$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: ijnHPqmjxO6ovb84C3sUP1/u7flMXKGW/aprNe3WQVc= Subject key identifier: EF:FA:44:FD:D4:90:55:8C:20:AF:1E:1A:44:F2:2B:68:30:D1:F1:2B Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 04E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 04D6 Signing time: Fri 22 Nov 2024 23:21:45 +0000 Manifest this update: Fri 22 Nov 2024 23:21:45 +0000 Manifest next update: Fri 29 Nov 2024 23:21:45 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: JMyRs5pr5Vm8usyYM9EdH1EOzQ8gH/rl27ooxZELHtY=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: Tcq182MtoqsdyOozDsgfHLvUMXaT5QP5utPDgkahfpk=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 3aOOVCELLHnIfGs7sXEbEZF8NuxhRTtgWUNx37B19jo=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: V7oi3Gg2bJeyB31QQcYvbv2j/BrInSgpAZM4b3T1xkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1257 (0x4e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Nov 22 23:21:45 2024 GMT Not After : Nov 29 23:21:45 2024 GMT Subject: CN=67411209-99b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:76:c0:43:ff:32:e2:a4:4a:78:1e:ca:ba:01: 30:a6:dd:82:83:3d:66:3b:6a:b3:21:b1:97:46:ed: d9:fd:8a:c1:58:55:ce:e8:fa:87:39:b9:fb:7e:dd: e3:04:68:6b:62:ca:2c:76:ba:09:2a:0c:b6:cc:41: 70:c8:8b:46:57:74:a6:2f:ed:5a:ce:03:ec:ea:c9: e7:6c:5b:ba:99:6c:ed:bc:84:35:c9:85:ae:e9:7b: 0c:46:dd:49:77:16:b6:00:52:0c:a2:50:d2:b2:0d: e6:f2:58:f4:f9:5b:0c:2d:83:3e:4a:8a:9e:f5:f7: ce:98:4b:db:e5:d2:9d:60:16:f3:9b:87:fe:8e:1f: bf:5e:31:32:7d:f3:30:d3:cb:14:e5:4f:d4:6e:be: ac:5d:66:63:2e:41:7b:8e:18:c9:ab:10:40:f8:b2: 82:2c:68:58:4a:fc:57:38:6d:a1:af:27:46:ca:e5: b7:e6:03:03:7c:c2:c4:bd:7e:b3:e3:97:d6:14:8a: e9:a6:df:ea:b2:6f:96:e9:55:90:c9:d3:82:df:75: a2:27:97:69:10:b6:af:9b:b9:b5:8d:3a:01:82:ed: 78:6d:d1:1a:f1:49:a1:87:be:54:ab:d0:ab:93:69: 8d:e6:18:2b:79:50:9d:29:27:95:64:e6:0b:fe:3b: ac:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:FA:44:FD:D4:90:55:8C:20:AF:1E:1A:44:F2:2B:68:30:D1:F1:2B X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:f5:f3:31:88:10:3b:1e:6d:95:89:67:5a:64:c7:7a:a6:21: 2f:c3:32:a3:46:aa:0e:19:33:83:06:0b:63:e3:c3:dc:f2:e2: a4:61:3f:60:e9:76:25:30:21:3d:7e:87:13:3f:3d:75:1b:2c: 72:82:9b:c6:ed:a0:b8:69:95:2e:9a:5e:71:7a:6e:f5:8d:47: 3a:c6:e3:51:d8:ee:13:a6:43:d5:10:59:bc:1e:61:ed:56:c7: 8a:ba:a6:5b:fc:79:82:b4:1b:0d:04:c5:e1:82:5e:53:1c:54: ec:ed:92:56:6a:f2:db:f8:3a:df:22:66:b6:d8:b2:fc:85:fe: 5e:81:ec:94:12:35:de:5b:a3:e6:20:06:97:67:26:0c:b7:12: f9:f3:82:77:0b:73:1a:24:7c:37:30:e2:3c:53:77:42:a1:e4: 1f:28:85:cf:16:5f:b5:e9:17:d7:ae:b3:66:fc:0c:be:88:4f: dd:f0:23:d5:81:a6:bd:df:76:01:93:fe:9c:4f:94:d3:89:3a: e8:48:72:aa:32:52:99:19:31:3b:4b:f0:65:bd:dc:97:07:39: 34:44:fb:da:82:fd:fa:62:9d:c9:cb:fa:ae:c4:1e:cd:ce:71: 4b:61:d1:c5:c1:c2:d2:97:79:42:5e:06:74:cf:90:2e:a9:cf: e8:ec:9b:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjQxMTIyMjMyMTQ1WhcNMjQxMTI5MjMyMTQ1WjAYMRYwFAYD VQQDEw02NzQxMTIwOS05OWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmXbAQ/8y4qRKeB7KugEwpt2Cgz1mO2qzIbGXRu3Z/YrBWFXO6PqHObn7ft3j BGhrYsosdroJKgy2zEFwyItGV3SmL+1azgPs6snnbFu6mWztvIQ1yYWu6XsMRt1J dxa2AFIMolDSsg3m8lj0+VsMLYM+Soqe9ffOmEvb5dKdYBbzm4f+jh+/XjEyffMw 08sU5U/Ubr6sXWZjLkF7jhjJqxBA+LKCLGhYSvxXOG2hrydGyuW35gMDfMLEvX6z 45fWFIrppt/qsm+W6VWQydOC33WiJ5dpELavm7m1jToBgu14bdEa8Umhh75Uq9Cr k2mN5hgreVCdKSeVZOYL/juswwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/6RP3U kFWMIK8eGkTyK2gw0fErMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi9fMxiBA7Hm2ViWdaZMd6piEvwzKjRqoOGTODBgtj48Pc8uKkYT9g 6XYlMCE9focTPz11GyxygpvG7aC4aZUuml5xem71jUc6xuNR2O4TpkPVEFm8HmHt VseKuqZb/HmCtBsNBMXhgl5THFTs7ZJWavLb+DrfIma22LL8hf5egeyUEjXeW6Pm IAaXZyYMtxL584J3C3MaJHw3MOI8U3dCoeQfKIXPFl+16RfXrrNm/Ay+iE/d8CPV gaa933YBk/6cT5TTiTroSHKqMlKZGTE7S/BlvdyXBzk0RPvagv36Yp3Jy/quxB7N znFLYdHFwcLSl3lCXgZ0z5Auqc/o7Jv1 -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:28 2024 by rpki-client on console-ams.rpki-client.org