$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft File: U-fOlDUz-NPAVknylGgqJvgU8V8.mft (raw, json) Hash identifier: HjEoHLnCBt/nli2cTwr91HXJ2TQXqCEgYDmRhxfPJW4= Subject key identifier: B6:DC:C4:30:D9:04:3F:A9:A6:59:2B:F2:5D:F5:A7:B9:5C:6E:DB:3E Authority key identifier: 53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F Certificate issuer: /CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft Manifest number: 29 Signing time: Sat 23 Nov 2024 05:42:53 +0000 Manifest this update: Sat 23 Nov 2024 05:42:53 +0000 Manifest next update: Sat 30 Nov 2024 05:42:53 +0000 Files and hashes: 1: U-fOlDUz-NPAVknylGgqJvgU8V8.crl (hash: zCjURjWl/JaVhY1neNkQq03RQzblSV4hjIK4dU/2TPQ=) 2: BC213E3C70AF11EF9C9B2C0EC4F9AE02.roa (hash: KLVK6zfk1sI4e7G8hRism5bZ4U3Yqq/t49H1ShoVhoA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Validity Not Before: Nov 23 05:42:53 2024 GMT Not After : Nov 30 05:42:53 2024 GMT Subject: CN=67416b5d-4fad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:92:30:4d:50:77:3a:26:97:9c:9c:e2:42:51: 37:e1:df:d5:8d:91:3c:9b:c1:55:ad:4e:91:41:53: f5:10:05:52:b4:94:ae:64:e8:89:58:09:ad:cf:40: 2a:e0:b7:c8:f0:60:47:b0:08:44:17:4b:25:bd:be: ec:c4:f5:b5:de:cc:d0:4e:f1:89:e4:11:89:9a:9f: b3:a8:b5:3c:bc:33:65:5b:04:a6:62:46:2d:e3:67: 3f:49:11:3d:d8:2b:f8:4a:4c:5d:07:41:8d:e0:db: 33:d6:d4:40:af:a6:e2:bd:dc:cb:e7:e2:bf:df:21: f3:38:a2:de:b7:60:99:a1:1a:5e:28:d4:fa:61:b4: 12:9d:70:d4:f2:b7:8d:96:e8:80:83:cc:62:f8:3f: e9:8c:2a:c7:90:79:51:9e:b7:f1:5f:ee:d8:9d:91: 3c:fb:df:0b:ab:5e:7f:39:5d:43:24:20:d3:c4:56: 88:0f:87:92:4d:df:fd:bc:1b:77:53:ef:38:96:9f: 72:57:fa:58:3f:e1:a8:58:fa:55:0a:21:fe:6a:9c: 70:4a:f7:d5:e3:9f:a5:f8:06:09:a6:20:cb:d9:02: ac:92:87:5a:02:45:39:06:97:fc:fe:ac:a6:a2:b1: 1c:73:06:25:37:8a:96:47:15:a6:0b:4f:a6:80:07: 72:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:DC:C4:30:D9:04:3F:A9:A6:59:2B:F2:5D:F5:A7:B9:5C:6E:DB:3E X509v3 Authority Key Identifier: keyid:53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:cc:5c:9d:1a:be:de:25:00:61:f0:d9:2c:02:95:07:b3:0d: 1d:24:3c:5f:36:3b:c1:4e:2a:96:8d:05:74:1a:35:52:c4:da: 2c:2d:37:9a:2d:65:36:c0:7e:ad:13:be:1f:d1:17:de:91:de: d4:d6:fa:77:97:15:b9:c5:38:4f:2a:f7:27:6d:23:64:c4:94: 63:74:f9:f4:75:09:81:a6:f6:77:e8:5c:3c:a5:72:da:6c:76: 61:95:1b:25:58:94:99:c2:ef:5f:d3:33:9d:f8:88:50:2e:7e: 50:0d:62:13:95:a5:0c:f3:57:8b:6d:8b:08:86:24:c3:df:fe: c5:79:05:46:fa:4d:11:f9:f5:0f:95:5e:21:f8:7d:60:01:7c: 3b:bd:18:f1:35:ea:90:0e:99:88:68:a8:7e:aa:16:40:38:e0: ed:90:ab:4b:b0:50:3b:ba:9f:a3:9e:fd:27:84:92:71:ec:11: 42:7a:b8:c5:8b:32:94:26:d6:1e:c9:16:4b:1e:bf:56:06:b2: 07:82:67:a8:d6:ff:63:14:b4:c6:0d:66:cf:4e:9d:eb:24:56: fd:1c:e6:aa:4f:7c:a8:fa:47:dc:26:89:e7:a2:e0:c3:c9:fd: 97:c5:0b:d2:ba:77:29:a8:ca:51:60:83:03:6b:00:82:04:96: 9c:78:6b:10 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NDM5MTExMC8GA1UEBRMoNTNFN0NFOTQzNTMzRjhEM0MwNTY0OUYyOTQ2ODJBMjZG ODE0RjE1RjAeFw0yNDExMjMwNTQyNTNaFw0yNDExMzAwNTQyNTNaMBgxFjAUBgNV BAMTDTY3NDE2YjVkLTRmYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlkjBNUHc6JpecnOJCUTfh39WNkTybwVWtTpFBU/UQBVK0lK5k6IlYCa3PQCrg t8jwYEewCEQXSyW9vuzE9bXezNBO8YnkEYman7OotTy8M2VbBKZiRi3jZz9JET3Y K/hKTF0HQY3g2zPW1ECvpuK93Mvn4r/fIfM4ot63YJmhGl4o1PphtBKdcNTyt42W 6ICDzGL4P+mMKseQeVGet/Ff7tidkTz73wurXn85XUMkINPEVogPh5JN3/28G3dT 7ziWn3JX+lg/4ahY+lUKIf5qnHBK99Xjn6X4BgmmIMvZAqySh1oCRTkGl/z+rKai sRxzBiU3ipZHFaYLT6aAB3IrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUttzEMNkE P6mmWSvyXfWnuVxu2z4wHwYDVR0jBBgwFoAUU+fOlDUz+NPAVknylGgqJvgU8V8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0MzkxLzAxOUZGMTRFNzBB RTExRUZBODQ4QjA2OEM0RjlBRTAyL1UtZk9sRFV6LU5QQVZrbnlsR2dxSnZnVThW OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVS1mT2xEVXotTlBBVmtueWxHZ3FKdmdVOFY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 MzkxLzAxOUZGMTRFNzBBRTExRUZBODQ4QjA2OEM0RjlBRTAyL1UtZk9sRFV6LU5Q QVZrbnlsR2dxSnZnVThWOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABHMXJ0avt4lAGHw2SwClQezDR0kPF82O8FOKpaNBXQaNVLE2iwtN5ot ZTbAfq0Tvh/RF96R3tTW+neXFbnFOE8q9ydtI2TElGN0+fR1CYGm9nfoXDylctps dmGVGyVYlJnC71/TM534iFAuflANYhOVpQzzV4ttiwiGJMPf/sV5BUb6TRH59Q+V XiH4fWABfDu9GPE16pAOmYhoqH6qFkA44O2Qq0uwUDu6n6Oe/SeEknHsEUJ6uMWL MpQm1h7JFksev1YGsgeCZ6jW/2MUtMYNZs9OneskVv0c5qpPfKj6R9wmieei4MPJ /ZfFC9K6dymoylFggwNrAIIElpx4axA= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:24 2024 by rpki-client on console-fra.rpki-client.org