$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: zUXNYK7fN/ot+n2Gxj86LQcsenukYqABH/u2RsdHq9I= Subject key identifier: 83:1C:90:BD:54:CE:0C:29:1C:41:15:32:1A:73:D6:89:77:70:8A:70 Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 0174 Signing time: Sat 23 Nov 2024 02:09:26 +0000 Manifest this update: Sat 23 Nov 2024 02:09:26 +0000 Manifest next update: Sat 30 Nov 2024 02:09:26 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: um4NdWZ5PCbPHE3sOnGktHwOIOF3pPTvaoAzGWgcToE=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: q95Nnc69ywewB1KRViDRqgU8dhWu4ixX7gxtbwYMk2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Nov 23 02:09:26 2024 GMT Not After : Nov 30 02:09:26 2024 GMT Subject: CN=67413956-2a21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e6:71:04:23:4f:ef:5d:f6:12:22:1c:74:c1: 16:f1:c2:c3:fd:a3:6b:b7:5e:9b:5f:90:fb:5c:26: c4:00:ea:4a:1d:b4:77:22:03:25:cb:25:c2:29:1b: 19:9d:a2:7d:75:78:05:e8:3c:d4:45:63:45:44:33: 60:68:1f:30:44:d1:ac:f7:7c:ce:91:3d:95:0c:00: 4e:8b:ba:fc:b3:25:46:df:12:02:10:69:63:33:05: 38:0a:43:d6:c8:7f:ed:c9:7e:a3:91:4d:f7:d7:ac: e4:53:d6:2a:db:92:f0:5a:6f:3b:fe:6b:59:54:f7: c3:b7:43:63:b6:31:26:66:a8:fe:d2:4a:40:66:da: df:46:62:4a:92:b2:2d:30:a2:a6:fd:13:a6:7b:98: 68:dc:2d:1a:0c:24:f5:d8:33:67:7c:2c:59:7a:e8: 76:4c:9c:b9:7d:77:6f:9e:21:29:fa:7d:2e:46:b2: a1:55:8f:0d:8f:1d:5b:b0:82:80:4d:f1:9f:12:20: f5:34:f9:f2:0d:c8:dd:09:7f:78:f5:1d:d1:02:23: cb:5d:4d:a8:bf:69:b6:f3:be:3d:8d:d4:2d:1f:5c: bd:38:cc:61:13:ad:ee:9a:4a:fb:4b:80:f6:f6:7c: e7:5f:8f:b0:9b:cd:e0:50:b8:02:79:6c:b4:ad:c2: 9d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:1C:90:BD:54:CE:0C:29:1C:41:15:32:1A:73:D6:89:77:70:8A:70 X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:5d:a8:4d:ae:1b:6d:62:08:ed:29:e1:e4:61:f6:9f:4d:57: 11:6d:e6:cf:6a:5e:2c:ad:28:4d:f2:64:18:94:3a:e1:68:14: e2:0a:f4:87:cf:38:6f:00:67:59:fd:67:0b:ab:40:3e:1d:d3: aa:29:fc:9e:71:1e:c8:37:22:65:24:1e:a4:92:6d:a3:ee:49: 6e:93:0a:be:22:11:d9:0b:6a:ed:28:9f:23:a6:25:de:dc:30: 4e:fd:94:8b:ff:ac:9a:c6:83:e3:f2:7e:bf:d0:46:c6:3a:b1: a0:48:a6:f5:8a:e6:66:42:7e:3e:12:5c:44:b4:8f:67:bc:15: b8:c0:13:19:9a:60:20:3a:9a:1c:e5:36:96:7c:57:5b:c0:3b: fa:48:c9:e1:2a:00:8f:d5:42:3f:b9:d8:a1:1f:dd:08:31:b4: 64:60:11:32:81:2e:9a:d7:4f:e7:db:6d:a3:5a:bb:c5:09:2e: b1:02:e9:cc:7a:d0:67:89:2b:35:ae:8e:58:b2:4d:45:8f:52: 10:e0:82:eb:84:18:4f:4a:2f:0f:73:39:15:c1:69:88:79:89: 6d:5f:8b:7a:a9:29:1a:4c:42:8b:eb:d9:d8:53:fb:8e:cc:de: 3a:29:bf:84:40:42:f2:e6:93:1e:f5:a2:7c:94:22:75:f2:3d: 1e:b7:02:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjQxMTIzMDIwOTI2WhcNMjQxMTMwMDIwOTI2WjAYMRYwFAYD VQQDEw02NzQxMzk1Ni0yYTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouZxBCNP7132EiIcdMEW8cLD/aNrt16bX5D7XCbEAOpKHbR3IgMlyyXCKRsZ naJ9dXgF6DzURWNFRDNgaB8wRNGs93zOkT2VDABOi7r8syVG3xICEGljMwU4CkPW yH/tyX6jkU3316zkU9Yq25LwWm87/mtZVPfDt0NjtjEmZqj+0kpAZtrfRmJKkrIt MKKm/ROme5ho3C0aDCT12DNnfCxZeuh2TJy5fXdvniEp+n0uRrKhVY8Njx1bsIKA TfGfEiD1NPnyDcjdCX949R3RAiPLXU2ov2m28749jdQtH1y9OMxhE63umkr7S4D2 9nznX4+wm83gULgCeWy0rcKdkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMckL1U zgwpHEEVMhpz1ol3cIpwMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtXahNrhttYgjtKeHkYfafTVcRbebPal4srShN8mQYlDrhaBTiCvSH zzhvAGdZ/WcLq0A+HdOqKfyecR7INyJlJB6kkm2j7klukwq+IhHZC2rtKJ8jpiXe 3DBO/ZSL/6yaxoPj8n6/0EbGOrGgSKb1iuZmQn4+ElxEtI9nvBW4wBMZmmAgOpoc 5TaWfFdbwDv6SMnhKgCP1UI/udihH90IMbRkYBEygS6a10/n222jWrvFCS6xAunM etBniSs1ro5Ysk1Fj1IQ4ILrhBhPSi8PczkVwWmIeYltX4t6qSkaTEKL69nYU/uO zN46Kb+EQELy5pMe9aJ8lCJ18j0etwIY -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:43 2024 by rpki-client on console-ams.rpki-client.org