$ rpki-client -vvf rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft File: UZQtJe28pR36Vs4J7TYet6JtvSU.mft (raw, json) Hash identifier: gpXkF26uAOklQYzyyocGSJS89knPCFEl8i1Q5OIC96M= Subject key identifier: A3:27:16:83:EC:AB:5F:CE:EA:85:2A:8C:24:96:B8:31:AF:F0:F7:50 Authority key identifier: 51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 Certificate issuer: /CN=A912AFA4/serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Certificate serial: 08CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft Manifest number: 08B5 Signing time: Fri 22 Nov 2024 20:19:20 +0000 Manifest this update: Fri 22 Nov 2024 20:19:20 +0000 Manifest next update: Fri 29 Nov 2024 20:19:20 +0000 Files and hashes: 1: UZQtJe28pR36Vs4J7TYet6JtvSU.crl (hash: tMT0AsvJkVCCpOMmrc7Xr49LhqfDn+BHtrVSkInCx8s=) 2: 52FF9944AB9711EAB2C00F5EC4F9AE02.roa (hash: 15x+UMCzso9Ct8gLB5gFTAcMB0xhn90nVaRk468yQ/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2250 (0x8ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AFA4/serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Validity Not Before: Nov 22 20:19:20 2024 GMT Not After : Nov 29 20:19:20 2024 GMT Subject: CN=6740e748-2576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a5:12:2a:1f:cd:2d:b2:1a:e2:55:ab:81:ff: be:0d:12:94:50:69:00:fd:85:44:55:c0:c0:3f:64: b1:cf:e0:33:55:7e:00:aa:78:72:2b:0d:5b:1b:fa: fd:f7:9b:90:70:3c:d4:ca:39:12:50:b5:62:50:7c: f7:36:7b:cc:5d:39:08:07:d5:5e:53:09:30:31:3a: 0c:3f:ac:b6:8e:f1:bc:4c:3e:19:e0:ec:62:d8:fd: a5:12:77:1a:5b:83:fb:c6:a0:49:0a:45:86:18:70: 3a:a8:af:3f:2a:53:87:6a:d0:02:22:c7:d1:6e:ba: 44:3c:6f:c6:80:08:31:04:a3:18:67:9a:92:98:d9: 58:51:85:8b:a0:3e:dc:24:a9:91:72:d9:b4:70:e9: 28:68:cf:f0:86:e2:fc:f4:03:84:00:a1:37:b0:25: 6e:a2:67:62:b6:fb:ea:8c:75:50:4a:c1:d1:6f:db: 2c:9a:a2:a9:a1:a9:27:d1:ce:07:8e:c4:9e:29:ad: 18:f0:8f:fc:78:b5:36:ad:40:5d:91:f5:ac:fa:e8: a3:54:0c:d7:00:03:4c:24:a3:98:7f:16:d3:64:a5: 25:bc:92:71:d4:cf:e8:21:08:4a:47:bc:08:f3:e1: 9f:9e:37:2e:4c:fe:ef:0a:81:e6:1d:81:c3:9c:83: 46:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:27:16:83:EC:AB:5F:CE:EA:85:2A:8C:24:96:B8:31:AF:F0:F7:50 X509v3 Authority Key Identifier: keyid:51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:3d:10:eb:eb:05:8f:bc:4b:6a:c5:5c:78:46:e9:64:0c:6c: 28:a2:08:57:97:48:e7:95:47:4d:48:8b:20:d2:a0:0a:05:f3: 11:d3:79:90:23:eb:83:70:4d:d7:4b:0e:70:46:d8:07:b7:eb: bf:55:73:7a:d4:03:1d:3b:c9:32:07:68:d4:40:e5:0d:d8:c5: 73:0a:cf:6e:20:9b:f2:f8:68:29:f2:1d:3a:9e:df:63:9a:9b: 27:06:a0:fa:00:12:f0:e5:41:0a:92:4b:a4:a5:d1:f6:29:97: 38:d5:0b:20:f0:f2:3c:a0:50:f1:3d:b5:ac:1b:c1:89:2a:3d: be:d7:c7:25:4f:8f:22:92:6c:29:ad:aa:f6:b8:ba:76:46:16: 39:22:e2:a1:56:c8:a0:5f:fe:c1:68:61:91:c8:ac:16:a6:cc: 38:c7:2d:04:44:1f:d0:4d:98:10:23:15:c3:d6:b8:e8:27:3d: e3:2b:a8:5c:0d:78:f1:40:07:4d:25:d2:89:62:b3:ec:aa:37: fc:a4:75:af:2c:9f:10:2d:fe:10:f1:31:2a:c5:5f:aa:ba:b6: 94:2d:df:42:03:a8:66:75:b9:fd:d8:0f:ee:3e:73:a5:cf:0b: 7a:f3:1a:f7:1d:9a:f9:cf:1a:3f:d5:8f:74:b2:d7:5c:b6:bc: 54:c7:ab:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGQTQxMTAvBgNVBAUTKDUxOTQyRDI1RURCQ0E1MURGQTU2Q0UwOUVEMzYxRUI3 QTI2REJEMjUwHhcNMjQxMTIyMjAxOTIwWhcNMjQxMTI5MjAxOTIwWjAYMRYwFAYD VQQDEw02NzQwZTc0OC0yNTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqUSKh/NLbIa4lWrgf++DRKUUGkA/YVEVcDAP2Sxz+AzVX4AqnhyKw1bG/r9 95uQcDzUyjkSULViUHz3NnvMXTkIB9VeUwkwMToMP6y2jvG8TD4Z4Oxi2P2lEnca W4P7xqBJCkWGGHA6qK8/KlOHatACIsfRbrpEPG/GgAgxBKMYZ5qSmNlYUYWLoD7c JKmRctm0cOkoaM/whuL89AOEAKE3sCVuomditvvqjHVQSsHRb9ssmqKpoakn0c4H jsSeKa0Y8I/8eLU2rUBdkfWs+uijVAzXAANMJKOYfxbTZKUlvJJx1M/oIQhKR7wI 8+GfnjcuTP7vCoHmHYHDnINGCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMnFoPs q1/O6oUqjCSWuDGv8PdQMB8GA1UdIwQYMBaAFFGULSXtvKUd+lbOCe02Hreibb0l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUZBNC9CNjc4NjJGQUFC OTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBSMzZWczRKN1RZZXQ2SnR2 U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VaUXRKZTI4cFIzNlZzNEo3VFlldDZKdHZTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUZBNC9CNjc4NjJGQUFCOTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBS MzZWczRKN1RZZXQ2SnR2U1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+PRDr6wWPvEtqxVx4RulkDGwooghXl0jnlUdNSIsg0qAKBfMR03mQ I+uDcE3XSw5wRtgHt+u/VXN61AMdO8kyB2jUQOUN2MVzCs9uIJvy+Ggp8h06nt9j mpsnBqD6ABLw5UEKkkukpdH2KZc41Qsg8PI8oFDxPbWsG8GJKj2+18clT48ikmwp rar2uLp2RhY5IuKhVsigX/7BaGGRyKwWpsw4xy0ERB/QTZgQIxXD1rjoJz3jK6hc DXjxQAdNJdKJYrPsqjf8pHWvLJ8QLf4Q8TEqxV+quraULd9CA6hmdbn92A/uPnOl zwt68xr3HZr5zxo/1Y90stdctrxUx6vi -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org