$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft File: UgupTND7nnwUDfvAzFi5PPVMIvM.mft (raw, json) Hash identifier: impFmtibazqb6OxnQayCHjh4nIUkm9dpw15AR/cHcig= Subject key identifier: 7F:AE:4F:AD:36:42:A9:88:E1:9C:30:68:22:87:8F:03:3E:75:57:A9 Authority key identifier: 52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 Certificate issuer: /CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft Manifest number: 29 Signing time: Sat 23 Nov 2024 05:41:16 +0000 Manifest this update: Sat 23 Nov 2024 05:41:16 +0000 Manifest next update: Sat 30 Nov 2024 05:41:16 +0000 Files and hashes: 1: UgupTND7nnwUDfvAzFi5PPVMIvM.crl (hash: MhqEARVZ6kbvAoJpyZ0Ws+NNZsaclLwb/tq0XRs/sgU=) 2: D79D112E6C7F11EF92105459C4F9AE02.roa (hash: HfxBV0ZJ9ixuR1eesZIIiZUZrrfXBYTU4Z7Ry5c0lbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Validity Not Before: Nov 23 05:41:16 2024 GMT Not After : Nov 30 05:41:16 2024 GMT Subject: CN=67416afc-5ee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4b:95:3a:fd:a6:b4:08:7d:98:80:52:2c:cb: e3:c6:a3:de:62:f3:40:2e:75:1a:40:32:9b:e8:49: c7:fe:36:d8:a9:fa:66:90:a4:61:73:05:17:e7:d6: e8:d9:cc:04:e6:14:1c:ba:30:7c:2d:4d:ab:30:91: e5:b1:0d:9b:85:bc:ab:e1:4c:0b:0d:a8:c6:48:c9: 37:41:72:b8:19:52:37:7b:93:e8:75:ac:b6:35:9f: d8:aa:7e:56:43:80:79:b0:59:2e:88:32:52:07:26: 55:9a:65:66:cb:bc:6a:04:59:2c:1f:ab:37:8c:7f: fe:1b:06:4a:bb:81:df:6e:32:77:49:1f:50:91:e6: d9:7b:fd:d8:29:b5:54:b3:bc:1c:a3:e6:7c:7c:53: 35:48:c6:5a:61:2a:e6:98:22:6e:9f:9c:5c:5e:50: d6:25:d8:40:45:69:14:fc:de:d7:38:8f:9c:3b:ec: b2:4e:07:b3:5c:a1:bb:48:29:23:db:ed:46:5d:ae: e5:de:f0:b1:0b:79:0b:ed:9e:66:2a:30:e2:bd:a1: dc:c7:bb:6e:3c:be:25:78:be:9a:d0:08:88:17:bd: c7:e0:37:7c:f3:9f:ee:e8:1d:68:da:74:1a:56:6e: 7c:3e:89:5d:b5:17:09:3e:b8:0f:8a:c9:27:0a:9d: 26:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:AE:4F:AD:36:42:A9:88:E1:9C:30:68:22:87:8F:03:3E:75:57:A9 X509v3 Authority Key Identifier: keyid:52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:b3:4d:63:5d:48:6c:c9:eb:07:d9:86:07:b5:58:06:42:dd: 96:53:20:66:ce:e7:fb:db:cb:3f:20:63:b4:28:d2:2f:8f:22: c8:29:1b:6c:af:38:8a:8f:08:54:3f:ae:eb:5f:e4:23:c2:34: 1a:e3:2d:00:9e:69:ef:ec:93:ae:3f:bb:0e:c0:a0:63:54:c3: 98:42:44:60:9c:67:02:cc:02:70:94:cc:82:6d:87:44:70:67: 29:33:05:e0:60:91:c4:ef:0b:f4:6a:5e:75:6f:aa:9e:1a:63: e7:ec:4f:69:e5:e4:39:d0:b6:0a:9e:4e:fd:ce:9b:37:ec:d7: dc:1e:89:c7:d6:5a:f6:76:74:d1:02:e5:29:f5:42:3b:41:4c: f1:8e:dd:49:e8:f3:47:7b:35:a5:48:10:2e:ae:76:fc:fd:b8: 8e:81:f7:b1:b4:44:00:e0:07:6a:c8:88:47:0d:f7:a0:6b:8a: 31:90:c0:56:e1:d0:49:24:fd:c8:1b:f1:76:28:9f:11:6d:74: 4a:bf:b7:29:d4:24:6f:e5:ee:5d:0e:fd:a9:5d:0c:aa:18:e1: ab:65:74:41:9d:f4:31:4a:22:be:79:fa:8e:55:98:80:d5:22: bc:07:35:6b:6c:d4:f2:b5:18:b9:ef:4d:c2:89:63:a9:cf:b0: cc:ee:76:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODk4MTExMC8GA1UEBRMoNTIwQkE5NENEMEZCOUU3QzE0MERGQkMwQ0M1OEI5M0NG NTRDMjJGMzAeFw0yNDExMjMwNTQxMTZaFw0yNDExMzAwNTQxMTZaMBgxFjAUBgNV BAMTDTY3NDE2YWZjLTVlZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtS5U6/aa0CH2YgFIsy+PGo95i80AudRpAMpvoScf+Ntip+maQpGFzBRfn1ujZ zATmFBy6MHwtTaswkeWxDZuFvKvhTAsNqMZIyTdBcrgZUjd7k+h1rLY1n9iqflZD gHmwWS6IMlIHJlWaZWbLvGoEWSwfqzeMf/4bBkq7gd9uMndJH1CR5tl7/dgptVSz vByj5nx8UzVIxlphKuaYIm6fnFxeUNYl2EBFaRT83tc4j5w77LJOB7NcobtIKSPb 7UZdruXe8LELeQvtnmYqMOK9odzHu248viV4vprQCIgXvcfgN3zzn+7oHWjadBpW bnw+iV21Fwk+uA+KyScKnSZhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUf65PrTZC qYjhnDBoIoePAz51V6kwHwYDVR0jBBgwFoAUUgupTND7nnwUDfvAzFi5PPVMIvMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OTgxLzFDRjZDRDc0NkM3 RjExRUY5MTREN0Q1N0M0RjlBRTAyL1VndXBUTkQ3bm53VURmdkF6Rmk1UFBWTUl2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVWd1cFRORDdubndVRGZ2QXpGaTVQUFZNSXZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 OTgxLzFDRjZDRDc0NkM3RjExRUY5MTREN0Q1N0M0RjlBRTAyL1VndXBUTkQ3bm53 VURmdkF6Rmk1UFBWTUl2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIyzTWNdSGzJ6wfZhge1WAZC3ZZTIGbO5/vbyz8gY7Qo0i+PIsgpG2yv OIqPCFQ/rutf5CPCNBrjLQCeae/sk64/uw7AoGNUw5hCRGCcZwLMAnCUzIJth0Rw ZykzBeBgkcTvC/RqXnVvqp4aY+fsT2nl5DnQtgqeTv3Omzfs19weicfWWvZ2dNEC 5Sn1QjtBTPGO3Uno80d7NaVIEC6udvz9uI6B97G0RADgB2rIiEcN96BrijGQwFbh 0Ekk/cgb8XYonxFtdEq/tynUJG/l7l0O/aldDKoY4atldEGd9DFKIr55+o5VmIDV IrwHNWts1PK1GLnvTcKJY6nPsMzudvI= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:31 2024 by rpki-client on console-fra.rpki-client.org