$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: U1Fh82nW/PAdmpWBeyodeNnRFvHDBi+oSNC83zwIW+I= Subject key identifier: 12:9B:9F:53:12:60:AF:4A:D8:2A:03:AC:85:D8:DA:19:F5:8D:C8:F1 Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 08C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 089D Signing time: Fri 22 Nov 2024 20:23:06 +0000 Manifest this update: Fri 22 Nov 2024 20:23:06 +0000 Manifest next update: Fri 29 Nov 2024 20:23:06 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: l0Sz3BC6gk4tEXAPVmhNfsLi8d4kihy2AX3YxcbDuBI=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: oYydxPk4UhXwzQt6ATEzMXRyl5GNnPSrO9reRguBtdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2240 (0x8c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: Nov 22 20:23:06 2024 GMT Not After : Nov 29 20:23:06 2024 GMT Subject: CN=6740e82a-7d03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8a:80:08:67:7c:68:b3:5d:45:cf:03:8e:76: 2d:39:44:5f:2e:e3:cf:ac:df:c4:70:f0:ba:82:d7: c6:c4:91:20:4c:84:17:33:9e:11:3d:cc:4d:bb:3f: 19:c9:e2:2a:8a:b3:21:50:03:ff:3b:64:9c:6c:ad: cd:7f:2d:39:49:29:5f:e8:41:25:76:5d:a9:a0:64: b0:2c:af:6b:a3:00:03:cf:b4:d7:2c:16:92:67:8d: 31:7d:44:6b:c4:b5:a8:62:ac:28:ad:c4:cd:4c:ab: ea:d8:04:5b:2a:a0:c8:d2:7d:80:af:90:a9:15:b2: 58:38:1b:bd:01:30:73:5a:e2:fb:c4:af:25:4e:3f: cb:dc:9a:47:2d:03:76:6d:82:73:2a:db:31:e4:1f: f2:fe:5f:a2:ee:ea:2c:92:9b:d9:3e:8c:10:46:3b: 65:d8:9f:2f:93:a8:d3:4d:05:4c:06:03:e6:5b:e1: e9:5f:ec:70:1e:f8:e5:2f:1f:ca:c4:20:16:66:d5: 1a:17:5e:18:5d:57:1e:57:66:fb:68:e9:45:b7:cc: 20:16:94:49:e9:72:94:45:2f:d6:03:50:e5:3c:79: 0c:df:30:3f:ba:0e:e8:21:a2:0b:66:9e:49:e8:56: 25:43:b2:2f:dd:13:17:21:15:4d:98:ff:53:d4:52: 15:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:9B:9F:53:12:60:AF:4A:D8:2A:03:AC:85:D8:DA:19:F5:8D:C8:F1 X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:1c:44:b6:99:4f:d9:d6:e5:0a:47:aa:39:ba:c7:3a:c7:06: f8:48:79:85:59:aa:59:3c:e0:b9:6a:3e:83:e2:ec:25:7f:42: ac:95:a4:51:57:80:88:55:79:ba:07:b5:26:81:25:ed:ab:6b: 1a:2f:b9:b1:b1:fd:c0:23:8c:da:38:1e:66:9c:de:95:e4:36: e4:cd:9c:1f:e7:8f:66:4f:5d:0a:e5:cd:c4:db:c9:f0:63:60: 81:b8:4f:45:42:ce:b7:77:a1:7c:c3:36:38:c9:2c:5f:a4:56: 33:bf:5c:45:ea:15:1c:cf:6f:9f:65:71:d0:bc:73:67:38:ab: 41:a4:de:c7:1d:c7:b6:32:d4:0b:b2:bf:d1:3e:a8:ef:7c:25: 8c:9f:d5:25:be:cf:d2:87:9a:0a:a4:5a:98:92:f9:04:15:39: a5:35:78:b8:60:c1:3a:92:50:22:74:49:42:8d:e2:ed:81:76: c1:a7:c0:74:12:82:2a:5f:b5:84:79:c6:c7:14:eb:92:66:51: 03:6f:05:1b:d8:de:58:b8:11:c1:cb:49:ac:fb:6d:ae:38:f9: 70:39:92:30:a4:a9:bf:4e:35:52:1e:e2:d1:0c:c3:b0:cc:fd: ee:43:e2:dd:67:da:cf:b5:32:4b:65:70:41:3a:e5:56:02:25: 38:4c:99:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjQxMTIyMjAyMzA2WhcNMjQxMTI5MjAyMzA2WjAYMRYwFAYD VQQDEw02NzQwZTgyYS03ZDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoqACGd8aLNdRc8DjnYtOURfLuPPrN/EcPC6gtfGxJEgTIQXM54RPcxNuz8Z yeIqirMhUAP/O2ScbK3Nfy05SSlf6EEldl2poGSwLK9rowADz7TXLBaSZ40xfURr xLWoYqworcTNTKvq2ARbKqDI0n2Ar5CpFbJYOBu9ATBzWuL7xK8lTj/L3JpHLQN2 bYJzKtsx5B/y/l+i7uoskpvZPowQRjtl2J8vk6jTTQVMBgPmW+HpX+xwHvjlLx/K xCAWZtUaF14YXVceV2b7aOlFt8wgFpRJ6XKURS/WA1DlPHkM3zA/ug7oIaILZp5J 6FYlQ7Iv3RMXIRVNmP9T1FIV8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKbn1MS YK9K2CoDrIXY2hn1jcjxMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjHES2mU/Z1uUKR6o5usc6xwb4SHmFWapZPOC5aj6D4uwlf0KslaRR V4CIVXm6B7UmgSXtq2saL7mxsf3AI4zaOB5mnN6V5DbkzZwf549mT10K5c3E28nw Y2CBuE9FQs63d6F8wzY4ySxfpFYzv1xF6hUcz2+fZXHQvHNnOKtBpN7HHce2MtQL sr/RPqjvfCWMn9Ulvs/Sh5oKpFqYkvkEFTmlNXi4YME6klAidElCjeLtgXbBp8B0 EoIqX7WEecbHFOuSZlEDbwUb2N5YuBHBy0ms+22uOPlwOZIwpKm/TjVSHuLRDMOw zP3uQ+LdZ9rPtTJLZXBBOuVWAiU4TJlD -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:31 2024 by rpki-client on console-fra.rpki-client.org