$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft File: uko-NN2arQAtSR0TxciM5c3Jk6o.mft (raw, json) Hash identifier: WiuA6V4SM+FD6sdRJlDCsx5fVoEY2ZrYWde5OvfNSAk= Subject key identifier: FE:C9:2A:97:F3:2F:F9:01:55:07:55:42:44:A1:99:81:19:C4:4B:91 Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 0A50 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft Manifest number: 0A4B Signing time: Fri 22 Nov 2024 19:29:07 +0000 Manifest this update: Fri 22 Nov 2024 19:29:06 +0000 Manifest next update: Fri 29 Nov 2024 19:29:06 +0000 Files and hashes: 1: uko-NN2arQAtSR0TxciM5c3Jk6o.crl (hash: W28mE/nm9WSOZWkQ7R6h7XRG94xO0nT9GgpJZJLSc38=) 2: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (hash: le6qjqCzgyimHjECGdiCiB7624kiepl1Husd+YnK6FA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2640 (0xa50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Validity Not Before: Nov 22 19:29:06 2024 GMT Not After : Nov 29 19:29:06 2024 GMT Subject: CN=6740db83-8ac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a8:cb:43:02:02:99:5b:05:0c:c7:ad:20:e0: a3:53:1c:a2:bf:91:97:d2:6a:f9:34:27:11:df:3c: c0:29:52:ba:b3:25:ba:56:f5:8c:2e:36:c1:c0:9f: 4e:0e:e6:0e:3c:c9:42:05:94:2c:ba:9b:d0:8a:78: 21:a0:57:8a:57:46:32:19:fe:04:a6:fc:87:06:df: bb:45:8f:e2:a8:9c:31:2a:8f:19:94:c1:28:a3:15: 93:44:a3:7b:22:0a:dc:53:1c:7d:a5:99:79:cc:82: 5c:65:87:40:a4:4a:83:91:e1:df:84:e4:a2:51:b3: 82:73:94:0e:41:6d:11:7b:83:e3:5b:e2:df:41:86: 60:b6:84:6b:48:d7:53:46:3b:0c:97:79:93:76:fa: b2:06:e4:38:37:7c:32:1a:24:12:8d:13:c8:76:de: d4:3d:65:f6:2f:82:b4:22:ab:94:a8:14:59:bc:07: b3:2b:9f:7b:3c:f1:a6:a5:40:38:e6:4f:3e:45:32: c5:49:70:9b:b8:05:5a:2b:0c:5d:7f:5c:f2:8c:4d: 73:b8:29:99:39:7d:9f:0c:5f:c1:40:0b:b6:3c:15: 62:3e:49:82:d4:0b:6c:61:8e:db:d3:0f:45:a5:bc: e8:5f:6e:aa:b8:cd:2c:5c:24:d6:f7:f1:a8:fa:c4: 43:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C9:2A:97:F3:2F:F9:01:55:07:55:42:44:A1:99:81:19:C4:4B:91 X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:8a:44:e6:5f:10:0d:19:73:00:b5:d6:13:5f:04:6c:01:db: 0e:6b:21:9c:20:e7:6a:cb:3e:e4:01:8b:c1:14:18:72:59:c9: 74:ce:75:8c:19:24:41:0a:14:b9:5d:ab:eb:0b:3f:52:fd:12: bf:57:43:67:0d:6b:e6:25:b5:14:a0:1a:50:62:51:65:4c:31: 1c:8a:01:95:04:70:62:90:3e:27:9e:aa:f0:ea:f9:42:24:a0: 5b:cb:fb:a3:40:6a:7c:73:ce:26:b6:40:f0:4d:bf:ff:95:4f: 77:22:16:d7:f9:04:66:17:17:94:6f:c5:85:a2:06:e0:08:b6: f3:d2:4b:be:90:d3:f8:35:a5:40:99:f8:d9:f9:75:06:76:04: a2:fb:1a:5a:2f:5e:93:f0:fe:72:a2:38:1d:17:ef:db:1d:ad: 25:5e:c8:fc:86:7a:74:95:6c:56:ea:f3:c8:3f:3f:bc:05:22: 9c:4c:c6:3b:09:07:55:23:b7:57:89:77:cc:63:53:b5:6f:ad: 24:43:c2:9f:7f:24:db:a4:a9:39:e1:2d:53:e2:c8:34:5d:8c: 49:d3:ae:20:30:42:20:52:78:92:3b:dc:76:07:9d:a6:f2:22: 3a:4c:f1:2b:59:50:d3:58:1e:54:8e:66:c5:9d:c1:c0:87:30: 51:8d:2c:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjQxMTIyMTkyOTA2WhcNMjQxMTI5MTkyOTA2WjAYMRYwFAYD VQQDEw02NzQwZGI4My04YWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06jLQwICmVsFDMetIOCjUxyiv5GX0mr5NCcR3zzAKVK6syW6VvWMLjbBwJ9O DuYOPMlCBZQsupvQinghoFeKV0YyGf4EpvyHBt+7RY/iqJwxKo8ZlMEooxWTRKN7 IgrcUxx9pZl5zIJcZYdApEqDkeHfhOSiUbOCc5QOQW0Re4PjW+LfQYZgtoRrSNdT RjsMl3mTdvqyBuQ4N3wyGiQSjRPIdt7UPWX2L4K0IquUqBRZvAezK597PPGmpUA4 5k8+RTLFSXCbuAVaKwxdf1zyjE1zuCmZOX2fDF/BQAu2PBViPkmC1AtsYY7b0w9F pbzoX26quM0sXCTW9/Go+sRD3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7JKpfz L/kBVQdVQkShmYEZxEuRMB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjEyNy8zMzdGQkE0NDU0NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJR QXRTUjBUeGNpTTVjM0prNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmikTmXxANGXMAtdYTXwRsAdsOayGcIOdqyz7kAYvBFBhyWcl0znWM GSRBChS5XavrCz9S/RK/V0NnDWvmJbUUoBpQYlFlTDEcigGVBHBikD4nnqrw6vlC JKBby/ujQGp8c84mtkDwTb//lU93IhbX+QRmFxeUb8WFogbgCLbz0ku+kNP4NaVA mfjZ+XUGdgSi+xpaL16T8P5yojgdF+/bHa0lXsj8hnp0lWxW6vPIPz+8BSKcTMY7 CQdVI7dXiXfMY1O1b60kQ8KffyTbpKk54S1T4sg0XYxJ064gMEIgUniSO9x2B52m 8iI6TPErWVDTWB5UjmbFncHAhzBRjSxS -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org