$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: HR2r4tEX57H/bhr5zuea+wDyu+6emA5xC7mebjtMOcE= Subject key identifier: 00:39:4D:32:80:9D:30:DD:A9:42:19:B4:BE:28:1A:BD:97:99:21:76 Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 2205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 21D5 Signing time: Fri 22 Nov 2024 15:53:20 +0000 Manifest this update: Fri 22 Nov 2024 15:53:19 +0000 Manifest next update: Fri 29 Nov 2024 15:53:19 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: A6QJD6ZVhHd2PYCokkpPpgdj2Bhib0hi+pfEHc/06Jw=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: LsnjeTUuxOLKtM5budZzebjO2SOXU+50cZfWesTYy6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8709 (0x2205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Nov 22 15:53:19 2024 GMT Not After : Nov 29 15:53:19 2024 GMT Subject: CN=6740a8ef-17a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ce:ed:c2:a3:ce:ab:6e:6b:0a:84:20:5c:49: 53:0a:be:61:1b:ac:0c:05:f6:3a:90:76:72:1f:25: a0:b2:3a:b8:a1:ee:21:52:f6:5a:2c:15:13:c6:bb: b2:40:eb:32:9e:a6:05:8c:dd:7b:66:81:09:1f:cd: 09:ce:d0:6e:1c:79:b3:c3:f7:ed:25:c8:7f:bd:38: cd:b3:3f:f7:2d:98:95:50:8d:35:71:01:01:ac:c6: 75:5b:28:6c:56:23:12:10:78:0f:23:08:2e:61:7f: f8:94:ad:99:14:c9:60:a8:cb:b4:5c:b1:e5:79:66: 50:9a:c4:f0:6d:fa:02:9a:ba:6a:8a:2d:d0:0a:2c: 9f:0f:3a:e4:52:fb:e1:33:14:e1:33:f0:b4:bc:92: 05:bc:15:64:73:e6:3e:6b:1f:30:1a:16:09:33:9d: 93:0a:38:54:72:ea:01:4c:84:50:8d:1c:57:c8:83: 3c:62:66:34:a1:af:fa:17:9d:6c:f6:de:99:42:5f: f2:12:93:6c:8c:8d:55:07:95:9f:48:b5:1b:d9:77: f9:88:e9:a5:6d:23:af:14:26:49:1b:9c:c0:0e:d2: 21:9c:f3:bf:65:da:2b:f6:ab:31:87:d5:73:63:b3: 70:3d:29:3e:8c:4a:37:15:a5:f8:f7:c0:65:d0:fa: 61:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:39:4D:32:80:9D:30:DD:A9:42:19:B4:BE:28:1A:BD:97:99:21:76 X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:df:f7:ab:fb:1d:eb:d2:0e:6e:9d:ed:be:01:32:82:69:1d: 7b:20:20:d4:a8:b4:c9:a8:bb:b2:08:6b:c3:3f:cd:d6:94:45: 65:e8:e7:b8:cf:80:44:e9:de:0e:b3:0e:28:6a:b0:18:17:45: b9:99:f4:e4:e2:c1:68:85:52:5f:8a:ac:20:e1:ea:2b:cc:44: 09:0e:5f:82:e5:1b:ce:fc:71:d7:6b:4a:9e:6d:27:4f:68:a2: 0b:04:b3:21:f0:78:e1:6a:3c:73:ea:76:4d:0b:fd:2e:42:2d: 59:5b:5e:e4:8c:a9:59:aa:be:9b:87:05:08:85:15:18:a3:bb: 2e:96:31:63:29:b6:2f:94:fa:20:45:29:07:55:1c:4b:57:0b: 80:ee:97:39:c0:c1:7f:b8:88:a6:57:e9:cc:49:0c:48:2b:64: d4:70:22:b9:c4:07:ce:0f:53:06:21:74:f5:4b:a1:6a:15:22: d1:8a:d8:bf:f3:a5:3b:ac:c0:88:5b:4d:11:f5:77:6c:33:79: 52:25:a3:79:74:a4:d4:e4:2a:3c:7b:4a:b7:3b:58:d0:fe:19: ca:1a:ea:9e:28:9e:a2:1f:8c:22:43:9c:c3:61:a6:53:b9:16: f0:96:ec:8b:7c:a5:bf:30:ea:61:f7:ef:2d:01:6a:0d:9c:ad: c2:93:18:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjQxMTIyMTU1MzE5WhcNMjQxMTI5MTU1MzE5WjAYMRYwFAYD VQQDEw02NzQwYThlZi0xN2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2c7twqPOq25rCoQgXElTCr5hG6wMBfY6kHZyHyWgsjq4oe4hUvZaLBUTxruy QOsynqYFjN17ZoEJH80JztBuHHmzw/ftJch/vTjNsz/3LZiVUI01cQEBrMZ1Wyhs ViMSEHgPIwguYX/4lK2ZFMlgqMu0XLHleWZQmsTwbfoCmrpqii3QCiyfDzrkUvvh MxThM/C0vJIFvBVkc+Y+ax8wGhYJM52TCjhUcuoBTIRQjRxXyIM8YmY0oa/6F51s 9t6ZQl/yEpNsjI1VB5WfSLUb2Xf5iOmlbSOvFCZJG5zADtIhnPO/Zdor9qsxh9Vz Y7NwPSk+jEo3FaX498Bl0PphHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAA5TTKA nTDdqUIZtL4oGr2XmSF2MB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA3/er+x3r0g5une2+ATKCaR17ICDUqLTJqLuyCGvDP83WlEVl6Oe4 z4BE6d4Osw4oarAYF0W5mfTk4sFohVJfiqwg4eorzEQJDl+C5RvO/HHXa0qebSdP aKILBLMh8Hjhajxz6nZNC/0uQi1ZW17kjKlZqr6bhwUIhRUYo7suljFjKbYvlPog RSkHVRxLVwuA7pc5wMF/uIimV+nMSQxIK2TUcCK5xAfOD1MGIXT1S6FqFSLRiti/ 86U7rMCIW00R9XdsM3lSJaN5dKTU5Co8e0q3O1jQ/hnKGuqeKJ6iH4wiQ5zDYaZT uRbwluyLfKW/MOph9+8tAWoNnK3Ckxho -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:57 2024 by rpki-client on console-ams.rpki-client.org