$ rpki-client -vvf rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft File: x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft (raw, json) Hash identifier: aXzfYhxRNq6WTiCjzj4E2p96Lj3qNfvF3JfS2i3qAzI= Subject key identifier: B9:FC:B1:12:13:DC:43:6A:C9:F6:4F:9A:C2:37:7B:78:4F:4A:EE:D7 Authority key identifier: C7:CF:94:3E:3A:76:4F:37:C0:03:CD:43:5A:2B:85:43:BC:E4:76:09 Certificate issuer: /CN=A91C85E9/serialNumber=C7CF943E3A764F37C003CD435A2B8543BCE47609 Certificate serial: 113C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft Manifest number: 1133 Signing time: Fri 22 Nov 2024 17:15:13 +0000 Manifest this update: Fri 22 Nov 2024 17:15:12 +0000 Manifest next update: Fri 29 Nov 2024 17:15:12 +0000 Files and hashes: 1: x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl (hash: drblYy2fiJMxZu21edka/Sy2THUYTrPFuvSdUL4e01k=) 2: 8446564EF96611E8BE431B17C4F9AE02.roa (hash: M4Uy68TNp94xFF+NcUEXpxwPGkJfanh0Twj3I7FRSFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4412 (0x113c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C85E9/serialNumber=C7CF943E3A764F37C003CD435A2B8543BCE47609 Validity Not Before: Nov 22 17:15:12 2024 GMT Not After : Nov 29 17:15:12 2024 GMT Subject: CN=6740bc21-4214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:cd:ac:50:20:ce:ef:37:03:eb:59:68:ca:f3: b0:a1:73:77:65:4d:50:9f:02:26:84:18:d0:1f:3b: 33:06:14:53:6e:26:17:00:34:6a:c3:94:4c:df:ee: 51:59:9d:67:97:63:f0:23:78:93:8c:75:5f:25:ad: c8:2c:23:31:3f:47:e0:38:a0:74:a9:b8:a0:d8:9d: 08:3f:88:7b:77:64:e9:8a:44:ff:61:16:44:ed:5f: b7:f1:78:fe:89:f2:72:ed:6a:13:db:3a:33:85:0e: 64:8c:39:5d:c7:e9:56:47:bc:01:81:ec:74:ef:93: 14:74:00:f4:a7:86:b7:ed:2f:11:ba:fa:c5:7e:70: 14:4c:50:12:6a:42:73:3e:88:70:13:64:da:7a:e1: f0:72:f5:05:32:a4:8a:b3:6b:28:71:d2:54:64:12: 84:cb:ef:22:ec:b1:a6:22:f2:64:73:fa:3f:a9:1a: c1:32:e6:e4:4b:7e:29:cb:3f:c6:68:a8:06:ff:35: 1c:f2:d4:33:78:37:eb:97:26:44:ac:4c:0c:e4:85: 5d:46:3b:dd:2b:f4:b7:5e:c4:d7:4b:35:5a:b9:5a: bc:e5:ae:f4:8b:4d:06:33:bf:9e:30:c0:c4:38:69: 3a:98:b6:3d:be:a5:8d:52:19:16:0f:b3:c5:74:d8: 1c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:FC:B1:12:13:DC:43:6A:C9:F6:4F:9A:C2:37:7B:78:4F:4A:EE:D7 X509v3 Authority Key Identifier: keyid:C7:CF:94:3E:3A:76:4F:37:C0:03:CD:43:5A:2B:85:43:BC:E4:76:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:62:4f:82:fc:69:2e:45:29:b6:ed:60:0d:11:19:49:8d:b6: fc:d3:4a:ef:35:e9:cd:f7:eb:a3:aa:08:dd:76:48:32:92:d3: 4f:a0:99:93:27:b2:c5:07:2e:5a:81:10:7a:b0:b4:5d:82:98: 9e:e9:73:96:dd:bd:09:00:93:0b:83:78:0a:94:7b:ae:b9:fb: bd:01:9c:a9:93:68:5e:64:5f:08:2a:4a:29:30:cc:1a:b0:f3: b8:fc:3b:df:fe:7f:4a:83:93:d3:8a:28:13:0f:95:61:b7:26: 55:35:49:c3:bd:08:3c:68:42:e7:14:f3:20:53:31:33:00:ec: 1c:dc:7a:02:eb:c6:c0:b7:93:a7:72:93:5f:2b:d3:e5:e3:6c: a2:7a:1c:46:40:f4:45:d6:f3:81:44:5c:6e:57:25:a8:86:09: b4:3e:29:dc:98:5e:b2:2f:bd:50:1a:f6:a6:b9:c2:8d:e0:19: 2e:01:37:3e:7d:59:bc:f5:43:82:ac:f8:90:42:db:f4:f4:f2: 9b:b0:95:ed:60:ba:ae:80:60:7e:54:67:04:da:00:74:fd:4c: a5:8b:0c:6b:c9:ec:6d:c0:01:70:86:c7:eb:f5:78:ad:3b:e7: 7d:50:fe:48:11:fd:fb:f0:ad:72:35:02:ef:63:6d:9b:4f:23: 8f:9e:53:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICETwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1RTkxMTAvBgNVBAUTKEM3Q0Y5NDNFM0E3NjRGMzdDMDAzQ0Q0MzVBMkI4NTQz QkNFNDc2MDkwHhcNMjQxMTIyMTcxNTEyWhcNMjQxMTI5MTcxNTEyWjAYMRYwFAYD VQQDEw02NzQwYmMyMS00MjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3M2sUCDO7zcD61loyvOwoXN3ZU1QnwImhBjQHzszBhRTbiYXADRqw5RM3+5R WZ1nl2PwI3iTjHVfJa3ILCMxP0fgOKB0qbig2J0IP4h7d2TpikT/YRZE7V+38Xj+ ifJy7WoT2zozhQ5kjDldx+lWR7wBgex075MUdAD0p4a37S8RuvrFfnAUTFASakJz PohwE2TaeuHwcvUFMqSKs2socdJUZBKEy+8i7LGmIvJkc/o/qRrBMubkS34pyz/G aKgG/zUc8tQzeDfrlyZErEwM5IVdRjvdK/S3XsTXSzVauVq85a70i00GM7+eMMDE OGk6mLY9vqWNUhkWD7PFdNgcQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLn8sRIT 3ENqyfZPmsI3e3hPSu7XMB8GA1UdIwQYMBaAFMfPlD46dk83wAPNQ1orhUO85HYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODVFOS8wODI1MzhFQ0Y5 NjUxMUU4QkMwNTI0MTFDNEY5QUUwMi94OC1VUGpwMlR6ZkFBODFEV2l1RlE3emtk Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g4LVVQanAyVHpmQUE4MURXaXVGUTd6a2Rnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODVFOS8wODI1MzhFQ0Y5NjUxMUU4QkMwNTI0MTFDNEY5QUUwMi94OC1VUGpwMlR6 ZkFBODFEV2l1RlE3emtkZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDYk+C/GkuRSm27WANERlJjbb800rvNenN9+ujqgjddkgyktNPoJmT J7LFBy5agRB6sLRdgpie6XOW3b0JAJMLg3gKlHuuufu9AZypk2heZF8IKkopMMwa sPO4/Dvf/n9Kg5PTiigTD5VhtyZVNUnDvQg8aELnFPMgUzEzAOwc3HoC68bAt5On cpNfK9Pl42yiehxGQPRF1vOBRFxuVyWohgm0PincmF6yL71QGvamucKN4BkuATc+ fVm89UOCrPiQQtv09PKbsJXtYLqugGB+VGcE2gB0/UyliwxryextwAFwhsfr9Xit O+d9UP5IEf378K1yNQLvY22bTyOPnlPB -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org