$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft File: UN4cYHM-ori3boQDYJGOHyXEbkM.mft (raw, json) Hash identifier: sKtHN2o5NO6cSIBybsFF1uOEGZTRIjZO7GfcMYpazJ8= Subject key identifier: 03:E2:48:A2:6E:F4:BB:64:79:55:B1:57:39:B3:5C:FF:E7:40:B2:8C Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0B86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft Manifest number: 0B77 Signing time: Fri 22 Nov 2024 18:50:00 +0000 Manifest this update: Fri 22 Nov 2024 18:50:00 +0000 Manifest next update: Fri 29 Nov 2024 18:50:00 +0000 Files and hashes: 1: UN4cYHM-ori3boQDYJGOHyXEbkM.crl (hash: 5qpwwjxHnHg6/FDthuv4CXyHBjY+oRRdNPDyeP20dbQ=) 2: 46C5452E0DD711EF85707821C4F9AE02.roa (hash: 6P120RTOYh1dh3p0j/PnZa8QUh9Ahz+uTKm0Bzmq0rM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2950 (0xb86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: Nov 22 18:50:00 2024 GMT Not After : Nov 29 18:50:00 2024 GMT Subject: CN=6740d258-9afe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:6a:e6:c2:6e:21:15:a7:b8:18:11:57:3c:8c: 1c:97:c3:d4:a1:73:37:2f:aa:e6:b5:cf:3d:ec:59: ec:fe:cd:09:37:7b:ac:6b:40:ed:1c:87:e5:42:e3: a8:31:9b:63:75:56:77:32:c4:90:c4:2b:54:80:a2: 49:b5:a0:42:64:ad:dc:92:57:27:2f:70:ae:7e:36: 10:48:04:b1:ff:25:d5:40:89:f2:14:12:60:9b:df: 92:52:58:7f:7d:0a:5b:01:6d:01:f1:08:da:0d:6c: 9f:29:9c:d6:0a:7a:d8:d6:75:1b:85:45:5e:80:53: 5c:fe:f5:5c:d8:fd:0e:96:19:bf:43:b6:40:bc:a7: 3e:a7:db:df:95:98:9a:89:e7:d2:06:ce:ac:8c:7b: 27:03:e5:96:75:0d:5f:63:7c:3a:e3:f8:a4:ba:12: d1:15:6e:69:4e:1f:78:73:6d:88:be:9a:d3:39:e7: e2:13:f6:a8:e4:98:63:16:ea:69:16:bc:a0:86:23: fb:cb:0f:57:43:7e:92:f6:03:17:ee:73:b5:05:b0: b7:9b:e8:b2:78:cc:97:7c:3f:95:5a:e6:5b:b1:fe: 80:c8:71:a6:ba:cc:b4:fb:cb:ea:fc:4a:db:2a:d1: 89:e7:4e:5d:5a:3c:58:14:37:1e:25:e0:82:97:bb: 4f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E2:48:A2:6E:F4:BB:64:79:55:B1:57:39:B3:5C:FF:E7:40:B2:8C X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:17:d8:32:4e:6c:46:23:88:89:4a:4a:c8:91:b4:ab:0f:90: 99:9f:08:3c:29:14:d6:4a:82:b9:1f:ce:e0:77:21:12:59:65: 05:f0:74:a9:66:8d:e3:0a:be:4e:56:28:cb:8e:59:36:0a:02: 77:26:d6:c1:53:ce:9d:28:8a:6e:fa:d5:0b:7e:e3:7f:02:4a: 2b:a1:f7:46:48:df:32:dd:35:f6:ee:6c:2f:f4:d8:1b:27:51: e8:ed:5f:53:07:0a:08:2b:de:85:ea:25:9c:82:da:8e:e4:95: 4b:a1:96:d5:eb:16:7c:77:7b:08:35:86:05:72:02:51:cd:a8: 53:7e:d3:66:0e:49:5d:9c:22:26:68:99:93:5d:f1:6c:bb:16: 2e:bc:c7:57:59:9a:54:e2:72:ad:c0:35:b2:d8:98:1c:cd:52: ec:4b:a0:31:c1:5e:1b:0f:bb:30:74:72:dd:c4:d1:4a:ba:63: a5:e4:4a:d6:fa:7d:ef:f3:07:18:05:56:78:39:1d:22:4b:2a: ff:95:f7:60:7d:4c:1f:d0:8e:d6:8a:c3:8b:06:1a:d5:e6:4e: 66:15:47:58:f1:97:9d:49:45:71:7b:fb:65:32:cb:ea:8c:72: 1d:f0:b4:9b:5c:d8:a5:00:2b:0f:e8:13:8a:5d:74:24:6b:a7: 75:62:1e:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjQxMTIyMTg1MDAwWhcNMjQxMTI5MTg1MDAwWjAYMRYwFAYD VQQDEw02NzQwZDI1OC05YWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA82rmwm4hFae4GBFXPIwcl8PUoXM3L6rmtc897Fns/s0JN3usa0DtHIflQuOo MZtjdVZ3MsSQxCtUgKJJtaBCZK3cklcnL3CufjYQSASx/yXVQInyFBJgm9+SUlh/ fQpbAW0B8QjaDWyfKZzWCnrY1nUbhUVegFNc/vVc2P0Olhm/Q7ZAvKc+p9vflZia iefSBs6sjHsnA+WWdQ1fY3w64/ikuhLRFW5pTh94c22IvprTOefiE/ao5JhjFupp FryghiP7yw9XQ36S9gMX7nO1BbC3m+iyeMyXfD+VWuZbsf6AyHGmusy0+8vq/Erb KtGJ505dWjxYFDceJeCCl7tPGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPiSKJu 9LtkeVWxVzmzXP/nQLKMMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzAxRS83ODVEN0VEMjFDMDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9y aTNib1FEWUpHT0h5WEVia00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKF9gyTmxGI4iJSkrIkbSrD5CZnwg8KRTWSoK5H87gdyESWWUF8HSp Zo3jCr5OVijLjlk2CgJ3JtbBU86dKIpu+tULfuN/AkorofdGSN8y3TX27mwv9Ngb J1Ho7V9TBwoIK96F6iWcgtqO5JVLoZbV6xZ8d3sINYYFcgJRzahTftNmDkldnCIm aJmTXfFsuxYuvMdXWZpU4nKtwDWy2JgczVLsS6AxwV4bD7swdHLdxNFKumOl5ErW +n3v8wcYBVZ4OR0iSyr/lfdgfUwf0I7WisOLBhrV5k5mFUdY8ZedSUVxe/tlMsvq jHId8LSbXNilACsP6BOKXXQka6d1Yh55 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:04 2024 by rpki-client on console-ams.rpki-client.org