$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft File: bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json) Hash identifier: PhnoeQAtwCAuXfe5kKCc9uXUeL1DoChZ0ZgkUU3nfFE= Subject key identifier: 4F:F7:59:E5:7A:8B:B6:FD:5C:67:4E:67:4A:F9:63:C0:01:50:1A:11 Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 Certificate issuer: /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft Manifest number: 0227 Signing time: Sat 23 Nov 2024 01:26:21 +0000 Manifest this update: Sat 23 Nov 2024 01:26:21 +0000 Manifest next update: Sat 30 Nov 2024 01:26:21 +0000 Files and hashes: 1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: uUpJtx2a9jOm1uBEi0Gzi55lS4tUliltKn1Cp1EO4Fc=) 2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: LYlnmY38WC+/5pBo6/8yuliMtbU1c9X35OeWacBJJcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Validity Not Before: Nov 23 01:26:21 2024 GMT Not After : Nov 30 01:26:21 2024 GMT Subject: CN=67412f3d-000e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d8:8a:f8:ef:d8:9e:60:59:24:c4:93:11:94: 9e:8d:e8:94:fa:e9:e9:40:9f:7a:6b:7f:dc:34:c0: ab:87:b2:5b:b2:e3:1e:a8:18:df:73:0a:43:5f:ee: 6d:3e:ad:0b:0e:ec:54:b5:7f:e5:16:e0:d0:4c:34: 50:c8:47:26:86:b8:65:41:04:69:88:2a:c2:21:44: d5:53:29:d7:95:22:96:d1:dc:a2:79:62:e5:37:00: 70:c2:50:dc:6e:d8:5e:94:3a:a2:50:76:30:27:9f: 55:11:12:69:6e:cd:6b:69:30:d8:fb:d2:3b:42:6a: 90:f4:47:81:0b:7b:51:39:4b:6a:33:f3:49:a2:9a: 8c:c1:dc:78:ec:e3:66:c6:2f:e7:c7:9e:a8:92:95: bb:90:99:84:51:25:1b:d1:b7:38:b4:9c:b6:5f:82: f1:2c:68:f5:1e:ac:2d:35:24:18:ef:93:95:08:36: e1:e7:5c:77:7b:c5:0e:1f:fb:68:7b:b1:a3:ef:c4: 45:5e:98:89:24:64:b1:96:90:50:fa:83:71:3f:a6: e5:bf:51:a9:2f:6b:9a:c0:c3:31:52:b1:22:b7:e6: 7d:b5:28:30:ca:1d:96:4a:23:af:11:dd:f4:49:7f: 7b:64:3a:f4:f1:39:38:3a:4b:f5:a7:dc:49:58:d8: f7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:F7:59:E5:7A:8B:B6:FD:5C:67:4E:67:4A:F9:63:C0:01:50:1A:11 X509v3 Authority Key Identifier: keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:63:77:14:4f:97:e3:67:79:79:7d:c9:11:d9:41:15:8d:98: b6:b9:dd:e2:92:bd:8e:9a:4f:24:1d:72:ef:fc:5b:e3:c7:33: 48:4b:85:0c:8f:43:39:47:5d:18:84:1a:01:2a:4c:2f:15:11: 9d:ab:ac:e9:3a:7c:d4:10:14:0b:55:79:8f:25:fb:19:a5:13: 73:68:ae:ab:b9:3c:d4:6b:1b:72:24:e8:2f:06:11:e1:99:6e: 39:e8:fb:f4:50:52:bd:3d:8c:e9:5f:0b:72:fb:a0:a3:2d:35: 35:9d:ea:c2:ff:6e:4c:2f:37:59:03:eb:db:19:4d:6b:9e:8d: 4c:77:7e:e9:ae:08:22:c3:ba:63:30:df:aa:0e:89:5c:7b:0c: 26:8c:ba:3d:9f:2f:44:bb:e0:27:58:eb:4d:b1:d0:48:7b:84: ac:1e:35:42:b8:28:1e:cd:16:ff:9f:8d:2c:1a:e5:d5:50:b2: e7:d9:0d:46:cb:0f:7a:6d:94:3f:96:6d:04:73:c5:05:e9:40: 25:da:95:0e:e1:56:45:ea:c4:68:61:31:de:3e:1e:6e:d0:6e: ff:ab:1b:b2:6c:d4:9c:54:38:71:ba:35:e8:50:dd:a3:3c:e0: 34:b3:6a:3c:cf:ed:fe:51:ab:5d:74:db:0b:f5:8b:a8:ca:f8: 6b:fd:88:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3 RjA0RDUzNTYwHhcNMjQxMTIzMDEyNjIxWhcNMjQxMTMwMDEyNjIxWjAYMRYwFAYD VQQDEw02NzQxMmYzZC0wMDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4NiK+O/YnmBZJMSTEZSejeiU+unpQJ96a3/cNMCrh7JbsuMeqBjfcwpDX+5t Pq0LDuxUtX/lFuDQTDRQyEcmhrhlQQRpiCrCIUTVUynXlSKW0dyieWLlNwBwwlDc bthelDqiUHYwJ59VERJpbs1raTDY+9I7QmqQ9EeBC3tROUtqM/NJopqMwdx47ONm xi/nx56okpW7kJmEUSUb0bc4tJy2X4LxLGj1HqwtNSQY75OVCDbh51x3e8UOH/to e7Gj78RFXpiJJGSxlpBQ+oNxP6blv1GpL2uawMMxUrEit+Z9tSgwyh2WSiOvEd30 SX97ZDr08Tk4Okv1p9xJWNj3twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/3WeV6 i7b9XGdOZ0r5Y8ABUBoRMB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3 MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1Y3cUT5fjZ3l5fckR2UEVjZi2ud3ikr2Omk8kHXLv/FvjxzNIS4UM j0M5R10YhBoBKkwvFRGdq6zpOnzUEBQLVXmPJfsZpRNzaK6ruTzUaxtyJOgvBhHh mW456Pv0UFK9PYzpXwty+6CjLTU1nerC/25MLzdZA+vbGU1rno1Md37prggiw7pj MN+qDolcewwmjLo9ny9Eu+AnWOtNsdBIe4SsHjVCuCgezRb/n40sGuXVULLn2Q1G yw96bZQ/lm0Ec8UF6UAl2pUO4VZF6sRoYTHePh5u0G7/qxuybNScVDhxujXoUN2j POA0s2o8z+3+UatddNsL9Yuoyvhr/Yh6 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:40 2024 by rpki-client on console-fra.rpki-client.org