$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft File: YhuBwQnlqnjYKfMKV9o1MwglT2k.mft (raw, json) Hash identifier: oGlq8XLc4b7IQZXiHeMDxsgO7sUvCRmFtt6QbGlZv0k= Subject key identifier: FB:07:17:1A:3F:B5:0A:C2:43:BD:77:40:C5:0D:C1:44:B4:13:55:71 Authority key identifier: 62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 Certificate issuer: /CN=A9138D62/serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Certificate serial: 03DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft Manifest number: 03D5 Signing time: Sat 23 Nov 2024 00:12:06 +0000 Manifest this update: Sat 23 Nov 2024 00:12:05 +0000 Manifest next update: Sat 30 Nov 2024 00:12:05 +0000 Files and hashes: 1: YhuBwQnlqnjYKfMKV9o1MwglT2k.crl (hash: HX6OjEnH9gwEFTNcTSKLsUHenHlcIJWlEfazVPichdU=) 2: 31E51BB65FD311EC9AA5DA4EC4F9AE02.roa (hash: bAaCSc9TYM7K2UkBDoNWyjDrI2lpV2TgVDZgy3NjGCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 987 (0x3db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D62/serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Validity Not Before: Nov 23 00:12:05 2024 GMT Not After : Nov 30 00:12:05 2024 GMT Subject: CN=67411dd6-1227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f7:c2:1f:07:38:19:f0:15:f1:c5:01:f5:7e: 15:7a:4d:f2:61:68:22:6e:bc:b5:6e:f7:3e:6e:4f: 73:de:f8:82:18:ad:47:66:89:4b:df:c1:da:1f:91: e8:58:e1:c4:37:a8:45:d7:d8:29:99:15:f3:c0:4d: 5e:b7:c6:19:9b:28:f5:74:35:90:3f:8d:56:f3:e2: 38:b4:7e:5c:6b:10:02:7d:d0:ba:df:9a:3d:5b:b6: 5e:3d:63:b0:82:0e:5b:60:fd:4f:68:e9:60:3a:4d: 5e:56:62:3b:f3:60:cb:98:cd:26:51:1a:bb:08:12: ce:c0:cc:97:52:49:25:2d:1d:4e:33:75:04:a0:d4: 24:34:82:83:b3:c9:19:e9:20:9d:fa:5e:5d:12:26: 9f:e1:fd:61:35:af:79:d9:ac:5e:34:79:d9:7f:ff: 71:56:73:4f:c1:e8:02:81:f0:9f:e3:85:89:6c:50: 7b:2b:c2:4d:e5:23:aa:9b:76:57:9c:88:6d:11:94: 64:68:d0:33:50:4c:e2:50:1f:9d:cf:38:34:c8:b1: 8b:39:10:37:e4:96:c1:91:34:ec:3e:a1:bf:9e:0d: 49:06:42:57:c7:f0:b1:df:fb:76:4d:51:b1:93:ed: a7:49:f5:f1:3b:e0:20:d4:3a:a7:ae:6e:e7:5a:d3: 29:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:07:17:1A:3F:B5:0A:C2:43:BD:77:40:C5:0D:C1:44:B4:13:55:71 X509v3 Authority Key Identifier: keyid:62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:38:e0:e8:a2:c5:e5:71:27:49:d5:14:ca:81:a3:89:88:f3: 50:32:e8:55:19:87:9c:b0:0d:8d:da:5a:71:48:bc:71:5a:5e: d1:93:eb:e7:44:1b:3d:22:31:d5:76:ff:b7:9e:0f:f4:72:3d: 67:7b:ae:c8:55:49:b5:de:2e:95:42:87:43:71:c5:0d:2f:d3: 4c:41:0d:ed:33:b5:91:e1:b1:2d:05:08:29:73:48:69:e8:98: 69:c9:aa:d1:c7:97:88:1c:b8:4d:85:1d:b9:a9:7c:b6:74:90: ae:8d:4a:77:72:e4:cd:77:03:ac:cd:d7:8d:74:53:69:ad:90: 1f:7e:84:56:53:81:72:64:a6:d2:b3:2e:65:71:1f:44:2f:81: 4f:ad:b5:f9:0b:9f:a7:ff:c7:63:a6:cf:5e:4a:a1:c0:19:1e: ab:d7:45:4e:8e:d1:71:5a:83:cd:88:57:7b:b2:cf:89:aa:6f: e8:6a:97:23:ab:25:a6:36:0f:a6:66:5d:ce:c6:7e:0d:c8:13: 70:6d:65:ab:05:26:40:0f:ea:20:5e:da:cd:7b:3f:ae:78:8c: 7e:ae:9e:1b:a1:e2:05:5a:11:6c:62:95:30:42:90:4e:99:15: 42:9c:99:b5:be:5e:9e:da:90:23:87:b0:6d:b9:d4:9e:d4:7f: 28:f6:2a:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhENjIxMTAvBgNVBAUTKDYyMUI4MUMxMDlFNUFBNzhEODI5RjMwQTU3REEzNTMz MDgyNTRGNjkwHhcNMjQxMTIzMDAxMjA1WhcNMjQxMTMwMDAxMjA1WjAYMRYwFAYD VQQDEw02NzQxMWRkNi0xMjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuffCHwc4GfAV8cUB9X4Vek3yYWgibry1bvc+bk9z3viCGK1HZolL38HaH5Ho WOHEN6hF19gpmRXzwE1et8YZmyj1dDWQP41W8+I4tH5caxACfdC635o9W7ZePWOw gg5bYP1PaOlgOk1eVmI782DLmM0mURq7CBLOwMyXUkklLR1OM3UEoNQkNIKDs8kZ 6SCd+l5dEiaf4f1hNa952axeNHnZf/9xVnNPwegCgfCf44WJbFB7K8JN5SOqm3ZX nIhtEZRkaNAzUEziUB+dzzg0yLGLORA35JbBkTTsPqG/ng1JBkJXx/Cx3/t2TVGx k+2nSfXxO+Ag1Dqnrm7nWtMpzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPsHFxo/ tQrCQ713QMUNwUS0E1VxMB8GA1UdIwQYMBaAFGIbgcEJ5ap42CnzClfaNTMIJU9p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQ2Mi9CQ0I0MEE1ODVG Q0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFuallLZk1LVjlvMU13Z2xU MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lodUJ3UW5scW5qWUtmTUtWOW8xTXdnbFQyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQ2Mi9CQ0I0MEE1ODVGQ0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFu allLZk1LVjlvMU13Z2xUMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8OODoosXlcSdJ1RTKgaOJiPNQMuhVGYecsA2N2lpxSLxxWl7Rk+vn RBs9IjHVdv+3ng/0cj1ne67IVUm13i6VQodDccUNL9NMQQ3tM7WR4bEtBQgpc0hp 6JhpyarRx5eIHLhNhR25qXy2dJCujUp3cuTNdwOszdeNdFNprZAffoRWU4FyZKbS sy5lcR9EL4FPrbX5C5+n/8djps9eSqHAGR6r10VOjtFxWoPNiFd7ss+Jqm/oapcj qyWmNg+mZl3Oxn4NyBNwbWWrBSZAD+ogXtrNez+ueIx+rp4boeIFWhFsYpUwQpBO mRVCnJm1vl6e2pAjh7BtudSe1H8o9irL -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:33 2024 by rpki-client on console-fra.rpki-client.org