$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: m/R8aIMfgfo0Dd2Ne3rNaAXUI93i5m4Ml114l/vwN9Y= Subject key identifier: F3:04:74:B5:62:85:12:1C:E4:D0:7F:61:90:5C:98:34:BC:CC:4A:A2 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: EC Signing time: Thu 21 Nov 2024 03:35:26 +0000 Manifest this update: Thu 21 Nov 2024 03:35:26 +0000 Manifest next update: Thu 28 Nov 2024 03:35:26 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: r4r4OB/dDlMdMEykBwUAiuo/mhx0bcSeFP+2RSpp3ng=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: mRgAmQOm70v82zzEgYDnDn2brEuaNu5y2crpXyX3sdg=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: bbT6hxERjo8lnAEspIks/q29jjxdhXSux3U2mM5P3u0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:35:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Nov 21 03:35:26 2024 GMT Not After : Nov 28 03:35:26 2024 GMT Subject: CN=673eaa7e-ee3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b8:e6:fd:d2:be:5b:64:5f:b9:55:f6:79:66: a5:db:82:18:07:a6:99:da:03:10:9d:e1:9f:ec:68: f9:4d:88:6e:13:b3:a9:3d:63:b7:04:8a:0c:3e:12: 56:3a:49:5d:e3:1a:ad:66:3f:89:cc:97:a2:fd:51: 9c:06:4d:31:5f:de:8d:6c:12:51:35:1e:23:4d:3d: 69:2a:8f:dc:d0:30:2d:88:2a:96:8b:dd:17:d9:3d: d0:16:68:af:68:8d:ed:7f:6f:d3:a8:cd:70:50:ad: 77:36:08:67:0d:f7:fd:a1:20:ff:92:a3:b8:9c:8e: 3f:33:b6:9b:bd:ed:93:8a:61:cf:87:01:86:98:28: f2:b5:fa:2c:13:37:a6:c3:d6:e5:c7:b8:af:fe:91: c4:46:c4:98:05:c7:f5:50:5a:bd:e5:b6:d7:bf:e3: 8c:1b:80:d1:31:8b:7e:d7:24:7b:79:be:5f:74:c6: 75:9e:2f:4e:59:31:2a:53:fe:c3:7b:b9:13:69:d8: 04:1b:53:47:16:6e:ff:6d:80:2d:bf:e8:15:ea:46: 6d:26:28:1f:41:13:12:e9:fc:0b:d8:1f:87:18:80: 81:e6:84:cf:8a:df:e7:78:19:f4:8c:20:bb:df:6f: 14:cb:b9:2c:0c:a9:66:bd:26:2f:db:28:fc:bd:5b: 9c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:04:74:B5:62:85:12:1C:E4:D0:7F:61:90:5C:98:34:BC:CC:4A:A2 X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:2f:37:5b:59:58:7e:b2:e4:e5:42:91:9d:aa:c1:bb:72:a9: 08:14:92:17:61:de:88:27:00:a6:64:a4:dc:eb:3e:4f:66:97: 81:b1:65:c9:b4:aa:8d:be:d2:f4:40:0c:0f:01:31:e1:89:5f: 03:aa:7f:b4:6e:78:92:54:2f:ae:00:da:cb:59:36:0f:a0:d3: 48:5a:81:29:32:51:4d:83:b0:0e:c4:c0:19:41:7c:38:5d:7f: 42:3d:7d:bd:db:42:5f:9f:b1:53:c1:5f:32:50:8d:4f:29:ad: 5d:be:60:7b:f1:fd:a3:df:a2:b6:a9:df:f1:81:59:c7:99:c9: 31:59:7b:70:60:66:fd:5a:05:2f:00:9a:73:07:01:fe:de:ee: 0f:62:bb:49:36:0d:2b:1e:60:c7:fe:3e:3e:8f:19:38:dc:2f: 0d:27:c6:e8:65:4a:06:95:cd:38:a8:4a:cb:11:01:c5:dd:68: 19:ae:25:58:1a:74:4b:37:67:19:15:9f:b6:2e:00:47:26:22: b0:fe:e7:df:f3:9f:b7:37:29:3a:5a:37:5e:c1:3c:1b:b7:61: 08:b2:8d:95:26:2b:1e:93:4e:b7:10:c9:3d:f4:55:f7:7b:94: 8e:0f:55:76:da:a6:2e:71:18:ef:71:67:3a:8f:db:17:e6:24: 08:6b:c3:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjQxMTIxMDMzNTI2WhcNMjQxMTI4MDMzNTI2WjAYMRYwFAYD VQQDEw02NzNlYWE3ZS1lZTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLjm/dK+W2RfuVX2eWal24IYB6aZ2gMQneGf7Gj5TYhuE7OpPWO3BIoMPhJW Okld4xqtZj+JzJei/VGcBk0xX96NbBJRNR4jTT1pKo/c0DAtiCqWi90X2T3QFmiv aI3tf2/TqM1wUK13NghnDff9oSD/kqO4nI4/M7abve2TimHPhwGGmCjytfosEzem w9blx7iv/pHERsSYBcf1UFq95bbXv+OMG4DRMYt+1yR7eb5fdMZ1ni9OWTEqU/7D e7kTadgEG1NHFm7/bYAtv+gV6kZtJigfQRMS6fwL2B+HGICB5oTPit/neBn0jCC7 328Uy7ksDKlmvSYv2yj8vVucGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMEdLVi hRIc5NB/YZBcmDS8zEqiMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFLzdbWVh+suTlQpGdqsG7cqkIFJIXYd6IJwCmZKTc6z5PZpeBsWXJ tKqNvtL0QAwPATHhiV8Dqn+0bniSVC+uANrLWTYPoNNIWoEpMlFNg7AOxMAZQXw4 XX9CPX2920Jfn7FTwV8yUI1PKa1dvmB78f2j36K2qd/xgVnHmckxWXtwYGb9WgUv AJpzBwH+3u4PYrtJNg0rHmDH/j4+jxk43C8NJ8boZUoGlc04qErLEQHF3WgZriVY GnRLN2cZFZ+2LgBHJiKw/uff85+3Nyk6WjdewTwbt2EIso2VJisek063EMk99FX3 e5SOD1V22qYucRjvcWc6j9sX5iQIa8MH -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:03 2024 by rpki-client on console-fra.rpki-client.org