$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft File: UNqjonFb7c_nFOVthUH381hubvc.mft (raw, json) Hash identifier: fkOoO51CwUOoIRoaXk/ypi4hYDs8ULaXA/lBO57KFHM= Subject key identifier: 82:B8:69:BF:62:E4:B2:C8:4A:79:D4:4A:ED:16:32:97:80:D7:C5:42 Authority key identifier: 50:DA:A3:A2:71:5B:ED:CF:E7:14:E5:6D:85:41:F7:F3:58:6E:6E:F7 Certificate issuer: /CN=A91CBBC4/serialNumber=50DAA3A2715BEDCFE714E56D8541F7F3586E6EF7 Certificate serial: 047D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNqjonFb7c_nFOVthUH381hubvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft Manifest number: 0475 Signing time: Fri 22 Nov 2024 23:38:10 +0000 Manifest this update: Fri 22 Nov 2024 23:38:10 +0000 Manifest next update: Fri 29 Nov 2024 23:38:10 +0000 Files and hashes: 1: UNqjonFb7c_nFOVthUH381hubvc.crl (hash: RPHtGoPrprUf5Rr85UnuizfaqtO8OyWvic/QKtS/ngk=) 2: 8E8A375A1FA211EC8159E249C4F9AE02.roa (hash: UmJY1BD67VDnKp5rZ226vLsxoH0ZrDVh7W0eseZRq3E=) 3: 2B6A29201FA011ECB867890CC4F9AE02.roa (hash: 4+mLuZV5Nt0cl9Ubgj32YK1pqSi8VCWk8bD6pptyrXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.crl rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNqjonFb7c_nFOVthUH381hubvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1149 (0x47d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBBC4/serialNumber=50DAA3A2715BEDCFE714E56D8541F7F3586E6EF7 Validity Not Before: Nov 22 23:38:10 2024 GMT Not After : Nov 29 23:38:10 2024 GMT Subject: CN=674115e2-a080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:88:75:a6:0a:09:7e:e9:76:40:63:0b:81:ac: da:2f:c5:6d:f3:e1:74:c3:53:79:b5:a1:8f:97:07: be:80:fc:f0:72:61:05:81:23:a8:92:4b:87:f8:2a: 10:14:1a:cf:0f:51:f0:a2:97:7f:54:d2:19:5b:7c: 8a:aa:e6:d6:27:28:61:3c:08:5f:2f:f5:1e:ac:e4: a4:c8:8a:97:18:8a:ed:62:b8:9f:9d:53:7d:d7:2c: b6:fe:89:41:e6:9d:b7:41:51:2b:40:b1:fe:e8:40: 6b:55:94:73:74:9c:8d:ae:f9:95:00:00:83:e4:45: 00:c7:e9:b5:40:4d:87:de:28:cf:2d:10:c5:fe:81: 62:ac:94:f2:49:17:37:8b:f6:8f:19:a7:ba:4b:0b: 53:a5:ba:b0:86:01:6b:be:a3:49:95:f7:57:f8:17: e0:63:c7:a1:79:52:5e:1e:da:16:5e:45:2a:49:9e: b8:54:99:a6:8f:29:0c:c6:90:10:d4:94:1d:4a:c3: ff:49:d1:1b:06:44:1b:bc:57:11:0e:0a:31:87:8d: 1a:cd:ac:f8:5a:aa:95:00:c4:0b:4d:58:c8:67:9c: 08:eb:7e:54:34:c2:59:6f:ed:cd:21:e4:a8:fb:9a: 8c:67:1c:1a:17:01:bf:da:4d:a3:39:fe:69:a8:3d: 1c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B8:69:BF:62:E4:B2:C8:4A:79:D4:4A:ED:16:32:97:80:D7:C5:42 X509v3 Authority Key Identifier: keyid:50:DA:A3:A2:71:5B:ED:CF:E7:14:E5:6D:85:41:F7:F3:58:6E:6E:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNqjonFb7c_nFOVthUH381hubvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:cf:4d:dd:cd:f5:12:d2:c9:3c:96:97:c4:86:01:03:35:9c: 1c:e4:3e:78:0a:72:87:5f:ce:d7:55:8c:f6:04:73:ca:4e:fd: f4:69:bf:4b:aa:b7:2b:3a:70:61:d3:3f:72:10:a8:56:63:0e: 48:b7:6a:71:2e:cf:0c:35:10:64:78:78:01:9d:d5:44:41:b0: 6f:ba:6a:14:3a:a2:d1:16:f2:43:05:0a:4b:f4:96:54:c7:db: 9c:72:7f:f8:04:23:ae:3c:1e:c7:4c:06:3a:e4:bb:e7:5b:69: 74:52:72:6e:a2:d6:61:68:c3:d4:b2:fc:57:18:ea:21:11:d8: 1a:6b:89:f0:fc:54:bb:29:71:a7:6d:94:2d:fd:c1:7b:00:26: 0a:fc:9a:ff:97:5e:bc:74:0a:f7:ad:91:f1:01:c8:49:f2:c0: 09:54:09:73:7f:3b:6c:f1:ee:d5:60:f6:09:ab:1b:37:dc:4b: 7c:a0:6d:b5:f9:8d:4e:1b:bf:29:b2:3e:39:46:84:35:bf:d2: b2:53:5b:22:63:7b:bc:26:b0:c9:17:a7:5b:c3:2f:03:22:5e: 22:ae:be:f1:19:84:7d:53:e3:a7:17:56:2f:8c:9c:cc:24:2f: 94:d4:8a:9c:2c:ae:b8:71:64:55:30:b1:0a:cc:ee:d4:9f:fe: 1f:8b:72:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCQzQxMTAvBgNVBAUTKDUwREFBM0EyNzE1QkVEQ0ZFNzE0RTU2RDg1NDFGN0Yz NTg2RTZFRjcwHhcNMjQxMTIyMjMzODEwWhcNMjQxMTI5MjMzODEwWjAYMRYwFAYD VQQDEw02NzQxMTVlMi1hMDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4h1pgoJful2QGMLgazaL8Vt8+F0w1N5taGPlwe+gPzwcmEFgSOokkuH+CoQ FBrPD1Hwopd/VNIZW3yKqubWJyhhPAhfL/UerOSkyIqXGIrtYrifnVN91yy2/olB 5p23QVErQLH+6EBrVZRzdJyNrvmVAACD5EUAx+m1QE2H3ijPLRDF/oFirJTySRc3 i/aPGae6SwtTpbqwhgFrvqNJlfdX+BfgY8eheVJeHtoWXkUqSZ64VJmmjykMxpAQ 1JQdSsP/SdEbBkQbvFcRDgoxh40azaz4WqqVAMQLTVjIZ5wI635UNMJZb+3NIeSo +5qMZxwaFwG/2k2jOf5pqD0cEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIK4ab9i 5LLISnnUSu0WMpeA18VCMB8GA1UdIwQYMBaAFFDao6JxW+3P5xTlbYVB9/NYbm73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkJDNC8zQzRCMDEzMjFG OUMxMUVDOTA5NEYwNURDNEY5QUUwMi9VTnFqb25GYjdjX25GT1Z0aFVIMzgxaHVi dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VOcWpvbkZiN2NfbkZPVnRoVUgzODFodWJ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkJDNC8zQzRCMDEzMjFGOUMxMUVDOTA5NEYwNURDNEY5QUUwMi9VTnFqb25GYjdj X25GT1Z0aFVIMzgxaHVidmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFz03dzfUS0sk8lpfEhgEDNZwc5D54CnKHX87XVYz2BHPKTv30ab9L qrcrOnBh0z9yEKhWYw5It2pxLs8MNRBkeHgBndVEQbBvumoUOqLRFvJDBQpL9JZU x9uccn/4BCOuPB7HTAY65LvnW2l0UnJuotZhaMPUsvxXGOohEdgaa4nw/FS7KXGn bZQt/cF7ACYK/Jr/l168dAr3rZHxAchJ8sAJVAlzfzts8e7VYPYJqxs33Et8oG21 +Y1OG78psj45RoQ1v9KyU1siY3u8JrDJF6dbwy8DIl4irr7xGYR9U+OnF1YvjJzM JC+U1IqcLK64cWRVMLEKzO7Un/4fi3Ig -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:37 2024 by rpki-client on console-fra.rpki-client.org