$ rpki-client -vvf rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft File: UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft (raw, json) Hash identifier: cQ83DMCHB/MYywW9nDer2+FPz2Y86TJfjR8bioZ//4c= Subject key identifier: BA:F6:9E:DF:91:99:90:EC:64:93:16:F2:65:AA:39:10:B6:02:85:53 Authority key identifier: 53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF Certificate issuer: /CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Certificate serial: 2015 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft Manifest number: 2002 Signing time: Fri 22 Nov 2024 15:59:38 +0000 Manifest this update: Fri 22 Nov 2024 15:59:37 +0000 Manifest next update: Fri 29 Nov 2024 15:59:37 +0000 Files and hashes: 1: UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl (hash: alugI2DUPN8UKJT/M8SGZioXtZCkyjILrxhQ40GoQPA=) 2: F79267D61E4011E6945BEB0DC4F9AE02.roa (hash: XR4NggtP2aJ+gorFn/k8FfyvP2VT6ewFIceWNa+UHwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8213 (0x2015) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Validity Not Before: Nov 22 15:59:37 2024 GMT Not After : Nov 29 15:59:37 2024 GMT Subject: CN=6740aa69-2642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b1:ab:5f:d6:09:63:ce:91:a4:4e:a7:79:67: e4:a1:ba:a0:ba:f3:17:c0:d3:63:5f:0d:50:fe:9f: 0e:f0:d9:a3:08:0f:ac:f4:a0:0f:65:50:67:b9:00: d7:97:8d:ec:bb:fb:8a:ee:bc:4b:61:90:c2:76:85: 7d:5e:6f:ed:d5:a2:06:62:26:af:a4:96:3c:39:42: 80:a4:a7:80:2f:a9:48:e2:0c:1a:e5:79:69:bf:27: 1d:5a:c8:ef:52:a8:d8:da:a2:00:cd:6b:f9:da:82: 1b:69:0a:4d:0d:65:fc:46:14:28:5c:08:fa:e9:36: a2:68:44:1f:eb:b1:1d:05:d3:0d:c6:c6:c0:19:09: d8:08:27:38:25:1f:c8:35:e2:58:53:94:7f:3c:5b: 92:82:1c:1a:bf:45:38:fd:ad:7b:ae:63:a6:59:17: da:cd:e1:fd:0b:2c:a7:be:06:67:6b:dc:b3:57:2e: c5:58:33:f1:c8:94:00:2f:c8:4e:11:08:f7:9d:32: 1e:88:b2:e6:cd:98:84:54:af:40:b6:f8:39:bb:c2: be:97:bc:ac:0f:22:d6:dc:dd:8a:cb:5f:b0:bb:2e: e5:75:43:0d:f0:04:93:98:11:33:18:e0:33:b1:8a: cf:fe:d8:a8:39:f9:d4:fe:2b:79:36:2a:80:49:e0: 32:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F6:9E:DF:91:99:90:EC:64:93:16:F2:65:AA:39:10:B6:02:85:53 X509v3 Authority Key Identifier: keyid:53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:a0:91:48:56:0d:69:87:92:8e:6f:12:16:23:a2:6e:0a:16: e4:3f:e8:55:44:c2:f0:d0:3e:ce:e0:8d:32:eb:d0:55:31:fe: 37:17:6d:a1:4f:23:b3:ee:4e:b1:f5:c4:1a:e7:55:74:ed:b3: 09:47:ed:01:f7:16:9c:f8:a6:31:97:70:1a:11:58:6a:1a:2e: 80:e5:a6:0e:21:38:23:f3:23:2b:cc:19:fd:e8:d7:b1:04:8c: 51:db:89:e4:81:2a:cd:a3:ed:8f:63:c3:68:6e:ca:3a:f3:8c: 71:a5:48:f7:96:2a:2f:a0:90:f0:79:7f:a0:9f:fa:7f:dc:3b: f2:28:d5:93:68:fc:4d:3a:a2:4f:c2:c2:2b:ef:3b:ba:9a:5c: fb:74:57:38:f5:89:91:ad:da:37:9b:6e:f2:24:24:43:78:44: 0a:67:45:75:45:da:99:9e:c3:b3:69:86:82:34:7b:c3:be:96: e5:7c:8c:db:5e:f8:e9:81:73:f6:0a:2e:25:64:25:d7:0f:5a: 31:ca:9a:71:f2:88:3b:f3:ea:a3:98:20:d5:c2:ef:ec:aa:d3: 28:e6:63:e4:c1:cc:a7:0b:5f:5e:15:b8:33:a9:e4:2c:50:b7: 81:22:6d:bc:3b:50:71:c6:3b:3e:7c:32:6b:d0:37:d2:79:d4: f7:2a:50:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk5NjcxMTAvBgNVBAUTKDUzMzBFRUVFQjBEMEE5NTM1RkFDODUwNUU3MzU4NDNB RjZDRTYwQUYwHhcNMjQxMTIyMTU1OTM3WhcNMjQxMTI5MTU1OTM3WjAYMRYwFAYD VQQDEw02NzQwYWE2OS0yNjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLGrX9YJY86RpE6neWfkobqguvMXwNNjXw1Q/p8O8NmjCA+s9KAPZVBnuQDX l43su/uK7rxLYZDCdoV9Xm/t1aIGYiavpJY8OUKApKeAL6lI4gwa5XlpvycdWsjv UqjY2qIAzWv52oIbaQpNDWX8RhQoXAj66TaiaEQf67EdBdMNxsbAGQnYCCc4JR/I NeJYU5R/PFuSghwav0U4/a17rmOmWRfazeH9CyynvgZna9yzVy7FWDPxyJQAL8hO EQj3nTIeiLLmzZiEVK9Atvg5u8K+l7ysDyLW3N2Ky1+wuy7ldUMN8ASTmBEzGOAz sYrP/tioOfnU/it5NiqASeAyGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLr2nt+R mZDsZJMW8mWqORC2AoVTMB8GA1UdIwQYMBaAFFMw7u6w0KlTX6yFBec1hDr2zmCv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTk2Ny8wQkJGMjU3ODE1 QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFWTmZySVVGNXpXRU92Yk9Z SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6RHU3ckRRcVZOZnJJVUY1eldFT3ZiT1lLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTk2Ny8wQkJGMjU3ODE1QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFW TmZySVVGNXpXRU92Yk9ZSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2oJFIVg1ph5KObxIWI6JuChbkP+hVRMLw0D7O4I0y69BVMf43F22h TyOz7k6x9cQa51V07bMJR+0B9xac+KYxl3AaEVhqGi6A5aYOITgj8yMrzBn96Nex BIxR24nkgSrNo+2PY8Nobso684xxpUj3liovoJDweX+gn/p/3DvyKNWTaPxNOqJP wsIr7zu6mlz7dFc49YmRrdo3m27yJCRDeEQKZ0V1RdqZnsOzaYaCNHvDvpblfIzb XvjpgXP2Ci4lZCXXD1oxyppx8og78+qjmCDVwu/sqtMo5mPkwcynC19eFbgzqeQs ULeBIm28O1Bxxjs+fDJr0DfSedT3KlBc -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:46 2024 by rpki-client on console-fra.rpki-client.org