$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft File: U3pyvmM5N4xMTSlwK-12dczMFGo.mft (raw, json) Hash identifier: 1WQW1u/PVcIE5i+oWH53tlceNzqcHU5sEIZFaW9fnq4= Subject key identifier: 5E:E5:20:6E:BB:34:FE:7B:CD:D2:1C:95:29:C4:BD:0B:B2:BF:53:DE Authority key identifier: 53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A Certificate issuer: /CN=A916EB98/serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Certificate serial: 0B24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft Manifest number: 0B1E Signing time: Fri 22 Nov 2024 19:00:15 +0000 Manifest this update: Fri 22 Nov 2024 19:00:14 +0000 Manifest next update: Fri 29 Nov 2024 19:00:14 +0000 Files and hashes: 1: U3pyvmM5N4xMTSlwK-12dczMFGo.crl (hash: /H4Zu93rp99XSHtX7uhll9sIkjrHnlYcRKbYvfXK1O0=) 2: DD716A222ACC11EAAB36B444C4F9AE02.roa (hash: Az6UxcKQ+xRSF1uMrnXEes28AnSu+Bs39OfvIf+XZd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2852 (0xb24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB98/serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Validity Not Before: Nov 22 19:00:14 2024 GMT Not After : Nov 29 19:00:14 2024 GMT Subject: CN=6740d4bf-cef1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f0:96:e3:2b:ca:b7:88:e1:4c:fa:2f:44:60: d5:94:13:5f:8a:a8:c2:4d:5d:87:41:41:44:b0:fa: 8d:30:12:15:84:f4:ff:60:fb:d7:c0:ca:4a:82:4e: 3e:a1:0b:10:a5:35:ea:38:41:9e:0b:84:da:3e:8b: e6:a3:d7:e9:04:f6:13:0d:5a:95:55:74:25:9a:dd: dd:71:7a:33:e5:fa:45:c7:62:5c:71:e9:5a:f9:c7: c3:ef:9f:7a:4f:19:18:cd:c0:5e:0c:ee:18:59:61: 5b:94:e4:97:d6:31:8d:8f:dc:8c:59:0e:d4:9f:80: 08:6d:e4:b9:48:89:46:7c:98:84:43:71:a0:ca:19: 89:5c:dc:3c:c3:f3:4d:71:47:93:d6:93:9d:b9:cb: 28:5e:4c:77:71:db:19:a2:82:4e:96:7c:b8:15:19: 5a:da:f9:43:9a:30:01:85:56:40:65:2f:b0:3a:f1: d0:85:60:cf:82:d9:57:dc:c4:da:4d:5b:6c:6c:4f: 2f:bd:b2:4f:07:bb:dc:22:b4:9e:df:0d:14:84:d6: f6:0a:1c:3b:96:58:57:5f:9a:99:72:12:27:f6:32: b0:11:ea:d1:21:9e:20:00:93:71:cc:86:4f:90:19: 3b:8a:c4:cd:08:d2:33:33:f4:ca:38:7a:09:b9:31: 25:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E5:20:6E:BB:34:FE:7B:CD:D2:1C:95:29:C4:BD:0B:B2:BF:53:DE X509v3 Authority Key Identifier: keyid:53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:89:07:86:8f:38:05:59:f5:78:f6:fb:55:36:26:2e:af:e0: c9:6e:fb:3b:f9:19:53:68:58:b4:14:e5:c2:98:cd:c6:38:7d: ef:a4:da:1d:8d:9b:66:01:79:44:1a:97:d9:69:7a:0a:a1:1d: 03:21:f1:56:0d:27:aa:dc:f4:25:44:91:88:61:0a:d8:03:3f: a3:e2:17:b8:86:d9:99:60:18:4c:e5:57:22:e1:4b:76:0f:72: c2:32:b4:80:0b:18:b5:60:f9:59:bb:a7:b8:aa:9b:d2:d4:6c: 8e:97:82:09:91:dd:60:f5:19:17:21:42:4d:75:37:1d:10:0b: ed:26:f6:99:e7:3c:cd:4f:67:3d:3d:97:9e:2a:c8:4f:1d:de: f5:84:00:95:2c:68:2c:6a:81:33:f1:8e:ee:45:c1:54:f9:05: c7:05:a2:76:c2:a4:3a:b1:20:76:4a:92:47:c9:0f:74:72:4d: 66:16:e8:cd:90:9b:ff:ed:28:62:19:9d:bd:04:70:38:fa:4a: 52:a5:8c:4b:88:09:b0:55:79:60:42:92:6c:7d:02:41:91:c7: 99:b7:cf:bd:41:88:39:64:2c:77:ce:26:26:1f:3e:4d:9b:32: 4a:a3:ee:26:b1:3a:38:29:95:fb:f0:e1:59:f5:84:85:3b:42: db:53:e9:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTgxMTAvBgNVBAUTKDUzN0E3MkJFNjMzOTM3OEM0QzREMjk3MDJCRUQ3Njc1 Q0NDQzE0NkEwHhcNMjQxMTIyMTkwMDE0WhcNMjQxMTI5MTkwMDE0WjAYMRYwFAYD VQQDEw02NzQwZDRiZi1jZWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPCW4yvKt4jhTPovRGDVlBNfiqjCTV2HQUFEsPqNMBIVhPT/YPvXwMpKgk4+ oQsQpTXqOEGeC4TaPovmo9fpBPYTDVqVVXQlmt3dcXoz5fpFx2Jccela+cfD7596 TxkYzcBeDO4YWWFblOSX1jGNj9yMWQ7Un4AIbeS5SIlGfJiEQ3GgyhmJXNw8w/NN cUeT1pOducsoXkx3cdsZooJOlny4FRla2vlDmjABhVZAZS+wOvHQhWDPgtlX3MTa TVtsbE8vvbJPB7vcIrSe3w0UhNb2Chw7llhXX5qZchIn9jKwEerRIZ4gAJNxzIZP kBk7isTNCNIzM/TKOHoJuTEliwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7lIG67 NP57zdIclSnEvQuyv1PeMB8GA1UdIwQYMBaAFFN6cr5jOTeMTE0pcCvtdnXMzBRq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5OC9CMEZDMzVEQzJB Q0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40eE1UU2x3Sy0xMmRjek1G R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzcHl2bU01TjR4TVRTbHdLLTEyZGN6TUZHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI5OC9CMEZDMzVEQzJBQ0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40 eE1UU2x3Sy0xMmRjek1GR28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeiQeGjzgFWfV49vtVNiYur+DJbvs7+RlTaFi0FOXCmM3GOH3vpNod jZtmAXlEGpfZaXoKoR0DIfFWDSeq3PQlRJGIYQrYAz+j4he4htmZYBhM5Vci4Ut2 D3LCMrSACxi1YPlZu6e4qpvS1GyOl4IJkd1g9RkXIUJNdTcdEAvtJvaZ5zzNT2c9 PZeeKshPHd71hACVLGgsaoEz8Y7uRcFU+QXHBaJ2wqQ6sSB2SpJHyQ90ck1mFujN kJv/7ShiGZ29BHA4+kpSpYxLiAmwVXlgQpJsfQJBkceZt8+9QYg5ZCx3ziYmHz5N mzJKo+4msTo4KZX78OFZ9YSFO0LbU+nA -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org