$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft File: uKIid-zGsQo9ICqjkMyn-7kqRuA.mft (raw, json) Hash identifier: 7U1PXQao4XjQCVslY6LsTDA5qY7SKl6NMtbMMIsfYMo= Subject key identifier: E1:1A:DA:5C:EA:04:43:F1:1F:00:87:ED:C9:F8:95:4E:62:A9:87:DC Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 0306 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft Manifest number: 0303 Signing time: Thu 21 Nov 2024 00:47:01 +0000 Manifest this update: Thu 21 Nov 2024 00:47:01 +0000 Manifest next update: Thu 28 Nov 2024 00:47:01 +0000 Files and hashes: 1: uKIid-zGsQo9ICqjkMyn-7kqRuA.crl (hash: /QYzO5xIlhutjsmlisurXOaE0jJjS8sjj2qw2BhTE9s=) 2: AF08CB4CC77511EC81DCA645C4F9AE02.roa (hash: fREbYLMV88tqGvvsrcEA7GtjZgjRqwtByyDrN3vWfMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 774 (0x306) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: Nov 21 00:47:01 2024 GMT Not After : Nov 28 00:47:01 2024 GMT Subject: CN=673e8305-1529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:dd:a6:7b:ce:94:99:6b:e0:21:df:f3:d4:15: d5:01:67:de:7f:80:6f:0e:11:d6:11:d2:5f:41:aa: 0a:1b:ff:be:50:f9:ac:21:3a:d6:88:5f:6c:74:26: 6c:9f:5d:61:e5:68:ff:03:c2:c9:63:c1:4c:a4:40: 19:a1:59:06:1c:2d:49:79:71:dc:14:1a:d6:f7:58: 56:40:31:0c:66:e0:24:b0:5d:93:49:2e:e2:cc:d8: 06:d8:d5:04:c5:26:c0:81:41:36:80:6f:2e:95:cc: 99:8f:36:6f:d7:2c:ba:5c:3d:4b:f4:55:b9:09:0b: 5c:ce:17:90:b0:58:1b:77:f4:6b:47:03:8d:bb:2a: 16:34:a6:84:a4:80:3e:f4:40:1f:0f:37:a9:57:2e: 77:67:d0:54:8f:99:db:fe:22:20:2e:96:b6:f7:8d: e5:5b:ca:ee:e1:a8:ad:d9:95:b0:b3:99:3a:e3:63: c9:b1:f3:af:3f:28:5b:ab:77:2e:f7:af:03:2c:d0: 2c:e1:18:51:55:f5:a1:26:65:14:8c:fa:34:36:af: 27:e8:52:fd:e5:39:3e:a7:24:03:ee:17:c2:0a:6c: 54:29:e6:a2:cc:4d:b7:8b:ae:cc:98:52:50:4b:f2: 5b:16:f8:de:6d:ea:f5:b0:ce:5f:eb:cd:a5:03:34: 69:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:1A:DA:5C:EA:04:43:F1:1F:00:87:ED:C9:F8:95:4E:62:A9:87:DC X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:f3:af:81:a6:61:a1:0c:3d:7e:83:90:c6:18:d8:24:24:89: a4:f5:82:cf:de:76:3a:b9:48:81:3e:38:ef:3a:b7:b3:eb:a2: 08:56:24:f5:62:9b:04:f4:60:6f:94:b7:07:b2:84:4c:ce:a2: 13:92:0c:3e:24:a9:da:30:f6:f3:63:d2:ca:d7:87:23:ef:64: 3f:3f:48:05:22:23:12:3b:f5:90:0d:3d:9e:0c:29:31:71:62: dd:10:42:3a:19:5f:50:5e:02:ad:7b:dc:4d:54:1f:c5:b2:e4: ed:36:9c:85:e7:54:de:c5:33:63:1f:7d:a7:c6:05:07:dd:55: 55:7b:5a:c7:ac:03:18:23:cb:a9:b0:3a:f0:96:d4:f5:e6:ec: bb:8d:72:83:c6:50:a8:1e:59:38:33:8c:84:93:c6:c7:a3:ac: 93:9f:91:e4:7f:95:7d:14:c3:96:08:52:6f:5f:2f:ce:0a:73: e0:ce:11:ee:97:e7:50:d7:70:6b:91:1e:17:54:96:29:b1:29: 23:64:e9:24:b4:c4:05:12:cf:bb:74:c3:d8:8e:77:3e:51:e7: 7f:71:55:e2:cd:51:1f:58:47:c5:f3:b5:3c:3a:5d:b2:db:b3: 0d:20:c5:06:d3:f4:19:e2:4b:6e:7f:a6:01:11:8e:16:ad:33: c6:c2:fe:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjQxMTIxMDA0NzAxWhcNMjQxMTI4MDA0NzAxWjAYMRYwFAYD VQQDEw02NzNlODMwNS0xNTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxt2me86UmWvgId/z1BXVAWfef4BvDhHWEdJfQaoKG/++UPmsITrWiF9sdCZs n11h5Wj/A8LJY8FMpEAZoVkGHC1JeXHcFBrW91hWQDEMZuAksF2TSS7izNgG2NUE xSbAgUE2gG8ulcyZjzZv1yy6XD1L9FW5CQtczheQsFgbd/RrRwONuyoWNKaEpIA+ 9EAfDzepVy53Z9BUj5nb/iIgLpa2943lW8ru4ait2ZWws5k642PJsfOvPyhbq3cu 968DLNAs4RhRVfWhJmUUjPo0Nq8n6FL95Tk+pyQD7hfCCmxUKeaizE23i67MmFJQ S/JbFvjeber1sM5f682lAzRpQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEa2lzq BEPxHwCH7cn4lU5iqYfcMB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVDQy8xM0U3RDcyRUFGRTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NR bzlJQ3Fqa015bi03a3FSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr86+BpmGhDD1+g5DGGNgkJImk9YLP3nY6uUiBPjjvOrez66IIViT1 YpsE9GBvlLcHsoRMzqITkgw+JKnaMPbzY9LK14cj72Q/P0gFIiMSO/WQDT2eDCkx cWLdEEI6GV9QXgKte9xNVB/FsuTtNpyF51TexTNjH32nxgUH3VVVe1rHrAMYI8up sDrwltT15uy7jXKDxlCoHlk4M4yEk8bHo6yTn5Hkf5V9FMOWCFJvXy/OCnPgzhHu l+dQ13BrkR4XVJYpsSkjZOkktMQFEs+7dMPYjnc+Ued/cVXizVEfWEfF87U8Ol2y 27MNIMUG0/QZ4ktuf6YBEY4WrTPGwv7b -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:48 2024 by rpki-client on console-ams.rpki-client.org