$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: I/LmA2huImpjls/YRSuoZM7qEzPkQpMImNtHgQjm0c0= Subject key identifier: 8F:92:FA:FE:B8:EE:F0:D2:2E:6F:0E:55:F2:A7:7F:5A:A9:2F:C1:B0 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 044C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 0435 Signing time: Fri 22 Nov 2024 23:56:07 +0000 Manifest this update: Fri 22 Nov 2024 23:56:06 +0000 Manifest next update: Fri 29 Nov 2024 23:56:06 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: joyEa3GURDCBNvTR4VDrPHQnzin9pqgJ0I0+yybtrik=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: Or2YnqS7m5TNVdIQDyqKfDxNCZPXw2uBZdfnmUb/Gcc=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: Y16G28ble7sDhlK1gqeIJ/fe7Scn5O8XUtCkp4Our/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1100 (0x44c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Nov 22 23:56:06 2024 GMT Not After : Nov 29 23:56:06 2024 GMT Subject: CN=67411a17-7e42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:24:a7:57:ac:f4:01:fc:d1:0c:62:4c:1e:ae: 18:35:d1:84:c6:93:b3:9f:dd:75:5c:d6:8a:c7:9a: 50:82:ce:e2:ae:20:f2:6a:41:43:82:24:0e:46:e5: b6:a5:c3:82:2c:90:48:61:ad:99:78:31:84:5a:14: 17:b5:97:63:dd:92:3e:bb:1d:4d:f1:6a:8e:42:df: 28:ea:c1:a9:fd:2f:45:85:0c:7b:7d:cb:7a:62:ee: da:42:b3:27:e3:fd:8f:f9:ec:11:43:30:c7:06:18: cb:56:de:96:16:71:a9:30:3a:78:80:e9:41:6f:65: 3a:2c:2d:9f:a3:8b:9f:a1:ef:fb:2d:1c:32:54:63: 3a:04:4d:ac:f7:da:0c:d9:d0:38:e4:07:af:42:1b: 47:df:dd:fb:ec:92:1a:fc:01:67:1b:05:6c:ce:45: 00:95:85:d1:80:32:72:55:b3:22:7a:1b:80:fb:19: 16:e2:a5:a0:ad:8b:5d:9b:da:78:ca:b0:25:44:4d: 88:fa:2d:17:a1:e1:3f:96:aa:e6:a4:52:f8:bd:5f: 0b:00:11:47:39:f0:18:86:f5:89:d7:cf:9c:ea:4b: 71:ef:eb:d9:e0:af:5d:e4:5a:c2:2e:10:9e:f1:d9: 91:fa:4b:19:88:c2:13:af:21:83:95:04:08:b0:12: ff:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:92:FA:FE:B8:EE:F0:D2:2E:6F:0E:55:F2:A7:7F:5A:A9:2F:C1:B0 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:c5:bd:e4:c1:24:ee:57:46:02:ce:e4:88:5b:98:20:82:ce: 9a:8b:3d:43:e6:19:e0:37:45:57:01:64:5a:a0:61:97:91:18: 87:d7:32:ee:18:b8:6b:68:d5:e8:3f:bb:15:ae:6e:23:a9:81: a5:e4:74:3a:d5:bf:4f:2a:42:fb:81:69:11:5f:23:e0:df:16: b2:53:d9:b4:f9:13:c0:7b:6a:0c:1c:3a:fd:f4:67:54:97:80: 30:61:ec:6f:8c:bf:0a:d2:fe:ee:a2:a4:f7:9f:e0:53:44:f0: b8:03:3c:be:6a:d2:e6:c1:52:65:00:67:b4:4f:79:38:0a:31: 6c:a7:5e:18:e7:98:01:80:15:e0:cf:39:41:7c:bf:18:09:7a: 65:dd:95:10:39:13:cc:06:c2:d7:8d:03:6f:46:ec:7e:11:9e: ea:ef:da:5b:97:97:b5:b9:a3:4e:34:98:1d:80:5e:54:25:1c: e5:ce:b9:0c:4f:4a:3c:b2:16:f2:ed:d8:d7:56:3e:b6:9b:46: c0:2a:01:d7:ad:49:4c:b0:d6:aa:37:12:a8:b3:ee:4c:ea:89: 29:61:42:60:e3:88:c2:73:f8:32:4a:5c:ea:ac:45:d8:6f:f6: fc:13:5d:f0:63:fc:81:8b:23:4e:9d:f6:06:7d:23:93:44:68: 9a:a7:c5:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjQxMTIyMjM1NjA2WhcNMjQxMTI5MjM1NjA2WjAYMRYwFAYD VQQDEw02NzQxMWExNy03ZTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSSnV6z0AfzRDGJMHq4YNdGExpOzn911XNaKx5pQgs7iriDyakFDgiQORuW2 pcOCLJBIYa2ZeDGEWhQXtZdj3ZI+ux1N8WqOQt8o6sGp/S9FhQx7fct6Yu7aQrMn 4/2P+ewRQzDHBhjLVt6WFnGpMDp4gOlBb2U6LC2fo4ufoe/7LRwyVGM6BE2s99oM 2dA45AevQhtH39377JIa/AFnGwVszkUAlYXRgDJyVbMiehuA+xkW4qWgrYtdm9p4 yrAlRE2I+i0XoeE/lqrmpFL4vV8LABFHOfAYhvWJ18+c6ktx7+vZ4K9d5FrCLhCe 8dmR+ksZiMITryGDlQQIsBL/+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+S+v64 7vDSLm8OVfKnf1qpL8GwMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOxb3kwSTuV0YCzuSIW5gggs6aiz1D5hngN0VXAWRaoGGXkRiH1zLu GLhraNXoP7sVrm4jqYGl5HQ61b9PKkL7gWkRXyPg3xayU9m0+RPAe2oMHDr99GdU l4AwYexvjL8K0v7uoqT3n+BTRPC4Azy+atLmwVJlAGe0T3k4CjFsp14Y55gBgBXg zzlBfL8YCXpl3ZUQORPMBsLXjQNvRux+EZ7q79pbl5e1uaNONJgdgF5UJRzlzrkM T0o8shby7djXVj62m0bAKgHXrUlMsNaqNxKos+5M6okpYUJg44jCc/gySlzqrEXY b/b8E13wY/yBiyNOnfYGfSOTRGiap8Wz -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org