$ rpki-client -vvf rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft File: cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft (raw, json) Hash identifier: PmfIXQMNmLyFN7djy5ynOkBPxQpADwb+Zi+oW2R6Y0s= Subject key identifier: 6C:EC:B6:B7:CB:4F:FB:8F:80:A3:B2:B8:71:2E:CC:95:B0:AC:D2:A8 Authority key identifier: 71:80:73:09:8A:F0:39:6F:D8:E3:30:9A:1B:9F:B6:F3:EE:B1:7A:E7 Certificate issuer: /CN=A917174E/serialNumber=718073098AF0396FD8E3309A1B9FB6F3EEB17AE7 Certificate serial: 0DA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYBzCYrwOW_Y4zCaG5-28-6xeuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft Manifest number: 0DA5 Signing time: Fri 22 Nov 2024 17:50:51 +0000 Manifest this update: Fri 22 Nov 2024 17:50:50 +0000 Manifest next update: Fri 29 Nov 2024 17:50:50 +0000 Files and hashes: 1: cYBzCYrwOW_Y4zCaG5-28-6xeuc.crl (hash: l/Y+o0RwyUiLCwpW/KXqostdbboEz/l8/PIn7qnXKLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.crl rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYBzCYrwOW_Y4zCaG5-28-6xeuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:50:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3494 (0xda6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917174E/serialNumber=718073098AF0396FD8E3309A1B9FB6F3EEB17AE7 Validity Not Before: Nov 22 17:50:50 2024 GMT Not After : Nov 29 17:50:50 2024 GMT Subject: CN=6740c47b-827b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:32:c7:be:be:53:16:5e:00:a6:bf:a5:e9:3d: e6:15:71:92:49:0a:92:03:b5:a1:7d:b5:3e:aa:c6: f1:63:91:64:08:7e:27:f9:d6:ba:5d:5d:31:a4:15: d5:81:e1:34:d0:bf:90:db:cb:df:2e:82:1d:52:70: db:24:ce:04:0e:16:76:36:56:cd:b0:02:62:dc:8f: 12:51:95:be:6a:50:f4:a7:ab:31:b3:0f:95:16:9c: 0e:24:ed:4a:da:d5:f6:90:63:ef:81:bd:29:5b:e5: df:01:34:32:f7:6c:3f:b3:27:53:54:43:0b:2f:3f: 8d:2f:98:38:5c:c9:74:43:da:3c:01:f3:a7:ed:91: 51:56:02:33:9d:5f:24:45:68:ba:46:23:3c:15:0b: 71:b4:9f:5b:d9:26:77:59:50:e5:87:0c:60:9f:64: d1:2a:c8:05:da:96:c7:31:0c:96:15:50:3f:5d:7f: 31:db:a4:87:9f:1d:e9:4d:47:e5:d7:4c:db:0f:6b: 5d:29:d2:16:24:18:4f:15:f5:89:80:0e:5d:e2:65: 37:12:f0:ae:de:e4:88:21:84:a7:0b:2e:49:8a:67: 46:0f:ad:66:65:6f:58:b0:5d:fa:19:4c:d8:ce:ad: 4d:1f:2f:5e:23:f3:4e:a3:77:aa:52:6f:d0:67:5c: 5d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:EC:B6:B7:CB:4F:FB:8F:80:A3:B2:B8:71:2E:CC:95:B0:AC:D2:A8 X509v3 Authority Key Identifier: keyid:71:80:73:09:8A:F0:39:6F:D8:E3:30:9A:1B:9F:B6:F3:EE:B1:7A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYBzCYrwOW_Y4zCaG5-28-6xeuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:60:01:06:89:f7:ff:c1:b6:d3:ca:b4:51:79:44:58:c9:cd: 9d:3b:f8:f0:53:b0:92:41:e9:73:5e:79:5d:0a:8a:a2:ec:e9: e8:87:0a:52:19:16:9d:47:e8:b2:b6:06:6d:ec:79:c1:d8:3d: 91:11:10:86:4f:a7:e4:b4:ad:3b:24:9c:9e:84:54:ca:78:64: ba:53:c9:3a:97:a6:02:dc:c5:7b:39:0e:2b:e3:28:37:d0:ad: d7:17:56:b1:82:59:ea:55:54:58:6e:73:8f:2d:47:36:d0:55: 19:b6:29:c1:8e:e3:c7:07:96:00:47:7e:8d:02:61:bf:2a:83: 9d:2a:3e:92:51:81:8c:20:ce:2a:ef:5a:40:3e:5d:b3:9e:59: ea:38:44:a2:fa:81:19:62:c8:1d:fa:7b:3c:35:6d:25:9f:61: eb:8f:22:0d:82:1d:1c:1a:80:a5:3a:20:95:29:07:d7:41:40: b4:65:4c:04:8f:21:03:1e:af:ff:31:5c:fa:12:bf:96:93:9b: be:7b:17:6d:4e:b0:14:88:4f:85:90:63:fa:22:f7:5c:da:b8: 5b:e9:27:77:68:53:96:2d:1c:d8:90:96:93:66:a8:5d:5b:3c: 25:d1:2e:7e:e6:e4:0d:2e:f2:d1:d7:e1:f1:52:1e:1c:8b:12: 2f:fb:80:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NEUxMTAvBgNVBAUTKDcxODA3MzA5OEFGMDM5NkZEOEUzMzA5QTFCOUZCNkYz RUVCMTdBRTcwHhcNMjQxMTIyMTc1MDUwWhcNMjQxMTI5MTc1MDUwWjAYMRYwFAYD VQQDEw02NzQwYzQ3Yi04MjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDLHvr5TFl4Apr+l6T3mFXGSSQqSA7WhfbU+qsbxY5FkCH4n+da6XV0xpBXV geE00L+Q28vfLoIdUnDbJM4EDhZ2NlbNsAJi3I8SUZW+alD0p6sxsw+VFpwOJO1K 2tX2kGPvgb0pW+XfATQy92w/sydTVEMLLz+NL5g4XMl0Q9o8AfOn7ZFRVgIznV8k RWi6RiM8FQtxtJ9b2SZ3WVDlhwxgn2TRKsgF2pbHMQyWFVA/XX8x26SHnx3pTUfl 10zbD2tdKdIWJBhPFfWJgA5d4mU3EvCu3uSIIYSnCy5JimdGD61mZW9YsF36GUzY zq1NHy9eI/NOo3eqUm/QZ1xdLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzstrfL T/uPgKOyuHEuzJWwrNKoMB8GA1UdIwQYMBaAFHGAcwmK8Dlv2OMwmhuftvPusXrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc0RS81NEFBMTQ5Q0FB RjYxMUU5OUM1RUUyNTlDNEY5QUUwMi9jWUJ6Q1lyd09XX1k0ekNhRzUtMjgtNnhl dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NZQnpDWXJ3T1dfWTR6Q2FHNS0yOC02eGV1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc0RS81NEFBMTQ5Q0FBRjYxMUU5OUM1RUUyNTlDNEY5QUUwMi9jWUJ6Q1lyd09X X1k0ekNhRzUtMjgtNnhldWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgYAEGiff/wbbTyrRReURYyc2dO/jwU7CSQelzXnldCoqi7OnohwpS GRadR+iytgZt7HnB2D2RERCGT6fktK07JJyehFTKeGS6U8k6l6YC3MV7OQ4r4yg3 0K3XF1axglnqVVRYbnOPLUc20FUZtinBjuPHB5YAR36NAmG/KoOdKj6SUYGMIM4q 71pAPl2znlnqOESi+oEZYsgd+ns8NW0ln2HrjyINgh0cGoClOiCVKQfXQUC0ZUwE jyEDHq//MVz6Er+Wk5u+exdtTrAUiE+FkGP6Ivdc2rhb6Sd3aFOWLRzYkJaTZqhd Wzwl0S5+5uQNLvLR1+HxUh4cixIv+4Dn -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org