$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft File: UzfctqkbQdUhGkTCFqljq6zH4rA.mft (raw, json) Hash identifier: mGiM45ig3z20ynHtGwOo+3rPDkuZT3g7RUoGonkO8YY= Subject key identifier: 24:4B:0F:23:C6:85:A9:00:8C:9F:98:56:47:17:4A:71:97:7B:7B:11 Authority key identifier: 53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 Certificate issuer: /CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Certificate serial: 343C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft Manifest number: 3432 Signing time: Fri 22 Nov 2024 14:46:55 +0000 Manifest this update: Fri 22 Nov 2024 14:46:54 +0000 Manifest next update: Fri 29 Nov 2024 14:46:54 +0000 Files and hashes: 1: UzfctqkbQdUhGkTCFqljq6zH4rA.crl (hash: wCXBKw5wtpA4DM+NBDJp4Uby5HIQZdqNCX7dWgOuFNA=) 2: 8DFE2984EAD811ECA1ED8915C4F9AE02.roa (hash: dOS+EBN8T4gv4pfAW5HZ87ld30CEjTabsXZtn+f9BiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:46:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13372 (0x343c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Validity Not Before: Nov 22 14:46:54 2024 GMT Not After : Nov 29 14:46:54 2024 GMT Subject: CN=6740995f-de76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:07:14:7e:86:1b:2d:5a:6a:d9:02:fb:64:45: 49:c6:61:80:1d:7a:53:39:39:23:9a:a7:49:d5:1f: b0:3c:88:6b:94:76:85:a9:9e:8b:5b:1d:f2:21:b0: e6:bf:d1:5d:c1:6e:98:ef:f8:50:9b:c0:5a:08:33: bb:00:2d:8e:ad:ab:ad:44:dc:27:f4:a2:e6:6b:13: 25:60:06:dd:04:21:19:0a:d6:b7:c5:16:7a:d9:2d: 60:e4:55:70:7d:5a:bd:42:fb:60:2c:e1:3f:bf:4c: 1f:01:59:89:40:0b:5b:6a:f3:d7:b8:e0:53:cb:c4: e5:5a:53:f8:8b:8b:30:f1:0e:a5:92:66:5d:d6:a9: 65:ba:33:5c:7e:28:79:56:d3:77:92:84:e0:11:23: 71:49:60:56:b7:18:cd:5f:63:8a:4e:dd:95:6f:4a: ab:c7:33:05:7c:70:e5:9b:4c:c9:3c:58:42:50:c5: cd:44:34:e2:2a:47:f6:49:c0:e8:0b:dd:b3:e1:b9: a4:4c:18:03:fa:67:9f:21:c0:59:c1:1a:0b:83:37: 30:68:a1:ca:fb:a1:84:11:f4:23:62:97:84:2c:3b: ec:4f:06:e7:20:1f:5d:e7:42:ca:81:0a:10:f3:e3: d8:a8:a3:f9:8f:60:ca:95:bb:30:fc:0e:61:2d:9f: 75:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:4B:0F:23:C6:85:A9:00:8C:9F:98:56:47:17:4A:71:97:7B:7B:11 X509v3 Authority Key Identifier: keyid:53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:82:0e:84:47:48:f7:6e:49:97:9d:76:be:9c:e9:f5:fc:a3: d6:ee:61:a2:c2:96:cf:81:f4:b7:7d:de:c7:93:f1:a5:05:ca: 2d:8f:2d:70:c1:7c:25:e5:36:81:d4:90:d1:29:cf:72:4b:85: f9:f5:d8:d3:f0:94:1e:3b:51:c5:a5:43:bc:19:ff:68:25:16: e6:c8:49:7b:18:e3:31:80:cb:b4:8b:31:f7:d4:1c:e9:de:3e: cb:0a:4d:8f:b3:9b:2f:b9:c9:2a:63:01:95:0e:83:e0:e0:d5: 1b:4c:c8:78:fe:3c:b6:5e:0c:43:6b:df:ef:7c:5d:7c:ae:4d: a6:19:7c:4a:6a:67:4e:41:73:3c:e0:e6:f4:7f:3f:f4:e5:b5: e5:4b:45:60:34:49:b2:3a:f5:43:95:60:d0:f4:95:2b:b5:f7: ff:de:64:74:45:c2:a7:4c:ad:a3:aa:87:cd:de:32:17:ba:23: 6b:6a:54:0b:84:2b:ef:02:4b:c3:39:11:88:b6:f1:b6:65:b1: a6:47:19:a5:bf:34:dd:4a:f7:f2:02:5d:4a:83:d0:8a:d7:f9: 93:b5:b9:11:ed:44:f1:b8:97:f1:01:fe:de:8e:08:be:2a:83: b7:95:a8:2f:d0:c1:91:d5:c1:aa:3a:a5:61:ac:16:88:7b:8c: 7a:1c:31:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGQkMxMTAvBgNVBAUTKDUzMzdEQ0I2QTkxQjQxRDUyMTFBNDRDMjE2QTk2M0FC QUNDN0UyQjAwHhcNMjQxMTIyMTQ0NjU0WhcNMjQxMTI5MTQ0NjU0WjAYMRYwFAYD VQQDEw02NzQwOTk1Zi1kZTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAcUfoYbLVpq2QL7ZEVJxmGAHXpTOTkjmqdJ1R+wPIhrlHaFqZ6LWx3yIbDm v9FdwW6Y7/hQm8BaCDO7AC2OrautRNwn9KLmaxMlYAbdBCEZCta3xRZ62S1g5FVw fVq9QvtgLOE/v0wfAVmJQAtbavPXuOBTy8TlWlP4i4sw8Q6lkmZd1qllujNcfih5 VtN3koTgESNxSWBWtxjNX2OKTt2Vb0qrxzMFfHDlm0zJPFhCUMXNRDTiKkf2ScDo C92z4bmkTBgD+mefIcBZwRoLgzcwaKHK+6GEEfQjYpeELDvsTwbnIB9d50LKgQoQ 8+PYqKP5j2DKlbsw/A5hLZ91MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCRLDyPG hakAjJ+YVkcXSnGXe3sRMB8GA1UdIwQYMBaAFFM33LapG0HVIRpEwhapY6usx+Kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZCQy8zNzMwODM4MDFE OTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFkVWhHa1RDRnFsanE2ekg0 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6ZmN0cWtiUWRVaEdrVENGcWxqcTZ6SDRyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZCQy8zNzMwODM4MDFEOTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFk VWhHa1RDRnFsanE2ekg0ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6gg6ER0j3bkmXnXa+nOn1/KPW7mGiwpbPgfS3fd7Hk/GlBcotjy1w wXwl5TaB1JDRKc9yS4X59djT8JQeO1HFpUO8Gf9oJRbmyEl7GOMxgMu0izH31Bzp 3j7LCk2Ps5svuckqYwGVDoPg4NUbTMh4/jy2XgxDa9/vfF18rk2mGXxKamdOQXM8 4Ob0fz/05bXlS0VgNEmyOvVDlWDQ9JUrtff/3mR0RcKnTK2jqofN3jIXuiNralQL hCvvAkvDORGItvG2ZbGmRxmlvzTdSvfyAl1Kg9CK1/mTtbkR7UTxuJfxAf7ejgi+ KoO3lagv0MGR1cGqOqVhrBaIe4x6HDHp -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:57 2024 by rpki-client on console-ams.rpki-client.org