$ rpki-client -vvf rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft File: Y4g-TKLI593aw5h-SE_R1nLZOUk.mft (raw, json) Hash identifier: THgC+QKLNuiSLxF8r9yu3PilECk+VVzf87vUU6gzK1I= Subject key identifier: 17:A4:C7:49:B7:95:4C:8F:37:74:84:85:89:24:34:E1:8E:D7:FC:75 Authority key identifier: 63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 Certificate issuer: /CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Certificate serial: 0BA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft Manifest number: 0BA2 Signing time: Fri 22 Nov 2024 18:42:21 +0000 Manifest this update: Fri 22 Nov 2024 18:42:21 +0000 Manifest next update: Fri 29 Nov 2024 18:42:21 +0000 Files and hashes: 1: Y4g-TKLI593aw5h-SE_R1nLZOUk.crl (hash: j5CzlFBeVSvfEdY9OYplP9hfEEpx33BZYYqEt+7UEaM=) 2: 9D9E8D0C11DC11EABC4FB55AC4F9AE02.roa (hash: E2q/ZEHSPXl1Ew87PC9tVYqM/dotHBquWrnE6mAYEbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2985 (0xba9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Validity Not Before: Nov 22 18:42:21 2024 GMT Not After : Nov 29 18:42:21 2024 GMT Subject: CN=6740d08d-006d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a0:41:25:55:cc:3a:36:27:0f:d0:9e:9a:3f: 34:aa:0b:d7:fb:73:97:93:07:ae:fc:e7:63:9b:cf: 9e:5c:2b:a1:5b:00:46:42:d1:84:54:7f:b9:b0:6a: f5:8b:99:10:62:14:99:a8:69:56:c7:1b:0b:c5:f4: 29:ca:46:86:81:ec:44:98:73:c3:d4:43:35:bc:7c: 1c:28:64:fc:c4:c6:d3:13:87:81:1d:8f:b7:07:a0: 8f:08:a1:eb:ff:05:c2:9d:63:57:81:cf:ad:4f:cc: b0:bd:71:bd:36:44:13:22:17:aa:21:11:b1:1f:af: e8:10:86:08:e9:d1:1e:00:25:eb:b4:b0:99:39:f6: cf:3c:6d:be:e0:50:2d:c4:eb:00:a7:31:23:32:ba: 3c:4b:47:1d:15:dc:ac:92:4e:9d:61:4d:67:cf:4a: ba:83:9a:18:44:67:18:05:0d:5f:67:6a:59:93:bf: 58:29:fb:7b:cd:df:29:08:9d:ef:02:db:a9:ac:9a: 30:65:93:0c:ac:f2:84:1e:0f:17:cf:f7:7b:6e:18: e6:2c:09:f9:37:f1:07:9b:aa:11:dc:ac:94:64:b0: 2a:ea:85:73:71:5c:86:35:c7:ac:ce:33:7e:ec:d7: 14:c4:b9:42:1b:69:71:ac:10:65:6d:4b:63:29:b0: fa:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A4:C7:49:B7:95:4C:8F:37:74:84:85:89:24:34:E1:8E:D7:FC:75 X509v3 Authority Key Identifier: keyid:63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:57:63:17:a5:8f:87:ac:61:ba:f2:5d:7e:70:94:67:40:de: a9:d0:44:52:8c:9b:2d:4b:e3:46:ff:ce:68:3d:57:56:02:87: 91:c1:f3:02:25:63:a1:f9:7f:17:7d:65:55:61:ae:f3:b8:db: 2a:c9:d3:89:4c:88:f7:4c:69:33:f9:01:c7:bb:b7:fd:21:9a: 5f:f7:47:96:4c:64:98:98:1f:89:83:7b:3b:9f:97:36:43:82: d9:f3:e6:e3:43:9a:0c:16:9f:f2:59:22:86:2e:ed:74:a4:5f: a8:e4:ab:3f:a8:75:72:00:cc:e2:86:53:dc:68:7b:a9:24:90: 28:0c:a5:ff:79:2f:9b:ea:d4:d0:e7:2d:83:c8:d9:1d:68:bb: 6f:7d:8d:c9:dd:ca:f7:13:8c:73:89:6d:29:ff:e3:5e:42:0f: 9b:5d:ca:3f:2a:8a:be:31:e5:b1:3a:43:99:12:5e:6c:cf:c4: 1c:e0:64:a3:cd:a5:d3:b6:31:d0:18:53:51:a0:fa:ce:6a:ab: 1e:e1:ba:6f:8f:62:23:9d:7c:c2:92:d6:8a:08:05:27:ea:97: c8:81:45:6d:d3:a8:29:65:74:f2:a5:41:3f:92:29:a8:04:94: da:1a:16:30:d6:c1:5d:3f:9b:1c:4c:77:11:78:eb:c9:92:0b: 40:2f:f1:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U0QUExMTAvBgNVBAUTKDYzODgzRTRDQTJDOEU3REREQUMzOTg3RTQ4NEZEMUQ2 NzJEOTM5NDkwHhcNMjQxMTIyMTg0MjIxWhcNMjQxMTI5MTg0MjIxWjAYMRYwFAYD VQQDEw02NzQwZDA4ZC0wMDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6BBJVXMOjYnD9Cemj80qgvX+3OXkweu/Odjm8+eXCuhWwBGQtGEVH+5sGr1 i5kQYhSZqGlWxxsLxfQpykaGgexEmHPD1EM1vHwcKGT8xMbTE4eBHY+3B6CPCKHr /wXCnWNXgc+tT8ywvXG9NkQTIheqIRGxH6/oEIYI6dEeACXrtLCZOfbPPG2+4FAt xOsApzEjMro8S0cdFdyskk6dYU1nz0q6g5oYRGcYBQ1fZ2pZk79YKft7zd8pCJ3v AtuprJowZZMMrPKEHg8Xz/d7bhjmLAn5N/EHm6oR3KyUZLAq6oVzcVyGNceszjN+ 7NcUxLlCG2lxrBBlbUtjKbD6WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBekx0m3 lUyPN3SEhYkkNOGO1/x1MB8GA1UdIwQYMBaAFGOIPkyiyOfd2sOYfkhP0dZy2TlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTRBQS82NzRDQTI5RTEx REIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5M2F3NWgtU0VfUjFuTFpP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0Zy1US0xJNTkzYXc1aC1TRV9SMW5MWk9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTRBQS82NzRDQTI5RTExREIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5 M2F3NWgtU0VfUjFuTFpPVWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjV2MXpY+HrGG68l1+cJRnQN6p0ERSjJstS+NG/85oPVdWAoeRwfMC JWOh+X8XfWVVYa7zuNsqydOJTIj3TGkz+QHHu7f9IZpf90eWTGSYmB+Jg3s7n5c2 Q4LZ8+bjQ5oMFp/yWSKGLu10pF+o5Ks/qHVyAMzihlPcaHupJJAoDKX/eS+b6tTQ 5y2DyNkdaLtvfY3J3cr3E4xziW0p/+NeQg+bXco/Koq+MeWxOkOZEl5sz8Qc4GSj zaXTtjHQGFNRoPrOaqse4bpvj2IjnXzCktaKCAUn6pfIgUVt06gpZXTypUE/kimo BJTaGhYw1sFdP5scTHcReOvJkgtAL/Eu -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:00 2024 by rpki-client on console-ams.rpki-client.org