$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json) Hash identifier: /Nd9BkSNgbW9KJURzU0cV4Ym8ek8DJxuaxeIs9RzKN4= Subject key identifier: 05:34:F0:56:9D:4C:8B:50:58:9C:B8:50:7C:11:4B:A8:27:D5:E0:C6 Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft Manifest number: 32 Signing time: Mon 25 Nov 2024 05:34:53 +0000 Manifest this update: Mon 25 Nov 2024 05:34:52 +0000 Manifest next update: Mon 02 Dec 2024 05:34:52 +0000 Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: yj4LeZyCJq0glmQLDD8CKv/Bdg5+7s7iv2GP++zGMD0=) 2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: 3rKNJDDfmaWD0FlSs2li9ybksdVlO8MQocN7u3VEcT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 05:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Nov 25 05:34:52 2024 GMT Not After : Dec 2 05:34:52 2024 GMT Subject: CN=67440c7c-d8f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:8e:ac:d9:1e:59:af:a9:b8:50:e5:aa:ae:f4: eb:19:7d:19:75:20:4a:d2:f4:1c:dd:0a:bf:25:04: c1:05:6c:5f:75:8c:a0:a2:49:d8:16:30:64:3c:fc: 59:39:6b:e1:b2:a7:ad:56:49:1d:66:34:5b:b1:85: 13:d9:4b:9f:f5:8d:fc:92:11:a2:2c:27:b7:24:1f: 1a:3c:49:d9:3c:16:23:a7:42:e5:43:5b:23:c8:ca: e5:3b:0e:a4:3b:e4:ab:db:90:ae:37:a4:e6:3e:db: 88:1b:43:f1:65:c8:2b:cb:0c:c0:ac:86:91:01:b9: 4d:7c:98:78:fe:b7:2b:db:79:26:92:4c:04:b6:63: 5d:de:11:9d:75:be:2e:0e:37:0c:73:78:27:b4:26: 82:09:eb:80:7c:21:d1:74:89:19:96:71:ef:fa:be: 7b:75:0d:f9:67:a0:a8:14:25:d6:5e:97:93:45:92: 5a:c6:74:cd:7b:8e:56:7f:4f:2d:9f:66:ef:b6:5c: f4:f8:0c:a3:f8:8b:7b:df:48:92:24:21:cb:b8:4b: 6b:01:19:55:67:b1:2f:c3:46:35:a1:49:7e:56:8e: 88:34:ea:f6:37:80:f9:c6:10:5b:77:b0:c3:51:b2: 82:94:45:2c:92:1e:59:27:08:23:47:93:6b:c8:80: 4e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:34:F0:56:9D:4C:8B:50:58:9C:B8:50:7C:11:4B:A8:27:D5:E0:C6 X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:1e:4c:cd:79:19:a2:bf:04:06:5a:67:b2:c3:8b:75:e4:41: b4:78:25:7f:3c:af:8d:63:ef:1e:1b:fc:d8:b8:50:2a:b0:b0: 99:35:08:bd:74:d2:91:a9:87:a9:08:eb:62:7e:04:d4:97:9d: b1:69:12:73:ca:c7:71:ab:45:b0:05:ff:53:0f:7c:41:ec:83: 96:cb:74:22:53:be:d4:f1:1b:a4:79:37:47:74:90:43:a2:81: cc:20:69:27:b4:71:64:a9:f9:33:49:b6:63:94:61:fe:74:ad: 1b:99:22:0d:eb:5e:98:cf:a9:ae:45:93:4f:39:77:4b:c9:c3: 67:40:3e:cd:5c:cb:56:85:05:23:c0:41:90:16:29:3b:96:6f: b9:18:a9:5b:f9:09:6a:bd:99:db:0b:1e:4d:c4:96:92:86:05: 6a:89:36:3e:63:bb:56:4d:eb:67:6c:7f:d2:99:ec:f2:2c:57: fd:10:c7:2a:dc:09:ac:2c:90:ea:39:f3:b3:10:5b:b0:c2:92: 6f:dc:eb:f0:2b:cd:60:03:b6:8b:9d:06:43:b8:1d:5f:47:f4: d7:ec:ea:19:94:2c:c8:95:ba:a2:9f:80:03:2f:15:5b:5e:88: b4:a0:e9:79:fc:1e:68:09:c2:b8:c6:8c:fa:d4:d2:24:8d:6a: 89:cd:d6:07 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QTczNTExMC8GA1UEBRMoNTM3QjFCQTFDMDFCNDg2MzQ3MzhBQTExNTlBRTJCOTU1 OTBEREQ5MTAeFw0yNDExMjUwNTM0NTJaFw0yNDEyMDIwNTM0NTJaMBgxFjAUBgNV BAMTDTY3NDQwYzdjLWQ4ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0jqzZHlmvqbhQ5aqu9OsZfRl1IErS9BzdCr8lBMEFbF91jKCiSdgWMGQ8/Fk5 a+Gyp61WSR1mNFuxhRPZS5/1jfySEaIsJ7ckHxo8Sdk8FiOnQuVDWyPIyuU7DqQ7 5KvbkK43pOY+24gbQ/FlyCvLDMCshpEBuU18mHj+tyvbeSaSTAS2Y13eEZ11vi4O NwxzeCe0JoIJ64B8IdF0iRmWce/6vnt1DflnoKgUJdZel5NFklrGdM17jlZ/Ty2f Zu+2XPT4DKP4i3vfSJIkIcu4S2sBGVVnsS/DRjWhSX5Wjog06vY3gPnGEFt3sMNR soKURSySHlknCCNHk2vIgE7xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBTTwVp1M i1BYnLhQfBFLqCfV4MYwHwYDVR0jBBgwFoAUU3sbocAbSGNHOKoRWa4rlVkN3ZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBNzM1L0QwRTlCMUVFNjM5 QjExRUY5QjREMkE1REM0RjlBRTAyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNa RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVTNzYm9jQWJTR05IT0tvUldhNHJsVmtOM1pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNB NzM1L0QwRTlCMUVFNjM5QjExRUY5QjREMkE1REM0RjlBRTAyL1Uzc2JvY0FiU0dO SE9Lb1JXYTRybFZrTjNaRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB4eTM15GaK/BAZaZ7LDi3XkQbR4JX88r41j7x4b/Ni4UCqwsJk1CL10 0pGph6kI62J+BNSXnbFpEnPKx3GrRbAF/1MPfEHsg5bLdCJTvtTxG6R5N0d0kEOi gcwgaSe0cWSp+TNJtmOUYf50rRuZIg3rXpjPqa5Fk085d0vJw2dAPs1cy1aFBSPA QZAWKTuWb7kYqVv5CWq9mdsLHk3ElpKGBWqJNj5ju1ZN62dsf9KZ7PIsV/0Qxyrc CawskOo587MQW7DCkm/c6/ArzWADtoudBkO4HV9H9Nfs6hmULMiVuqKfgAMvFVte iLSg6Xn8HmgJwrjGjPrU0iSNaonN1gc= -----END CERTIFICATE-----Generated at Mon Nov 25 07:19:52 2024 by rpki-client on console-ams.rpki-client.org