$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft File: uLVa9atmqP-naRykPaKmtJuiRUA.mft (raw, json) Hash identifier: fFzmrZ+Hp1ll1IVt4HAB5CagLhtbZfXT8FAOLmz/eSQ= Subject key identifier: 9B:B8:20:46:DD:FD:2D:82:D3:D5:0D:AD:BE:53:5A:CC:39:78:D8:B3 Authority key identifier: B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 Certificate issuer: /CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Certificate serial: 0B96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft Manifest number: 0B90 Signing time: Fri 22 Nov 2024 18:45:07 +0000 Manifest this update: Fri 22 Nov 2024 18:45:07 +0000 Manifest next update: Fri 29 Nov 2024 18:45:07 +0000 Files and hashes: 1: uLVa9atmqP-naRykPaKmtJuiRUA.crl (hash: 7ZtCm+wI88EhfWnvVPNkuywaEXgohLUDYOjhVl53uKI=) 2: B3E5DF2A14ED11EAACAB5E5DC4F9AE02.roa (hash: ++rPUSlMpoi9eLFVPVW9RrgE1IucmU2oByp7QGwJQiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2966 (0xb96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Validity Not Before: Nov 22 18:45:07 2024 GMT Not After : Nov 29 18:45:07 2024 GMT Subject: CN=6740d133-7afe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:03:01:19:c4:ed:1f:e1:03:4a:2b:c5:df:9f: 7f:43:93:15:6b:b6:9c:97:e1:d1:11:b1:c2:d2:71: 6b:ca:73:11:af:d5:47:31:e3:c7:d8:4b:21:58:b2: da:3b:3a:3d:20:f7:34:e5:e2:77:ae:be:b6:c5:96: 8b:7f:b0:f6:03:73:33:82:ea:ec:bf:8e:b4:bc:b0: 96:61:e8:af:66:a8:7b:1b:a2:0b:77:7d:1c:c7:ce: 77:09:b5:67:fe:3b:54:9e:57:cb:af:e2:31:44:18: fa:85:15:97:79:d1:cc:b0:7a:ca:5a:da:50:7d:98: 00:6a:79:cf:f1:70:1a:e2:4a:52:b4:00:cd:0e:73: 3e:66:e8:b6:2d:e0:f1:67:18:e8:07:d9:f1:8d:cb: 54:db:72:1f:3c:ce:cc:a8:66:2c:8c:2f:24:b0:b2: ec:ea:89:2d:4e:63:98:2d:f0:d0:77:bb:2a:3d:68: ff:21:cc:24:fd:a7:4f:db:9b:9e:8d:1f:35:d8:8f: d3:d1:26:01:78:f2:34:58:d2:00:26:a8:30:59:75: e0:d3:ee:e6:fd:ec:06:fa:cf:00:93:b3:53:a1:24: 56:ee:d7:b0:58:3b:96:b4:6d:bc:c3:c2:83:b2:fa: 6c:5c:b5:45:82:95:7a:36:f0:5d:67:78:93:45:6e: e2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B8:20:46:DD:FD:2D:82:D3:D5:0D:AD:BE:53:5A:CC:39:78:D8:B3 X509v3 Authority Key Identifier: keyid:B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:8e:3a:51:84:09:d2:6d:24:05:75:2a:00:5e:db:3a:d8:7e: 7d:ec:4d:e0:91:91:9b:74:aa:1a:c3:95:aa:75:0b:0a:39:c9: a9:a5:ea:b4:6a:7a:a0:9b:c5:2d:d8:3f:33:00:86:68:5f:35: 03:b0:ec:3e:fa:88:db:da:12:27:a8:82:e2:a3:a6:f0:81:38: 70:3c:e2:8d:eb:2d:2d:ff:9f:b3:18:eb:06:3a:aa:e5:37:50: 1c:e2:9d:79:66:91:c4:77:a4:9a:79:e8:4b:d5:db:d4:c6:09: d6:b5:d7:60:76:17:be:69:27:0b:54:e6:40:5e:71:09:67:15: 58:10:d5:38:a3:54:65:5b:12:c4:52:18:70:90:8b:06:9b:09: d5:02:61:d5:29:5c:8d:94:cf:f0:74:83:62:18:f6:77:26:99: ff:54:32:17:a9:db:4e:33:2a:4a:39:1f:1b:2c:b9:5e:f4:a5: 65:c0:72:c3:87:9f:7f:41:df:8b:b4:29:72:d3:e1:62:b9:9f: 6c:8a:77:6a:35:42:d7:d4:0c:6f:9b:e8:6d:6c:4a:3a:31:7a: 44:ea:d7:1f:93:70:9b:90:f2:65:04:b6:6b:a6:d4:9b:dc:65: 9c:e8:d1:d9:24:f4:62:e1:30:fd:57:3c:f5:75:6a:8f:36:d5: cf:7f:e0:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3NzgxMTAvBgNVBAUTKEI4QjU1QUY1QUI2NkE4RkZBNzY5MUNBNDNEQTJBNkI0 OUJBMjQ1NDAwHhcNMjQxMTIyMTg0NTA3WhcNMjQxMTI5MTg0NTA3WjAYMRYwFAYD VQQDEw02NzQwZDEzMy03YWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQMBGcTtH+EDSivF359/Q5MVa7acl+HREbHC0nFrynMRr9VHMePH2EshWLLa Ozo9IPc05eJ3rr62xZaLf7D2A3Mzgursv460vLCWYeivZqh7G6ILd30cx853CbVn /jtUnlfLr+IxRBj6hRWXedHMsHrKWtpQfZgAannP8XAa4kpStADNDnM+Zui2LeDx ZxjoB9nxjctU23IfPM7MqGYsjC8ksLLs6oktTmOYLfDQd7sqPWj/Icwk/adP25ue jR812I/T0SYBePI0WNIAJqgwWXXg0+7m/ewG+s8Ak7NToSRW7tewWDuWtG28w8KD svpsXLVFgpV6NvBdZ3iTRW7iawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJu4IEbd /S2C09UNrb5TWsw5eNizMB8GA1UdIwQYMBaAFLi1WvWrZqj/p2kcpD2iprSbokVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTc3OC8zRERDMUFDMDE0 RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQLW5hUnlrUGFLbXRKdWlS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VMVmE5YXRtcVAtbmFSeWtQYUttdEp1aVJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTc3OC8zRERDMUFDMDE0RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQ LW5hUnlrUGFLbXRKdWlSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChjjpRhAnSbSQFdSoAXts62H597E3gkZGbdKoaw5WqdQsKOcmppeq0 anqgm8Ut2D8zAIZoXzUDsOw++ojb2hInqILio6bwgThwPOKN6y0t/5+zGOsGOqrl N1Ac4p15ZpHEd6SaeehL1dvUxgnWtddgdhe+aScLVOZAXnEJZxVYENU4o1RlWxLE UhhwkIsGmwnVAmHVKVyNlM/wdINiGPZ3Jpn/VDIXqdtOMypKOR8bLLle9KVlwHLD h59/Qd+LtCly0+FiuZ9sindqNULX1Axvm+htbEo6MXpE6tcfk3CbkPJlBLZrptSb 3GWc6NHZJPRi4TD9Vzz1dWqPNtXPf+B0 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org