$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft File: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft (raw, json) Hash identifier: Fp7IPAF8krbcWMftiYW3rD4xHr5qQ+MMLHMCe0bLndk= Subject key identifier: B7:22:15:92:3D:45:65:67:2A:BC:F3:0E:1A:61:19:35:C7:E0:63:6D Authority key identifier: AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A Certificate issuer: /CN=A91B5BD4/serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft Manifest number: 0176 Signing time: Sat 23 Nov 2024 02:08:38 +0000 Manifest this update: Sat 23 Nov 2024 02:08:37 +0000 Manifest next update: Sat 30 Nov 2024 02:08:37 +0000 Files and hashes: 1: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl (hash: AfjhNFOsRqeuABGwGDnBnYjpjXunRB/Bq0yJo8fNP30=) 2: C248DFA26DBB11EDB3635D28C4F9AE02.roa (hash: a52+Pk1FkwC/G3hPUY7oyb3u48mgwz6grHdpG9+HrUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:08:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5BD4/serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Validity Not Before: Nov 23 02:08:37 2024 GMT Not After : Nov 30 02:08:37 2024 GMT Subject: CN=67413926-6fd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9b:e4:4f:5d:d9:70:aa:c6:0b:6a:be:fe:8e: 53:df:8d:08:98:00:e7:55:0d:49:4c:b4:a0:ad:5a: 1d:68:e8:b6:7d:42:84:f1:43:3f:20:5d:92:3b:48: 9d:15:20:df:50:37:62:22:ab:84:0c:be:62:c8:4f: 6b:0e:40:28:1e:18:f1:8e:31:17:a6:a5:b3:85:31: 28:9d:37:2a:43:67:12:11:59:d0:db:82:bb:fe:71: 89:a8:28:ee:60:cb:45:a4:e5:ea:61:8b:14:7b:2b: 5b:be:fa:d7:13:23:e1:ea:66:0d:b6:f9:b1:68:a6: cb:0f:31:cf:97:80:e8:c6:6b:c3:5c:95:6e:4b:96: 84:df:be:03:e9:a5:92:6f:07:01:0f:03:85:23:ee: ae:9f:63:8b:56:c4:d4:6a:13:35:c8:85:c2:64:c9: ea:8f:4d:ab:4c:93:07:18:4d:94:b7:af:d3:cb:96: 29:88:cb:46:cb:a1:4a:0c:ac:93:27:37:e8:33:5d: fb:5c:72:54:f4:8c:3f:83:91:38:ce:80:cb:66:35: c7:90:f3:ad:e3:c7:aa:13:97:9a:d0:cd:3b:87:10: 6f:bc:0e:c5:24:1d:7e:9a:04:cd:fa:1c:aa:90:7d: 7b:ee:cf:67:ec:56:2d:3c:a2:c8:a6:7e:44:1d:1c: 20:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:22:15:92:3D:45:65:67:2A:BC:F3:0E:1A:61:19:35:C7:E0:63:6D X509v3 Authority Key Identifier: keyid:AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:fe:67:96:12:c9:4f:7f:37:9d:c9:70:45:a7:05:01:3a:73: cb:91:98:5a:70:b5:e4:fa:28:ab:5f:ee:d4:2b:8c:2c:fb:bf: 02:bb:76:1f:48:3c:20:68:df:df:e5:96:67:7b:6c:57:63:bf: 6e:b2:11:8a:24:39:93:c8:4c:d4:d0:ec:b7:30:98:9b:38:53: ee:cd:33:21:4d:33:6d:c9:41:3c:9c:6b:61:29:c7:89:5a:4c: f0:20:a0:a6:ba:80:12:0a:9a:56:da:83:6c:69:0c:84:41:dc: 5a:24:0a:25:4c:d3:dc:07:cd:60:b5:8b:ea:94:0c:85:c5:57: 7b:ea:2e:90:44:cd:82:84:42:78:b1:e7:94:f0:3b:fa:cd:80: 84:6e:42:2d:8e:ab:e4:b1:a2:f5:cb:d9:78:bc:f0:6a:cc:a7: 77:18:3f:ad:4f:23:25:d1:ed:2b:80:bc:7e:6f:32:06:91:04: bb:3e:3d:a9:eb:0c:29:2a:1a:ca:eb:af:17:85:20:9e:e8:90: 1d:4f:6e:e9:51:e6:11:bf:7d:94:e9:b4:46:87:a2:68:b2:3d: bc:50:91:c5:92:d9:aa:fa:94:6f:2f:cb:f3:79:9d:06:b0:6d: 28:b6:f2:e4:f0:cf:81:02:10:96:39:c7:4f:66:e8:8b:c1:3c: 58:5c:c5:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVCRDQxMTAvBgNVBAUTKEFENDFGQjgyN0Y5MzEwNEI4OUZBNkZBNzg1RjIxMTUw QkU2Rjk3OUEwHhcNMjQxMTIzMDIwODM3WhcNMjQxMTMwMDIwODM3WjAYMRYwFAYD VQQDEw02NzQxMzkyNi02ZmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJvkT13ZcKrGC2q+/o5T340ImADnVQ1JTLSgrVodaOi2fUKE8UM/IF2SO0id FSDfUDdiIquEDL5iyE9rDkAoHhjxjjEXpqWzhTEonTcqQ2cSEVnQ24K7/nGJqCju YMtFpOXqYYsUeytbvvrXEyPh6mYNtvmxaKbLDzHPl4DoxmvDXJVuS5aE374D6aWS bwcBDwOFI+6un2OLVsTUahM1yIXCZMnqj02rTJMHGE2Ut6/Ty5YpiMtGy6FKDKyT JzfoM137XHJU9Iw/g5E4zoDLZjXHkPOt48eqE5ea0M07hxBvvA7FJB1+mgTN+hyq kH177s9n7FYtPKLIpn5EHRwgswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLciFZI9 RWVnKrzzDhphGTXH4GNtMB8GA1UdIwQYMBaAFK1B+4J/kxBLifpvp4XyEVC+b5ea MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUJENC8wOEFENkQyMjZE QjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVFdUotbS1uaGZJUlVMNXZs NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVSDdnbi1URUV1Si1tLW5oZklSVUw1dmw1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUJENC8wOEFENkQyMjZEQjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVF dUotbS1uaGZJUlVMNXZsNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA/meWEslPfzedyXBFpwUBOnPLkZhacLXk+iirX+7UK4ws+78Cu3Yf SDwgaN/f5ZZne2xXY79ushGKJDmTyEzU0Oy3MJibOFPuzTMhTTNtyUE8nGthKceJ WkzwIKCmuoASCppW2oNsaQyEQdxaJAolTNPcB81gtYvqlAyFxVd76i6QRM2ChEJ4 seeU8Dv6zYCEbkItjqvksaL1y9l4vPBqzKd3GD+tTyMl0e0rgLx+bzIGkQS7Pj2p 6wwpKhrK668XhSCe6JAdT27pUeYRv32U6bRGh6Josj28UJHFktmq+pRvL8vzeZ0G sG0otvLk8M+BAhCWOcdPZuiLwTxYXMX4 -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:55 2024 by rpki-client on console-fra.rpki-client.org