$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft File: uYUInIuVHhACl2u9XU0d0kGB8Z8.mft (raw, json) Hash identifier: H0PPyNH+G9XIsX5tYSzJyJuvHBPJ+k91aLWewF2Vhp4= Subject key identifier: 1C:78:D3:03:41:0F:62:16:AD:F3:8E:38:B3:2D:F2:41:E6:84:60:4B Authority key identifier: B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F Certificate issuer: /CN=A919CA3C/serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Certificate serial: 0566 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft Manifest number: 0561 Signing time: Wed 20 Nov 2024 22:56:04 +0000 Manifest this update: Wed 20 Nov 2024 22:56:03 +0000 Manifest next update: Wed 27 Nov 2024 22:56:03 +0000 Files and hashes: 1: uYUInIuVHhACl2u9XU0d0kGB8Z8.crl (hash: NPQltYewzugdLJR/UTLBUVMwq1yV7tNGnBY10uKuz9c=) 2: 432BBA90C1F611EBAD8D7477C4F9AE02.roa (hash: hkJ88WsZE+BHMinN6yfbuiaAGQUAch41Smzi5V2G9DM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1382 (0x566) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA3C/serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Validity Not Before: Nov 20 22:56:03 2024 GMT Not After : Nov 27 22:56:03 2024 GMT Subject: CN=673e6904-9c9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:81:6e:c1:11:d2:ed:52:13:55:62:a7:68:6f: ca:85:df:94:42:de:93:82:3a:96:19:ef:5b:4d:73: 6e:56:75:6a:8d:c3:96:45:f7:df:dc:06:7d:b5:d9: 0a:89:e8:a8:a3:09:9c:6e:f1:25:11:77:21:45:39: f1:08:27:6f:17:34:e6:36:6d:2b:43:9e:39:99:bd: c4:e4:be:d2:36:a9:1d:60:b4:f0:b1:49:de:17:1f: dd:09:23:69:62:47:81:c0:e5:10:db:6d:fa:ed:0a: 24:2a:33:b1:57:15:0d:92:1e:d1:e8:44:aa:c4:13: ae:10:0a:14:d1:16:46:83:35:46:48:05:d0:dc:fa: d6:76:9d:9c:33:47:a1:88:6e:58:a5:54:57:03:2f: fa:62:e5:a7:e7:bf:3c:f4:62:a7:26:f2:ed:f8:83: 95:30:aa:45:b2:f4:59:e9:a9:eb:68:65:08:c7:20: 79:aa:13:bc:8b:89:11:3b:13:61:4e:d5:da:7c:61: b6:50:44:af:f7:3d:3a:12:45:36:e5:43:a8:11:35: ad:9f:4a:38:af:6a:d0:9d:d5:cc:2c:11:59:17:c5: ba:a7:dc:50:db:15:c8:3b:dc:38:42:28:6f:7f:d2: 60:05:9d:7f:b4:54:7e:d6:68:b0:e9:08:61:f7:bb: ec:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:78:D3:03:41:0F:62:16:AD:F3:8E:38:B3:2D:F2:41:E6:84:60:4B X509v3 Authority Key Identifier: keyid:B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:3f:7d:ac:b5:87:7b:94:c9:1a:0d:5c:82:ac:8e:0e:f3:b4: 8d:92:64:82:4e:e8:48:8f:96:98:2f:3e:31:32:5b:eb:a5:b8: 6a:8c:05:c3:92:7f:2b:a0:95:43:e0:16:68:c4:57:d7:cc:f5: cd:e2:9b:ce:41:72:36:db:df:45:35:a8:ad:3e:20:29:6f:d2: 9e:19:63:c8:5c:d5:ad:22:77:96:9a:ff:de:d7:5e:54:69:a3: f1:95:17:07:f2:fe:a0:65:0d:e1:86:0f:0c:f3:8f:f4:48:6d: 2f:cb:64:cd:f7:76:9b:4f:e0:23:99:e3:82:29:e6:9e:55:29: 46:85:b9:f0:07:c9:53:5b:d4:91:41:60:97:a9:f6:d8:a9:fb: df:6f:b1:c7:52:35:e7:a8:ad:1c:4f:cf:06:fd:82:5b:5e:1d: e8:01:83:b7:69:47:69:c3:6e:92:71:e7:9f:54:4d:98:4b:49: 5d:1f:0f:11:cd:5b:dd:9d:37:a0:1e:0f:cd:10:ee:d5:35:53: 3b:a6:e9:a8:6d:43:62:0e:f8:01:17:7b:22:6d:e8:d9:40:bc: 14:ee:b2:2d:a0:4c:ae:77:ad:c9:ff:f5:ed:6b:09:cb:19:05: db:ce:47:73:e1:0e:fb:fb:76:dc:8e:fa:bd:3d:c6:38:f5:d7: ff:9e:8e:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBM0MxMTAvBgNVBAUTKEI5ODUwODlDOEI5NTFFMTAwMjk3NkJCRDVENEQxREQy NDE4MUYxOUYwHhcNMjQxMTIwMjI1NjAzWhcNMjQxMTI3MjI1NjAzWjAYMRYwFAYD VQQDEw02NzNlNjkwNC05YzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1oFuwRHS7VITVWKnaG/Khd+UQt6TgjqWGe9bTXNuVnVqjcOWRfff3AZ9tdkK ieioowmcbvElEXchRTnxCCdvFzTmNm0rQ545mb3E5L7SNqkdYLTwsUneFx/dCSNp YkeBwOUQ22367QokKjOxVxUNkh7R6ESqxBOuEAoU0RZGgzVGSAXQ3PrWdp2cM0eh iG5YpVRXAy/6YuWn57889GKnJvLt+IOVMKpFsvRZ6anraGUIxyB5qhO8i4kROxNh TtXafGG2UESv9z06EkU25UOoETWtn0o4r2rQndXMLBFZF8W6p9xQ2xXIO9w4Qihv f9JgBZ1/tFR+1miw6Qhh97vsEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBx40wNB D2IWrfOOOLMt8kHmhGBLMB8GA1UdIwQYMBaAFLmFCJyLlR4QApdrvV1NHdJBgfGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0EzQy9EODM2NDZGRUMx RjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1VkhoQUNsMnU5WFUwZDBrR0I4 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VZVUluSXVWSGhBQ2wydTlYVTBkMGtHQjhaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0EzQy9EODM2NDZGRUMxRjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1Vkho QUNsMnU5WFUwZDBrR0I4WjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiP32stYd7lMkaDVyCrI4O87SNkmSCTuhIj5aYLz4xMlvrpbhqjAXD kn8roJVD4BZoxFfXzPXN4pvOQXI2299FNaitPiApb9KeGWPIXNWtIneWmv/e115U aaPxlRcH8v6gZQ3hhg8M84/0SG0vy2TN93abT+AjmeOCKeaeVSlGhbnwB8lTW9SR QWCXqfbYqfvfb7HHUjXnqK0cT88G/YJbXh3oAYO3aUdpw26SceefVE2YS0ldHw8R zVvdnTegHg/NEO7VNVM7pumobUNiDvgBF3sibejZQLwU7rItoEyud63J//XtawnL GQXbzkdz4Q77+3bcjvq9PcY49df/no6Y -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:23 2024 by rpki-client on console-fra.rpki-client.org