$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft File: U_b3klO824sdFxgs5PGdOf1JnfU.mft (raw, json) Hash identifier: HmFJ9CI2gi5fqEO5r/EzHvuAO2yi8eD1uNkdfJQ0VUo= Subject key identifier: D6:C1:40:2F:53:8C:79:21:53:77:43:0A:41:DE:8D:E0:48:BF:8C:E4 Authority key identifier: 53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 Certificate issuer: /CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Certificate serial: 05DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft Manifest number: 05DB Signing time: Fri 22 Nov 2024 22:30:25 +0000 Manifest this update: Fri 22 Nov 2024 22:30:25 +0000 Manifest next update: Fri 29 Nov 2024 22:30:25 +0000 Files and hashes: 1: U_b3klO824sdFxgs5PGdOf1JnfU.crl (hash: r1CVg5jFNXlGGfc0/pm/3a+jmQlrW5yblq1nuzRo91g=) 2: 28D1785891E311EBA138E330C4F9AE02.roa (hash: ZXRE/wzu5lKhs8MxseA6/JZbA6gFP0KL6bGQMwyeb1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1503 (0x5df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Validity Not Before: Nov 22 22:30:25 2024 GMT Not After : Nov 29 22:30:25 2024 GMT Subject: CN=67410601-f255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:17:a1:25:32:58:7f:2f:e6:6f:2d:94:9b:f3: 91:96:c9:b6:62:bb:d0:6f:ba:bd:e9:10:3a:8d:d0: b2:91:60:63:f5:bf:5d:c9:4f:e4:8b:5a:6a:c6:44: 57:b2:c3:d9:44:b4:bc:12:44:a0:94:10:d8:5b:b2: 4e:1f:1e:d7:5c:6e:39:ac:a4:cd:77:c3:75:8a:ee: 82:88:f7:5e:9f:7c:cf:12:f6:ab:ba:84:d3:4e:35: d5:08:fa:92:ae:e1:b3:f1:2b:18:fd:a4:3d:ba:25: f1:6e:c5:d0:ff:24:85:b2:0a:62:ce:4f:84:f4:a1: bc:b4:c6:b7:7c:b6:4f:33:a7:71:15:ec:9b:d6:f5: 0f:7d:35:87:53:82:df:e8:2f:f9:df:ab:60:81:e7: 27:28:b1:be:11:1d:a7:e5:55:26:98:bc:23:49:db: 70:f7:37:8b:3d:be:df:5d:ec:8f:e2:1e:82:3f:8b: 5b:32:77:51:a7:c7:bc:07:3b:08:5d:ba:41:ac:89: 97:93:dd:59:18:3d:0e:87:6e:0f:98:ca:7c:6a:a2: 55:87:c5:61:64:ce:86:45:fe:74:85:e2:4e:31:af: b1:dc:d0:3e:5c:f0:a2:0c:30:71:5b:d4:a8:fd:24: 2c:8a:8e:3a:94:7e:fd:b3:92:40:ff:f2:b1:43:a9: 05:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C1:40:2F:53:8C:79:21:53:77:43:0A:41:DE:8D:E0:48:BF:8C:E4 X509v3 Authority Key Identifier: keyid:53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:a3:cf:85:b3:8b:cf:83:4d:fd:36:c9:ff:ce:18:c5:8f:a9: fa:cb:ba:93:2f:10:95:a2:e5:ae:a3:ff:31:36:5b:73:b4:a2: fb:a4:e7:3b:cb:c4:36:be:46:c2:37:ba:7c:6e:69:af:8a:16: 03:22:06:14:12:71:bf:18:6a:3a:ac:4a:5b:dc:5b:0e:6c:8c: 6b:46:36:6f:3e:5a:10:6b:eb:b5:d4:6d:c9:60:73:18:ee:24: 3f:a4:ef:fd:43:db:c5:86:a4:6a:5b:b2:5a:07:8b:55:45:57: 8c:c6:6a:b9:11:07:fa:2a:e0:28:a4:2c:6f:c5:5a:28:e5:3a: 03:fc:ef:f1:62:7c:9d:11:d8:6f:4a:a5:71:97:d8:7a:35:30: 39:3e:36:8c:66:fd:a9:5e:ff:5b:32:e9:5b:0d:ca:f3:4e:89: b1:aa:d2:9d:ed:8d:bd:97:95:37:e2:b4:7a:fe:f5:00:32:32: 9f:e3:e4:49:6a:d3:f5:8a:ec:49:e2:ef:72:18:95:c0:6a:99: 3a:e6:c0:eb:cf:7f:3d:37:ff:9e:0b:e8:60:7c:dd:52:ba:af: ee:5a:a4:85:ca:9e:50:91:d5:55:c5:ed:f4:4c:01:5b:fe:2a: 35:18:4a:3f:61:50:1e:33:c9:18:04:83:98:2e:49:b9:2e:b8: 59:7b:7d:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDUzRjZGNzkyNTNCQ0RCOEIxRDE3MTgyQ0U0RjE5RDM5 RkQ0OTlERjUwHhcNMjQxMTIyMjIzMDI1WhcNMjQxMTI5MjIzMDI1WjAYMRYwFAYD VQQDEw02NzQxMDYwMS1mMjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4hehJTJYfy/mby2Um/ORlsm2YrvQb7q96RA6jdCykWBj9b9dyU/ki1pqxkRX ssPZRLS8EkSglBDYW7JOHx7XXG45rKTNd8N1iu6CiPden3zPEvaruoTTTjXVCPqS ruGz8SsY/aQ9uiXxbsXQ/ySFsgpizk+E9KG8tMa3fLZPM6dxFeyb1vUPfTWHU4Lf 6C/536tggecnKLG+ER2n5VUmmLwjSdtw9zeLPb7fXeyP4h6CP4tbMndRp8e8BzsI XbpBrImXk91ZGD0Oh24PmMp8aqJVh8VhZM6GRf50heJOMa+x3NA+XPCiDDBxW9So /SQsio46lH79s5JA//KxQ6kFnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbBQC9T jHkhU3dDCkHejeBIv4zkMB8GA1UdIwQYMBaAFFP295JTvNuLHRcYLOTxnTn9SZ31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC83QzFGRDFEMjkx RTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0c2RGeGdzNVBHZE9mMUpu ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VfYjNrbE84MjRzZEZ4Z3M1UEdkT2YxSm5mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDM0MC83QzFGRDFEMjkxRTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0 c2RGeGdzNVBHZE9mMUpuZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0o8+Fs4vPg039Nsn/zhjFj6n6y7qTLxCVouWuo/8xNltztKL7pOc7 y8Q2vkbCN7p8bmmvihYDIgYUEnG/GGo6rEpb3FsObIxrRjZvPloQa+u11G3JYHMY 7iQ/pO/9Q9vFhqRqW7JaB4tVRVeMxmq5EQf6KuAopCxvxVoo5ToD/O/xYnydEdhv SqVxl9h6NTA5PjaMZv2pXv9bMulbDcrzTomxqtKd7Y29l5U34rR6/vUAMjKf4+RJ atP1iuxJ4u9yGJXAapk65sDrz389N/+eC+hgfN1Suq/uWqSFyp5QkdVVxe30TAFb /io1GEo/YVAeM8kYBIOYLkm5LrhZe31u -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org