$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft File: YBC8xly5zPAs9-0p7HXk1iK98_A.mft (raw, json) Hash identifier: 9TanTcM0qdKMVG8d2+Y6SaOhxQqP1CHyhPokieohoRY= Subject key identifier: 5B:04:2E:D0:10:B4:1C:E3:53:08:9D:F3:6C:97:D7:73:3D:B8:9D:3B Authority key identifier: 60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 Certificate issuer: /CN=A9144F45/serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Certificate serial: 0437 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft Manifest number: 0434 Signing time: Fri 22 Nov 2024 23:51:29 +0000 Manifest this update: Fri 22 Nov 2024 23:51:28 +0000 Manifest next update: Fri 29 Nov 2024 23:51:28 +0000 Files and hashes: 1: YBC8xly5zPAs9-0p7HXk1iK98_A.crl (hash: U4yyCh4lOZ7okKH0aVbLvy5BDxD6WE6NXsU3Gxu03FY=) 2: E225E68E397411EC8120D135C4F9AE02.roa (hash: B176wN8cc3STWVRBMXNyfJfGKm4gsudlF7DiviBh7SQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1079 (0x437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F45/serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Validity Not Before: Nov 22 23:51:28 2024 GMT Not After : Nov 29 23:51:28 2024 GMT Subject: CN=67411901-8152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1e:f3:97:5a:ff:a1:3c:da:20:09:66:c9:c0: 3d:22:09:ae:40:9f:b7:1c:05:bb:b0:41:1b:d9:1f: a5:21:e7:e6:53:c7:31:94:80:28:1c:7b:25:f5:c5: 2f:d2:9b:0a:1b:0d:7a:07:81:99:b0:94:72:38:e1: 7c:04:ae:ed:52:18:ea:3a:d2:62:a0:9f:f4:f6:a2: 4a:b2:45:8a:e9:36:b2:24:e5:c2:49:28:b4:23:89: 1a:a7:82:1e:a5:4c:f0:86:5e:07:1d:38:83:1e:66: fb:04:f4:be:2a:11:c7:42:16:95:80:d4:48:e4:37: 97:69:e9:0d:3c:6d:e9:dc:69:7b:46:d3:2e:6e:ee: c2:57:92:bd:7b:32:5c:9c:f2:22:92:ad:93:e0:04: 15:58:d9:68:7d:86:45:c6:f9:12:4a:18:31:6a:f9: 4c:4e:fd:51:b4:f3:8a:f2:b7:fc:bd:6a:a4:84:95: 88:c2:c5:4a:b0:c5:70:55:a1:f9:82:c3:24:77:e7: a5:0d:62:36:fe:bc:ef:db:da:70:04:26:46:24:42: 6d:71:2e:e3:7c:c7:4e:bf:26:30:99:94:a6:eb:4d: 4a:20:6d:01:2e:85:69:23:19:ce:3d:93:93:49:35: 9a:5f:20:44:36:16:5e:9b:ba:52:e4:a3:80:99:1d: b6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:04:2E:D0:10:B4:1C:E3:53:08:9D:F3:6C:97:D7:73:3D:B8:9D:3B X509v3 Authority Key Identifier: keyid:60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:8b:8b:07:0a:13:57:5e:9f:b4:4c:19:b4:42:5d:4f:40:11: 53:22:c7:b7:77:32:89:80:75:10:0b:50:0e:ad:18:48:2c:8b: ee:18:4a:bd:54:43:5a:fe:79:30:40:c1:dc:d6:ca:b1:53:14: dd:3b:9e:c6:20:46:6c:fa:ef:6c:00:13:8f:2a:8d:9a:db:4f: d0:1a:2f:7f:33:ca:c3:d3:7b:39:6a:e7:3c:ec:32:66:dd:09: 3b:b2:c0:fd:ea:9c:90:81:78:99:eb:42:a0:db:ca:2c:8e:97: f1:df:57:1a:bd:fd:98:c2:ae:42:20:31:4d:c5:ad:3f:1d:f5: 45:3e:1a:69:03:e4:f5:9a:36:fb:4e:62:49:3d:06:b2:cb:0a: 95:73:0a:52:96:05:76:c5:59:02:81:7d:de:64:91:7f:c3:41: 7c:f4:3e:5c:85:1b:99:89:eb:db:ff:22:29:96:9a:f9:85:80: 40:75:0f:91:48:e8:cc:cc:b1:f5:55:47:c3:af:75:02:31:f4: 9b:8c:43:bc:6e:a1:6b:1d:5f:75:94:3a:cb:31:72:65:75:c6: 4d:b1:a4:e1:ce:1b:9b:dc:fb:df:1e:8f:7b:34:d4:be:c2:7d: 32:49:41:46:88:5c:57:ae:24:bf:75:9d:ac:d7:b7:17:79:f1: 6b:6c:7b:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNDUxMTAvBgNVBAUTKDYwMTBCQ0M2NUNCOUNDRjAyQ0Y3RUQyOUVDNzVFNEQ2 MjJCREYzRjAwHhcNMjQxMTIyMjM1MTI4WhcNMjQxMTI5MjM1MTI4WjAYMRYwFAYD VQQDEw02NzQxMTkwMS04MTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0R7zl1r/oTzaIAlmycA9IgmuQJ+3HAW7sEEb2R+lIefmU8cxlIAoHHsl9cUv 0psKGw16B4GZsJRyOOF8BK7tUhjqOtJioJ/09qJKskWK6TayJOXCSSi0I4kap4Ie pUzwhl4HHTiDHmb7BPS+KhHHQhaVgNRI5DeXaekNPG3p3Gl7RtMubu7CV5K9ezJc nPIikq2T4AQVWNlofYZFxvkSShgxavlMTv1RtPOK8rf8vWqkhJWIwsVKsMVwVaH5 gsMkd+elDWI2/rzv29pwBCZGJEJtcS7jfMdOvyYwmZSm601KIG0BLoVpIxnOPZOT STWaXyBENhZem7pS5KOAmR22UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsELtAQ tBzjUwid82yX13M9uJ07MB8GA1UdIwQYMBaAFGAQvMZcuczwLPftKex15NYivfPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY0NS9ENzZGRjA0NDM5 NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQQXM5LTBwN0hYazFpSzk4 X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCQzh4bHk1elBBczktMHA3SFhrMWlLOThfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY0NS9ENzZGRjA0NDM5NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQ QXM5LTBwN0hYazFpSzk4X0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGi4sHChNXXp+0TBm0Ql1PQBFTIse3dzKJgHUQC1AOrRhILIvuGEq9 VENa/nkwQMHc1sqxUxTdO57GIEZs+u9sABOPKo2a20/QGi9/M8rD03s5auc87DJm 3Qk7ssD96pyQgXiZ60Kg28osjpfx31cavf2Ywq5CIDFNxa0/HfVFPhppA+T1mjb7 TmJJPQayywqVcwpSlgV2xVkCgX3eZJF/w0F89D5chRuZievb/yIplpr5hYBAdQ+R SOjMzLH1VUfDr3UCMfSbjEO8bqFrHV91lDrLMXJldcZNsaThzhub3PvfHo97NNS+ wn0ySUFGiFxXriS/dZ2s17cXefFrbHtk -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:21 2024 by rpki-client on console-ams.rpki-client.org