$ rpki-client -vvf rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft File: PyDCnh1-UV3z49hapE51H4Fycxo.mft (raw, json) Hash identifier: KWWnNqcBdD8F/MQaG4MT+U1QCqGVCwpnCAwAPoVT76Q= Subject key identifier: FD:BF:FE:DF:28:69:62:EE:DF:D9:10:16:84:E0:A1:6C:03:E0:6B:6F Authority key identifier: 3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A Certificate issuer: /CN=A91210E0/serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft Manifest number: D2 Signing time: Sat 23 Nov 2024 03:47:28 +0000 Manifest this update: Sat 23 Nov 2024 03:47:27 +0000 Manifest next update: Sat 30 Nov 2024 03:47:27 +0000 Files and hashes: 1: PyDCnh1-UV3z49hapE51H4Fycxo.crl (hash: vDS2D+Ty9rAy+OFVgpjB/YV2hTkHyEe3HBIDAYV8zfk=) 2: 503E43126E5E11EEB39D9E48C4F9AE02.roa (hash: c9GNR8NeMbVcrDhg97LAFKm5i+SYI0xZQAH5pfSpcg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91210E0/serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Validity Not Before: Nov 23 03:47:27 2024 GMT Not After : Nov 30 03:47:27 2024 GMT Subject: CN=6741504f-98c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:41:84:a2:f3:92:58:c5:20:3f:1d:f5:d7:5a: 31:27:a0:56:52:45:ff:ee:75:16:bd:fa:c1:2c:cd: 41:7c:71:0d:37:51:f5:3b:64:22:43:d2:09:04:59: 0d:a2:bc:d5:01:cf:6f:5f:eb:7c:38:65:8d:c9:ea: a4:02:51:b3:1f:50:37:38:c2:8e:d5:02:21:7d:03: 47:21:38:87:1b:c7:6f:36:60:b0:87:f1:21:85:c5: 75:1b:92:16:65:e8:5a:7c:ca:de:1e:6b:50:0f:39: 12:e8:5b:15:5e:78:b0:e6:73:2b:67:9a:cf:83:b5: 8e:4b:d9:a2:1f:95:cf:94:4c:1c:db:f9:52:6b:2f: 17:70:04:af:bd:5f:5a:32:3c:22:29:37:1e:f2:8c: 96:0c:a7:46:62:2b:9f:65:7e:7e:01:98:31:d1:bb: 31:3f:e6:b6:12:9f:25:5f:f5:88:8b:71:d2:e0:02: 66:36:02:32:e2:94:55:6e:6a:42:30:5f:3e:39:88: 36:cc:35:3a:63:9a:9a:4c:3e:7b:dd:15:46:af:a9: 42:1c:a3:c2:80:35:b3:41:f5:64:b4:60:3d:c6:77: a4:69:7b:01:9a:a0:f4:b6:f5:5d:f9:b7:b3:78:c2: 85:16:31:e0:6e:64:6b:a0:80:6c:ef:84:93:69:7c: b1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:BF:FE:DF:28:69:62:EE:DF:D9:10:16:84:E0:A1:6C:03:E0:6B:6F X509v3 Authority Key Identifier: keyid:3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:a4:0b:94:4b:03:31:bf:9a:7d:6a:ee:ae:b7:49:e2:73:a0: 6d:a4:42:82:1c:3e:ba:02:49:96:57:93:f5:f0:d5:eb:62:7b: 72:7d:7f:80:81:a0:81:b3:2a:69:7e:00:08:0f:07:91:f9:27: f9:23:14:20:97:06:dd:63:8b:cd:15:50:bf:94:3b:f0:97:b1: b0:2a:60:8b:6c:b6:26:01:af:b7:12:b9:a1:d7:a7:8a:7c:55: a8:2f:53:17:c8:af:19:22:a5:4d:23:80:53:50:e9:4c:c5:c6: ec:8d:8b:31:f4:67:a1:29:e6:e8:82:f0:b1:4b:a1:8c:9e:14: 48:52:7b:88:57:d5:af:02:72:bd:de:a5:58:f4:ee:49:6f:83: 22:2a:6c:97:b8:98:ca:d2:36:b6:fc:22:ae:16:c8:69:02:7f: 09:43:bc:b3:91:6d:79:e2:92:54:b7:ea:68:6e:74:c2:ae:e5: 38:d7:3c:fa:2a:d6:e9:85:16:b8:63:3e:4e:c9:73:70:38:4b: c3:e4:a1:88:d0:49:13:a7:9f:23:ea:e1:67:fb:76:3c:4a:71: 19:4f:fb:8e:ca:76:a7:d4:89:ab:64:d4:72:fe:62:7b:1c:3f: 36:fd:4f:5e:60:be:e5:3a:9f:36:5c:11:68:46:9d:bd:f5:96: 6e:83:3f:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjEwRTAxMTAvBgNVBAUTKDNGMjBDMjlFMUQ3RTUxNURGM0UzRDg1QUE0NEU3NTFG ODE3MjczMUEwHhcNMjQxMTIzMDM0NzI3WhcNMjQxMTMwMDM0NzI3WjAYMRYwFAYD VQQDEw02NzQxNTA0Zi05OGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUGEovOSWMUgPx3111oxJ6BWUkX/7nUWvfrBLM1BfHENN1H1O2QiQ9IJBFkN orzVAc9vX+t8OGWNyeqkAlGzH1A3OMKO1QIhfQNHITiHG8dvNmCwh/EhhcV1G5IW ZehafMreHmtQDzkS6FsVXniw5nMrZ5rPg7WOS9miH5XPlEwc2/lSay8XcASvvV9a MjwiKTce8oyWDKdGYiufZX5+AZgx0bsxP+a2Ep8lX/WIi3HS4AJmNgIy4pRVbmpC MF8+OYg2zDU6Y5qaTD573RVGr6lCHKPCgDWzQfVktGA9xnekaXsBmqD0tvVd+bez eMKFFjHgbmRroIBs74STaXyxtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2//t8o aWLu39kQFoTgoWwD4GtvMB8GA1UdIwQYMBaAFD8gwp4dflFd8+PYWqROdR+BcnMa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTBFMC8zRUIxMEM5QTZE OTgxMUVFQUEyQUEzNkFDNEY5QUUwMi9QeURDbmgxLVVWM3o0OWhhcEU1MUg0Rnlj eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5RENuaDEtVVYzejQ5aGFwRTUxSDRGeWN4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTBFMC8zRUIxMEM5QTZEOTgxMUVFQUEyQUEzNkFDNEY5QUUwMi9QeURDbmgxLVVW M3o0OWhhcEU1MUg0RnljeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMpAuUSwMxv5p9au6ut0nic6BtpEKCHD66AkmWV5P18NXrYntyfX+A gaCBsyppfgAIDweR+Sf5IxQglwbdY4vNFVC/lDvwl7GwKmCLbLYmAa+3Ermh16eK fFWoL1MXyK8ZIqVNI4BTUOlMxcbsjYsx9GehKebogvCxS6GMnhRIUnuIV9WvAnK9 3qVY9O5Jb4MiKmyXuJjK0ja2/CKuFshpAn8JQ7yzkW154pJUt+pobnTCruU41zz6 KtbphRa4Yz5OyXNwOEvD5KGI0EkTp58j6uFn+3Y8SnEZT/uOynan1ImrZNRy/mJ7 HD82/U9eYL7lOp82XBFoRp299ZZugz8m -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:44 2024 by rpki-client on console-fra.rpki-client.org