$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft File: UgupTND7nnwUDfvAzFi5PPVMIvM.mft (raw, json) Hash identifier: 1Z4OGZkLYOzMR20McsoSKUJcbgERbxFN6M7heSLK14E= Subject key identifier: 05:56:FC:CD:C1:63:BD:46:FA:1F:60:1E:BB:89:13:69:B1:06:4F:1E Authority key identifier: 52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 Certificate issuer: /CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft Manifest number: 19 Signing time: Wed 23 Oct 2024 06:37:06 +0000 Manifest this update: Wed 23 Oct 2024 06:37:05 +0000 Manifest next update: Wed 30 Oct 2024 06:37:05 +0000 Files and hashes: 1: UgupTND7nnwUDfvAzFi5PPVMIvM.crl (hash: mQ6wt4dYOIwUMHeL5I7+/p6O1hpCXtob3fnfqozXXa0=) 2: D79D112E6C7F11EF92105459C4F9AE02.roa (hash: HfxBV0ZJ9ixuR1eesZIIiZUZrrfXBYTU4Z7Ry5c0lbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Validity Not Before: Oct 23 06:37:05 2024 GMT Not After : Oct 30 06:37:05 2024 GMT Subject: CN=67189992-2e71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8b:ba:55:b2:81:18:06:58:68:6f:83:31:3c: be:82:e7:a5:3c:7a:d9:e6:8f:f7:76:f7:33:b6:c9: ef:10:54:72:22:0b:54:c3:14:97:d6:76:f4:65:64: 7c:ac:c5:bc:30:46:d9:f7:80:80:2a:fb:28:4d:56: 71:70:ab:5d:ce:eb:cd:cf:00:08:04:10:54:54:3c: 80:73:af:b2:bb:75:50:d7:1c:4f:e6:e5:d6:87:b5: b7:10:82:fc:2b:7c:a3:11:21:8d:af:e1:04:9b:30: 61:71:43:ba:f1:c4:a2:35:53:76:eb:48:15:38:44: 5a:eb:b6:7c:d6:de:f9:53:2d:ae:2e:41:3a:20:6e: ba:e7:c4:bb:b3:76:30:27:42:02:7e:a3:9a:bb:c8: c7:d9:06:7f:dc:3a:c7:27:d8:34:d9:93:56:d7:83: 25:db:e9:cb:51:48:9d:41:fe:90:cd:1e:45:30:aa: 56:bc:a1:92:31:fc:f0:b6:75:95:cc:f0:95:7a:e9: c6:95:ca:2f:d6:ba:e5:06:c7:ad:fe:9a:84:b5:5a: 84:ee:34:01:c7:5f:13:85:ef:a6:ea:f1:53:ec:f5: 1c:06:1f:7f:25:21:27:e6:cb:d4:83:85:19:08:ba: 12:92:89:04:bb:f9:46:5f:9b:e2:24:03:56:d0:ee: cb:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:56:FC:CD:C1:63:BD:46:FA:1F:60:1E:BB:89:13:69:B1:06:4F:1E X509v3 Authority Key Identifier: keyid:52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:f9:84:91:04:b3:d1:d6:39:1b:59:59:ee:5a:88:ea:ae:33: 24:2b:ed:e2:63:0c:fb:11:0a:e2:c6:62:6a:5b:80:b5:1d:f5: d9:01:a9:eb:0b:a4:3b:91:d7:76:a2:cc:e1:ea:5e:1b:76:cf: ec:d7:9c:1e:53:be:b4:ff:9c:8b:e7:74:31:cb:a0:78:9a:9a: f7:e6:36:c3:93:a2:95:d2:ff:a4:d5:b2:60:d8:89:f3:46:be: e9:f7:1c:86:15:ea:fe:4e:77:ab:3d:eb:fd:09:35:aa:1e:f2: f1:59:82:de:e0:75:79:a3:f5:06:44:1f:5a:94:fe:a5:0d:6b: e5:89:d2:9f:70:d0:3a:f6:b2:7e:5d:e6:1b:04:d9:f5:c1:e1: 14:10:4d:72:ab:80:d2:96:72:84:b9:18:25:6d:cf:da:c3:d8: 10:15:79:aa:d9:9f:6c:2a:c6:ff:0c:94:e7:c8:61:cf:5c:97: db:92:e9:ed:a2:9c:dc:14:49:1e:f3:b9:f8:3f:3d:1d:f6:d7: c7:6b:43:61:c0:1d:24:6f:49:60:9d:b6:dd:00:04:9f:e4:1d: 2f:a4:5b:b4:99:5f:7e:6e:f8:56:7e:75:97:bf:b3:27:eb:5f: 6f:1a:ec:48:47:8c:31:c5:f8:ab:36:cf:3d:a6:45:d6:70:c7: 78:c8:50:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODk4MTExMC8GA1UEBRMoNTIwQkE5NENEMEZCOUU3QzE0MERGQkMwQ0M1OEI5M0NG NTRDMjJGMzAeFw0yNDEwMjMwNjM3MDVaFw0yNDEwMzAwNjM3MDVaMBgxFjAUBgNV BAMTDTY3MTg5OTkyLTJlNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwi7pVsoEYBlhob4MxPL6C56U8etnmj/d29zO2ye8QVHIiC1TDFJfWdvRlZHys xbwwRtn3gIAq+yhNVnFwq13O683PAAgEEFRUPIBzr7K7dVDXHE/m5daHtbcQgvwr fKMRIY2v4QSbMGFxQ7rxxKI1U3brSBU4RFrrtnzW3vlTLa4uQTogbrrnxLuzdjAn QgJ+o5q7yMfZBn/cOscn2DTZk1bXgyXb6ctRSJ1B/pDNHkUwqla8oZIx/PC2dZXM 8JV66caVyi/WuuUGx63+moS1WoTuNAHHXxOF76bq8VPs9RwGH38lISfmy9SDhRkI uhKSiQS7+UZfm+IkA1bQ7stZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBVb8zcFj vUb6H2Aeu4kTabEGTx4wHwYDVR0jBBgwFoAUUgupTND7nnwUDfvAzFi5PPVMIvMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OTgxLzFDRjZDRDc0NkM3 RjExRUY5MTREN0Q1N0M0RjlBRTAyL1VndXBUTkQ3bm53VURmdkF6Rmk1UFBWTUl2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVWd1cFRORDdubndVRGZ2QXpGaTVQUFZNSXZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 OTgxLzFDRjZDRDc0NkM3RjExRUY5MTREN0Q1N0M0RjlBRTAyL1VndXBUTkQ3bm53 VURmdkF6Rmk1UFBWTUl2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEP5hJEEs9HWORtZWe5aiOquMyQr7eJjDPsRCuLGYmpbgLUd9dkBqesL pDuR13aizOHqXht2z+zXnB5TvrT/nIvndDHLoHiamvfmNsOTopXS/6TVsmDYifNG vun3HIYV6v5Od6s96/0JNaoe8vFZgt7gdXmj9QZEH1qU/qUNa+WJ0p9w0Dr2sn5d 5hsE2fXB4RQQTXKrgNKWcoS5GCVtz9rD2BAVearZn2wqxv8MlOfIYc9cl9uS6e2i nNwUSR7zufg/PR3218drQ2HAHSRvSWCdtt0ABJ/kHS+kW7SZX35u+FZ+dZe/syfr X28a7EhHjDHF+Ks2zz2mRdZwx3jIUH4= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:04 2024 by rpki-client on console-ams.rpki-client.org