$ rpki-client -vvf rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft File: u7bmAQQ3QyUFSIC308E15vx8yrE.mft (raw, json) Hash identifier: b2mVT2ZN+Bp1nmyhPcTS8VNdmeM81q83CPP8HQCCZf8= Subject key identifier: A7:38:C9:FD:40:24:F8:A0:B6:F5:BC:51:42:7B:13:3B:AE:76:09:1A Authority key identifier: BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 Certificate issuer: /CN=A912804A/serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft Manifest number: 018B Signing time: Sat 23 Nov 2024 02:05:11 +0000 Manifest this update: Sat 23 Nov 2024 02:05:10 +0000 Manifest next update: Sat 30 Nov 2024 02:05:10 +0000 Files and hashes: 1: u7bmAQQ3QyUFSIC308E15vx8yrE.crl (hash: rRJuJ4eab2SFGbonumA6+6k13CtylaW3qBN0jWWk3SA=) 2: CCB0DBA8CB2911EE9CE70483C4F9AE02.roa (hash: +L4H64N18c7HC9b7a2kMN0oPwzUDs4ByILHmodSVj7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:05:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912804A/serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Validity Not Before: Nov 23 02:05:10 2024 GMT Not After : Nov 30 02:05:10 2024 GMT Subject: CN=67413857-21b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6c:99:5b:4d:35:80:d5:70:f7:9e:5e:42:e2: d0:d9:dd:57:eb:4f:2c:82:ca:b6:1a:4c:38:a5:1f: f5:23:2e:ee:67:2f:2d:ab:dd:df:3d:55:88:7f:26: 10:0d:50:73:2c:47:95:96:c3:32:4c:c1:c5:42:e5: 9f:b3:8f:6f:52:cd:05:da:d5:00:1c:45:6e:d3:75: ef:96:98:a3:ff:5c:56:ea:23:12:72:08:dc:bb:4e: 5d:06:ae:4e:2b:80:d3:14:e9:01:97:69:76:59:ed: 9f:ab:7e:0e:fb:a3:a8:6e:5f:06:e0:10:54:57:8b: 95:cc:1b:a2:c8:c9:29:19:ab:4c:87:ec:cc:2a:da: 46:8c:ae:8f:03:e3:c5:bd:2c:01:6b:c8:e6:e4:59: 43:8c:93:7c:34:d2:62:8c:dd:dc:15:81:a8:2d:38: 72:68:62:d9:a8:42:7f:bc:71:71:7e:71:d7:09:75: f0:90:ad:73:5f:6d:29:f8:66:23:7f:00:1e:42:30: c4:0e:14:78:90:01:fe:9f:bb:2a:3e:ff:15:f9:4c: 27:ec:c8:db:7e:b4:4a:4e:ac:11:9b:46:0c:1d:fb: 74:e4:ab:5f:db:41:b1:27:3d:52:b7:8f:87:51:d3: 92:35:c5:14:e5:c3:1d:7e:7f:2a:9e:cd:99:56:52: 13:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:38:C9:FD:40:24:F8:A0:B6:F5:BC:51:42:7B:13:3B:AE:76:09:1A X509v3 Authority Key Identifier: keyid:BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:54:2a:03:a4:a8:43:11:b9:85:5d:2f:ec:a6:b6:53:3e:32: b9:78:13:d1:62:0d:f1:e6:2d:9b:34:22:22:b6:49:aa:b3:29: 75:4a:6a:a5:a1:1b:1c:4d:a3:de:40:08:22:e0:e1:fa:ea:d7: 0f:91:ab:1e:d1:ac:74:f2:2e:ee:b8:e9:80:02:e2:f0:79:ec: 82:8e:a6:73:6f:44:52:29:26:e2:0e:12:83:42:c2:0f:b5:4a: 6e:b5:ba:cd:47:00:37:8b:a9:06:96:b2:b6:70:ee:65:84:d4: 2d:1b:28:2e:ce:a8:37:63:23:8b:ac:b4:fe:7f:dc:1a:01:1d: d8:d0:15:86:84:34:17:d9:e5:9a:e0:76:05:d1:41:12:49:c3: 3a:7f:af:69:08:65:00:fa:ee:68:47:23:e6:51:ff:30:fb:e4: 80:c7:e2:28:92:3f:62:6a:0a:90:bc:77:ae:4d:1c:f7:ea:f2: 68:15:98:bf:af:25:20:a2:48:ef:86:39:bc:49:e9:02:42:0e: e7:ed:3c:05:b2:e8:c4:ca:30:32:5f:75:57:bb:38:b9:d3:02: e3:84:6c:f7:98:d3:65:ee:21:61:a6:23:96:a0:c1:0c:8f:3c: 3f:11:a4:09:1b:2f:ed:37:41:51:3d:3e:13:c4:c0:28:6c:4e: ff:5e:bc:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgwNEExMTAvBgNVBAUTKEJCQjZFNjAxMDQzNzQzMjUwNTQ4ODBCN0QzQzEzNUU2 RkM3Q0NBQjEwHhcNMjQxMTIzMDIwNTEwWhcNMjQxMTMwMDIwNTEwWjAYMRYwFAYD VQQDEw02NzQxMzg1Ny0yMWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2yZW001gNVw955eQuLQ2d1X608sgsq2Gkw4pR/1Iy7uZy8tq93fPVWIfyYQ DVBzLEeVlsMyTMHFQuWfs49vUs0F2tUAHEVu03Xvlpij/1xW6iMScgjcu05dBq5O K4DTFOkBl2l2We2fq34O+6Oobl8G4BBUV4uVzBuiyMkpGatMh+zMKtpGjK6PA+PF vSwBa8jm5FlDjJN8NNJijN3cFYGoLThyaGLZqEJ/vHFxfnHXCXXwkK1zX20p+GYj fwAeQjDEDhR4kAH+n7sqPv8V+Uwn7MjbfrRKTqwRm0YMHft05Ktf20GxJz1St4+H UdOSNcUU5cMdfn8qns2ZVlIT4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKc4yf1A JPigtvW8UUJ7EzuudgkaMB8GA1UdIwQYMBaAFLu25gEEN0MlBUiAt9PBNeb8fMqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODA0QS85NUE4MTAxNDUw NzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5VUZTSUMzMDhFMTV2eDh5 ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3Ym1BUVEzUXlVRlNJQzMwOEUxNXZ4OHlyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODA0QS85NUE4MTAxNDUwNzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5 VUZTSUMzMDhFMTV2eDh5ckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXVCoDpKhDEbmFXS/sprZTPjK5eBPRYg3x5i2bNCIitkmqsyl1Smql oRscTaPeQAgi4OH66tcPkase0ax08i7uuOmAAuLweeyCjqZzb0RSKSbiDhKDQsIP tUputbrNRwA3i6kGlrK2cO5lhNQtGyguzqg3YyOLrLT+f9waAR3Y0BWGhDQX2eWa 4HYF0UESScM6f69pCGUA+u5oRyPmUf8w++SAx+Iokj9iagqQvHeuTRz36vJoFZi/ ryUgokjvhjm8SekCQg7n7TwFsujEyjAyX3VXuzi50wLjhGz3mNNl7iFhpiOWoMEM jzw/EaQJGy/tN0FRPT4TxMAobE7/XrwO -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org