$ rpki-client -vvf rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft File: UyQGWmE9LRB4F5xiFjcczGp3UHo.mft (raw, json) Hash identifier: nrDfQKd66Ayrbv8338EIGdf/5hkblxmHuYarWVVywyg= Subject key identifier: 82:A9:C7:1E:6D:EB:41:6A:B5:B4:44:8C:83:42:0C:20:62:BE:89:83 Authority key identifier: 53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A Certificate issuer: /CN=A9158EC4/serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft Manifest number: 82 Signing time: Thu 21 Nov 2024 04:46:42 +0000 Manifest this update: Thu 21 Nov 2024 04:46:41 +0000 Manifest next update: Thu 28 Nov 2024 04:46:41 +0000 Files and hashes: 1: UyQGWmE9LRB4F5xiFjcczGp3UHo.crl (hash: gcg6tfFcVFMhLwzAlqCf5J7iHLXIB8B9bWMUVDV56T8=) 2: 2805F2D6E5B511EEB34EF35AC4F9AE02.roa (hash: zp7wo3Fj7A9LYP7fJX6ClUApusAEuTaZ5MvWnQx4l4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:43:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158EC4/serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Validity Not Before: Nov 21 04:46:41 2024 GMT Not After : Nov 28 04:46:41 2024 GMT Subject: CN=673ebb31-b8fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f5:da:c2:95:55:a3:d1:00:bb:2e:0a:80:17: fd:1a:92:60:5f:7a:d5:b2:b2:30:56:09:7e:b6:64: f1:f9:34:b6:53:2b:74:49:4b:26:e6:f8:d5:d7:42: b9:53:ec:ed:fb:29:08:ba:0e:fa:df:c7:d2:1c:cc: a2:5b:ec:65:49:b4:3f:c6:13:c8:77:27:98:52:65: 2d:7d:7d:cb:76:69:c7:88:46:5e:d4:fd:e7:34:ec: c8:ec:e9:ac:fa:e3:23:04:9f:c2:99:90:2b:2b:07: ba:a7:d0:e5:aa:83:58:f0:60:81:07:2f:da:cd:11: 5d:c6:7c:71:3d:c3:93:90:5e:13:19:00:3e:4b:e2: a3:e9:fc:4e:b9:e0:2d:59:e7:b5:39:d9:19:fa:25: 3e:af:e5:0a:76:6b:9b:85:cd:4f:1a:4c:4d:83:5a: 6c:ad:d5:03:3a:6d:f1:be:38:3e:aa:e5:5a:96:45: e2:66:5a:c7:6d:92:c5:1f:bb:93:75:3a:ab:47:3a: 3e:7c:f1:82:67:00:73:20:cd:c8:ae:2c:45:57:64: 13:6c:5c:05:b0:51:3c:5d:8e:05:69:99:a2:56:c9: 54:de:1f:9e:5e:7b:9e:34:22:da:3f:93:fb:59:e2: c5:3c:4d:5d:9d:7e:c6:8c:2f:24:94:1a:e9:9b:01: d8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A9:C7:1E:6D:EB:41:6A:B5:B4:44:8C:83:42:0C:20:62:BE:89:83 X509v3 Authority Key Identifier: keyid:53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:62:4c:f0:66:e9:86:5f:74:8f:80:b1:3b:91:33:59:1f:6b: fa:71:23:b0:b3:d0:55:27:ba:f3:1b:6b:76:6a:00:26:62:82: a7:0b:be:9b:23:c3:c8:1e:79:f5:7f:e9:5b:e7:5d:fa:6d:5c: 64:72:a4:a0:6a:06:ad:3f:b4:42:8e:eb:9c:1c:ee:16:05:fd: 88:89:1b:f0:19:df:12:77:c3:d3:22:f3:93:12:fc:c9:c7:10: fe:60:b0:ce:89:bc:ab:e2:73:f5:55:89:26:ab:63:17:49:82: 83:7a:8c:d7:79:10:c0:c8:f1:65:0c:8d:03:b5:bf:eb:c7:8a: 9e:73:09:16:6c:cd:12:63:7f:f3:1f:c1:71:7c:d7:25:8f:40: 0f:a9:23:89:7e:e6:f3:e5:c1:38:5c:a8:3d:88:4f:a9:6a:1c: fb:de:0c:e3:15:be:f5:e4:db:ac:9e:67:3a:7f:2f:76:53:c3: 33:55:f6:0e:9c:7d:a6:bd:5f:e9:37:58:13:37:fb:b9:f0:aa: 71:02:99:d2:7a:1a:b8:3b:c1:8b:35:99:21:10:9e:cf:c4:3c: 73:5b:3c:46:18:bb:39:9a:f8:f7:3f:86:5e:1d:5a:03:82:e3: e8:9e:47:5d:a7:d4:cf:e9:a1:96:72:ec:54:fe:79:39:63:c8: 15:fb:4e:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFQzQxMTAvBgNVBAUTKDUzMjQwNjVBNjEzRDJEMTA3ODE3OUM2MjE2MzcxQ0ND NkE3NzUwN0EwHhcNMjQxMTIxMDQ0NjQxWhcNMjQxMTI4MDQ0NjQxWjAYMRYwFAYD VQQDEw02NzNlYmIzMS1iOGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvXawpVVo9EAuy4KgBf9GpJgX3rVsrIwVgl+tmTx+TS2Uyt0SUsm5vjV10K5 U+zt+ykIug7638fSHMyiW+xlSbQ/xhPIdyeYUmUtfX3LdmnHiEZe1P3nNOzI7Oms +uMjBJ/CmZArKwe6p9DlqoNY8GCBBy/azRFdxnxxPcOTkF4TGQA+S+Kj6fxOueAt Wee1OdkZ+iU+r+UKdmubhc1PGkxNg1psrdUDOm3xvjg+quValkXiZlrHbZLFH7uT dTqrRzo+fPGCZwBzIM3IrixFV2QTbFwFsFE8XY4FaZmiVslU3h+eXnueNCLaP5P7 WeLFPE1dnX7GjC8klBrpmwHYqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKpxx5t 60FqtbREjINCDCBivomDMB8GA1UdIwQYMBaAFFMkBlphPS0QeBecYhY3HMxqd1B6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEVDNC80NTA2NDc5MEU1 QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxSQjRGNXhpRmpjY3pHcDNV SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5UUdXbUU5TFJCNEY1eGlGamNjekdwM1VIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEVDNC80NTA2NDc5MEU1QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxS QjRGNXhpRmpjY3pHcDNVSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIYkzwZumGX3SPgLE7kTNZH2v6cSOws9BVJ7rzG2t2agAmYoKnC76b I8PIHnn1f+lb5136bVxkcqSgagatP7RCjuucHO4WBf2IiRvwGd8Sd8PTIvOTEvzJ xxD+YLDOibyr4nP1VYkmq2MXSYKDeozXeRDAyPFlDI0Dtb/rx4qecwkWbM0SY3/z H8FxfNclj0APqSOJfubz5cE4XKg9iE+pahz73gzjFb715Nusnmc6fy92U8MzVfYO nH2mvV/pN1gTN/u58KpxApnSehq4O8GLNZkhEJ7PxDxzWzxGGLs5mvj3P4ZeHVoD guPonkddp9TP6aGWcuxU/nk5Y8gV+072 -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:05 2024 by rpki-client on console-ams.rpki-client.org