$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: wHrzf6Du3lKInp33K5yUkGtcOikg3FqeIizY6ExiDvk= Subject key identifier: E1:BA:EF:D6:94:AC:75:CC:B0:FA:EA:F9:25:1B:33:EF:39:FE:6E:A6 Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 2535 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 2523 Signing time: Sun 24 Nov 2024 15:39:59 +0000 Manifest this update: Sun 24 Nov 2024 15:39:59 +0000 Manifest next update: Sun 01 Dec 2024 15:39:59 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: Jdl7H9XoDUuFO3oLQTeFHoWUrg+pyipWOd1yJo6GJy4=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: r2l9PMUwUPmFlLD0bJPq2GaFt2hFCVBPd/q1VmL9CSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9525 (0x2535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: Nov 24 15:39:59 2024 GMT Not After : Dec 1 15:39:59 2024 GMT Subject: CN=674348cf-daf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7a:e9:67:16:7f:59:f7:3c:9c:28:ed:70:75: 76:87:2d:31:07:a5:22:23:91:af:87:3e:dd:26:55: e4:60:42:6d:bd:e2:16:8e:1e:9b:07:6e:43:a7:2d: 0a:c1:aa:fb:54:d4:53:11:3d:a2:de:5f:16:64:38: b6:81:70:64:02:87:d3:c5:95:38:09:89:78:d3:5b: 98:f2:d2:37:50:42:fd:78:be:26:b3:a0:96:44:ca: 83:a5:be:8b:5e:74:90:e3:cb:3a:28:65:eb:a9:ba: 84:e7:07:99:27:4e:79:b7:fe:73:b4:f8:7d:ba:44: 58:a4:95:3f:2f:80:a0:89:0e:a1:17:5d:fa:2b:aa: d7:6b:ec:95:14:d4:c7:6a:7b:43:b2:d9:20:0a:f5: 46:a9:38:12:b5:ea:c1:d5:5e:55:85:83:53:04:e1: b7:fc:eb:7f:62:3a:41:9d:e3:8d:63:06:f8:92:77: 10:ff:bf:0c:e0:96:81:65:cb:24:c1:6a:f2:45:3d: 1a:72:a5:ed:de:08:dd:e8:f2:60:88:73:d9:af:00: 9f:36:a7:5d:39:07:8b:e8:b9:34:1f:61:8d:d7:d5: 4a:09:20:50:5a:e2:7b:a0:99:ac:0a:8d:31:00:3a: 59:56:a1:15:67:28:a6:df:d5:73:1a:4d:4e:55:ac: 27:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:BA:EF:D6:94:AC:75:CC:B0:FA:EA:F9:25:1B:33:EF:39:FE:6E:A6 X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:51:1d:30:44:a1:4c:0c:8b:a8:87:5d:7a:c2:b4:0c:f5:41: 9f:9f:0a:0a:4e:af:9f:59:e2:a4:39:ad:93:6f:57:9b:38:37: b3:a2:20:ac:d8:c8:62:a3:56:16:9f:f1:bb:d7:5b:1f:08:15: 10:62:88:b6:f7:ad:8c:ae:d8:9a:2d:0c:23:52:9f:b6:17:21: bb:76:80:e4:6b:96:90:13:57:fb:53:3a:27:f1:5b:48:23:e4: 14:77:70:c6:47:d5:e2:1a:15:31:4c:02:9b:32:e9:55:80:9b: 8f:0e:63:13:15:30:bb:bb:22:5a:2e:38:24:f7:4d:e8:39:d5: 13:b2:48:95:da:69:0b:93:ef:b1:13:06:2d:a2:d4:0b:81:17: 3a:ee:28:44:2d:9d:06:56:a7:4c:ad:3a:a9:e5:3d:47:ae:74: 62:6c:86:d6:5c:3a:43:f0:2a:2f:08:49:6c:ac:79:32:07:53: 1a:40:4d:27:51:9c:8a:48:d3:60:31:d0:03:38:d4:4a:ef:91: 94:56:a2:3d:1d:53:61:74:71:fe:e7:d7:3b:64:df:b3:1e:a0: cf:c4:ec:2c:ad:a8:37:27:50:51:b6:85:49:a1:cc:07:b0:cc: db:b2:5b:3c:88:42:0a:35:e2:84:e7:53:64:aa:c3:2b:08:18: 53:99:33:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjQxMTI0MTUzOTU5WhcNMjQxMjAxMTUzOTU5WjAYMRYwFAYD VQQDEw02NzQzNDhjZi1kYWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnrpZxZ/Wfc8nCjtcHV2hy0xB6UiI5Gvhz7dJlXkYEJtveIWjh6bB25Dpy0K war7VNRTET2i3l8WZDi2gXBkAofTxZU4CYl401uY8tI3UEL9eL4ms6CWRMqDpb6L XnSQ48s6KGXrqbqE5weZJ055t/5ztPh9ukRYpJU/L4CgiQ6hF136K6rXa+yVFNTH antDstkgCvVGqTgSterB1V5VhYNTBOG3/Ot/YjpBneONYwb4kncQ/78M4JaBZcsk wWryRT0acqXt3gjd6PJgiHPZrwCfNqddOQeL6Lk0H2GN19VKCSBQWuJ7oJmsCo0x ADpZVqEVZyim39VzGk1OVawn9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOG679aU rHXMsPrq+SUbM+85/m6mMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALUR0wRKFMDIuoh116wrQM9UGfnwoKTq+fWeKkOa2Tb1ebODezoiCs 2Mhio1YWn/G711sfCBUQYoi2962MrtiaLQwjUp+2FyG7doDka5aQE1f7Uzon8VtI I+QUd3DGR9XiGhUxTAKbMulVgJuPDmMTFTC7uyJaLjgk903oOdUTskiV2mkLk++x EwYtotQLgRc67ihELZ0GVqdMrTqp5T1HrnRibIbWXDpD8CovCElsrHkyB1MaQE0n UZyKSNNgMdADONRK75GUVqI9HVNhdHH+59c7ZN+zHqDPxOwsrag3J1BRtoVJocwH sMzbsls8iEIKNeKE51NkqsMrCBhTmTOv -----END CERTIFICATE-----Generated at Sun Nov 24 17:19:59 2024 by rpki-client on console-fra.rpki-client.org