$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.mft File: upj7l0sLFJ-1v3Ge_9938G2-STQ.mft (raw, json) Hash identifier: pMAcg07DRZiadbnI1/P3kIeGTDRlb7cSw3NP+vxiVpE= Subject key identifier: 0B:04:3C:8A:79:F6:4B:82:61:14:04:34:90:08:8C:7F:78:7D:E7:00 Authority key identifier: BA:98:FB:97:4B:0B:14:9F:B5:BF:71:9E:FF:DF:77:F0:6D:BE:49:34 Certificate issuer: /CN=A91EAC9B/serialNumber=BA98FB974B0B149FB5BF719EFFDF77F06DBE4934 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/upj7l0sLFJ-1v3Ge_9938G2-STQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.mft Manifest number: C6 Signing time: Sat 23 Nov 2024 03:53:37 +0000 Manifest this update: Sat 23 Nov 2024 03:53:36 +0000 Manifest next update: Sat 30 Nov 2024 03:53:36 +0000 Files and hashes: 1: upj7l0sLFJ-1v3Ge_9938G2-STQ.crl (hash: NwdvGc3TOGmOFRmb2aiU99W2kpCUQk/U+yjW4+/oIC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.crl rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/upj7l0sLFJ-1v3Ge_9938G2-STQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAC9B/serialNumber=BA98FB974B0B149FB5BF719EFFDF77F06DBE4934 Validity Not Before: Nov 23 03:53:36 2024 GMT Not After : Nov 30 03:53:36 2024 GMT Subject: CN=674151c1-9403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:49:5a:2f:88:80:7c:9e:b9:73:79:50:b7:56: 6f:4b:05:c8:ab:10:5a:14:71:ae:eb:88:c0:1c:c1: 92:d3:3e:db:17:e4:51:d0:8e:20:b7:54:ce:80:91: d3:0e:64:9d:f3:eb:73:72:6b:5e:3e:86:98:5b:60: d8:97:38:ad:6d:6d:55:43:2a:45:79:3b:a1:78:29: 33:55:d8:89:78:08:43:3b:f8:f9:36:5e:c1:9b:af: a0:d6:cd:8c:92:af:2b:82:7a:d7:b1:91:64:36:24: be:d9:7b:75:67:39:fe:ef:29:bd:10:3d:0a:eb:68: dd:71:9f:36:b8:e7:a1:ff:36:5f:0e:4b:23:fc:b0: 9a:00:47:0e:e6:65:6b:0b:9e:06:91:b1:83:4a:52: e0:87:8c:3b:a1:fd:64:ad:52:90:a0:2a:db:25:62: f4:36:48:f5:c7:3c:70:2d:0e:df:b2:7e:1d:cf:d5: 1b:52:8d:25:d3:9d:14:8a:81:58:2c:3b:3d:1d:98: eb:26:d0:58:08:8d:80:f1:18:25:c4:3a:3d:23:dd: 28:e8:55:87:d5:61:30:23:e6:f2:86:7b:ac:70:73: 59:41:ab:95:92:3a:32:3d:1c:c0:4b:ac:a3:a6:40: 3b:84:9b:92:f1:cd:43:de:9f:80:38:d5:e1:cb:fe: b5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:04:3C:8A:79:F6:4B:82:61:14:04:34:90:08:8C:7F:78:7D:E7:00 X509v3 Authority Key Identifier: keyid:BA:98:FB:97:4B:0B:14:9F:B5:BF:71:9E:FF:DF:77:F0:6D:BE:49:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/upj7l0sLFJ-1v3Ge_9938G2-STQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:4e:34:80:c7:36:95:b9:e6:ca:0f:47:99:45:22:67:ed:4b: 35:e2:c6:5b:0b:08:c3:92:96:b7:0f:68:3e:e5:28:b8:b1:a8: 4a:23:10:f4:d5:88:8c:6b:4f:0d:5c:73:62:f0:e4:44:c1:5a: 3b:e1:be:a6:77:29:78:c2:ef:92:94:aa:d2:e8:7a:ef:7c:c4: 49:04:c7:1b:cb:36:47:d7:4c:cc:dd:44:85:31:1e:04:d3:53: d3:9d:04:5a:3d:29:a3:50:55:a3:37:de:08:fb:3a:61:c4:a3: 82:28:c8:d6:d6:c9:0b:18:be:92:07:e3:8f:3c:59:72:34:bc: e1:e1:62:bb:56:f4:07:a4:9c:19:49:60:15:41:33:b4:af:da: 49:55:4f:96:55:a0:6e:a3:4c:36:96:d3:79:15:08:23:96:d6: bc:d1:53:f8:fa:9b:d2:32:c5:ad:40:26:ae:c3:ad:2e:c0:2d: 18:9b:33:f7:5e:7d:f7:c4:4f:80:f2:08:67:77:a0:f8:f8:2e: 13:4e:fc:2e:15:e1:75:b4:b2:02:07:c7:51:49:b6:05:89:38: 35:c0:e2:6d:24:12:0f:25:97:7e:3f:25:1f:4c:8b:64:6b:3c: 24:53:f1:50:65:14:e0:f9:d6:15:5d:6c:38:3e:59:19:bd:56: c7:c3:c1:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFDOUIxMTAvBgNVBAUTKEJBOThGQjk3NEIwQjE0OUZCNUJGNzE5RUZGREY3N0Yw NkRCRTQ5MzQwHhcNMjQxMTIzMDM1MzM2WhcNMjQxMTMwMDM1MzM2WjAYMRYwFAYD VQQDEw02NzQxNTFjMS05NDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0laL4iAfJ65c3lQt1ZvSwXIqxBaFHGu64jAHMGS0z7bF+RR0I4gt1TOgJHT DmSd8+tzcmtePoaYW2DYlzitbW1VQypFeTuheCkzVdiJeAhDO/j5Nl7Bm6+g1s2M kq8rgnrXsZFkNiS+2Xt1Zzn+7ym9ED0K62jdcZ82uOeh/zZfDksj/LCaAEcO5mVr C54GkbGDSlLgh4w7of1krVKQoCrbJWL0Nkj1xzxwLQ7fsn4dz9UbUo0l050UioFY LDs9HZjrJtBYCI2A8RglxDo9I90o6FWH1WEwI+byhnuscHNZQauVkjoyPRzAS6yj pkA7hJuS8c1D3p+AONXhy/61FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsEPIp5 9kuCYRQENJAIjH94fecAMB8GA1UdIwQYMBaAFLqY+5dLCxSftb9xnv/fd/Btvkk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUM5Qi81MDNGOEUyNDc5 MkMxMUVFODFFNjlBMTZDNEY5QUUwMi91cGo3bDBzTEZKLTF2M0dlXzk5MzhHMi1T VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwajdsMHNMRkotMXYzR2VfOTkzOEcyLVNUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUM5Qi81MDNGOEUyNDc5MkMxMUVFODFFNjlBMTZDNEY5QUUwMi91cGo3bDBzTEZK LTF2M0dlXzk5MzhHMi1TVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdTjSAxzaVuebKD0eZRSJn7Us14sZbCwjDkpa3D2g+5Si4sahKIxD0 1YiMa08NXHNi8OREwVo74b6mdyl4wu+SlKrS6HrvfMRJBMcbyzZH10zM3USFMR4E 01PTnQRaPSmjUFWjN94I+zphxKOCKMjW1skLGL6SB+OPPFlyNLzh4WK7VvQHpJwZ SWAVQTO0r9pJVU+WVaBuo0w2ltN5FQgjlta80VP4+pvSMsWtQCauw60uwC0YmzP3 Xn33xE+A8ghnd6D4+C4TTvwuFeF1tLICB8dRSbYFiTg1wOJtJBIPJZd+PyUfTItk azwkU/FQZRTg+dYVXWw4PlkZvVbHw8GZ -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org