$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: KJ0Gww2/dDie3/iXuytO/TlndEDPu/69XOKSxm7vH/I= Subject key identifier: 46:AE:13:A1:B9:ED:84:65:97:62:80:17:A0:B7:B6:3C:FB:30:E5:49 Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: A2 Signing time: Mon 25 Nov 2024 04:19:46 +0000 Manifest this update: Mon 25 Nov 2024 04:19:46 +0000 Manifest next update: Mon 02 Dec 2024 04:19:46 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: SQXUzcPzOq6ioepLNOpvDh37HZweyEY+RAltEldKQrI=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: PzMfqv/JTphrRExc8y93sSocbbq7cPC2A1xhsVGan2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: Nov 25 04:19:46 2024 GMT Not After : Dec 2 04:19:46 2024 GMT Subject: CN=6743fae2-fa53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:43:db:b7:12:24:b4:70:70:2a:93:d3:c1:d8: 27:bd:47:d8:9a:31:5f:b3:74:5a:18:4b:91:a1:64: f8:25:4e:d4:5b:fa:70:fb:22:63:e0:8f:be:07:65: 5d:bc:ad:fa:21:89:63:18:52:ab:8e:91:87:05:1a: b7:ad:ef:29:f7:a4:c2:8a:b8:fc:3c:3f:e0:47:de: 8c:8c:4b:57:f6:cf:45:89:f8:6f:d6:92:76:f2:59: e9:86:11:c6:8f:bb:43:78:b4:d2:09:f4:fd:f6:f2: 14:46:58:2a:c5:ed:c8:2d:f1:52:5e:c4:f8:54:16: c6:80:6f:00:81:ce:d6:3e:a4:b3:22:ca:37:ae:63: 0e:89:59:a7:8b:0f:0b:19:1d:5a:38:eb:39:b5:6c: f5:b9:2e:12:f4:bb:8a:d2:16:39:6f:6d:1c:c4:f4: 6f:5b:ae:4a:4d:69:4b:c0:d5:9d:d6:4a:1e:e6:d9: 19:d4:44:3a:14:c9:fa:c8:05:9c:2d:4d:76:71:90: 9d:0c:bf:28:01:02:29:76:35:06:91:ea:a1:20:e6: cd:3a:6a:ba:d7:07:b8:76:ac:0b:bb:62:00:16:d4: f5:22:2f:62:3d:b6:a6:b5:e3:43:79:f0:f2:d4:77: 17:63:e1:27:eb:b1:eb:7b:d5:70:d2:b2:e4:6f:92: 56:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:AE:13:A1:B9:ED:84:65:97:62:80:17:A0:B7:B6:3C:FB:30:E5:49 X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:a0:56:ca:fe:6c:5c:cb:15:ae:fe:40:1c:5d:47:5d:8c:03: e3:67:5b:a8:b0:31:ed:94:39:ce:6f:28:fd:73:6a:7e:f9:65: 80:0f:97:4e:60:f4:05:d6:a2:1a:c2:d9:d0:10:d3:cb:fd:45: 6b:f6:f8:7a:6e:c3:8c:6b:01:f9:9d:a8:1f:09:e9:00:a9:f5: 7c:a1:8a:df:9f:4c:2b:0b:2e:46:51:22:79:26:7c:17:99:d5: 44:7a:20:c0:11:35:73:f0:ee:26:b1:26:5f:c0:53:92:1a:ff: 93:07:0a:ed:ba:1d:86:9c:27:43:50:bf:e7:13:87:0b:d4:64: c8:6e:d8:eb:c3:e1:67:ff:3e:42:55:1c:24:ef:60:1c:6c:ff: ae:30:c8:01:62:7d:49:6e:58:ca:82:10:a0:ed:57:ae:21:e6: 91:d0:65:f7:56:a2:15:80:f9:67:a7:b6:07:5e:7d:5a:e5:8c: 2d:69:1f:1c:cc:02:8e:e7:50:4a:3a:4b:f5:82:18:4a:f1:98: 96:f7:5d:5d:aa:70:a2:0c:88:cf:36:db:81:4c:70:2b:bc:c5: 40:39:0b:b7:0a:42:e6:80:fb:a5:3b:46:fa:8d:f5:ea:1d:12: 74:29:9e:71:72:9d:75:95:27:16:ac:80:d7:6b:c0:5f:4e:9a: ec:fa:6d:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwNzAxMTAvBgNVBAUTKDUzOUJCNzZDOEE0Mzc5QTRERTM5OUMwNTJEMzhDMUI0 NTNBNjZGMUIwHhcNMjQxMTI1MDQxOTQ2WhcNMjQxMjAyMDQxOTQ2WjAYMRYwFAYD VQQDEw02NzQzZmFlMi1mYTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kPbtxIktHBwKpPTwdgnvUfYmjFfs3RaGEuRoWT4JU7UW/pw+yJj4I++B2Vd vK36IYljGFKrjpGHBRq3re8p96TCirj8PD/gR96MjEtX9s9Fifhv1pJ28lnphhHG j7tDeLTSCfT99vIURlgqxe3ILfFSXsT4VBbGgG8Agc7WPqSzIso3rmMOiVmniw8L GR1aOOs5tWz1uS4S9LuK0hY5b20cxPRvW65KTWlLwNWd1koe5tkZ1EQ6FMn6yAWc LU12cZCdDL8oAQIpdjUGkeqhIObNOmq61we4dqwLu2IAFtT1Ii9iPbamteNDefDy 1HcXY+En67Hre9Vw0rLkb5JWWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEauE6G5 7YRll2KAF6C3tjz7MOVJMB8GA1UdIwQYMBaAFFObt2yKQ3mk3jmcBS04wbRTpm8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA3MC84OUM1NTk3Q0JD MTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVhVGVPWndGTFRqQnRGT21i eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVh VGVPWndGTFRqQnRGT21ieHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGoFbK/mxcyxWu/kAcXUddjAPjZ1uosDHtlDnObyj9c2p++WWAD5dO YPQF1qIawtnQENPL/UVr9vh6bsOMawH5nagfCekAqfV8oYrfn0wrCy5GUSJ5JnwX mdVEeiDAETVz8O4msSZfwFOSGv+TBwrtuh2GnCdDUL/nE4cL1GTIbtjrw+Fn/z5C VRwk72AcbP+uMMgBYn1JbljKghCg7VeuIeaR0GX3VqIVgPlnp7YHXn1a5YwtaR8c zAKO51BKOkv1ghhK8ZiW911dqnCiDIjPNtuBTHArvMVAOQu3CkLmgPulO0b6jfXq HRJ0KZ5xcp11lScWrIDXa8BfTprs+m0m -----END CERTIFICATE-----Generated at Mon Nov 25 06:05:06 2024 by rpki-client on console-fra.rpki-client.org