$ rpki-client -vvf rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft File: yyTPMxKhYnFYzDraiI5bywxnzqE.mft (raw, json) Hash identifier: Zlr62FGaFRcEBZiz9nJhrCjt+K8c7HIIc0hvipaF96E= Subject key identifier: 96:D3:E3:8D:1A:62:80:80:D8:DB:8D:1B:5D:7F:2F:4A:40:BA:6C:41 Authority key identifier: CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 Certificate issuer: /CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Certificate serial: 0926 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft Manifest number: 0920 Signing time: Fri 22 Nov 2024 20:04:16 +0000 Manifest this update: Fri 22 Nov 2024 20:04:15 +0000 Manifest next update: Fri 29 Nov 2024 20:04:15 +0000 Files and hashes: 1: yyTPMxKhYnFYzDraiI5bywxnzqE.crl (hash: NlYElZyuKbarstmCqYN+dMymff5V16F5vyU252xXURk=) 2: 4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa (hash: r1SfnOsVtZNnvFGakgXIapWsdBjJIouRhsrzhT3iNeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2342 (0x926) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Validity Not Before: Nov 22 20:04:15 2024 GMT Not After : Nov 29 20:04:15 2024 GMT Subject: CN=6740e3bf-f3c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9a:42:f7:53:94:9a:df:5d:01:74:71:44:9f: 57:6c:35:8a:19:0c:e1:51:56:89:2c:dc:a3:e6:64: c8:ba:5e:ff:20:6e:29:82:0c:ef:8c:9e:c3:db:31: c9:33:82:25:67:20:31:a0:0b:89:9a:e9:34:91:c7: 52:f5:58:c5:b0:cf:fe:89:86:0e:c2:9f:09:b4:2a: 6b:61:43:f0:45:bc:a3:39:2e:af:8a:6f:6e:f5:d5: 32:e3:a9:c5:48:94:76:5f:47:01:9f:43:42:4b:7b: 3d:b2:a9:34:0e:fc:d3:fd:8d:6d:94:ff:8c:4a:92: 3f:9d:cf:50:00:9d:5e:a7:79:e5:b3:16:66:30:28: 26:e3:9e:0e:dd:70:21:58:45:f1:cd:34:79:92:9a: 7f:b3:8f:9b:0c:ea:53:d8:2d:02:c1:e2:d5:2a:6b: a1:9f:e7:f0:29:fe:b5:91:a4:f1:49:fa:58:23:bc: 5c:15:b9:68:ad:52:d5:c5:e2:18:1e:19:eb:2e:c0: a4:f7:3c:02:47:d8:14:f0:78:d1:a5:58:f8:05:a9: fe:4c:86:cc:d2:f1:65:b2:60:4a:d3:7f:3f:6a:e6: 3e:5c:42:4e:ac:86:6c:19:a4:cb:4a:b3:8d:e6:ff: 23:e3:34:d4:93:23:f4:14:ed:ac:24:ac:78:d3:5f: 1d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D3:E3:8D:1A:62:80:80:D8:DB:8D:1B:5D:7F:2F:4A:40:BA:6C:41 X509v3 Authority Key Identifier: keyid:CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:e3:b7:68:d1:60:29:44:e2:bb:06:88:cb:48:91:a0:a7:b4: 6d:3c:16:04:69:8f:70:74:93:86:d3:9c:24:19:07:5c:9f:ba: 74:01:9f:81:0d:8a:c3:d9:2d:5c:dc:45:23:c9:e9:76:90:a0: c4:44:2e:64:05:9c:2d:d8:fa:ce:ce:75:1d:08:32:4c:bf:c1: 40:da:03:e6:92:df:99:29:98:f0:e4:fa:73:3b:ea:57:6f:7d: a7:ac:b1:c6:b4:ec:8f:2b:97:2c:af:d5:a8:ac:c9:05:ba:b9: 8d:3b:b1:9c:ce:b6:15:c5:b9:07:cf:2d:21:fa:67:fe:4c:f8: 47:1b:8e:89:ec:3d:39:1b:8e:27:26:2d:6e:d6:b3:fc:c8:ad: 27:aa:ef:18:c3:fe:3c:d4:c8:af:d7:cd:8a:29:d0:39:b0:0a: 18:7f:d0:be:d0:15:5f:ad:4e:b1:95:42:29:99:ea:7b:78:01: e9:bd:d0:10:7f:8d:d1:f3:f6:8c:e0:85:05:13:9c:e2:91:a3: c7:32:d2:64:87:bf:f8:65:c6:19:b8:fd:71:1c:f9:a8:39:a0: e7:79:ae:50:d2:0d:c8:6d:94:9a:7a:3f:e9:60:0e:d7:6b:5c: 9f:2e:2e:2f:37:be:0e:dd:5b:91:ff:1c:7a:e8:5b:5e:c2:12: 53:6e:02:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIzNDIxMTAvBgNVBAUTKENCMjRDRjMzMTJBMTYyNzE1OENDM0FEQTg4OEU1QkNC MEM2N0NFQTEwHhcNMjQxMTIyMjAwNDE1WhcNMjQxMTI5MjAwNDE1WjAYMRYwFAYD VQQDEw02NzQwZTNiZi1mM2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZpC91OUmt9dAXRxRJ9XbDWKGQzhUVaJLNyj5mTIul7/IG4pggzvjJ7D2zHJ M4IlZyAxoAuJmuk0kcdS9VjFsM/+iYYOwp8JtCprYUPwRbyjOS6vim9u9dUy46nF SJR2X0cBn0NCS3s9sqk0DvzT/Y1tlP+MSpI/nc9QAJ1ep3nlsxZmMCgm454O3XAh WEXxzTR5kpp/s4+bDOpT2C0CweLVKmuhn+fwKf61kaTxSfpYI7xcFblorVLVxeIY HhnrLsCk9zwCR9gU8HjRpVj4Ban+TIbM0vFlsmBK038/auY+XEJOrIZsGaTLSrON 5v8j4zTUkyP0FO2sJKx4018d7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJbT440a YoCA2NuNG11/L0pAumxBMB8GA1UdIwQYMBaAFMskzzMSoWJxWMw62oiOW8sMZ86h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM0Mi8wQjQxMDBDMDhF OEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFluRll6RHJhaUk1Ynl3eG56 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l5VFBNeEtoWW5GWXpEcmFpSTVieXd4bnpxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjM0Mi8wQjQxMDBDMDhFOEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFlu Rll6RHJhaUk1Ynl3eG56cUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ47do0WApROK7BojLSJGgp7RtPBYEaY9wdJOG05wkGQdcn7p0AZ+B DYrD2S1c3EUjyel2kKDERC5kBZwt2PrOznUdCDJMv8FA2gPmkt+ZKZjw5PpzO+pX b32nrLHGtOyPK5csr9WorMkFurmNO7GczrYVxbkHzy0h+mf+TPhHG46J7D05G44n Ji1u1rP8yK0nqu8Yw/481Miv182KKdA5sAoYf9C+0BVfrU6xlUIpmep7eAHpvdAQ f43R8/aM4IUFE5zikaPHMtJkh7/4ZcYZuP1xHPmoOaDnea5Q0g3IbZSaej/pYA7X a1yfLi4vN74O3VuR/xx66FtewhJTbgLs -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org