$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft File: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft (raw, json) Hash identifier: QBCwtFLJGpPeYL/bs2vzWKSzx9sa7EcgsYd8MWldSG0= Subject key identifier: B6:9B:8A:EC:9E:7D:9F:F7:66:C3:BB:6B:81:A1:45:D7:B6:5E:40:C5 Authority key identifier: B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 Certificate issuer: /CN=A91D1149/serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Certificate serial: 0DF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft Manifest number: 0DED Signing time: Fri 22 Nov 2024 17:47:16 +0000 Manifest this update: Fri 22 Nov 2024 17:47:15 +0000 Manifest next update: Fri 29 Nov 2024 17:47:15 +0000 Files and hashes: 1: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl (hash: GXxMSJKxKffRdWf9D+CALj6qTkXLIzd0bChJKpWPtQc=) 2: BD22841E9E4911E9A136D25AC4F9AE02.roa (hash: CD3KMyXKPVQJ5ERiU0fhGp4XONa4jeSt2SNuNzmurV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3574 (0xdf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1149/serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Validity Not Before: Nov 22 17:47:15 2024 GMT Not After : Nov 29 17:47:15 2024 GMT Subject: CN=6740c3a4-6879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:50:c8:74:e3:e7:b6:bb:7e:dd:f9:83:1a:25: 3a:2d:12:62:a1:d3:05:52:9c:16:62:05:75:56:a2: d3:f7:39:8a:c6:0d:15:3a:1e:31:b0:4f:25:09:73: af:4d:c9:f8:10:f1:f8:05:ea:40:67:4f:0a:e2:2d: eb:b9:1f:06:b8:48:5d:88:99:44:3b:bb:d9:44:ad: a8:78:c2:d8:fb:8e:ec:4f:c1:86:8e:65:83:8a:8c: 39:23:4b:9d:62:4f:17:f3:49:c7:be:50:13:59:aa: da:b4:bd:79:5c:70:84:ec:8c:81:b9:dc:34:81:05: e2:39:97:35:a9:4d:61:36:a2:89:18:d5:f7:85:c5: fc:db:d2:db:91:95:38:0d:c5:6c:18:2a:28:e3:2a: 67:9a:39:b1:aa:ce:7f:1b:22:b7:c5:39:50:61:b2: 33:c0:22:e6:23:9f:7e:0c:c7:43:18:99:90:d6:d6: e7:08:de:3b:0f:54:85:ec:f2:a8:be:1f:6e:cc:9c: 6e:aa:75:d8:7c:0b:5e:8c:34:68:62:65:02:44:16: c2:e5:42:f4:1c:d0:09:95:76:a5:5b:2e:de:be:27: 6d:44:3e:8b:b6:43:7e:dc:39:ba:7b:18:c8:58:bd: fd:b7:d3:c0:63:c2:f7:cd:01:b9:42:67:6c:9e:be: 73:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:9B:8A:EC:9E:7D:9F:F7:66:C3:BB:6B:81:A1:45:D7:B6:5E:40:C5 X509v3 Authority Key Identifier: keyid:B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:79:55:d7:27:da:dd:1c:4e:5f:0c:86:1d:38:df:55:67:1d: 3c:6a:1d:ec:58:0f:15:a4:90:bd:03:fd:3b:1d:da:b3:0b:8f: 6b:2b:40:05:0d:bd:6e:6f:1e:76:2a:09:a3:51:02:86:03:e0: 66:0a:4b:04:86:bd:d7:6c:00:fa:d0:f7:d2:9b:db:ca:87:67: 7d:c8:fe:55:98:65:46:b8:33:ba:55:cd:3b:92:86:57:3f:62: 69:64:62:b4:22:48:b0:d1:d2:f7:7d:ed:9b:a8:3e:0b:68:05: 14:13:74:a9:5b:32:e4:bc:a0:0e:57:ac:1a:bb:19:99:bb:ee: 81:51:53:5a:f7:2d:ad:18:25:cc:bf:02:db:76:93:ff:8c:09: cf:15:63:13:d2:5a:97:5e:4a:7d:d9:ec:fe:07:08:42:f3:51: 42:98:17:cb:30:c1:98:6f:d3:5d:79:17:fb:42:ef:44:83:78: f1:12:dd:3d:61:95:93:fc:45:6e:5c:a9:61:3f:d1:59:d6:30: c9:1d:0b:2d:d2:0e:e4:10:46:a4:b0:78:5f:9b:02:aa:17:7c: 57:6c:0e:71:00:e1:51:1a:fd:dd:af:98:00:b8:c3:87:cc:b8: 97:4b:d1:e2:ca:3b:b6:d3:e2:5c:2e:d6:ed:86:f0:3d:d2:9d: 62:1e:93:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExNDkxMTAvBgNVBAUTKEI4MzQwMUNGQkM0MDVDRkI1MkZEQTBGRUJENEEwMkI3 QjFDRTI3NjIwHhcNMjQxMTIyMTc0NzE1WhcNMjQxMTI5MTc0NzE1WjAYMRYwFAYD VQQDEw02NzQwYzNhNC02ODc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1DIdOPntrt+3fmDGiU6LRJiodMFUpwWYgV1VqLT9zmKxg0VOh4xsE8lCXOv Tcn4EPH4BepAZ08K4i3ruR8GuEhdiJlEO7vZRK2oeMLY+47sT8GGjmWDiow5I0ud Yk8X80nHvlATWaratL15XHCE7IyBudw0gQXiOZc1qU1hNqKJGNX3hcX829LbkZU4 DcVsGCoo4ypnmjmxqs5/GyK3xTlQYbIzwCLmI59+DMdDGJmQ1tbnCN47D1SF7PKo vh9uzJxuqnXYfAtejDRoYmUCRBbC5UL0HNAJlXalWy7evidtRD6LtkN+3Dm6exjI WL39t9PAY8L3zQG5Qmdsnr5zXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLabiuye fZ/3ZsO7a4GhRde2XkDFMB8GA1UdIwQYMBaAFLg0Ac+8QFz7Uv2g/r1KArexzidi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTE0OS8yNEJCMjRDRTlF NDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQdFNfYUQtdlVvQ3Q3SE9K MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VEUUJ6N3hBWFB0U19hRC12VW9DdDdIT0oySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTE0OS8yNEJCMjRDRTlFNDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQ dFNfYUQtdlVvQ3Q3SE9KMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAheVXXJ9rdHE5fDIYdON9VZx08ah3sWA8VpJC9A/07HdqzC49rK0AF Db1ubx52KgmjUQKGA+BmCksEhr3XbAD60PfSm9vKh2d9yP5VmGVGuDO6Vc07koZX P2JpZGK0Ikiw0dL3fe2bqD4LaAUUE3SpWzLkvKAOV6wauxmZu+6BUVNa9y2tGCXM vwLbdpP/jAnPFWMT0lqXXkp92ez+BwhC81FCmBfLMMGYb9NdeRf7Qu9Eg3jxEt09 YZWT/EVuXKlhP9FZ1jDJHQst0g7kEEaksHhfmwKqF3xXbA5xAOFRGv3dr5gAuMOH zLiXS9Hiyju20+JcLtbthvA90p1iHpOF -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:18 2024 by rpki-client on console-ams.rpki-client.org