$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: ZOV/ISqZvXs5rGuRDEL5qoQ/dF5T7vUz1ys7zeoblCU= Subject key identifier: 1A:C8:D0:76:87:7B:B6:68:83:DF:2E:5C:A7:64:7F:2A:3D:8E:8D:F7 Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 0173 Signing time: Sat 23 Nov 2024 02:10:58 +0000 Manifest this update: Sat 23 Nov 2024 02:10:57 +0000 Manifest next update: Sat 30 Nov 2024 02:10:57 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: fjsr0iZxgzANWfckryQ0RFBmluuU3g0FQBVK8+Egr+g=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: yCHbl8QlQbMzjHfu0kPf5s8MBmUK/QILBQq+fNO53wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: Nov 23 02:10:57 2024 GMT Not After : Nov 30 02:10:57 2024 GMT Subject: CN=674139b1-09eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3b:5c:8d:7e:fb:71:20:0c:39:0d:8f:19:35: f0:67:56:41:24:c5:fc:f3:a9:7c:f0:2f:ee:dc:e4: 34:83:25:40:99:73:7a:b6:dd:8a:46:67:47:27:14: 99:14:7e:b0:09:4f:9c:fa:c5:70:b9:c4:25:5d:8c: 2f:b3:ea:30:20:53:31:9c:d9:e2:14:46:54:e8:6c: 69:b5:35:fc:c4:3e:14:91:44:43:17:26:fb:94:09: e7:7d:a1:fd:82:6e:c0:bc:27:b9:d1:62:d0:20:0e: 9b:2f:eb:f2:61:71:35:a3:2a:6f:2c:3e:45:26:89: 86:71:1a:cc:93:a8:e4:3a:93:7d:37:1a:45:76:f6: 45:34:ff:02:56:65:a5:17:46:1a:91:80:99:7a:7a: 55:65:0d:8a:11:4c:02:92:ca:5b:d5:5f:c5:1c:de: 27:f9:f6:cf:74:56:ef:aa:5d:ca:59:fc:5d:79:7a: 1c:d6:78:c7:18:80:ed:db:26:ad:8c:d5:8f:9c:79: 28:9e:57:af:ac:77:fd:e6:e0:52:2a:2b:0a:54:48: 08:eb:99:27:d9:3c:fd:ad:48:58:f5:7a:01:ed:37: 29:a0:90:a3:e8:a0:ae:c7:9b:c2:36:e6:97:12:c1: f6:49:71:74:f6:9e:07:53:bb:0a:43:21:fc:3e:ff: ea:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C8:D0:76:87:7B:B6:68:83:DF:2E:5C:A7:64:7F:2A:3D:8E:8D:F7 X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:4b:0f:9a:3f:92:cf:e1:5a:02:ec:02:26:ab:74:25:6e:20: 33:06:7b:2b:3d:26:5e:ce:d2:fa:65:b5:3e:3e:7d:aa:a5:0a: 08:bc:9e:dc:b5:6b:03:b4:22:cc:65:8f:f4:d1:02:b6:61:09: 45:af:9e:63:37:96:57:d2:3d:c6:b5:fa:a5:cf:1e:d0:b2:37: c5:d3:38:a1:fc:3f:86:53:9c:9e:65:64:be:29:e3:90:c6:a5: d8:6e:66:ee:4d:e9:33:f7:ef:bd:30:1b:da:86:7e:68:fa:81: f9:af:ac:e8:86:28:be:b2:58:bd:ab:be:7b:e0:d3:27:85:fc: 21:48:ec:22:8d:be:1e:e9:3a:b9:d9:bc:7c:61:2c:3e:df:36: 46:3c:46:af:77:ed:5f:8d:60:b4:5d:d2:fc:b8:37:d4:fe:fc: 57:63:29:cd:cb:f9:4b:93:e8:a4:41:08:50:51:f4:a4:c8:46: 7a:36:f0:af:0d:27:33:82:70:1d:39:a8:5c:c8:20:89:43:22: a1:9d:7a:a4:a9:e5:35:42:39:8e:57:a6:84:f7:16:0a:57:68: 4c:6c:df:60:4c:86:bf:6c:ff:c1:32:fb:be:6c:e3:6b:a1:d9: 8e:ac:7c:96:50:81:e6:7a:46:6d:a6:8c:54:c7:54:b5:0c:b8: 40:04:13:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjQxMTIzMDIxMDU3WhcNMjQxMTMwMDIxMDU3WjAYMRYwFAYD VQQDEw02NzQxMzliMS0wOWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDtcjX77cSAMOQ2PGTXwZ1ZBJMX886l88C/u3OQ0gyVAmXN6tt2KRmdHJxSZ FH6wCU+c+sVwucQlXYwvs+owIFMxnNniFEZU6GxptTX8xD4UkURDFyb7lAnnfaH9 gm7AvCe50WLQIA6bL+vyYXE1oypvLD5FJomGcRrMk6jkOpN9NxpFdvZFNP8CVmWl F0YakYCZenpVZQ2KEUwCkspb1V/FHN4n+fbPdFbvql3KWfxdeXoc1njHGIDt2yat jNWPnHkonlevrHf95uBSKisKVEgI65kn2Tz9rUhY9XoB7TcpoJCj6KCux5vCNuaX EsH2SXF09p4HU7sKQyH8Pv/q6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrI0HaH e7Zog98uXKdkfyo9jo33MB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBySw+aP5LP4VoC7AImq3QlbiAzBnsrPSZeztL6ZbU+Pn2qpQoIvJ7c tWsDtCLMZY/00QK2YQlFr55jN5ZX0j3Gtfqlzx7QsjfF0zih/D+GU5yeZWS+KeOQ xqXYbmbuTekz9++9MBvahn5o+oH5r6zohii+sli9q7574NMnhfwhSOwijb4e6Tq5 2bx8YSw+3zZGPEavd+1fjWC0XdL8uDfU/vxXYynNy/lLk+ikQQhQUfSkyEZ6NvCv DSczgnAdOahcyCCJQyKhnXqkqeU1QjmOV6aE9xYKV2hMbN9gTIa/bP/BMvu+bONr odmOrHyWUIHmekZtpoxUx1S1DLhABBMs -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:00 2024 by rpki-client on console-fra.rpki-client.org