$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft File: u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft (raw, json) Hash identifier: 8CQdPSsxF+ql0dbS0JihsCcQH6R/farracTVEEgi16k= Subject key identifier: 75:9D:B3:4B:0A:AE:61:53:BC:57:92:AB:24:9C:5D:DF:65:DF:EA:14 Authority key identifier: BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 Certificate issuer: /CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft Manifest number: 44 Signing time: Thu 21 Nov 2024 05:28:54 +0000 Manifest this update: Thu 21 Nov 2024 05:28:53 +0000 Manifest next update: Thu 28 Nov 2024 05:28:53 +0000 Files and hashes: 1: u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl (hash: 7PnvZ1EnvuVySQ9vj7rOD49jImhnDO3ODAUnlGybf3A=) 2: 4D189DD4728311EFA9CECE43C4F9AE02.roa (hash: P4IIy61smLYU2tRECRiNr+Llnp12HyUuxQYTt0cXgxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Validity Not Before: Nov 21 05:28:53 2024 GMT Not After : Nov 28 05:28:53 2024 GMT Subject: CN=673ec516-2455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:05:48:13:97:35:e0:73:54:48:f0:36:4a:25: 34:0f:a4:50:58:b0:7e:d4:98:8c:57:33:16:19:96: 67:78:dd:6b:2b:05:66:b8:e3:5f:69:e6:0d:75:6a: d2:81:d3:7e:37:49:67:cb:cf:5b:50:16:95:64:a4: 15:7a:10:1c:9d:9a:ba:2d:59:72:9e:a2:78:e8:2f: 87:9a:00:81:fe:97:c1:48:ee:b7:a5:19:cf:40:d7: 5e:8d:88:ce:4e:14:5b:b3:21:6e:95:45:3a:82:fb: 23:82:d6:1c:0a:a5:2d:6b:af:1c:10:21:26:93:0d: 22:e0:ff:bd:de:e0:ea:af:3c:02:1c:3e:d9:11:58: ba:9d:20:ca:c5:e3:72:3c:e7:d1:f4:1e:17:de:af: bd:41:f3:f2:23:c2:1d:66:b3:ae:11:a0:7e:a1:62: cd:68:0b:4d:72:9c:93:c4:3c:84:49:b6:36:33:97: 79:f4:04:ae:ec:dd:00:fb:d5:b7:9f:de:b0:a8:55: b5:e8:ed:35:d1:d4:91:82:b3:42:37:19:1a:a0:05: 37:f9:a5:e3:34:c2:62:21:1d:c2:74:d5:14:0b:01: 3a:0e:e6:ca:d2:e4:e3:77:4b:f5:21:7f:76:72:f2: 72:3f:c5:5e:67:c1:79:a3:45:e1:cd:ab:fb:29:06: b8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9D:B3:4B:0A:AE:61:53:BC:57:92:AB:24:9C:5D:DF:65:DF:EA:14 X509v3 Authority Key Identifier: keyid:BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:97:3b:bf:0f:e2:3a:f2:cc:49:c8:40:a0:21:f3:f7:c2:76: a9:be:b0:84:8d:df:5e:d9:2d:4b:c7:47:0d:3e:70:cd:0f:5d: 5d:6e:25:84:03:9f:18:0d:ca:b6:b8:04:f2:d5:9c:bd:30:9f: ff:9b:be:c5:a7:12:21:2c:04:4b:93:a8:54:f5:25:d6:04:73: 4c:4b:f1:9b:d9:4e:42:81:ed:29:d0:df:b3:a4:2e:e4:31:f0: 28:d1:85:5e:5f:29:0f:65:07:95:4d:79:77:61:b2:19:b2:ae: c5:6e:52:7f:c0:8b:11:3d:e5:84:9a:c2:f7:47:cd:17:6b:e2: f8:56:58:d6:8b:6c:9b:87:4a:e2:78:70:a4:ec:c1:ce:2d:df: d6:44:d0:88:fa:84:c5:45:47:a9:a2:29:12:06:4d:e1:26:7c: f2:ba:9a:68:ff:9d:8b:78:69:ae:6d:44:95:60:cf:ab:63:ae: d6:d9:5e:4b:25:63:07:8b:77:27:2d:ca:97:92:ae:83:dd:60: db:98:c1:3b:f6:0d:6a:1b:ac:5a:67:d5:0d:8d:6b:fd:55:e6: 8e:7c:f8:da:3a:f7:18:bf:af:b6:b3:0b:4f:9e:06:a5:ab:ef: a3:96:32:cf:b6:fc:67:44:eb:40:b1:fd:d8:0b:f7:a2:cc:9a: ec:4e:84:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUU4NTExMC8GA1UEBRMoQkJFODAzRkI3NTdFMEM0N0QzMjA0NTQ1MjE4N0I3NEFF MjcxMTFGMDAeFw0yNDExMjEwNTI4NTNaFw0yNDExMjgwNTI4NTNaMBgxFjAUBgNV BAMTDTY3M2VjNTE2LTI0NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYBUgTlzXgc1RI8DZKJTQPpFBYsH7UmIxXMxYZlmd43WsrBWa4419p5g11atKB 0343SWfLz1tQFpVkpBV6EBydmrotWXKeonjoL4eaAIH+l8FI7relGc9A116NiM5O FFuzIW6VRTqC+yOC1hwKpS1rrxwQISaTDSLg/73e4OqvPAIcPtkRWLqdIMrF43I8 59H0Hhfer71B8/Ijwh1ms64RoH6hYs1oC01ynJPEPIRJtjYzl3n0BK7s3QD71bef 3rCoVbXo7TXR1JGCs0I3GRqgBTf5peM0wmIhHcJ01RQLAToO5srS5ON3S/Uhf3Zy 8nI/xV5nwXmjReHNq/spBrhRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdZ2zSwqu YVO8V5KrJJxd32Xf6hQwHwYDVR0jBBgwFoAUu+gD+3V+DEfTIEVFIYe3SuJxEfAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFRTg1LzA1QTdDRTY4NDVB RTExRUZCNDM1RUI2RkM0RjlBRTAyL3UtZ0QtM1YtREVmVElFVkZJWWUzU3VKeEVm QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdS1nRC0zVi1ERWZUSUVWRklZZTNTdUp4RWZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF RTg1LzA1QTdDRTY4NDVBRTExRUZCNDM1RUI2RkM0RjlBRTAyL3UtZ0QtM1YtREVm VElFVkZJWWUzU3VKeEVmQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABqXO78P4jryzEnIQKAh8/fCdqm+sISN317ZLUvHRw0+cM0PXV1uJYQD nxgNyra4BPLVnL0wn/+bvsWnEiEsBEuTqFT1JdYEc0xL8ZvZTkKB7SnQ37OkLuQx 8CjRhV5fKQ9lB5VNeXdhshmyrsVuUn/AixE95YSawvdHzRdr4vhWWNaLbJuHSuJ4 cKTswc4t39ZE0Ij6hMVFR6miKRIGTeEmfPK6mmj/nYt4aa5tRJVgz6tjrtbZXksl YweLdyctypeSroPdYNuYwTv2DWobrFpn1Q2Na/1V5o58+No69xi/r7azC0+eBqWr 76OWMs+2/GdE60Cx/dgL96LMmuxOhJI= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:50 2024 by rpki-client on console-fra.rpki-client.org