$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: MMsG+p0jpDuyFFaQij8lTiMRPeuTpnlt6mMdLgY6ico= Subject key identifier: 0C:E3:87:54:0E:27:9A:15:E8:36:31:B0:F0:34:29:A0:DF:8D:25:F7 Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 04A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 0498 Signing time: Fri 22 Nov 2024 23:33:44 +0000 Manifest this update: Fri 22 Nov 2024 23:33:44 +0000 Manifest next update: Fri 29 Nov 2024 23:33:44 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: c37MW+Aw6kaXoE4iC/pWSyh+CcTHay4y6td6iiXxNwo=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: clmx/oQr73cJ/dvXJjULbQlKZ0MXrmzLfgGRONsfwYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1186 (0x4a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: Nov 22 23:33:44 2024 GMT Not After : Nov 29 23:33:44 2024 GMT Subject: CN=674114d8-6a17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6a:4f:fc:e7:8f:da:e5:e5:34:cc:61:68:a8: 06:47:34:9f:36:bc:fe:47:eb:95:24:1e:29:21:e8: e0:85:a8:10:b5:0a:5a:2f:39:9b:af:5f:98:55:d6: 6b:90:4c:da:14:c6:7e:1a:5e:2f:72:39:b5:b5:5f: 0c:08:21:6a:a0:5e:10:c0:55:59:55:34:95:37:63: 15:3f:f4:5d:43:9a:24:ed:4a:01:01:ea:36:ec:b5: da:0b:a1:e0:cf:56:d3:0e:38:a4:10:65:a6:77:70: 94:3a:0d:6d:fe:3e:12:e2:5b:9c:a2:67:4a:90:ec: b7:ff:98:ff:d4:93:f7:ad:49:86:0f:f8:a5:04:ab: 86:d2:92:12:00:10:a8:d6:ef:b7:ca:86:30:cc:41: 44:08:cb:9b:64:f5:7b:ae:11:c7:4a:cf:8b:f6:51: ad:2a:bf:55:2a:11:8f:ff:8f:57:58:b8:62:dc:a1: 0e:dc:18:64:34:d8:84:51:dc:f1:1a:74:f7:2c:e0: 61:4b:4d:7f:ba:b3:e2:12:b9:b3:d5:f7:b1:e6:f9: e9:0e:d6:8c:f1:3a:05:53:85:6b:36:45:16:19:d8: 81:96:fc:6d:31:a0:1b:3f:b6:d3:7f:26:d3:2f:b3: a3:09:a0:80:ea:8e:37:65:c4:43:a3:d4:46:89:95: 9b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:E3:87:54:0E:27:9A:15:E8:36:31:B0:F0:34:29:A0:DF:8D:25:F7 X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:c8:98:1c:ce:29:75:35:66:84:a2:54:0e:8e:42:c2:3e:66: d7:37:30:3f:3a:73:e5:d9:2e:79:67:24:e5:2b:ee:ba:23:f4: c0:a0:18:3f:ef:c9:e7:30:0c:8e:d2:09:51:f2:0d:ad:3b:ac: 3b:61:22:54:4b:2f:e3:2b:1a:c3:8b:f4:e2:02:8f:6a:cc:10: d6:92:3d:08:4a:de:43:64:7d:fd:02:4e:3e:84:a9:8d:9d:28: 43:be:f3:63:fc:9d:1a:a8:ce:31:91:66:7b:c1:fe:8a:d4:56: cd:0a:72:f0:36:89:4c:4c:a2:d5:d1:c0:da:8a:f5:1a:09:cd: c4:08:e0:f7:86:d4:cd:73:7f:df:ac:f6:09:8f:6d:ca:5b:1c: 07:34:e9:7a:f4:7e:1f:92:bc:4c:d6:2d:ed:3e:26:b7:fe:62: dd:d6:22:10:37:d5:a4:88:50:15:62:65:ea:1c:4a:e6:49:88: 64:1a:df:23:46:58:18:05:5b:97:fc:b6:9a:06:65:5f:55:cc: 9d:bf:ce:2f:cd:3b:e9:33:d7:e4:2e:17:42:27:9d:40:76:f6: ef:e1:13:66:07:49:c3:72:34:de:d8:37:15:74:f1:5f:36:6e: 70:c9:a0:a0:50:a1:fd:7b:8d:b8:f6:ca:a4:65:a8:c6:48:3d: b2:e4:d3:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjQxMTIyMjMzMzQ0WhcNMjQxMTI5MjMzMzQ0WjAYMRYwFAYD VQQDEw02NzQxMTRkOC02YTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGpP/OeP2uXlNMxhaKgGRzSfNrz+R+uVJB4pIejghagQtQpaLzmbr1+YVdZr kEzaFMZ+Gl4vcjm1tV8MCCFqoF4QwFVZVTSVN2MVP/RdQ5ok7UoBAeo27LXaC6Hg z1bTDjikEGWmd3CUOg1t/j4S4lucomdKkOy3/5j/1JP3rUmGD/ilBKuG0pISABCo 1u+3yoYwzEFECMubZPV7rhHHSs+L9lGtKr9VKhGP/49XWLhi3KEO3BhkNNiEUdzx GnT3LOBhS01/urPiErmz1fex5vnpDtaM8ToFU4VrNkUWGdiBlvxtMaAbP7bTfybT L7OjCaCA6o43ZcRDo9RGiZWbZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzjh1QO J5oV6DYxsPA0KaDfjSX3MB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAyJgczil1NWaEolQOjkLCPmbXNzA/OnPl2S55ZyTlK+66I/TAoBg/ 78nnMAyO0glR8g2tO6w7YSJUSy/jKxrDi/TiAo9qzBDWkj0ISt5DZH39Ak4+hKmN nShDvvNj/J0aqM4xkWZ7wf6K1FbNCnLwNolMTKLV0cDaivUaCc3ECOD3htTNc3/f rPYJj23KWxwHNOl69H4fkrxM1i3tPia3/mLd1iIQN9WkiFAVYmXqHErmSYhkGt8j RlgYBVuX/LaaBmVfVcydv84vzTvpM9fkLhdCJ51Advbv4RNmB0nDcjTe2DcVdPFf Nm5wyaCgUKH9e4249sqkZajGSD2y5NML -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org