$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft File: UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json) Hash identifier: 2pSC9rKtCrImxUbs/cYs6ClGyUs3gz21t1IZdK7LCpw= Subject key identifier: 65:A8:DA:62:94:47:2C:2E:1E:6C:BD:F9:1D:D0:88:9C:98:05:C6:F4 Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 Certificate issuer: /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft Manifest number: FA Signing time: Sat 23 Nov 2024 03:18:18 +0000 Manifest this update: Sat 23 Nov 2024 03:18:17 +0000 Manifest next update: Sat 30 Nov 2024 03:18:17 +0000 Files and hashes: 1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: hJ8PwE2X3XbtC4HDaUZ8GnLcdHY57UhVg9bRkGwSguY=) 2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: jQ/0lCjJIMkOJNGjS+k508Q8Du2UjlHI8yBfLB/rzdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Validity Not Before: Nov 23 03:18:17 2024 GMT Not After : Nov 30 03:18:17 2024 GMT Subject: CN=6741497a-44d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:28:73:b0:5f:75:e4:d7:c7:13:f6:fe:d6:59: 11:c0:61:11:c3:d4:31:f9:3c:42:2f:80:0e:03:10: 94:ee:df:93:ec:f0:3a:f3:0c:b4:6e:bd:4c:f3:fa: c0:45:81:90:d0:31:9c:6d:fa:bd:6f:41:ae:32:18: 5e:ac:5c:c1:27:98:8c:9c:ff:eb:03:7e:c1:ac:a2: 75:e2:68:51:ff:63:6f:f9:17:57:6f:f3:fa:da:77: 28:c4:1e:42:a3:56:12:be:c3:b1:70:83:e1:a5:cc: 37:32:25:8f:0e:3f:43:d6:a0:cd:9b:b6:26:11:bc: 3d:21:ba:a3:ea:26:a3:80:0d:c0:af:47:b1:0a:4f: 88:69:23:9f:4a:d0:dd:59:c8:ad:3c:c2:8b:1d:1e: f8:2e:e1:9e:87:10:45:d7:35:6f:11:84:c8:63:36: ab:4f:2b:87:40:70:21:79:f4:e0:bf:df:b2:4c:a2: c8:32:a2:1a:44:67:a7:ac:10:43:64:46:3f:c8:2b: 4f:e8:a3:fe:8f:f9:8b:1b:d1:90:d0:2c:a8:7c:7e: 53:72:c7:ca:49:4d:0b:9b:d7:87:44:e8:20:68:f6: fe:aa:ba:a3:75:37:5c:12:34:64:d2:82:38:bb:77: 46:fc:ee:eb:1b:6a:21:87:75:dd:76:dd:04:9d:0b: 03:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A8:DA:62:94:47:2C:2E:1E:6C:BD:F9:1D:D0:88:9C:98:05:C6:F4 X509v3 Authority Key Identifier: keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:6a:1f:7c:04:62:69:e2:24:a8:0b:44:9f:7a:b8:4b:ce:a8: 17:25:56:1e:30:ce:9e:87:21:6b:d7:7e:e6:df:cf:09:2d:fb: 36:80:c1:d1:c5:51:a1:d5:f2:9f:04:41:f6:b7:4d:31:20:e0: 10:8c:70:89:39:9e:8d:8a:51:f6:ba:ee:1d:18:1d:d3:79:20: 5f:1e:9f:70:8f:31:5b:35:82:e8:1a:0e:7a:7c:a1:36:b3:cc: bc:4d:a6:97:c7:44:3b:21:94:c5:99:ff:bc:a4:f4:37:59:e3: 7f:c5:fb:15:95:56:a8:ef:2b:56:e5:63:5b:83:46:2a:b2:5f: be:18:f6:89:a4:0b:88:77:d8:c6:c2:d9:c2:cc:0d:05:67:ef: cd:ff:83:1f:57:c3:8a:21:ec:7b:51:39:e0:63:5c:72:44:54: 06:1b:a2:cf:11:72:3b:96:79:61:7d:56:09:7c:46:2b:5a:24: d3:5b:37:4e:51:d7:3a:64:f0:00:61:eb:23:b4:08:d3:d4:7b: dc:95:97:e6:03:2a:2e:a8:18:3d:07:11:63:b5:96:e8:0f:d9: e1:f5:fa:fc:bc:3c:b5:b1:a3:c6:19:d8:23:64:41:fb:97:24: 94:bf:4b:a1:20:f7:eb:16:7d:94:a0:95:d4:54:b5:5a:2f:db: 4f:ce:bd:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQ0QxMTAvBgNVBAUTKDUyNTg0MTQxRTVFOTA0RkQ3QUZDM0UwREEyOEQ5MDA4 QTFBRjkyMTIwHhcNMjQxMTIzMDMxODE3WhcNMjQxMTMwMDMxODE3WjAYMRYwFAYD VQQDEw02NzQxNDk3YS00NGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ShzsF915NfHE/b+1lkRwGERw9Qx+TxCL4AOAxCU7t+T7PA68wy0br1M8/rA RYGQ0DGcbfq9b0GuMhherFzBJ5iMnP/rA37BrKJ14mhR/2Nv+RdXb/P62ncoxB5C o1YSvsOxcIPhpcw3MiWPDj9D1qDNm7YmEbw9Ibqj6iajgA3Ar0exCk+IaSOfStDd WcitPMKLHR74LuGehxBF1zVvEYTIYzarTyuHQHAhefTgv9+yTKLIMqIaRGenrBBD ZEY/yCtP6KP+j/mLG9GQ0CyofH5TcsfKSU0Lm9eHROggaPb+qrqjdTdcEjRk0oI4 u3dG/O7rG2ohh3Xddt0EnQsDGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWo2mKU RywuHmy9+R3QiJyYBcb0MB8GA1UdIwQYMBaAFFJYQUHl6QT9evw+DaKNkAihr5IS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDRC9EQzM1MkI1RTJC NTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQMTZfRDROb28yUUNLR3Zr aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsaEJRZVhwQlAxNl9ENE5vbzJRQ0tHdmtoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDRC9EQzM1MkI1RTJCNTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQ MTZfRDROb28yUUNLR3ZraEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXah98BGJp4iSoC0SferhLzqgXJVYeMM6ehyFr137m388JLfs2gMHR xVGh1fKfBEH2t00xIOAQjHCJOZ6NilH2uu4dGB3TeSBfHp9wjzFbNYLoGg56fKE2 s8y8TaaXx0Q7IZTFmf+8pPQ3WeN/xfsVlVao7ytW5WNbg0Yqsl++GPaJpAuId9jG wtnCzA0FZ+/N/4MfV8OKIex7UTngY1xyRFQGG6LPEXI7lnlhfVYJfEYrWiTTWzdO Udc6ZPAAYesjtAjT1HvclZfmAyouqBg9BxFjtZboD9nh9fr8vDy1saPGGdgjZEH7 lySUv0uhIPfrFn2UoJXUVLVaL9tPzr3r -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:22 2024 by rpki-client on console-ams.rpki-client.org