$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json) Hash identifier: hO2OrUzWjJ1MRKn/xsDverG/pyEO2BzMTqsBsBjmyo0= Subject key identifier: 72:DD:B8:80:11:51:3F:DA:69:5F:0D:D3:E8:A6:8D:EB:D7:0B:C0:78 Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1DA0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft Manifest number: 1D90 Signing time: Wed 20 Nov 2024 16:05:58 +0000 Manifest this update: Wed 20 Nov 2024 16:05:57 +0000 Manifest next update: Wed 27 Nov 2024 16:05:57 +0000 Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: nAxkYVDk+r8eP6CFFjqxuC4xAyIAYolVLOltxI4JsuQ=) 2: EF31EA383CCB11EEB6AD691FC4F9AE02.roa (hash: LKyo8UKKRt94IwNVw+BYvwFitvh4rH3nAgtVixwg9l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7584 (0x1da0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Nov 20 16:05:57 2024 GMT Not After : Nov 27 16:05:57 2024 GMT Subject: CN=673e08e6-5bc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:73:7c:1f:98:54:24:6b:35:88:7c:bc:72:27: 34:80:6b:1d:a7:38:e2:37:cc:a5:3d:43:9c:c4:be: 10:a8:52:a9:9c:3f:1c:28:bb:39:ee:89:4d:f9:34: 1d:66:54:ec:55:58:34:c2:25:dd:82:37:41:35:03: 35:b1:39:db:d2:04:78:19:9e:e1:c1:5e:b8:ae:00: 1a:b6:5b:8b:34:75:38:a8:fc:82:58:78:92:82:56: e1:a1:29:c2:db:d5:40:3c:81:26:14:c4:3d:f2:da: 2c:e1:c0:11:77:90:7a:1d:8d:e2:20:31:42:04:ad: 8e:0e:c8:01:df:b8:17:bb:95:e5:96:9b:7e:ab:13: 09:3d:4c:af:62:6f:4b:4f:9c:21:ce:25:74:18:a5: c5:c5:ff:22:e9:47:a3:8c:72:17:f1:77:34:2a:8c: bb:4c:43:0f:12:42:bb:4b:b9:9c:76:37:07:97:47: 90:ec:49:6f:e0:0c:93:ba:5c:4c:06:be:2a:b2:6a: 4e:c0:55:5c:01:98:28:9e:a3:65:5f:57:b8:9c:98: 7e:c9:a3:fc:ac:24:90:da:db:0d:3f:4b:05:e5:ea: 74:64:4b:51:71:fb:67:5b:45:ce:33:1e:7b:d7:ac: a6:4e:45:e8:fc:a3:de:28:63:7c:a2:96:ef:bf:e0: 95:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:DD:B8:80:11:51:3F:DA:69:5F:0D:D3:E8:A6:8D:EB:D7:0B:C0:78 X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:ed:8a:98:3b:32:50:7e:4e:43:93:d1:2b:1d:d8:ca:60:3e: de:ab:56:19:b4:4a:49:63:fb:17:8f:06:d6:5b:97:a4:c8:a0: ba:8d:cd:6f:44:2f:17:0e:d9:78:fb:37:04:59:3a:91:ac:44: b3:8c:95:77:bf:b7:7a:d2:17:a5:ec:ae:c9:d4:bf:09:b6:b1: 8b:2f:e5:cc:ff:98:db:83:52:69:45:6f:19:d7:1e:3b:87:f7: 65:ce:5e:50:f1:e7:f8:c0:62:d9:a4:74:06:24:4b:91:49:2e: 31:58:b0:7c:7b:54:f7:f1:2d:08:ed:a8:7d:8b:db:41:e9:f7: ec:98:51:fe:f8:08:61:95:31:84:39:64:1e:18:1d:79:5e:9e: 1e:67:51:4b:c4:bd:e2:b3:83:68:1a:dd:b9:10:52:50:ce:0a: d1:37:43:b5:28:31:e1:63:15:33:93:15:50:e4:31:66:e2:80: 31:e3:ba:1d:27:d3:7c:2c:ba:f0:75:ee:75:a4:ae:ec:aa:e0: e8:1e:25:64:01:fb:d2:f2:61:a7:85:b2:27:72:3b:8c:70:8a: 75:73:8f:85:0c:15:a5:bb:19:35:70:39:28:25:8a:b5:ba:b3: d9:a4:7f:52:1e:c9:da:3e:36:b7:f2:9c:01:8f:ba:e2:16:38: a1:9b:9b:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjQxMTIwMTYwNTU3WhcNMjQxMTI3MTYwNTU3WjAYMRYwFAYD VQQDEw02NzNlMDhlNi01YmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33N8H5hUJGs1iHy8cic0gGsdpzjiN8ylPUOcxL4QqFKpnD8cKLs57olN+TQd ZlTsVVg0wiXdgjdBNQM1sTnb0gR4GZ7hwV64rgAatluLNHU4qPyCWHiSglbhoSnC 29VAPIEmFMQ98tos4cARd5B6HY3iIDFCBK2ODsgB37gXu5Xllpt+qxMJPUyvYm9L T5whziV0GKXFxf8i6UejjHIX8Xc0Koy7TEMPEkK7S7mcdjcHl0eQ7Elv4AyTulxM Br4qsmpOwFVcAZgonqNlX1e4nJh+yaP8rCSQ2tsNP0sF5ep0ZEtRcftnW0XOMx57 16ymTkXo/KPeKGN8opbvv+CVGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLduIAR UT/aaV8N0+imjevXC8B4MB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zMDQxOTdFODhGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0 VUFxMmNwdHk3VDF5eldvUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN7YqYOzJQfk5Dk9ErHdjKYD7eq1YZtEpJY/sXjwbWW5ekyKC6jc1v RC8XDtl4+zcEWTqRrESzjJV3v7d60hel7K7J1L8JtrGLL+XM/5jbg1JpRW8Z1x47 h/dlzl5Q8ef4wGLZpHQGJEuRSS4xWLB8e1T38S0I7ah9i9tB6ffsmFH++AhhlTGE OWQeGB15Xp4eZ1FLxL3is4NoGt25EFJQzgrRN0O1KDHhYxUzkxVQ5DFm4oAx47od J9N8LLrwde51pK7squDoHiVkAfvS8mGnhbIncjuMcIp1c4+FDBWluxk1cDkoJYq1 urPZpH9SHsnaPja38pwBj7riFjihm5tI -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:03 2024 by rpki-client on console-fra.rpki-client.org