$ rpki-client -vvf rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft File: uHLzTVUlH6dw7MOT0mcSED1VBzc.mft (raw, json) Hash identifier: dWHNKjqWPwJ/vkubvnL3SZNxp54g303l8O9yRNim2BA= Subject key identifier: FF:4F:E8:C3:D7:46:7C:B6:FB:C8:9F:66:C3:6E:AD:AD:1F:92:93:38 Authority key identifier: B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37 Certificate issuer: /CN=A917C606/serialNumber=B872F34D55251FA770ECC393D26712103D550737 Certificate serial: 036B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft Manifest number: 0360 Signing time: Sat 23 Nov 2024 00:32:21 +0000 Manifest this update: Sat 23 Nov 2024 00:32:20 +0000 Manifest next update: Sat 30 Nov 2024 00:32:20 +0000 Files and hashes: 1: uHLzTVUlH6dw7MOT0mcSED1VBzc.crl (hash: 7Cl3pDVm3VtM26T9lhh2AEztILc9s0JT0Es5SH1j14g=) 2: 945375FAF69511EC90A47215C4F9AE02.roa (hash: 93z4oqW7DQ1yUII6DWRvY7Xrtn4iF7Cp5BMrU5CKBhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.crl rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C606/serialNumber=B872F34D55251FA770ECC393D26712103D550737 Validity Not Before: Nov 23 00:32:20 2024 GMT Not After : Nov 30 00:32:20 2024 GMT Subject: CN=67412294-9316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b9:80:97:2f:14:91:95:01:c8:5d:a4:66:2c: 63:d1:bf:ca:83:89:dd:3b:1d:56:99:8f:5b:a7:59: fc:31:25:11:7a:99:98:a1:07:00:6d:d4:5d:e0:77: 47:73:1c:21:f9:a8:e2:5c:e6:c5:2f:b3:1a:86:43: 81:95:49:3f:f1:3a:51:d4:18:f2:4f:4a:ce:46:99: 85:f1:ca:9c:d9:7a:88:5d:ad:de:6e:aa:1c:61:a9: 51:30:cd:91:69:bf:75:ef:61:e0:f6:ed:a8:de:a8: cc:b1:9d:78:f3:e4:ce:ab:06:53:b7:65:6f:78:43: 60:fa:fa:d1:38:15:e3:ac:66:ce:95:61:3e:0b:8d: 0f:ae:e4:5b:00:56:db:01:19:e9:62:16:41:de:5e: c5:82:7d:39:fe:b5:3a:d3:06:4d:94:5c:73:fe:1a: ff:41:e1:09:96:bf:22:6f:b5:36:1e:c2:f4:5e:2c: 39:30:dc:20:32:ce:22:19:28:90:bc:80:06:02:d8: a6:95:56:64:f2:4c:19:7a:e5:91:fb:7b:68:9c:05: 01:76:4f:bd:df:08:6c:2e:02:58:c9:ae:5a:92:58: 81:54:b1:7c:0c:57:82:11:cc:05:a6:11:3f:3c:70: dc:17:b1:c9:42:12:15:51:b8:2b:f5:ab:10:1e:da: a4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:4F:E8:C3:D7:46:7C:B6:FB:C8:9F:66:C3:6E:AD:AD:1F:92:93:38 X509v3 Authority Key Identifier: keyid:B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:7f:18:31:55:da:61:67:31:4e:69:93:39:37:c6:fb:ba:9b: 91:77:ef:bf:52:ef:9f:1d:9d:32:ea:8e:a6:86:54:c7:85:cf: b9:77:bb:00:62:b6:25:d4:a7:23:2f:92:eb:3a:6c:82:db:87: a1:99:ed:7d:a9:6b:56:26:d7:32:20:f3:90:62:56:5b:6c:c3: 07:5e:d0:1b:e7:59:94:18:97:62:cc:91:73:9d:08:3e:e8:3b: 31:54:c9:60:7d:23:6f:97:0e:d8:18:00:39:39:14:76:dc:8c: b9:ed:cf:5e:a6:2c:06:57:da:29:e4:ca:88:c3:f2:81:9b:67: 82:01:e5:d5:7d:03:3b:dc:3c:d9:35:78:96:01:96:1e:72:d0: 1a:95:7d:44:e5:5d:53:bf:f8:9b:89:fb:f5:01:4a:6b:7d:c1: 2c:18:b0:10:56:2d:34:03:f3:7e:9e:46:eb:0a:87:b3:d2:2a: 2e:38:7d:24:61:33:22:49:09:3f:2f:5e:cb:f4:c1:46:f5:5e: d2:23:51:d5:f5:84:ee:6e:2e:9c:fd:e4:5e:16:d9:8f:ac:4b: c3:d7:27:9f:bf:64:70:73:51:19:9d:08:be:fc:70:9f:16:3d: 95:05:53:67:5d:7f:71:fa:c3:e2:9b:d8:44:7c:70:93:0c:94: d6:cf:55:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2MDYxMTAvBgNVBAUTKEI4NzJGMzRENTUyNTFGQTc3MEVDQzM5M0QyNjcxMjEw M0Q1NTA3MzcwHhcNMjQxMTIzMDAzMjIwWhcNMjQxMTMwMDAzMjIwWjAYMRYwFAYD VQQDEw02NzQxMjI5NC05MzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7mAly8UkZUByF2kZixj0b/Kg4ndOx1WmY9bp1n8MSURepmYoQcAbdRd4HdH cxwh+ajiXObFL7MahkOBlUk/8TpR1BjyT0rORpmF8cqc2XqIXa3ebqocYalRMM2R ab9172Hg9u2o3qjMsZ148+TOqwZTt2VveENg+vrROBXjrGbOlWE+C40PruRbAFbb ARnpYhZB3l7Fgn05/rU60wZNlFxz/hr/QeEJlr8ib7U2HsL0Xiw5MNwgMs4iGSiQ vIAGAtimlVZk8kwZeuWR+3tonAUBdk+93whsLgJYya5akliBVLF8DFeCEcwFphE/ PHDcF7HJQhIVUbgr9asQHtqkOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9P6MPX Rny2+8ifZsNura0fkpM4MB8GA1UdIwQYMBaAFLhy801VJR+ncOzDk9JnEhA9VQc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzYwNi83QzhCMTM3QThG QzkxMUVDODE1NURCNjFDNEY5QUUwMi91SEx6VFZVbEg2ZHc3TU9UMG1jU0VEMVZC emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VITHpUVlVsSDZkdzdNT1QwbWNTRUQxVkJ6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzYwNi83QzhCMTM3QThGQzkxMUVDODE1NURCNjFDNEY5QUUwMi91SEx6VFZVbEg2 ZHc3TU9UMG1jU0VEMVZCemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtfxgxVdphZzFOaZM5N8b7upuRd++/Uu+fHZ0y6o6mhlTHhc+5d7sA YrYl1KcjL5LrOmyC24ehme19qWtWJtcyIPOQYlZbbMMHXtAb51mUGJdizJFznQg+ 6DsxVMlgfSNvlw7YGAA5ORR23Iy57c9epiwGV9op5MqIw/KBm2eCAeXVfQM73DzZ NXiWAZYectAalX1E5V1Tv/ibifv1AUprfcEsGLAQVi00A/N+nkbrCoez0iouOH0k YTMiSQk/L17L9MFG9V7SI1HV9YTubi6c/eReFtmPrEvD1yefv2Rwc1EZnQi+/HCf Fj2VBVNnXX9x+sPim9hEfHCTDJTWz1Uh -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:40 2024 by rpki-client on console-fra.rpki-client.org