$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft File: UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft (raw, json) Hash identifier: cM8eXUzOstEtqqYngQAmkgPxAikqutnAlyDy7CNJpwc= Subject key identifier: 6E:6A:83:0D:E5:E7:21:57:E6:19:40:DD:EF:38:A1:91:F1:C0:FB:82 Authority key identifier: 51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB Certificate issuer: /CN=A91EBA1C/serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Certificate serial: 220A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft Manifest number: 21CB Signing time: Fri 22 Nov 2024 15:53:57 +0000 Manifest this update: Fri 22 Nov 2024 15:53:57 +0000 Manifest next update: Fri 29 Nov 2024 15:53:57 +0000 Files and hashes: 1: UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl (hash: 6zIx+Fi5J5rgIVNR6GOZ1exZYgtesJZhjaymxfl+2qo=) 2: 6E12CFE0D6D511EEB73F802EC4F9AE02.roa (hash: fu2Y/ef9m4hYpradbNhhquwt+T6O3zblslaEMelPVBA=) 3: 8D93B9E0D8E911EE85D9881FC4F9AE02.roa (hash: AmGEU/vI25utL7crZoKrtfl5OSwvLwWyEhptdWMwqps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8714 (0x220a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA1C/serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Validity Not Before: Nov 22 15:53:57 2024 GMT Not After : Nov 29 15:53:57 2024 GMT Subject: CN=6740a915-516b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6d:39:fc:d5:61:bf:92:1c:e7:1b:ca:89:6b: 75:57:16:1f:75:72:49:dc:da:0b:30:ea:dd:75:a1: fb:8f:84:20:92:89:35:46:3d:35:03:ba:85:ae:66: 5e:de:10:0f:94:c6:fc:9e:e8:8d:df:e8:2f:65:e5: 89:2a:6a:19:56:71:ee:88:36:54:ea:92:81:9a:50: fe:ef:dd:d0:88:35:12:f6:d1:3d:57:e9:18:f2:8a: 57:c8:d2:67:8d:0d:d9:58:8c:3d:cb:7d:a3:10:ff: d1:a2:58:0e:5a:14:e5:c5:dc:32:44:78:c2:77:96: bb:ca:65:ee:39:57:8b:31:2e:c8:45:de:d3:03:7e: e6:53:04:3a:a4:1e:e8:26:0b:d7:a7:d5:46:6f:f7: d6:3f:ca:27:2a:81:fe:df:3e:91:4d:bd:7f:97:ce: 80:c4:5d:46:d8:0a:89:92:7f:4e:76:26:74:50:01: f2:74:cd:5b:bd:ea:9b:39:a9:2c:ed:c5:ef:7e:8a: 20:b9:1f:a8:7e:5c:5d:e6:00:13:8a:5f:ea:f2:40: da:14:a9:2b:80:f1:70:7a:5e:28:dd:b8:68:ff:68: d5:2f:77:40:18:39:9f:ff:c8:db:13:86:a8:f3:5c: 4b:d9:5f:58:75:37:7f:cf:27:d6:df:75:88:b7:45: 68:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:6A:83:0D:E5:E7:21:57:E6:19:40:DD:EF:38:A1:91:F1:C0:FB:82 X509v3 Authority Key Identifier: keyid:51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption eb:a9:6d:94:8f:a6:46:7c:98:05:28:52:5a:f1:71:df:92:74: 7b:03:f8:a1:92:d1:79:5d:da:46:31:b6:68:44:03:f9:bf:61: 77:82:f3:dd:f5:fa:b3:3b:e7:21:b6:14:f9:8b:e6:2b:7a:4c: da:c5:e3:ea:82:33:2e:50:5b:19:50:7d:7d:7f:a9:b4:7b:84: 2d:51:b4:74:1c:65:aa:7d:36:7e:fc:98:cf:3c:10:5f:ef:8b: b0:f0:f5:5e:66:b2:41:87:f5:00:70:dd:75:07:aa:b6:84:a5: 76:59:2c:ed:27:85:29:15:85:6b:5e:25:97:8f:cd:8e:ca:8d: 30:bb:d7:24:f0:de:28:c2:b9:5d:a0:2c:a4:47:cf:7e:5e:bd: fa:ea:69:57:6d:f2:a4:d8:5c:14:62:ce:a7:18:40:15:e3:a9: a6:c9:2c:84:41:23:18:6c:2f:75:09:2c:a5:6b:aa:28:cd:0c: c8:92:90:e3:09:2f:b4:93:80:d0:bd:d0:34:bf:57:d9:12:8e: a4:e1:db:00:eb:a2:72:db:ff:74:ac:1b:3a:ec:df:4a:35:76: 95:01:d2:4a:7e:ff:5b:3b:87:8f:eb:da:b1:ed:25:b3:b0:75: 23:e5:3f:b5:9d:47:83:b4:1a:48:f6:8f:ce:6e:eb:0a:02:be: d1:24:5c:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMUMxMTAvBgNVBAUTKDUxQzI2MTFCNDYxREQ1MTE4MzVBNTE0MUY4QUVFNTAy RDNBMzlBRUIwHhcNMjQxMTIyMTU1MzU3WhcNMjQxMTI5MTU1MzU3WjAYMRYwFAYD VQQDEw02NzQwYTkxNS01MTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArW05/NVhv5Ic5xvKiWt1VxYfdXJJ3NoLMOrddaH7j4Qgkok1Rj01A7qFrmZe 3hAPlMb8nuiN3+gvZeWJKmoZVnHuiDZU6pKBmlD+793QiDUS9tE9V+kY8opXyNJn jQ3ZWIw9y32jEP/RolgOWhTlxdwyRHjCd5a7ymXuOVeLMS7IRd7TA37mUwQ6pB7o JgvXp9VGb/fWP8onKoH+3z6RTb1/l86AxF1G2AqJkn9OdiZ0UAHydM1bveqbOaks 7cXvfooguR+oflxd5gATil/q8kDaFKkrgPFwel4o3bho/2jVL3dAGDmf/8jbE4ao 81xL2V9YdTd/zyfW33WIt0Vo9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5qgw3l 5yFX5hlA3e84oZHxwPuCMB8GA1UdIwQYMBaAFFHCYRtGHdURg1pRQfiu5QLTo5rr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkExQy82M0IyMTRBMkM4 MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFSR0RXbEZCLUs3bEF0T2pt dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VjSmhHMFlkMVJHRFdsRkItSzdsQXRPam11cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkExQy82M0IyMTRBMkM4MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFS R0RXbEZCLUs3bEF0T2ptdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDrqW2Uj6ZGfJgFKFJa8XHfknR7A/ihktF5XdpGMbZoRAP5v2F3gvPd 9fqzO+chthT5i+YrekzaxePqgjMuUFsZUH19f6m0e4QtUbR0HGWqfTZ+/JjPPBBf 74uw8PVeZrJBh/UAcN11B6q2hKV2WSztJ4UpFYVrXiWXj82Oyo0wu9ck8N4owrld oCykR89+Xr366mlXbfKk2FwUYs6nGEAV46mmySyEQSMYbC91CSyla6oozQzIkpDj CS+0k4DQvdA0v1fZEo6k4dsA66Jy2/90rBs67N9KNXaVAdJKfv9bO4eP69qx7SWz sHUj5T+1nUeDtBpI9o/ObusKAr7RJFwr -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org