$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft File: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft (raw, json) Hash identifier: 0nJ3CS8w6XKKXsFWa9iOLh1VV9hDEPC4yaqxxq8ldF8= Subject key identifier: C8:58:2F:35:CA:D6:64:7E:33:F3:0D:07:5A:7C:1B:D6:C4:30:18:5E Authority key identifier: 53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 Certificate issuer: /CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Certificate serial: 04E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft Manifest number: 04D9 Signing time: Fri 22 Nov 2024 23:19:36 +0000 Manifest this update: Fri 22 Nov 2024 23:19:36 +0000 Manifest next update: Fri 29 Nov 2024 23:19:36 +0000 Files and hashes: 1: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl (hash: CDmbhNefumSVT6eE+kTB3Z9hgn0wGzAghPMgrYz3yFk=) 2: 567C8DB8354111ECBCC05B63C4F9AE02.roa (hash: IJTuUd/n8OCJ5dJ8YqUV7DdTVdb9JOIyqBQaxiAGn2k=) 3: DEA2CCF8050511EEB4D8141FC4F9AE02.roa (hash: ZpRAboF0Zy0eld2L5SbNx4a1RdCdtnze/MEYgH64xko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1249 (0x4e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Validity Not Before: Nov 22 23:19:36 2024 GMT Not After : Nov 29 23:19:36 2024 GMT Subject: CN=67411188-2a93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9c:9e:c9:d9:1c:2f:6f:ad:c3:e8:f0:48:5f: cf:74:60:5e:25:ca:79:11:6c:3b:cd:3f:01:22:f8: a0:8c:ef:cd:e2:39:b8:50:b6:0d:05:72:f1:df:fb: 21:ca:c5:74:6a:0f:a7:87:14:d3:b3:25:b3:d2:da: ab:a9:1f:24:32:fc:fc:93:36:75:e9:4e:d2:ff:ff: eb:1d:80:5a:2a:a4:90:90:d2:92:76:05:0b:2f:5b: e3:0a:a8:1f:f8:34:b6:56:e8:33:fb:17:aa:8d:6d: 60:fd:86:63:36:85:1a:c5:f5:a2:aa:ef:31:9c:0c: 87:88:96:da:9a:99:4a:80:46:3d:27:ad:b2:7f:6c: 67:9b:61:79:47:48:d2:36:f2:61:e4:0f:41:48:02: 6b:06:69:a3:9e:1d:51:22:72:9a:86:4c:fb:8c:2f: bf:06:35:73:e8:25:6b:69:c5:bf:0c:57:94:bf:cf: 64:76:f3:a6:9a:7a:3e:6c:a3:ca:5a:a5:52:ff:ef: a4:fb:0c:09:fb:6c:7f:79:a9:43:6f:dc:6b:2b:30: d9:11:cd:54:b4:1c:6a:5e:c2:37:ac:25:e5:99:e0: cd:bd:c8:4c:58:c5:b4:6a:ac:0c:4b:51:0b:e0:d3: 5b:dd:8c:d4:1d:8f:cf:f6:ee:e6:52:2d:80:30:ed: 54:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:58:2F:35:CA:D6:64:7E:33:F3:0D:07:5A:7C:1B:D6:C4:30:18:5E X509v3 Authority Key Identifier: keyid:53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:ae:d9:93:c1:0f:98:df:06:ce:c5:44:d3:e5:b5:b2:af:2f: 14:af:9b:c8:97:01:65:cc:cb:eb:20:bc:a6:85:b5:7c:e6:ce: 46:9c:f9:76:22:d0:98:d8:5a:86:dd:06:83:06:ff:f6:5d:98: 6d:04:39:91:7e:c8:18:72:d8:2a:25:c2:1e:78:a2:f0:f1:43: 3c:37:41:0b:37:f2:99:af:8e:cb:bb:a7:6c:cc:3a:76:18:48: 7b:41:82:20:98:61:2d:6f:70:78:13:01:99:08:c0:d5:c2:ab: 84:5f:4a:8d:89:fe:cd:06:4a:32:2b:28:93:ca:58:55:e8:4d: 23:a6:46:c1:96:8a:cc:e5:a1:86:e9:4b:a1:59:fd:6e:14:3d: 58:a6:d8:3d:fc:3a:30:f0:20:17:21:e4:dc:07:da:86:a6:8a: 79:f5:68:2d:a7:8d:fd:b2:78:6c:eb:7b:a7:14:f3:f5:59:96: e1:78:f2:da:7f:5b:1b:13:6e:b3:b4:9f:17:54:2e:f5:83:20: 0a:e5:0c:91:3e:57:c3:d0:ea:96:d6:c2:2f:ec:18:f8:14:15: 6f:c0:9c:e0:b2:9c:2e:bb:93:ee:29:d1:e8:f9:b7:bc:c1:70: 19:cf:4e:46:40:32:a0:04:fb:23:fb:c0:d5:58:a0:b4:d9:be: b3:f8:af:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEyNTExMTAvBgNVBAUTKDUzRDVEQjg3MEU1Q0NENDhFOThENzM1NjBEQkQ1RTY1 OTQ2QzJERDQwHhcNMjQxMTIyMjMxOTM2WhcNMjQxMTI5MjMxOTM2WjAYMRYwFAYD VQQDEw02NzQxMTE4OC0yYTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5yeydkcL2+tw+jwSF/PdGBeJcp5EWw7zT8BIvigjO/N4jm4ULYNBXLx3/sh ysV0ag+nhxTTsyWz0tqrqR8kMvz8kzZ16U7S///rHYBaKqSQkNKSdgULL1vjCqgf +DS2Vugz+xeqjW1g/YZjNoUaxfWiqu8xnAyHiJbamplKgEY9J62yf2xnm2F5R0jS NvJh5A9BSAJrBmmjnh1RInKahkz7jC+/BjVz6CVracW/DFeUv89kdvOmmno+bKPK WqVS/++k+wwJ+2x/ealDb9xrKzDZEc1UtBxqXsI3rCXlmeDNvchMWMW0aqwMS1EL 4NNb3YzUHY/P9u7mUi2AMO1URQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhYLzXK 1mR+M/MNB1p8G9bEMBheMB8GA1UdIwQYMBaAFFPV24cOXM1I6Y1zVg29XmWUbC3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTI1MS9EOTNENzk2MEY3 NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pVanBqWE5XRGIxZVpaUnNM ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U5WGJodzVjelVqcGpYTldEYjFlWlpSc0xkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTI1MS9EOTNENzk2MEY3NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pV anBqWE5XRGIxZVpaUnNMZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnrtmTwQ+Y3wbOxUTT5bWyry8Ur5vIlwFlzMvrILymhbV85s5GnPl2 ItCY2FqG3QaDBv/2XZhtBDmRfsgYctgqJcIeeKLw8UM8N0ELN/KZr47Lu6dszDp2 GEh7QYIgmGEtb3B4EwGZCMDVwquEX0qNif7NBkoyKyiTylhV6E0jpkbBlorM5aGG 6UuhWf1uFD1Yptg9/Dow8CAXIeTcB9qGpop59Wgtp439snhs63unFPP1WZbhePLa f1sbE26ztJ8XVC71gyAK5QyRPlfD0OqW1sIv7Bj4FBVvwJzgspwuu5PuKdHo+be8 wXAZz05GQDKgBPsj+8DVWKC02b6z+K+n -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:37 2024 by rpki-client on console-fra.rpki-client.org