$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft File: U-fOlDUz-NPAVknylGgqJvgU8V8.mft (raw, json) Hash identifier: 39Mh0w/uXJqhn/VNYh4rnitDVV+MFFK9H0xyjhyOiR8= Subject key identifier: DB:9C:B3:80:69:B5:0C:36:A7:B0:58:AD:9D:05:C9:68:DD:63:19:E9 Authority key identifier: 53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F Certificate issuer: /CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft Manifest number: 19 Signing time: Wed 23 Oct 2024 06:38:49 +0000 Manifest this update: Wed 23 Oct 2024 06:38:49 +0000 Manifest next update: Wed 30 Oct 2024 06:38:49 +0000 Files and hashes: 1: U-fOlDUz-NPAVknylGgqJvgU8V8.crl (hash: xlYVqnNb68Ac/eqAQKlSEaamqMLb6vsu6oP84croscQ=) 2: BC213E3C70AF11EF9C9B2C0EC4F9AE02.roa (hash: KLVK6zfk1sI4e7G8hRism5bZ4U3Yqq/t49H1ShoVhoA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Validity Not Before: Oct 23 06:38:49 2024 GMT Not After : Oct 30 06:38:49 2024 GMT Subject: CN=671899f9-3a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:37:e8:1c:3c:1a:e9:77:07:ed:c4:2c:f3:01: 13:b6:94:fe:0b:2a:8c:cf:02:9a:10:8a:bf:0c:00: 19:44:b2:34:c2:12:d7:0f:19:6a:9a:4b:4c:a9:1b: b2:90:8f:57:e7:7f:9d:cc:d1:b6:81:28:a3:72:04: ec:9c:15:e2:c8:0b:4f:0a:1f:db:4e:3e:98:09:f9: a0:cb:51:70:e2:e2:d8:a9:8e:71:aa:81:63:e3:43: 34:03:20:d1:14:15:82:e2:4a:d8:42:4a:03:a2:9c: 14:95:d3:1b:a4:b0:21:30:c3:7b:2e:62:66:10:cf: 59:46:00:fb:11:ed:ba:90:58:c1:05:f6:22:1c:af: c9:7e:d3:e2:f3:0b:cf:b4:27:30:cb:b0:62:90:07: fe:ca:03:28:a9:d0:b2:23:42:50:03:d0:59:bb:3b: 61:bd:21:38:37:cc:87:d7:dc:4d:6f:f9:e5:06:25: 4a:a0:e8:22:4f:27:6f:83:ca:6f:ec:5e:bc:37:e4: 50:3a:82:47:f7:72:42:81:4c:2a:38:ec:7f:62:f4: a8:f8:91:25:d7:d5:ff:f1:8f:8b:0f:4f:39:a1:dd: f6:56:77:e7:92:03:60:85:dc:c1:40:9f:3c:e2:ea: 8a:ac:36:26:3a:6e:02:f0:49:54:a8:58:5e:7c:61: 27:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9C:B3:80:69:B5:0C:36:A7:B0:58:AD:9D:05:C9:68:DD:63:19:E9 X509v3 Authority Key Identifier: keyid:53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:d2:a9:e7:35:6b:e0:27:3f:30:29:f4:9d:ab:71:87:96:75: da:9f:99:70:75:01:41:a8:73:1d:94:84:77:2f:0a:e4:77:ff: 87:b3:f8:3c:c0:2a:76:42:27:d0:22:68:9c:2b:78:9a:e0:39: 08:4e:6e:12:e0:e0:99:15:de:f6:24:2f:31:8c:92:a4:93:d7: 55:84:48:2c:9b:07:ef:65:e5:18:5b:9d:80:22:5d:5e:01:38: af:83:c3:ee:cc:c2:7c:d8:a6:cc:3d:de:e8:12:d2:ca:38:54: 56:25:04:59:ad:a5:d3:03:61:a2:52:24:92:96:b0:30:0f:67: f3:08:0a:01:78:ea:af:75:73:fc:4a:41:e0:4b:94:b8:45:10: 30:50:3a:d6:98:00:29:f8:d5:19:28:5f:82:54:f8:25:d1:fa: 6e:db:4f:96:7a:29:4a:a4:c6:fe:ac:4d:ae:a0:22:a7:29:31: 6c:3c:ac:66:16:4c:80:6f:4d:8b:4f:eb:e4:71:37:98:f0:d9: 4b:14:f5:a6:ee:56:f4:5d:93:54:05:9e:ee:4e:ec:75:12:cd: b2:72:32:ed:71:53:7c:3a:65:6f:79:73:4a:17:d6:32:65:37: d2:a1:88:eb:d7:a3:4e:94:94:a7:d1:28:7c:62:0f:a5:29:c5: 0f:c9:66:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NDM5MTExMC8GA1UEBRMoNTNFN0NFOTQzNTMzRjhEM0MwNTY0OUYyOTQ2ODJBMjZG ODE0RjE1RjAeFw0yNDEwMjMwNjM4NDlaFw0yNDEwMzAwNjM4NDlaMBgxFjAUBgNV BAMTDTY3MTg5OWY5LTNhNmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyN+gcPBrpdwftxCzzARO2lP4LKozPApoQir8MABlEsjTCEtcPGWqaS0ypG7KQ j1fnf53M0baBKKNyBOycFeLIC08KH9tOPpgJ+aDLUXDi4tipjnGqgWPjQzQDINEU FYLiSthCSgOinBSV0xuksCEww3suYmYQz1lGAPsR7bqQWMEF9iIcr8l+0+LzC8+0 JzDLsGKQB/7KAyip0LIjQlAD0Fm7O2G9ITg3zIfX3E1v+eUGJUqg6CJPJ2+Dym/s Xrw35FA6gkf3ckKBTCo47H9i9Kj4kSXX1f/xj4sPTzmh3fZWd+eSA2CF3MFAnzzi 6oqsNiY6bgLwSVSoWF58YSchAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU25yzgGm1 DDansFitnQXJaN1jGekwHwYDVR0jBBgwFoAUU+fOlDUz+NPAVknylGgqJvgU8V8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0MzkxLzAxOUZGMTRFNzBB RTExRUZBODQ4QjA2OEM0RjlBRTAyL1UtZk9sRFV6LU5QQVZrbnlsR2dxSnZnVThW OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVS1mT2xEVXotTlBBVmtueWxHZ3FKdmdVOFY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 MzkxLzAxOUZGMTRFNzBBRTExRUZBODQ4QjA2OEM0RjlBRTAyL1UtZk9sRFV6LU5Q QVZrbnlsR2dxSnZnVThWOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH7Sqec1a+AnPzAp9J2rcYeWddqfmXB1AUGocx2UhHcvCuR3/4ez+DzA KnZCJ9AiaJwreJrgOQhObhLg4JkV3vYkLzGMkqST11WESCybB+9l5RhbnYAiXV4B OK+Dw+7MwnzYpsw93ugS0so4VFYlBFmtpdMDYaJSJJKWsDAPZ/MICgF46q91c/xK QeBLlLhFEDBQOtaYACn41RkoX4JU+CXR+m7bT5Z6KUqkxv6sTa6gIqcpMWw8rGYW TIBvTYtP6+RxN5jw2UsU9abuVvRdk1QFnu5O7HUSzbJyMu1xU3w6ZW95c0oX1jJl N9KhiOvXo06UlKfRKHxiD6UpxQ/JZh4= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:49 2024 by rpki-client on console-ams.rpki-client.org