$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft File: ueYM8Xn06svblJK6X3ys9FI5zPQ.mft (raw, json) Hash identifier: 0QYzmzUifG7uXZJ59pWwEzYd+BVQjB65Uf2gaDG93NI= Subject key identifier: 31:A7:70:FA:17:A1:93:1D:B3:DE:7B:C7:A0:E7:1E:DA:2F:E3:7C:A6 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft Manifest number: 013E Signing time: Thu 21 Nov 2024 03:10:25 +0000 Manifest this update: Thu 21 Nov 2024 03:10:25 +0000 Manifest next update: Thu 28 Nov 2024 03:10:25 +0000 Files and hashes: 1: ueYM8Xn06svblJK6X3ys9FI5zPQ.crl (hash: TQTFWQp4KUoROm/1O+h9+N08BNQRBX2MVrmPZ2wE5l8=) 2: 7362D03E37C511EFBA013C34C4F9AE02.roa (hash: 9qnuOOqog1w0/6Ft0fo80AwEmtyxbUWJdcXWk0vjBP0=) 3: 14C4C7D4002611EFBD462953C4F9AE02.roa (hash: hi6S2Mh9Zc0AeJAKr2eaBvvBpbecYaUaD50MlmI4NaA=) 4: BD01635A9E0311EF9BB72D70C4F9AE02.roa (hash: WzPfg8xrKMqogipUv19Kx2NAVcJf9lq4ZKvG1t0+PGw=) 5: A13BE9EE8EE911EE8698A64FC4F9AE02.roa (hash: Mvq5bVdFlMJReqRcRT1UlB+kD5cKAIHUsjehv6XxhQw=) 6: E35133A60ED911EE8A4E0A23C4F9AE02.roa (hash: 0JeQuHZgid7beoclA/xi/9JllcC4W+k5qsaH3NkAu1I=) 7: 3F3EDA068CAB11EF8A61C244C4F9AE02.roa (hash: QYliwuhpBsvgSGK1vLAPrcQWygTigKnQuRmPkcl4npY=) 8: 305C2134666211EFB1D51134C4F9AE02.roa (hash: 678Vn3LLWwx5u4uELhujFENcUsNRng8pzaOjm9n/20Y=) 9: 7857C144B87211EE98B04B19C4F9AE02.roa (hash: VfjibvprvBmnfdE90FAhNj0D7QO9B7oG8yc/kCD9FSM=) 10: A069EA0C8EE911EE8698A64FC4F9AE02.roa (hash: 1Kpd2YjRlMJbYQzqvODxmlNt6RPiHgoY7Xsf29roK9M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:10:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Nov 21 03:10:25 2024 GMT Not After : Nov 28 03:10:25 2024 GMT Subject: CN=673ea4a1-b7e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a3:ce:95:50:a8:f9:39:d1:7a:ad:e4:47:86: 3e:f2:92:c0:53:80:e0:f4:39:d6:01:8d:f1:7c:28: 66:7d:ee:64:e4:4e:31:64:bd:cd:c1:b4:03:66:7c: be:97:8f:dc:f1:98:9e:bb:2f:6d:1b:83:b4:8e:ed: 47:05:1c:84:2d:eb:2f:60:c3:85:e4:51:0a:26:1f: 39:26:3d:c5:70:b0:e8:10:9c:47:7f:1d:86:19:5b: 2e:5d:31:7f:f6:3b:da:a1:54:1d:6a:f5:ed:ed:ef: 09:42:5d:24:ea:d2:87:dc:43:8d:d4:c3:17:41:3e: 8d:ab:ed:71:29:5d:1e:7b:a2:c2:bc:2b:e0:cf:90: af:4e:50:1a:d4:3d:f7:79:c2:bb:8a:42:7e:4d:7f: 43:0e:0f:6e:e7:d2:e6:27:0b:ee:da:de:bb:ae:44: 1e:e5:f6:8d:31:86:b2:bf:b2:fa:ae:52:d7:4c:b8: 6d:59:3b:6e:72:98:df:67:69:17:c8:f6:93:d2:89: 45:f2:64:ea:15:6b:f0:47:e5:85:43:31:dc:2c:1e: f5:21:a9:02:34:2e:ba:aa:7e:53:7d:42:39:da:bc: 01:ea:cb:46:2f:59:ba:2a:fd:bb:20:18:c4:d8:19: 82:fe:58:d4:e2:7c:48:93:0f:95:06:78:27:b2:e1: 01:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:A7:70:FA:17:A1:93:1D:B3:DE:7B:C7:A0:E7:1E:DA:2F:E3:7C:A6 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:87:26:1f:cf:4f:80:94:12:21:92:b4:b0:73:65:b9:6d:19: b6:55:93:eb:e6:95:e2:29:95:1a:af:15:eb:08:47:50:5e:3c: fd:a9:57:27:be:0d:4e:b9:45:88:70:42:b4:8c:ee:6d:a1:b8: 79:89:62:34:f5:91:88:5d:6b:3e:7b:49:82:28:31:77:37:b2: 5f:ea:de:4d:5d:08:e7:73:82:f7:68:a7:6d:84:36:2b:74:0c: 12:08:9b:f0:40:e6:20:9e:6e:77:52:f3:4c:26:95:41:18:5c: 70:29:39:a5:f1:c8:55:3d:1d:a1:39:0b:b6:f4:08:54:31:71: 89:c8:a0:81:73:09:c2:b1:d6:e1:53:66:e1:c6:36:65:40:f8: 5d:32:6c:4e:12:43:b2:34:c1:a4:62:de:58:86:21:1d:99:f6: ae:10:89:90:c4:12:20:1c:c1:f4:0d:ee:ca:4e:1a:ab:eb:a2: b6:90:55:66:52:b9:ba:1c:58:69:c3:6b:9b:f0:fb:cb:bb:b4: 5a:b5:5e:43:fd:ba:fe:aa:32:6f:15:a3:07:e8:82:7d:28:dd: 08:02:9d:2b:9d:9a:3c:eb:6d:a5:65:77:91:d0:8a:a4:72:7f: 55:34:d2:77:7b:8a:44:75:dd:76:ef:b3:d8:75:99:eb:9b:e2: 8c:47:19:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjQxMTIxMDMxMDI1WhcNMjQxMTI4MDMxMDI1WjAYMRYwFAYD VQQDEw02NzNlYTRhMS1iN2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qPOlVCo+TnReq3kR4Y+8pLAU4Dg9DnWAY3xfChmfe5k5E4xZL3NwbQDZny+ l4/c8Zieuy9tG4O0ju1HBRyELesvYMOF5FEKJh85Jj3FcLDoEJxHfx2GGVsuXTF/ 9jvaoVQdavXt7e8JQl0k6tKH3EON1MMXQT6Nq+1xKV0ee6LCvCvgz5CvTlAa1D33 ecK7ikJ+TX9DDg9u59LmJwvu2t67rkQe5faNMYayv7L6rlLXTLhtWTtucpjfZ2kX yPaT0olF8mTqFWvwR+WFQzHcLB71IakCNC66qn5TfUI52rwB6stGL1m6Kv27IBjE 2BmC/ljU4nxIkw+VBngnsuEBBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGncPoX oZMds957x6DnHtov43ymMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTAzQi9BRjk2NzE2NjBCNkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZz dmJsSks2WDN5czlGSTV6UFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAahyYfz0+AlBIhkrSwc2W5bRm2VZPr5pXiKZUarxXrCEdQXjz9qVcn vg1OuUWIcEK0jO5tobh5iWI09ZGIXWs+e0mCKDF3N7Jf6t5NXQjnc4L3aKdthDYr dAwSCJvwQOYgnm53UvNMJpVBGFxwKTml8chVPR2hOQu29AhUMXGJyKCBcwnCsdbh U2bhxjZlQPhdMmxOEkOyNMGkYt5YhiEdmfauEImQxBIgHMH0De7KThqr66K2kFVm Urm6HFhpw2ub8PvLu7RatV5D/br+qjJvFaMH6IJ9KN0IAp0rnZo8622lZXeR0Iqk cn9VNNJ3e4pEdd1277PYdZnrm+KMRxmd -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:08 2024 by rpki-client on console-fra.rpki-client.org