$ rpki-client -vvf rpki.apnic.net/member_repository/A912756D/8DCA32CE6B5411EFB8A8A61AC4F9AE02/y3nZvhDc9wJG_GlGNFiuyiQly44.mft File: y3nZvhDc9wJG_GlGNFiuyiQly44.mft (raw, json) Hash identifier: LYlGyt0RjBedGbtaBWZIbalgSp3kHQn4/qgRirACeNA= Subject key identifier: 41:AD:80:EE:CC:8B:9C:30:EF:AC:2C:76:F8:6F:14:2A:C5:FD:69:24 Authority key identifier: CB:79:D9:BE:10:DC:F7:02:46:FC:69:46:34:58:AE:CA:24:25:CB:8E Certificate issuer: /CN=A912756D/serialNumber=CB79D9BE10DCF70246FC69463458AECA2425CB8E Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3nZvhDc9wJG_GlGNFiuyiQly44.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912756D/8DCA32CE6B5411EFB8A8A61AC4F9AE02/y3nZvhDc9wJG_GlGNFiuyiQly44.mft Manifest number: 2A Signing time: Sat 23 Nov 2024 05:40:12 +0000 Manifest this update: Sat 23 Nov 2024 05:40:11 +0000 Manifest next update: Sat 30 Nov 2024 05:40:11 +0000 Files and hashes: 1: y3nZvhDc9wJG_GlGNFiuyiQly44.crl (hash: TqnkFdbMqkeAyG4YMG6FhUZXGQsBbTeuoaCRSVNfpOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912756D/8DCA32CE6B5411EFB8A8A61AC4F9AE02/y3nZvhDc9wJG_GlGNFiuyiQly44.crl rsync://rpki.apnic.net/member_repository/A912756D/8DCA32CE6B5411EFB8A8A61AC4F9AE02/y3nZvhDc9wJG_GlGNFiuyiQly44.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3nZvhDc9wJG_GlGNFiuyiQly44.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912756D/serialNumber=CB79D9BE10DCF70246FC69463458AECA2425CB8E Validity Not Before: Nov 23 05:40:11 2024 GMT Not After : Nov 30 05:40:11 2024 GMT Subject: CN=67416abc-01cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ac:3e:b1:c1:28:5f:e8:0e:38:61:5d:fb:ec: b4:2e:33:0f:b4:cf:a1:bb:6b:cf:ce:aa:53:d7:e0: c6:16:0e:10:29:75:5a:a3:15:15:ef:96:64:b4:3e: 73:e9:9d:67:41:6e:76:d3:d0:c0:41:0e:47:7b:47: 4b:d8:e8:2d:b2:d8:a1:da:19:3c:87:af:a1:69:87: 21:f5:b4:c9:2d:73:e3:75:b7:bf:ec:7d:4f:46:ac: 57:4b:31:64:ab:b7:7e:e7:76:0d:85:f7:43:c6:2a: f4:ad:9b:3b:23:84:0d:85:53:bc:25:0d:4d:54:d5: 24:ed:70:ae:24:f2:21:69:f9:b0:9d:e7:40:e3:00: c6:a3:72:ea:fc:fa:39:ea:54:c1:40:d0:cc:72:b6: 7b:8d:40:a9:d7:f3:d9:ec:e8:e9:29:33:b4:15:47: 77:e3:92:0a:7b:38:87:20:51:e1:f3:82:2f:ba:ca: 5d:32:c2:5a:fa:4d:66:f1:50:6b:04:d2:ee:5d:6a: f4:d4:26:e7:e8:66:83:22:eb:da:db:46:69:06:7a: 29:a8:ea:df:be:12:7d:56:4c:91:8c:5e:45:5a:b6: a1:66:32:c9:f9:62:19:18:ce:34:a5:ae:72:fd:0a: 53:de:73:f0:bc:63:20:02:9d:48:ac:46:7e:ca:a1: 89:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:AD:80:EE:CC:8B:9C:30:EF:AC:2C:76:F8:6F:14:2A:C5:FD:69:24 X509v3 Authority Key Identifier: keyid:CB:79:D9:BE:10:DC:F7:02:46:FC:69:46:34:58:AE:CA:24:25:CB:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912756D/8DCA32CE6B5411EFB8A8A61AC4F9AE02/y3nZvhDc9wJG_GlGNFiuyiQly44.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3nZvhDc9wJG_GlGNFiuyiQly44.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912756D/8DCA32CE6B5411EFB8A8A61AC4F9AE02/y3nZvhDc9wJG_GlGNFiuyiQly44.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:70:6f:cb:ad:3f:0d:82:82:b5:41:3d:b6:de:45:59:99:98: 79:41:67:8d:99:10:85:57:c8:40:7d:25:f6:e3:6c:af:c9:50: 16:c5:5c:95:21:5c:3a:d8:b2:8a:71:ee:45:57:a1:e7:41:a9: e7:d1:70:65:cb:07:d8:e8:f2:3b:7b:7e:98:b7:3e:57:b1:4d: b9:8c:25:e3:e9:2f:e0:e9:55:f2:d8:e1:07:c2:0a:cb:76:14: bb:36:d3:11:af:5b:5f:2f:0d:f3:78:57:94:da:61:8e:96:35: 9b:54:bf:82:74:ca:c3:c7:ec:5c:30:15:9b:72:b9:d8:41:fb: b9:98:c5:df:67:9b:eb:01:a2:7a:e2:de:6f:a2:ef:3d:4e:98: 61:df:87:88:d5:cd:0a:b6:61:39:1b:cd:2f:62:5c:e8:8b:02: d0:eb:c6:1b:a4:10:2f:93:f7:30:13:65:34:c4:31:cc:62:db: 37:0a:90:c3:20:3c:7b:af:04:92:50:1b:7c:dc:f9:f1:8f:e6: 60:43:f5:5b:21:5e:82:52:e6:73:37:99:33:e8:8a:47:c6:6e: ff:72:1b:59:d4:8b:3b:7b:b2:5e:5b:53:66:22:10:bf:c2:a6: 88:09:d4:61:79:6c:78:5a:3b:a5:19:94:6f:26:4d:e0:90:28: ad:e8:a6:12 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NzU2RDExMC8GA1UEBRMoQ0I3OUQ5QkUxMERDRjcwMjQ2RkM2OTQ2MzQ1OEFFQ0Ey NDI1Q0I4RTAeFw0yNDExMjMwNTQwMTFaFw0yNDExMzAwNTQwMTFaMBgxFjAUBgNV BAMTDTY3NDE2YWJjLTAxY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDErD6xwShf6A44YV377LQuMw+0z6G7a8/OqlPX4MYWDhApdVqjFRXvlmS0PnPp nWdBbnbT0MBBDkd7R0vY6C2y2KHaGTyHr6FphyH1tMktc+N1t7/sfU9GrFdLMWSr t37ndg2F90PGKvStmzsjhA2FU7wlDU1U1STtcK4k8iFp+bCd50DjAMajcur8+jnq VMFA0MxytnuNQKnX89ns6OkpM7QVR3fjkgp7OIcgUeHzgi+6yl0ywlr6TWbxUGsE 0u5davTUJufoZoMi69rbRmkGeimo6t++En1WTJGMXkVatqFmMsn5YhkYzjSlrnL9 ClPec/C8YyACnUisRn7KoYlXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQa2A7syL nDDvrCx2+G8UKsX9aSQwHwYDVR0jBBgwFoAUy3nZvhDc9wJG/GlGNFiuyiQly44w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3NTZELzhEQ0EzMkNFNkI1 NDExRUZCOEE4QTYxQUM0RjlBRTAyL3kzblp2aERjOXdKR19HbEdORml1eWlRbHk0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTNuWnZoRGM5d0pHX0dsR05GaXV5aVFseTQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3 NTZELzhEQ0EzMkNFNkI1NDExRUZCOEE4QTYxQUM0RjlBRTAyL3kzblp2aERjOXdK R19HbEdORml1eWlRbHk0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGdwb8utPw2CgrVBPbbeRVmZmHlBZ42ZEIVXyEB9JfbjbK/JUBbFXJUh XDrYsopx7kVXoedBqefRcGXLB9jo8jt7fpi3PlexTbmMJePpL+DpVfLY4QfCCst2 FLs20xGvW18vDfN4V5TaYY6WNZtUv4J0ysPH7FwwFZtyudhB+7mYxd9nm+sBonri 3m+i7z1OmGHfh4jVzQq2YTkbzS9iXOiLAtDrxhukEC+T9zATZTTEMcxi2zcKkMMg PHuvBJJQG3zc+fGP5mBD9VshXoJS5nM3mTPoikfGbv9yG1nUizt7sl5bU2YiEL/C pogJ1GF5bHhaO6UZlG8mTeCQKK3ophI= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org