$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft File: UtXW_72oj1ReUbr5n32s4ZPAblc.mft (raw, json) Hash identifier: swX2iSHPgEqHwMNpzGPiclHc/JPs/Q8mIbhIEnVfNxc= Subject key identifier: C2:1D:38:0D:AC:8A:44:DA:99:1B:F4:D1:AB:72:9F:3F:67:B9:56:4F Authority key identifier: 52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 Certificate issuer: /CN=A91F17F6/serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Certificate serial: 0776 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft Manifest number: 0770 Signing time: Fri 22 Nov 2024 20:58:07 +0000 Manifest this update: Fri 22 Nov 2024 20:58:06 +0000 Manifest next update: Fri 29 Nov 2024 20:58:06 +0000 Files and hashes: 1: UtXW_72oj1ReUbr5n32s4ZPAblc.crl (hash: adxvqQBBNLLJpeFhd5IyTA7haDqkP4BfonCt1luMsw8=) 2: AF95E6D8F2B711EAA1C01744C4F9AE02.roa (hash: MKiDsu5ueGdBa9te8oknBkNBnhRi0o532gSyxE3s1JA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1910 (0x776) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17F6/serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Validity Not Before: Nov 22 20:58:06 2024 GMT Not After : Nov 29 20:58:06 2024 GMT Subject: CN=6740f05f-ea98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7b:bf:19:53:e1:18:5e:0e:8e:ee:d4:d0:bc: c9:6b:bf:17:5d:7b:60:49:61:00:ec:03:25:aa:7f: 99:ed:cc:24:cd:7e:8b:18:d3:64:e8:30:49:62:6a: f1:27:d3:5f:e9:5b:3e:7c:91:ae:05:c3:d4:ce:e7: 65:91:27:c4:40:97:c7:63:11:40:80:00:a4:47:db: 3f:7a:4d:d8:a2:f9:db:aa:21:f1:6c:d5:34:57:c9: 21:5a:5b:ca:69:9b:58:bd:55:01:a7:fe:f6:ae:83: 8a:c0:48:90:f6:3c:8c:81:fa:6a:0c:b8:ff:aa:9d: 37:22:19:fa:90:21:59:c7:99:dc:4e:97:24:04:a3: de:8e:55:93:36:14:48:9d:27:74:b0:89:f6:97:bb: 02:36:04:99:cc:ca:4f:88:7b:16:14:5a:3a:1b:79: ac:e4:d4:b7:88:41:68:4c:04:85:9c:81:b0:b3:13: 7c:3f:45:b4:5b:2e:0e:5b:76:e1:92:a9:29:64:9d: 05:2f:7d:36:e2:38:f1:0c:3f:0a:80:93:08:31:51: a1:13:90:34:e0:b9:f5:97:59:70:ba:6c:6f:95:80: a8:69:5b:c8:a9:aa:16:84:cc:6a:ce:d4:3f:e3:5d: b6:ce:7f:fe:67:d4:c3:4b:02:d8:bf:ec:05:5c:97: ac:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:1D:38:0D:AC:8A:44:DA:99:1B:F4:D1:AB:72:9F:3F:67:B9:56:4F X509v3 Authority Key Identifier: keyid:52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:11:ee:37:f4:d3:66:50:63:e6:99:0f:e7:af:15:7f:af:cc: 66:91:a4:ff:e1:d3:9f:33:ae:39:ff:b1:f6:f4:ed:a6:98:a8: c2:41:f6:b9:08:c2:73:d0:8b:7c:aa:1e:b7:72:a6:da:79:4a: 0e:37:cc:b2:a5:9c:c8:cf:09:4f:02:b9:e5:74:56:38:d8:25: 4c:76:68:48:ce:94:7f:2d:a6:9c:f1:d5:5e:6e:4a:93:5a:54: 0d:e2:4f:33:1a:f8:2f:28:95:33:9d:ea:c9:d8:1c:d0:c9:65: c5:99:33:81:17:b1:11:d8:8d:d8:59:42:44:38:be:28:45:4e: 72:c6:e9:8e:f1:89:b2:a1:6d:91:28:25:7d:71:e6:eb:f8:2c: c2:c7:b9:1f:bf:20:d0:e3:56:1d:c1:9f:3e:04:01:01:a0:57: 37:51:1b:e9:31:ef:45:0e:d0:8c:fe:cd:9e:8e:88:1b:c3:99: c9:74:48:34:36:e5:58:26:3c:0a:39:4e:b5:90:2b:a2:e7:06: c6:4e:1f:b2:40:4e:ad:64:57:34:86:f4:a6:b4:fd:14:71:4c: 87:00:ac:85:58:5d:c7:8d:8d:f1:f0:70:5d:d7:93:76:d9:09: c6:ec:33:e0:ab:89:fd:43:06:90:0f:0f:7f:48:5d:49:ed:46: 9e:38:e0:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3RjYxMTAvBgNVBAUTKDUyRDVENkZGQkRBODhGNTQ1RTUxQkFGOTlGN0RBQ0Ux OTNDMDZFNTcwHhcNMjQxMTIyMjA1ODA2WhcNMjQxMTI5MjA1ODA2WjAYMRYwFAYD VQQDEw02NzQwZjA1Zi1lYTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHu/GVPhGF4Oju7U0LzJa78XXXtgSWEA7AMlqn+Z7cwkzX6LGNNk6DBJYmrx J9Nf6Vs+fJGuBcPUzudlkSfEQJfHYxFAgACkR9s/ek3YovnbqiHxbNU0V8khWlvK aZtYvVUBp/72roOKwEiQ9jyMgfpqDLj/qp03Ihn6kCFZx5ncTpckBKPejlWTNhRI nSd0sIn2l7sCNgSZzMpPiHsWFFo6G3ms5NS3iEFoTASFnIGwsxN8P0W0Wy4OW3bh kqkpZJ0FL3024jjxDD8KgJMIMVGhE5A04Ln1l1lwumxvlYCoaVvIqaoWhMxqztQ/ 4122zn/+Z9TDSwLYv+wFXJesVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIdOA2s ikTamRv00atynz9nuVZPMB8GA1UdIwQYMBaAFFLV1v+9qI9UXlG6+Z99rOGTwG5X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdGNi9FRDkzQ0VFOEYy QjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2oxUmVVYnI1bjMyczRaUEFi bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V0WFdfNzJvajFSZVVicjVuMzJzNFpQQWJsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdGNi9FRDkzQ0VFOEYyQjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2ox UmVVYnI1bjMyczRaUEFibGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLEe439NNmUGPmmQ/nrxV/r8xmkaT/4dOfM645/7H29O2mmKjCQfa5 CMJz0It8qh63cqbaeUoON8yypZzIzwlPArnldFY42CVMdmhIzpR/Laac8dVebkqT WlQN4k8zGvgvKJUznerJ2BzQyWXFmTOBF7ER2I3YWUJEOL4oRU5yxumO8YmyoW2R KCV9cebr+CzCx7kfvyDQ41YdwZ8+BAEBoFc3URvpMe9FDtCM/s2ejogbw5nJdEg0 NuVYJjwKOU61kCui5wbGTh+yQE6tZFc0hvSmtP0UcUyHAKyFWF3HjY3x8HBd15N2 2QnG7DPgq4n9QwaQDw9/SF1J7UaeOOAL -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:49 2024 by rpki-client on console-ams.rpki-client.org