:3e: cf:d7:1c:16:e5:9b:42:0e:a7:e0:c8:51:8f:98:e9: 3b:a8:cb:6d:9e:7c:25:9e:af:42:f6:92:ad:7f:f4: 06:f5:45:cb:3f:b8:d9:05:6e:a1:14:18:66:90:4d: f6:23:30:c0:ab:1f:8a:5c:d1:b8:13:19:ca:cd:99: 54:1b:38:47:2a:07:34:d5:b1:cc:97:3a:26:88:6a: 6a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:14:BD:1C:6F:9D:0C:9B:01:8C:A3:4B:44:59:B0:0B:37:76:D1:DB X509v3 Authority Key Identifier: keyid:51:26:19:DE:0C:1D:1B:B3:E5:77:99:4E:E0:C5:FF:30:D4:91:CD:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:e8:42:9d:37:14:50:83:26:90:a1:c0:70:62:fe:d2:40:41: 96:6a:2d:1d:9c:4f:ed:6d:76:11:86:50:24:fb:66:dc:9c:2f: ca:31:47:78:ad:11:b8:10:5c:fd:3c:9e:4f:b9:58:b1:fa:f5: 3b:41:da:cf:70:3b:6d:8a:5d:7d:d7:27:d9:42:c8:1d:93:0a: 6a:68:bb:b3:7e:f3:6f:30:0b:ce:3d:44:26:e1:29:51:24:6e: 98:d0:97:ab:5b:bc:4d:34:54:5e:5b:6e:6e:ce:59:2a:af:f5: 0b:9b:fe:cf:c6:15:8d:28:22:2c:c8:98:4d:db:b1:15:fa:ad: 4e:06:b5:de:00:2b:3c:e3:62:82:c0:d0:73:d9:62:87:a2:94: 8d:9b:b3:d3:6c:dd:f9:56:7f:c2:f3:6d:59:79:ca:bd:ab:dd: 90:84:dd:87:34:82:cb:d2:d7:7d:24:97:2e:0b:9f:17:63:b6: 56:29:49:41:2a:e6:f2:7b:21:98:f6:fb:5a:50:63:f9:3b:d3: 94:a7:e1:b1:1e:e2:e5:2e:a8:e5:9e:3b:8e:1e:5b:79:47:09: e4:f6:39:ce:60:9f:41:e2:c1:8f:09:87:d4:f6:e8:7e:55:b8: 58:6e:2d:30:df:3e:de:95:61:3e:dd:4a:61:d6:97:6d:e4:6d: 77:ba:96:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBRjAxMTAvBgNVBAUTKDUxMjYxOURFMEMxRDFCQjNFNTc3OTk0RUUwQzVGRjMw RDQ5MUNEMEUwHhcNMjQxMTIyMTU1MjIyWhcNMjQxMTI5MTU1MjIyWjAYMRYwFAYD VQQDEw02NzQwYThiNi1kYzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUdtYgAhn29G5BL/eYuSrT9MSBH/ffXKF/T2Zk+L3D2F/OOuzvlGxqlO3B+A Qe3OVhUWl+NxvsmdkYwEcjqg4wgS+zF3hHWc09eBs8ZxbhABygUYPNpJuUdFRcwj jpcOnJcGt23uBlI9xP5Yd0ZqoNe8jxtJmbQbryxNnnk0tbZ9L91d/rETqUHfRKqP 7JdTIVq5BcOZv0420YB6KUvRypNyR/h/lFgO68ppJDCvfrGNOT7P1xwW5ZtCDqfg yFGPmOk7qMttnnwlnq9C9pKtf/QG9UXLP7jZBW6hFBhmkE32IzDAqx+KXNG4ExnK zZlUGzhHKgc01bHMlzomiGpqMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUUvRxv nQybAYyjS0RZsAs3dtHbMB8GA1UdIwQYMBaAFFEmGd4MHRuz5XeZTuDF/zDUkc0O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFGMC9GMTYyREE0RTlG OTcxMUU1OTQ4ODg2MEZDNEY5QUUwMi9VU1laM2d3ZEc3UGxkNWxPNE1YX01OU1J6 UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTWVozZ3dkRzdQbGQ1bE80TVhfTU5TUnpRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFGMC9GMTYyREE0RTlGOTcxMUU1OTQ4ODg2MEZDNEY5QUUwMi9VU1laM2d3ZEc3 UGxkNWxPNE1YX01OU1J6UTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh6EKdNxRQgyaQocBwYv7SQEGWai0dnE/tbXYRhlAk+2bcnC/KMUd4 rRG4EFz9PJ5PuVix+vU7QdrPcDttil191yfZQsgdkwpqaLuzfvNvMAvOPUQm4SlR JG6Y0JerW7xNNFReW25uzlkqr/ULm/7PxhWNKCIsyJhN27EV+q1OBrXeACs842KC wNBz2WKHopSNm7PTbN35Vn/C821Zecq9q92QhN2HNILL0td9JJcuC58XY7ZWKUlB KubyeyGY9vtaUGP5O9OUp+GxHuLlLqjlnjuOHlt5Rwnk9jnOYJ9B4sGPCYfU9uh+ VbhYbi0w3z7elWE+3Uph1pdt5G13upbi -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org