$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: Lox+ZI0rTIN+M0cyVPVcoHyUPuWWvTWOuvXH/SZElck= Subject key identifier: 1F:E9:FF:00:01:38:0C:EB:ED:45:9D:35:A4:92:1A:09:69:DD:D2:6C Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: BD Signing time: Sat 23 Nov 2024 04:02:31 +0000 Manifest this update: Sat 23 Nov 2024 04:02:30 +0000 Manifest next update: Sat 30 Nov 2024 04:02:30 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: Zhf5Mgxmti8l+2AQhBP4FT6JtvQIMedFjkVXhgPWgVk=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: Is45ozchu807HN3ghPPdBfyquiZv3hvaQBbA7UKjIH0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: Nov 23 04:02:30 2024 GMT Not After : Nov 30 04:02:30 2024 GMT Subject: CN=674153d6-1e73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b5:6b:07:b6:53:09:d3:e4:d5:b9:d1:fa:d2: 5d:24:b0:ea:f1:85:86:a3:23:4f:f0:8b:d1:72:ed: 48:69:7e:40:51:95:c0:07:e3:d6:00:f5:4b:07:e6: 5c:67:c7:54:d2:5b:e6:0d:58:13:d5:26:f0:bf:3f: bb:36:2e:fb:5d:f9:24:9a:a6:0f:22:8e:8b:3f:55: 34:4c:6a:51:58:7c:58:76:9a:31:82:37:f8:3b:82: fc:6c:c5:b0:af:de:ec:54:91:9b:0f:8b:75:49:4b: b8:ba:c8:8a:5a:e7:1e:26:b0:c5:5a:ea:18:c5:ad: e0:72:d7:aa:dc:25:4b:7c:2e:15:cd:a3:0b:98:48: 30:4d:51:41:f2:97:62:8f:70:10:30:ff:c4:1e:96: 15:89:50:96:23:a5:2b:3d:f7:ce:96:9f:92:6d:f5: 62:9d:d8:4f:c6:21:31:b9:0f:42:41:92:06:f3:3e: 06:e2:41:ad:f2:90:84:90:fd:ca:99:b8:a3:29:8d: c8:b9:fe:21:c5:dd:71:65:02:db:fa:92:56:2b:85: 46:25:98:9a:38:25:fa:a0:73:9d:b5:4d:64:8a:96: 31:5b:a5:a4:4a:63:4b:10:5c:54:0d:e1:7b:6c:93: 6e:7a:23:b2:21:4c:60:f7:0f:73:26:29:83:3c:71: 6b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E9:FF:00:01:38:0C:EB:ED:45:9D:35:A4:92:1A:09:69:DD:D2:6C X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:ed:75:82:12:0d:46:eb:56:56:3f:11:21:f1:70:56:6c:a3: 47:6d:4e:ea:fb:89:66:33:f4:31:56:df:76:4b:50:50:79:aa: 6c:38:b7:32:d4:2a:69:2e:58:35:86:19:00:3c:c3:e0:57:80: 4c:ca:8f:48:75:c9:e9:ba:31:05:2d:34:3e:9f:25:09:14:c0: 63:2c:07:21:98:8f:e5:9a:73:b6:7c:17:f6:b7:67:49:3f:5a: 06:80:c5:9b:79:23:09:c3:60:6c:bb:18:7b:4d:f7:d8:2f:7c: 2d:61:69:76:cd:4a:de:82:a8:ab:7e:b6:8c:ba:f5:f1:39:ab: b1:b5:88:6d:53:f7:3b:8e:ee:2e:7d:4e:c0:21:1d:45:f5:02: e7:31:20:24:1e:26:91:0f:37:46:f7:f8:aa:23:73:9e:97:13: 30:61:3d:56:62:ae:8e:b4:d3:64:9e:c7:6f:92:07:0b:63:4f: 99:91:9a:5f:56:34:76:aa:6f:1a:76:1d:16:2c:81:87:f3:9f: 66:78:b0:88:22:2d:64:66:5f:72:08:ae:59:43:45:11:27:fe: 66:05:01:ab:c2:5a:a6:be:cb:e8:d5:d9:f2:94:21:95:75:2b: 9b:ab:df:ec:c7:09:b7:c9:11:2d:ea:de:0b:9e:ff:56:49:6a: 3b:81:ef:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjQxMTIzMDQwMjMwWhcNMjQxMTMwMDQwMjMwWjAYMRYwFAYD VQQDEw02NzQxNTNkNi0xZTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbVrB7ZTCdPk1bnR+tJdJLDq8YWGoyNP8IvRcu1IaX5AUZXAB+PWAPVLB+Zc Z8dU0lvmDVgT1Sbwvz+7Ni77XfkkmqYPIo6LP1U0TGpRWHxYdpoxgjf4O4L8bMWw r97sVJGbD4t1SUu4usiKWuceJrDFWuoYxa3gcteq3CVLfC4VzaMLmEgwTVFB8pdi j3AQMP/EHpYViVCWI6UrPffOlp+SbfVindhPxiExuQ9CQZIG8z4G4kGt8pCEkP3K mbijKY3Iuf4hxd1xZQLb+pJWK4VGJZiaOCX6oHOdtU1kipYxW6WkSmNLEFxUDeF7 bJNueiOyIUxg9w9zJimDPHFrMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/p/wAB OAzr7UWdNaSSGglp3dJsMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy7XWCEg1G61ZWPxEh8XBWbKNHbU7q+4lmM/QxVt92S1BQeapsOLcy 1CppLlg1hhkAPMPgV4BMyo9IdcnpujEFLTQ+nyUJFMBjLAchmI/lmnO2fBf2t2dJ P1oGgMWbeSMJw2Bsuxh7TffYL3wtYWl2zUregqirfraMuvXxOauxtYhtU/c7ju4u fU7AIR1F9QLnMSAkHiaRDzdG9/iqI3OelxMwYT1WYq6OtNNknsdvkgcLY0+ZkZpf VjR2qm8adh0WLIGH859meLCIIi1kZl9yCK5ZQ0URJ/5mBQGrwlqmvsvo1dnylCGV dSubq9/sxwm3yREt6t4Lnv9WSWo7ge/t -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:43 2024 by rpki-client on console-fra.rpki-client.org