$ rpki-client -vvf rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.mft File: uS8-WIshlDrLuAW_3wsZRL98rDs.mft (raw, json) Hash identifier: BO5NyJIevvzbJDNtzvuaqLsOqRi/6SEkbDmaxMwoouY= Subject key identifier: 6A:94:D2:F0:8C:87:1B:94:19:59:D3:52:46:C1:73:74:9C:92:35:3D Authority key identifier: B9:2F:3E:58:8B:21:94:3A:CB:B8:05:BF:DF:0B:19:44:BF:7C:AC:3B Certificate issuer: /CN=A919B0F9/serialNumber=B92F3E588B21943ACBB805BFDF0B1944BF7CAC3B Certificate serial: 11F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uS8-WIshlDrLuAW_3wsZRL98rDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.mft Manifest number: 11E6 Signing time: Fri 22 Nov 2024 17:09:58 +0000 Manifest this update: Fri 22 Nov 2024 17:09:58 +0000 Manifest next update: Fri 29 Nov 2024 17:09:58 +0000 Files and hashes: 1: uS8-WIshlDrLuAW_3wsZRL98rDs.crl (hash: 7p6ABYJhcvgdE3ZIoCiCpKNGfVT+MjkONht8GjARqLg=) 2: 455880A6ED6D11ED8A822917C4F9AE02.roa (hash: aC4IYAyMGo6nLf4CT/cxfXqFFROm0vKPE8dyF8L1Czw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.crl rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uS8-WIshlDrLuAW_3wsZRL98rDs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4592 (0x11f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B0F9/serialNumber=B92F3E588B21943ACBB805BFDF0B1944BF7CAC3B Validity Not Before: Nov 22 17:09:58 2024 GMT Not After : Nov 29 17:09:58 2024 GMT Subject: CN=6740bae6-5c49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ff:f9:e5:10:07:8b:d0:00:9b:c9:c7:5b:3e: 57:19:f6:28:dc:c0:96:af:cb:8d:da:01:0f:77:76: e4:d9:b1:0b:ca:9f:a4:a2:c5:25:80:ad:45:2e:80: 4e:9d:4c:65:0b:f1:58:5a:6b:91:dc:f8:4b:15:aa: da:ab:a2:32:1f:21:c3:4e:f7:25:c1:c6:48:96:90: e9:77:9f:81:81:ee:96:b3:ad:53:b9:f0:36:fc:01: 65:9c:97:ad:7f:cc:4f:ad:13:69:d8:42:76:31:a4: 03:86:ce:b5:9f:19:a5:29:d1:01:28:d0:bc:64:ca: 1d:c6:7e:90:39:9a:b6:07:a7:93:3a:92:b1:41:e1: 3f:fe:03:4c:03:2d:b0:52:92:8f:bf:0b:ff:fa:5e: 8c:0b:36:08:b5:4b:10:96:13:f7:5c:82:bd:5b:55: bc:6d:cd:78:c3:d2:a0:71:05:51:47:8b:49:8c:33: 83:14:d0:8d:92:8e:95:eb:9b:8f:6d:16:b6:da:e9: 8e:e6:a9:f2:ce:54:70:13:ad:7d:6c:e7:04:e2:18: 90:8c:5f:b3:f7:b4:9c:c2:f9:7f:60:5a:d3:e3:9e: 37:21:36:99:15:26:03:47:ea:a4:7d:e6:b3:2b:ea: bf:71:54:04:8c:7b:37:8a:e1:30:dd:60:0f:1b:b9: ca:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:94:D2:F0:8C:87:1B:94:19:59:D3:52:46:C1:73:74:9C:92:35:3D X509v3 Authority Key Identifier: keyid:B9:2F:3E:58:8B:21:94:3A:CB:B8:05:BF:DF:0B:19:44:BF:7C:AC:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uS8-WIshlDrLuAW_3wsZRL98rDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:13:0f:ae:a1:39:06:d2:21:f2:7d:f9:49:67:49:a8:d0:2f: eb:b7:ef:88:0d:4e:0a:40:fe:cb:05:8e:de:b2:fe:f9:63:a6: e7:3e:19:16:fe:b1:46:13:2c:ac:e9:88:b3:02:e5:6f:83:06: 95:96:7f:5c:76:e0:1f:44:b5:d5:3e:c4:93:d6:ab:de:62:e0: cf:37:dd:13:7f:64:0f:c1:a3:23:74:6d:e0:6d:4b:d5:21:f7: ba:8a:18:51:64:89:78:d1:10:fa:4d:e0:ae:c0:c1:a3:86:e7: 40:7c:f9:5d:45:63:cf:21:ea:18:35:ac:2c:0d:1a:87:01:7c: f3:76:0c:8c:26:1d:a7:1d:ae:24:c8:7e:7c:35:c6:ac:73:d0: c4:7a:d6:8e:bc:c2:af:1e:b4:30:0c:58:13:b9:d2:6a:b5:54: b5:f3:b1:e8:f6:1e:62:dc:b5:2f:be:07:81:39:11:2c:f7:9c: 7d:48:30:1d:94:7f:f7:07:9a:2f:0a:5c:3a:b5:60:19:aa:b0: 46:8f:11:0b:67:aa:ec:97:af:11:f1:2f:1a:fb:96:bb:49:2f: 2c:bc:d2:24:ab:3b:16:ed:00:5e:51:a0:b4:15:40:60:fa:bd: ab:65:03:00:8f:82:cd:d8:62:e2:0c:cb:c6:f3:9f:61:b7:8e: 83:17:d3:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIwRjkxMTAvBgNVBAUTKEI5MkYzRTU4OEIyMTk0M0FDQkI4MDVCRkRGMEIxOTQ0 QkY3Q0FDM0IwHhcNMjQxMTIyMTcwOTU4WhcNMjQxMTI5MTcwOTU4WjAYMRYwFAYD VQQDEw02NzQwYmFlNi01YzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoP/55RAHi9AAm8nHWz5XGfYo3MCWr8uN2gEPd3bk2bELyp+kosUlgK1FLoBO nUxlC/FYWmuR3PhLFaraq6IyHyHDTvclwcZIlpDpd5+Bge6Ws61TufA2/AFlnJet f8xPrRNp2EJ2MaQDhs61nxmlKdEBKNC8ZModxn6QOZq2B6eTOpKxQeE//gNMAy2w UpKPvwv/+l6MCzYItUsQlhP3XIK9W1W8bc14w9KgcQVRR4tJjDODFNCNko6V65uP bRa22umO5qnyzlRwE619bOcE4hiQjF+z97Scwvl/YFrT4543ITaZFSYDR+qkfeaz K+q/cVQEjHs3iuEw3WAPG7nKJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqU0vCM hxuUGVnTUkbBc3SckjU9MB8GA1UdIwQYMBaAFLkvPliLIZQ6y7gFv98LGUS/fKw7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjBGOS8xRDJCNUIyQUQ2 QkMxMUU4OTQ1NTBENDJDNEY5QUUwMi91UzgtV0lzaGxEckx1QVdfM3dzWlJMOThy RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VTOC1XSXNobERyTHVBV18zd3NaUkw5OHJEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjBGOS8xRDJCNUIyQUQ2QkMxMUU4OTQ1NTBENDJDNEY5QUUwMi91UzgtV0lzaGxE ckx1QVdfM3dzWlJMOThyRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjEw+uoTkG0iHyfflJZ0mo0C/rt++IDU4KQP7LBY7esv75Y6bnPhkW /rFGEyys6YizAuVvgwaVln9cduAfRLXVPsST1qveYuDPN90Tf2QPwaMjdG3gbUvV Ife6ihhRZIl40RD6TeCuwMGjhudAfPldRWPPIeoYNawsDRqHAXzzdgyMJh2nHa4k yH58Ncasc9DEetaOvMKvHrQwDFgTudJqtVS187Ho9h5i3LUvvgeBOREs95x9SDAd lH/3B5ovClw6tWAZqrBGjxELZ6rsl68R8S8a+5a7SS8svNIkqzsW7QBeUaC0FUBg +r2rZQMAj4LN2GLiDMvG859ht46DF9Ma -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:18 2024 by rpki-client on console-fra.rpki-client.org