$ rpki-client -vvf rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft File: uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft (raw, json) Hash identifier: AWnzE4/o6g4Ydxfgg742Lv+DhGw6/bLZcf+/Et1y3lw= Subject key identifier: 8D:FF:F3:02:E8:7D:30:50:1C:3A:89:BD:32:29:03:BC:58:67:E0:B6 Authority key identifier: B8:4C:23:96:9E:D7:9C:0E:31:C1:3C:14:50:01:2E:22:46:D3:F9:4D Certificate issuer: /CN=A911F2DF/serialNumber=B84C23969ED79C0E31C13C1450012E2246D3F94D Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft Manifest number: 47 Signing time: Thu 17 Oct 2024 05:45:32 +0000 Manifest this update: Thu 17 Oct 2024 05:45:31 +0000 Manifest next update: Thu 24 Oct 2024 05:45:31 +0000 Files and hashes: 1: uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl (hash: Ji0F/8xjpX3sgdMefNN+RIz1rP7GFDtjC7G9Ozon7YM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 03:23:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F2DF/serialNumber=B84C23969ED79C0E31C13C1450012E2246D3F94D Validity Not Before: Oct 17 05:45:31 2024 GMT Not After : Oct 24 05:45:31 2024 GMT Subject: CN=6710a47b-415f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:87:af:e2:95:e3:40:2c:79:7d:19:d5:fd:5b: aa:93:85:ce:5f:f1:f8:a9:60:1a:ee:fb:dd:a7:05: a2:a3:df:8e:55:fa:ff:c3:25:da:f0:e0:db:b9:bc: 93:11:f1:be:b2:f3:a9:b0:3c:e3:58:59:c6:0b:19: 78:ac:f0:01:72:bf:4f:a3:fb:d3:eb:e0:77:8d:37: 99:b9:fa:ac:ef:de:79:22:e3:1b:cc:2a:00:de:7d: 63:10:36:60:09:f6:98:36:e9:dd:94:55:19:2c:aa: 69:06:a7:47:bc:39:0a:6f:98:cb:69:8b:93:ad:a6: 71:73:a7:0d:14:a9:38:4a:21:12:7e:26:f1:ed:c3: 52:9a:78:05:e2:3e:ce:b3:b9:78:8a:23:f7:c9:39: 1a:2f:af:87:26:db:5d:8a:50:62:51:35:45:a7:0c: 4d:38:20:7e:d8:d3:75:f7:c3:70:fe:ed:32:45:f6: 4f:00:a0:b0:07:7f:51:c8:72:de:6b:b1:04:44:22: a7:c0:fc:e0:f5:b0:b7:d3:8e:fb:45:1c:27:89:c2: 42:9e:ee:02:06:2c:e8:02:e5:88:f3:19:bc:4f:d1: f0:b9:65:a2:21:61:f8:0e:08:b0:81:59:67:4f:06: 81:0e:bc:ce:52:a8:8a:67:74:12:5b:05:61:83:e4: be:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:FF:F3:02:E8:7D:30:50:1C:3A:89:BD:32:29:03:BC:58:67:E0:B6 X509v3 Authority Key Identifier: keyid:B8:4C:23:96:9E:D7:9C:0E:31:C1:3C:14:50:01:2E:22:46:D3:F9:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:d0:ef:10:0a:25:d3:70:94:11:fa:28:7f:6c:ff:91:5e:c2: 70:d4:f1:99:5e:b5:0d:10:4d:18:f2:53:fd:26:c9:fa:d0:f7: 4f:6a:bb:0d:98:79:89:72:01:90:01:09:03:08:b9:d1:95:2f: 40:2f:fe:9e:07:6e:56:c7:76:6c:f7:d5:0f:a4:0d:bb:b2:00: 46:30:9c:a2:8d:23:c7:55:45:c3:60:4c:2f:55:23:cb:c7:e5: 41:b4:73:79:7d:c7:20:ef:a4:f4:88:d8:2d:89:cd:b9:9f:e9: 7e:04:43:41:25:a5:f5:bd:68:c1:3e:42:51:f3:2c:a3:e5:0a: ed:74:1f:b9:81:20:ff:4e:51:a7:6d:bc:0d:cc:c0:d9:c5:7f: 6e:4e:cb:4c:9a:d7:7c:75:df:ad:b6:b1:9a:ce:61:34:2b:1b: c5:63:d0:02:06:4d:d5:a1:a9:19:17:8f:e0:9c:e1:88:b4:e8: f0:55:e0:2d:a5:b3:6e:ae:df:00:3b:28:bf:ee:dd:4c:e0:fc: c3:d8:38:c7:98:88:cc:4e:fe:e0:fe:b0:d6:14:21:86:70:ed: 93:21:ce:36:c5:7d:42:0e:63:27:61:0a:24:ef:3c:43:2d:6f: 51:6b:28:2d:54:68:90:37:11:55:e7:10:ee:a7:e8:e5:ca:b8: b3:e2:6f:07 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RjJERjExMC8GA1UEBRMoQjg0QzIzOTY5RUQ3OUMwRTMxQzEzQzE0NTAwMTJFMjI0 NkQzRjk0RDAeFw0yNDEwMTcwNTQ1MzFaFw0yNDEwMjQwNTQ1MzFaMBgxFjAUBgNV BAMTDTY3MTBhNDdiLTQxNWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0h6/ileNALHl9GdX9W6qThc5f8fipYBru+92nBaKj345V+v/DJdrw4Nu5vJMR 8b6y86mwPONYWcYLGXis8AFyv0+j+9Pr4HeNN5m5+qzv3nki4xvMKgDefWMQNmAJ 9pg26d2UVRksqmkGp0e8OQpvmMtpi5OtpnFzpw0UqThKIRJ+JvHtw1KaeAXiPs6z uXiKI/fJORovr4cm212KUGJRNUWnDE04IH7Y03X3w3D+7TJF9k8AoLAHf1HIct5r sQREIqfA/OD1sLfTjvtFHCeJwkKe7gIGLOgC5YjzGbxP0fC5ZaIhYfgOCLCBWWdP BoEOvM5SqIpndBJbBWGD5L5ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjf/zAuh9 MFAcOom9MikDvFhn4LYwHwYDVR0jBBgwFoAUuEwjlp7XnA4xwTwUUAEuIkbT+U0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGMkRGLzAwNTAxRkQyMjNB RTExRUY5NDkzRjQ1Q0M0RjlBRTAyL3VFd2pscDdYbkE0eHdUd1VVQUV1SWtiVC1V MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdUV3amxwN1huQTR4d1R3VVVBRXVJa2JULVUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFG MkRGLzAwNTAxRkQyMjNBRTExRUY5NDkzRjQ1Q0M0RjlBRTAyL3VFd2pscDdYbkE0 eHdUd1VVQUV1SWtiVC1VMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANDQ7xAKJdNwlBH6KH9s/5FewnDU8ZletQ0QTRjyU/0myfrQ909quw2Y eYlyAZABCQMIudGVL0Av/p4HblbHdmz31Q+kDbuyAEYwnKKNI8dVRcNgTC9VI8vH 5UG0c3l9xyDvpPSI2C2Jzbmf6X4EQ0ElpfW9aME+QlHzLKPlCu10H7mBIP9OUadt vA3MwNnFf25Oy0ya13x13622sZrOYTQrG8Vj0AIGTdWhqRkXj+Cc4Yi06PBV4C2l s26u3wA7KL/u3Uzg/MPYOMeYiMxO/uD+sNYUIYZw7ZMhzjbFfUIOYydhCiTvPEMt b1FrKC1UaJA3EVXnEO6n6OXKuLPibwc= -----END CERTIFICATE-----Generated at Thu Oct 17 08:05:43 2024 by rpki-client on console-ams.rpki-client.org