$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: bwpnPVsdXLjpt5ajpFYOkHjNc0nMxKA4mAt6SOO3suU= Subject key identifier: 23:3C:90:EB:8F:1A:F0:25:AF:F3:B3:67:37:2B:14:C5:F9:10:79:FF Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: 014B Signing time: Sat 23 Nov 2024 02:33:14 +0000 Manifest this update: Sat 23 Nov 2024 02:33:14 +0000 Manifest next update: Sat 30 Nov 2024 02:33:14 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: iaaGUgIbNz4hBzxopSRMKu89tfrl9b0/3QZR9yS8YCQ=) 2: A948EB7AE90A11EEAD95B85FC4F9AE02.roa (hash: lgResqozHMSjBCPcbPjf0wTjzslhaQ7QQ5VEGI72qEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:33:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Validity Not Before: Nov 23 02:33:14 2024 GMT Not After : Nov 30 02:33:14 2024 GMT Subject: CN=67413eea-2e42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c1:9f:4e:4e:00:60:cf:00:09:53:61:6f:66: 8c:e6:49:61:e6:3c:c6:60:16:64:38:ec:3e:e4:30: b9:18:5e:15:fa:ba:9c:15:66:0c:a5:ba:f1:8e:9c: c5:73:a5:66:3e:00:49:56:af:56:e3:b2:25:06:2b: 9b:81:5d:be:5e:33:5c:53:2e:c6:da:a8:ce:ea:56: 12:1d:91:51:47:e6:6a:68:69:e9:40:bf:43:4e:f6: af:97:7c:e2:30:ed:e8:22:c9:14:e7:88:c7:ef:21: c3:58:bb:39:0d:26:7c:82:8d:4a:86:3f:2a:5f:94: 15:da:13:ae:4c:0d:4b:8b:d4:79:4a:c2:c1:50:b4: e9:4c:21:a2:63:6e:cd:8d:39:3e:ec:2a:f3:1b:93: b0:5c:9f:d8:c4:a6:27:96:a6:e2:fc:82:cc:95:9d: df:39:15:dc:e3:d3:b3:f4:03:52:4b:86:e0:1d:3f: b0:99:4f:9f:f7:38:b2:17:19:ec:01:08:b8:26:2f: ec:22:86:a3:ea:a6:47:f7:e9:96:ea:ec:f7:70:53: b6:d9:4c:c0:4a:d7:6d:56:d3:ec:3a:51:96:7c:60: 02:21:1a:ea:ef:2a:e8:de:32:13:a9:a1:4f:8d:d1: 9c:89:b9:03:2f:29:f7:82:5e:6f:87:61:54:0d:94: 6d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:3C:90:EB:8F:1A:F0:25:AF:F3:B3:67:37:2B:14:C5:F9:10:79:FF X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:bc:d8:2b:6a:24:75:8e:8f:42:b8:65:8e:66:93:b0:82:fb: 00:1f:60:ca:83:85:f6:3c:9b:02:87:16:dc:65:15:5c:c8:8c: 34:19:34:3d:a0:32:5a:56:66:6d:d1:7d:61:e9:4b:71:2d:dd: 9d:a2:f8:79:a3:55:00:df:d5:49:01:87:0a:6d:8a:6e:87:5a: 76:e5:38:7c:8b:c1:8f:9c:39:35:3e:92:d6:8e:30:cf:9f:bd: 27:33:ea:b8:5c:5b:a2:29:7c:c9:95:f1:48:c9:b9:7d:02:cc: 67:4a:28:c3:e2:ad:e8:46:76:3d:7b:0a:16:d8:c2:8c:8b:76: 0f:df:fa:cc:15:fd:46:91:c5:9b:9d:1d:ae:67:82:b5:f8:d9: 8b:8a:5a:7a:b9:d0:95:95:90:6e:17:9c:56:65:24:2b:c5:a0: c2:f4:ad:53:05:27:02:76:14:59:4e:02:75:fd:be:7a:3a:b6: a0:fd:6b:8b:8e:e8:1f:90:9b:42:14:ce:38:67:1e:e7:81:97: 38:da:83:da:e2:ea:29:9c:e0:9c:1e:5b:74:3b:00:ff:26:7e: ed:d0:e3:f7:92:25:af:2c:7e:ac:f8:b0:47:1c:4f:04:0b:f9: 9d:24:44:ea:f4:2b:76:0a:00:6b:7a:bb:12:9d:d8:08:59:2c: ed:53:f3:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjQxMTIzMDIzMzE0WhcNMjQxMTMwMDIzMzE0WjAYMRYwFAYD VQQDEw02NzQxM2VlYS0yZTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMGfTk4AYM8ACVNhb2aM5klh5jzGYBZkOOw+5DC5GF4V+rqcFWYMpbrxjpzF c6VmPgBJVq9W47IlBiubgV2+XjNcUy7G2qjO6lYSHZFRR+ZqaGnpQL9DTvavl3zi MO3oIskU54jH7yHDWLs5DSZ8go1Khj8qX5QV2hOuTA1Li9R5SsLBULTpTCGiY27N jTk+7CrzG5OwXJ/YxKYnlqbi/ILMlZ3fORXc49Oz9ANSS4bgHT+wmU+f9ziyFxns AQi4Ji/sIoaj6qZH9+mW6uz3cFO22UzAStdtVtPsOlGWfGACIRrq7yro3jITqaFP jdGcibkDLyn3gl5vh2FUDZRt1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCM8kOuP GvAlr/OzZzcrFMX5EHn/MB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkvNgraiR1jo9CuGWOZpOwgvsAH2DKg4X2PJsChxbcZRVcyIw0GTQ9 oDJaVmZt0X1h6UtxLd2dovh5o1UA39VJAYcKbYpuh1p25Th8i8GPnDk1PpLWjjDP n70nM+q4XFuiKXzJlfFIybl9AsxnSijD4q3oRnY9ewoW2MKMi3YP3/rMFf1GkcWb nR2uZ4K1+NmLilp6udCVlZBuF5xWZSQrxaDC9K1TBScCdhRZTgJ1/b56Orag/WuL jugfkJtCFM44Zx7ngZc42oPa4uopnOCcHlt0OwD/Jn7t0OP3kiWvLH6s+LBHHE8E C/mdJETq9Ct2CgBrersSndgIWSztU/OL -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org