$ rpki-client -vvf rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft File: 0ATM-ubwekS9796TeAatucMyn_o.mft (raw, json) Hash identifier: /cjT3iRqvMMpuW96yhHC6WcE/MtBGiwAQzOgJUW4prs= Subject key identifier: 35:19:58:02:E7:64:49:F5:56:96:0D:B8:DD:58:07:36:AA:31:C2:76 Authority key identifier: D0:04:CC:FA:E6:F0:7A:44:BD:EF:DE:93:78:06:AD:B9:C3:32:9F:FA Certificate issuer: /CN=A91E116E/serialNumber=D004CCFAE6F07A44BDEFDE937806ADB9C3329FFA Certificate serial: 176F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft Manifest number: 1763 Signing time: Fri 22 Nov 2024 16:36:29 +0000 Manifest this update: Fri 22 Nov 2024 16:36:28 +0000 Manifest next update: Fri 29 Nov 2024 16:36:28 +0000 Files and hashes: 1: 0ATM-ubwekS9796TeAatucMyn_o.crl (hash: z9ms3G+pp59ZCiY0QXIqvqXynPZBA90cXrE5AfEzx24=) 2: A1021498C53311E7B0B0744BC4F9AE02.roa (hash: Ns6MCGMpSR+zeyD0qeQ8GuU0GoV9G94RijEmcRmZDOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.crl rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5999 (0x176f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E116E/serialNumber=D004CCFAE6F07A44BDEFDE937806ADB9C3329FFA Validity Not Before: Nov 22 16:36:28 2024 GMT Not After : Nov 29 16:36:28 2024 GMT Subject: CN=6740b30d-e2ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:de:12:f5:04:eb:ce:d4:2b:ed:f7:e3:52:61: 7d:cf:3f:4e:35:b9:e2:2b:58:db:fb:b9:30:1d:e9: c0:67:83:85:02:71:67:e5:be:ea:98:32:ab:95:89: 1a:7b:de:76:03:e7:60:df:53:ea:26:d8:ac:75:af: 09:fc:d5:c4:6b:e8:28:ce:0e:d5:98:44:54:45:20: 57:1a:f4:b1:80:8e:c4:7b:b1:42:32:23:6a:5d:c5: bb:c9:5b:dc:34:bb:47:ca:90:14:0e:cf:1f:02:48: 1d:8b:90:f3:28:85:bd:3f:72:e8:89:94:af:eb:06: 0c:e4:95:f4:38:8c:2d:79:14:5f:9a:4c:8a:76:5a: a1:be:a9:6c:fa:d2:a1:69:09:5f:d1:df:4a:67:3f: 3c:fb:b7:19:3f:39:b6:67:78:e7:d6:b4:82:5f:ad: 91:27:c2:b8:4d:f9:9b:3e:69:89:50:6e:18:29:dd: 52:c6:f6:98:2b:00:56:f0:80:97:b1:26:c9:f7:79: 1f:06:4f:30:7e:a2:b8:05:8a:71:20:f9:18:67:5f: de:a1:ec:86:f7:ac:5e:4e:26:f5:86:3c:d3:ec:e6: 59:4f:03:09:25:32:45:b7:53:70:b6:72:f9:70:cd: 26:d3:41:a1:d5:ff:72:6e:64:b5:ca:ad:40:f0:60: 19:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:19:58:02:E7:64:49:F5:56:96:0D:B8:DD:58:07:36:AA:31:C2:76 X509v3 Authority Key Identifier: keyid:D0:04:CC:FA:E6:F0:7A:44:BD:EF:DE:93:78:06:AD:B9:C3:32:9F:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:2e:fd:6f:b1:94:0b:bb:09:aa:15:33:44:60:2a:c6:8f:aa: 1d:19:33:a2:ac:98:f1:27:44:8b:0d:76:93:8a:09:66:8b:98: 19:e5:fd:a1:f8:34:c2:8e:c7:95:b2:0e:83:69:80:db:a3:3c: 05:fb:84:2d:33:28:91:95:8c:ea:fb:61:0e:54:8d:93:ef:a8: dc:b5:01:5e:fe:b2:17:8a:f9:75:c6:10:8c:13:e8:26:4b:43: 0c:c1:cc:bd:df:e7:18:ab:bf:60:55:69:01:5b:b1:17:a4:06: 65:6d:a4:eb:ea:f9:30:2d:3a:ed:d8:41:32:7a:c3:5e:8e:f4: 04:8d:88:25:f9:b7:1e:20:2e:24:40:d8:08:89:e0:10:fa:be: b2:8b:d3:ae:46:35:63:86:4c:3c:c0:7f:09:fb:b4:4e:29:07: 2a:a7:a8:5a:ef:1f:65:06:78:29:d8:be:4c:a1:98:8d:d2:3c: 6d:7e:82:be:95:3e:1a:7c:cc:94:8f:8f:48:8f:9b:c7:9a:a8: ac:4f:58:98:53:ea:7e:e6:41:6d:3c:3e:2f:87:19:9e:65:c0: 4c:3c:d6:10:2b:f2:68:6f:47:bb:06:8a:29:8a:a2:d4:ca:c7: a5:7a:94:f8:50:5d:ab:2e:48:10:65:05:7f:f4:8f:d4:f9:59: 10:71:a3:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExNkUxMTAvBgNVBAUTKEQwMDRDQ0ZBRTZGMDdBNDRCREVGREU5Mzc4MDZBREI5 QzMzMjlGRkEwHhcNMjQxMTIyMTYzNjI4WhcNMjQxMTI5MTYzNjI4WjAYMRYwFAYD VQQDEw02NzQwYjMwZC1lMmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0N4S9QTrztQr7ffjUmF9zz9ONbniK1jb+7kwHenAZ4OFAnFn5b7qmDKrlYka e952A+dg31PqJtisda8J/NXEa+gozg7VmERURSBXGvSxgI7Ee7FCMiNqXcW7yVvc NLtHypAUDs8fAkgdi5DzKIW9P3LoiZSv6wYM5JX0OIwteRRfmkyKdlqhvqls+tKh aQlf0d9KZz88+7cZPzm2Z3jn1rSCX62RJ8K4TfmbPmmJUG4YKd1SxvaYKwBW8ICX sSbJ93kfBk8wfqK4BYpxIPkYZ1/eoeyG96xeTib1hjzT7OZZTwMJJTJFt1NwtnL5 cM0m00Gh1f9ybmS1yq1A8GAZMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUZWALn ZEn1VpYNuN1YBzaqMcJ2MB8GA1UdIwQYMBaAFNAEzPrm8HpEve/ek3gGrbnDMp/6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTE2RS83NDU2Qzc1QUM1 MzIxMUU3OTIxRTNFNDlDNEY5QUUwMi8wQVRNLXVid2VrUzk3OTZUZUFhdHVjTXlu X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBVE0tdWJ3ZWtTOTc5NlRlQWF0dWNNeW5fby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTE2RS83NDU2Qzc1QUM1MzIxMUU3OTIxRTNFNDlDNEY5QUUwMi8wQVRNLXVid2Vr Uzk3OTZUZUFhdHVjTXluX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxLv1vsZQLuwmqFTNEYCrGj6odGTOirJjxJ0SLDXaTiglmi5gZ5f2h +DTCjseVsg6DaYDbozwF+4QtMyiRlYzq+2EOVI2T76jctQFe/rIXivl1xhCME+gm S0MMwcy93+cYq79gVWkBW7EXpAZlbaTr6vkwLTrt2EEyesNejvQEjYgl+bceIC4k QNgIieAQ+r6yi9OuRjVjhkw8wH8J+7ROKQcqp6ha7x9lBngp2L5MoZiN0jxtfoK+ lT4afMyUj49Ij5vHmqisT1iYU+p+5kFtPD4vhxmeZcBMPNYQK/Job0e7BoopiqLU yselepT4UF2rLkgQZQV/9I/U+VkQcaNQ -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:19 2024 by rpki-client on console-ams.rpki-client.org