$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft File: PudBKv6HPx1FurYUcUoyAeNilpE.mft (raw, json) Hash identifier: o0n4Ho2U8ckM3ikbw/g3AZgUHhZusn+eo1ggqBhmxsU= Subject key identifier: 5A:90:35:69:61:CF:21:09:E3:8D:BF:F3:0B:3A:18:77:EF:1C:7C:20 Authority key identifier: 3E:E7:41:2A:FE:87:3F:1D:45:BA:B6:14:71:4A:32:01:E3:62:96:91 Certificate issuer: /CN=A91E3680/serialNumber=3EE7412AFE873F1D45BAB614714A3201E3629691 Certificate serial: 055D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft Manifest number: 0558 Signing time: Fri 22 Nov 2024 22:57:51 +0000 Manifest this update: Fri 22 Nov 2024 22:57:51 +0000 Manifest next update: Fri 29 Nov 2024 22:57:51 +0000 Files and hashes: 1: PudBKv6HPx1FurYUcUoyAeNilpE.crl (hash: 649umMIVjb3FtfqmqxeLwvC/VrB4aIX3OjWC44SIv0c=) 2: B46FE2D0C5CA11EBB86D320BC4F9AE02.roa (hash: akcQJOcqn6Cqm1e0k8wvVS6O2vanCte0Cwevg6oh+R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.crl rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1373 (0x55d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3680/serialNumber=3EE7412AFE873F1D45BAB614714A3201E3629691 Validity Not Before: Nov 22 22:57:51 2024 GMT Not After : Nov 29 22:57:51 2024 GMT Subject: CN=67410c6f-ecd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ea:0f:b3:71:d3:b8:fe:4f:98:2b:2d:cc:90: ae:fa:1a:bc:03:f1:22:cb:57:a8:2b:8c:c4:37:c7: b6:e9:39:45:b0:2c:72:81:03:df:bc:e2:4e:49:f4: 11:67:c3:49:d1:7d:4e:c1:91:b0:1c:e5:5e:e7:df: 5b:11:03:20:33:68:8d:b2:ed:da:7b:f5:94:b7:2b: a3:33:05:57:29:81:d4:36:e8:0e:bd:50:54:19:27: 5e:73:c4:25:81:91:bf:07:e9:71:9b:98:fd:b9:1c: 99:2d:60:25:44:7c:58:4e:2c:25:14:b4:90:75:ba: 53:bf:04:c6:0d:3e:77:27:cf:e8:1c:6a:2b:26:24: 20:71:f0:9c:03:b2:9b:9a:6d:58:e7:23:e3:c3:c8: 7d:7e:f8:7b:77:e3:b6:5a:a7:2b:7f:4e:a1:6e:46: 1e:68:0e:d1:d9:22:d6:e2:c1:3c:97:64:ef:22:94: e3:84:cc:e0:a9:29:09:dd:c0:39:d0:69:83:db:71: 05:12:91:68:cf:0c:d2:19:ec:1b:83:09:c7:e9:85: 59:e9:02:df:58:c3:64:9c:34:17:2c:22:23:bf:d4: c7:2f:39:e3:e9:20:86:5c:77:20:f4:8c:3c:cd:c8: 0d:e7:cd:57:81:5a:07:43:89:55:35:b1:f0:80:e6: f6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:90:35:69:61:CF:21:09:E3:8D:BF:F3:0B:3A:18:77:EF:1C:7C:20 X509v3 Authority Key Identifier: keyid:3E:E7:41:2A:FE:87:3F:1D:45:BA:B6:14:71:4A:32:01:E3:62:96:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:2e:f7:35:98:97:09:00:14:0f:7a:79:ee:84:49:43:ff:1b: 49:31:91:a3:68:fe:c3:3c:28:d7:29:34:0e:93:66:2f:3e:e3: 9c:49:ff:88:8b:cf:72:69:fa:e8:4a:d2:cb:4d:2c:a2:2a:f2: b7:71:a9:18:22:8d:fe:f6:9a:3a:15:f1:03:07:98:38:45:23: 5e:10:bf:76:c2:59:b5:3e:6b:a6:df:4a:ec:8d:fa:ea:51:d9: 46:2a:4a:20:20:01:fc:0c:5e:55:97:7c:66:1c:1c:b7:03:86: 36:06:d5:4e:2f:2b:b4:ab:5c:d2:a4:af:f9:fa:9b:4e:ad:b1: 24:20:f4:65:b2:30:32:a1:06:1b:e1:18:f8:e3:c6:e5:8d:55: 79:4d:eb:78:c3:e9:f6:3e:7c:08:6e:3f:e9:88:b0:60:5b:a6: 83:23:66:1a:b6:be:e1:6b:78:43:2f:bc:79:7e:8c:36:0c:a6: 05:1a:0f:67:f7:d8:77:4a:50:75:61:e8:6e:be:ff:51:37:c8: cf:db:1e:3f:48:8a:72:0b:5c:97:65:a3:94:70:e1:cf:9f:a5: 78:3b:48:a9:8e:b2:fb:41:4e:0f:26:63:7c:72:7f:70:09:fd: 13:c8:0a:e3:28:01:97:42:6c:8e:2a:60:9d:52:a1:f8:77:9b: 22:63:27:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM2ODAxMTAvBgNVBAUTKDNFRTc0MTJBRkU4NzNGMUQ0NUJBQjYxNDcxNEEzMjAx RTM2Mjk2OTEwHhcNMjQxMTIyMjI1NzUxWhcNMjQxMTI5MjI1NzUxWjAYMRYwFAYD VQQDEw02NzQxMGM2Zi1lY2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+oPs3HTuP5PmCstzJCu+hq8A/Eiy1eoK4zEN8e26TlFsCxygQPfvOJOSfQR Z8NJ0X1OwZGwHOVe599bEQMgM2iNsu3ae/WUtyujMwVXKYHUNugOvVBUGSdec8Ql gZG/B+lxm5j9uRyZLWAlRHxYTiwlFLSQdbpTvwTGDT53J8/oHGorJiQgcfCcA7Kb mm1Y5yPjw8h9fvh7d+O2Wqcrf06hbkYeaA7R2SLW4sE8l2TvIpTjhMzgqSkJ3cA5 0GmD23EFEpFozwzSGewbgwnH6YVZ6QLfWMNknDQXLCIjv9THLznj6SCGXHcg9Iw8 zcgN581XgVoHQ4lVNbHwgOb2qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqQNWlh zyEJ442/8ws6GHfvHHwgMB8GA1UdIwQYMBaAFD7nQSr+hz8dRbq2FHFKMgHjYpaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzY4MC9ENDk5MTg2MkM1 QzgxMUVCODkwQzBEMEJDNEY5QUUwMi9QdWRCS3Y2SFB4MUZ1cllVY1VveUFlTmls cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1ZEJLdjZIUHgxRnVyWVVjVW95QWVOaWxwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzY4MC9ENDk5MTg2MkM1QzgxMUVCODkwQzBEMEJDNEY5QUUwMi9QdWRCS3Y2SFB4 MUZ1cllVY1VveUFlTmlscEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOLvc1mJcJABQPennuhElD/xtJMZGjaP7DPCjXKTQOk2YvPuOcSf+I i89yafroStLLTSyiKvK3cakYIo3+9po6FfEDB5g4RSNeEL92wlm1Pmum30rsjfrq UdlGKkogIAH8DF5Vl3xmHBy3A4Y2BtVOLyu0q1zSpK/5+ptOrbEkIPRlsjAyoQYb 4Rj448bljVV5Tet4w+n2PnwIbj/piLBgW6aDI2Yatr7ha3hDL7x5fow2DKYFGg9n 99h3SlB1Yehuvv9RN8jP2x4/SIpyC1yXZaOUcOHPn6V4O0ipjrL7QU4PJmN8cn9w Cf0TyArjKAGXQmyOKmCdUqH4d5siYycn -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:36 2024 by rpki-client on console-fra.rpki-client.org