$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft File: uhYFabkV4kxq5sJIlNBPnUo5FpI.mft (raw, json) Hash identifier: kG4iD/mtYxERxOJM2l6odVFFjcH0w2a9a1d8lJI8eeI= Subject key identifier: 31:DC:97:2F:E8:18:61:32:55:1C:60:9E:A1:11:27:3D:BB:00:C8:F6 Authority key identifier: BA:16:05:69:B9:15:E2:4C:6A:E6:C2:48:94:D0:4F:9D:4A:39:16:92 Certificate issuer: /CN=A912CDCB/serialNumber=BA160569B915E24C6AE6C24894D04F9D4A391692 Certificate serial: 0473 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft Manifest number: 046F Signing time: Fri 22 Nov 2024 23:38:56 +0000 Manifest this update: Fri 22 Nov 2024 23:38:56 +0000 Manifest next update: Fri 29 Nov 2024 23:38:56 +0000 Files and hashes: 1: uhYFabkV4kxq5sJIlNBPnUo5FpI.crl (hash: 4NmglkD9nDvQoQ8cX6y200G4m47PUJg6C8fEMZf/+5I=) 2: DAF98AAA20F111EC89E7D668C4F9AE02.roa (hash: LH3JZfkASioifJ898UuwmPenAKd90H/13hB5MxOGBgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.crl rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1139 (0x473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDCB/serialNumber=BA160569B915E24C6AE6C24894D04F9D4A391692 Validity Not Before: Nov 22 23:38:56 2024 GMT Not After : Nov 29 23:38:56 2024 GMT Subject: CN=67411610-729b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c4:13:3f:32:d4:80:6c:e9:85:59:3e:9a:8d: 2a:c4:c2:83:87:13:0b:ec:b4:e6:8b:82:03:02:38: 6c:7c:12:c0:42:39:dd:02:ce:f3:7a:24:a4:08:62: 9c:bd:a4:58:05:b0:e5:31:3b:9a:a4:94:b0:ff:6f: 1c:36:4a:ea:8c:d4:a7:fa:80:1a:71:86:80:7f:db: 81:60:a4:98:29:a3:aa:d8:94:0b:f8:e6:15:86:90: 91:6f:45:f1:c3:83:ce:3f:af:e2:f1:d2:b3:23:46: 97:7c:d4:ec:61:22:59:43:df:54:57:1d:10:de:c9: ea:ff:ba:43:a7:6c:16:49:c8:96:44:a8:00:87:97: e3:aa:d2:95:b0:41:f9:0b:4c:23:08:ce:13:5b:04: 72:49:fe:8e:8b:2b:89:46:62:ba:b0:82:49:21:e0: 3d:0d:bf:e3:9c:83:14:3b:78:e3:ee:37:51:fb:a7: 7c:18:83:af:69:17:11:d9:db:ac:dc:bb:fb:8e:2e: 10:8c:de:85:b1:09:85:b6:d8:7e:1e:26:25:a4:79: 6a:eb:bb:e9:bd:d6:ff:7c:f7:46:60:31:f0:d5:6b: 67:2f:93:bc:a2:21:41:92:55:90:66:62:52:72:11: c6:57:43:51:bf:38:90:01:aa:af:17:ff:41:c1:87: d5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:DC:97:2F:E8:18:61:32:55:1C:60:9E:A1:11:27:3D:BB:00:C8:F6 X509v3 Authority Key Identifier: keyid:BA:16:05:69:B9:15:E2:4C:6A:E6:C2:48:94:D0:4F:9D:4A:39:16:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:48:17:6c:81:ba:fe:c9:3a:a9:16:6f:e0:05:46:41:86:87: fc:45:a9:fc:eb:79:4a:ce:35:26:0b:32:9a:c6:69:0d:6f:fe: a2:1b:9a:6e:8b:8f:74:3e:ce:3a:30:35:71:f2:cc:bd:4f:5e: b2:4d:e6:81:d8:22:58:19:dd:6f:0e:51:dc:f1:de:9c:b4:3f: a1:a7:9a:17:0f:4e:bc:40:67:0d:de:73:88:11:35:f6:ee:b1: 82:de:53:70:77:af:22:9f:27:4e:d0:a8:34:f3:ea:df:4c:3f: 83:34:90:b6:f7:73:94:54:df:af:67:30:0e:fd:f6:a9:ab:7b: 73:6f:e7:09:ad:88:5f:f1:51:60:00:ff:f8:55:5e:b8:d8:ba: 0d:7a:a7:ea:52:6e:25:41:8f:dc:3f:bb:5c:ac:6e:5a:2f:e1: 22:fa:d6:06:9c:d8:fc:fb:57:74:0a:5c:4e:f3:4b:94:eb:84: b4:0e:c0:54:80:be:4f:ae:df:4f:ca:e2:c7:82:8f:b7:73:e7: f6:6e:5b:2d:1a:7b:1b:0f:0d:93:08:1a:e6:b4:18:52:38:83: ea:65:0f:6c:f8:c8:36:20:37:b7:79:ca:de:9a:60:9b:fe:09: 0e:e7:e2:3a:e2:8a:c9:94:af:a9:87:68:28:4c:93:9f:51:87: ff:7f:5a:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQ0IxMTAvBgNVBAUTKEJBMTYwNTY5QjkxNUUyNEM2QUU2QzI0ODk0RDA0RjlE NEEzOTE2OTIwHhcNMjQxMTIyMjMzODU2WhcNMjQxMTI5MjMzODU2WjAYMRYwFAYD VQQDEw02NzQxMTYxMC03MjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMQTPzLUgGzphVk+mo0qxMKDhxML7LTmi4IDAjhsfBLAQjndAs7zeiSkCGKc vaRYBbDlMTuapJSw/28cNkrqjNSn+oAacYaAf9uBYKSYKaOq2JQL+OYVhpCRb0Xx w4POP6/i8dKzI0aXfNTsYSJZQ99UVx0Q3snq/7pDp2wWSciWRKgAh5fjqtKVsEH5 C0wjCM4TWwRySf6OiyuJRmK6sIJJIeA9Db/jnIMUO3jj7jdR+6d8GIOvaRcR2dus 3Lv7ji4QjN6FsQmFtth+HiYlpHlq67vpvdb/fPdGYDHw1WtnL5O8oiFBklWQZmJS chHGV0NRvziQAaqvF/9BwYfVpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHcly/o GGEyVRxgnqERJz27AMj2MB8GA1UdIwQYMBaAFLoWBWm5FeJMaubCSJTQT51KORaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDQi84QTgyMDk0NDIw RUMxMUVDOUQ1RDMxM0JDNEY5QUUwMi91aFlGYWJrVjRreHE1c0pJbE5CUG5VbzVG cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VoWUZhYmtWNGt4cTVzSklsTkJQblVvNUZwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDQi84QTgyMDk0NDIwRUMxMUVDOUQ1RDMxM0JDNEY5QUUwMi91aFlGYWJrVjRr eHE1c0pJbE5CUG5VbzVGcEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+SBdsgbr+yTqpFm/gBUZBhof8Ran863lKzjUmCzKaxmkNb/6iG5pu i490Ps46MDVx8sy9T16yTeaB2CJYGd1vDlHc8d6ctD+hp5oXD068QGcN3nOIETX2 7rGC3lNwd68inydO0Kg08+rfTD+DNJC293OUVN+vZzAO/fapq3tzb+cJrYhf8VFg AP/4VV642LoNeqfqUm4lQY/cP7tcrG5aL+Ei+tYGnNj8+1d0ClxO80uU64S0DsBU gL5Prt9PyuLHgo+3c+f2blstGnsbDw2TCBrmtBhSOIPqZQ9s+Mg2IDe3ecremmCb /gkO5+I64orJlK+ph2goTJOfUYf/f1rN -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:20 2024 by rpki-client on console-ams.rpki-client.org