$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft File: YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json) Hash identifier: LYUG9Ob4TVvSFgiZoeQPxL1+CSntx3xJsvqZnZ5m3L8= Subject key identifier: 0D:D0:FB:C3:CA:FB:C3:C8:DB:36:10:16:06:83:3E:1F:C1:36:31:E3 Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 074D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft Manifest number: 0726 Signing time: Fri 22 Nov 2024 21:22:54 +0000 Manifest this update: Fri 22 Nov 2024 21:22:54 +0000 Manifest next update: Fri 29 Nov 2024 21:22:54 +0000 Files and hashes: 1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: 8qkHcDvDyTu6yWC8b2Ukqi08ihKw4fEli9aYaGax7Zw=) 2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: SRelSEvLNqYoOSszS2goqEFTfuu04k/V3JzZ56G1Oj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1869 (0x74d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Nov 22 21:22:54 2024 GMT Not After : Nov 29 21:22:54 2024 GMT Subject: CN=6740f62e-b494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6b:be:8f:69:9e:5d:56:c5:9a:50:5e:1c:c5: a2:70:aa:4c:27:67:b7:c1:fd:d4:d5:48:f1:fd:ff: 32:1f:3f:21:5f:fd:44:36:64:e4:cb:d9:f3:c9:93: f0:41:c4:17:e9:25:df:39:d6:0e:41:5a:c5:75:10: b0:c7:94:88:4c:98:8b:20:0f:16:7e:25:d5:d5:14: d5:11:83:33:c2:5a:f4:fe:7a:a8:a1:a4:4b:7e:a2: 7c:b1:26:34:3b:64:7c:33:69:03:a1:99:8e:83:cc: 4c:fe:0f:66:4f:e4:c0:d1:aa:43:ca:98:7c:1f:0e: 6a:06:f1:a1:69:4f:5a:26:1d:e8:2f:93:d4:ff:5c: 61:fd:f1:b2:13:9c:13:38:99:53:1b:07:a2:65:f0: 4a:d4:5b:50:37:da:a3:f7:f3:23:7d:f2:0c:ad:d0: a2:71:d1:cf:fd:a5:54:b2:b8:d0:fb:8a:8d:2f:4b: 66:3e:fd:0d:7b:15:62:66:dc:27:d3:6a:19:12:71: 5d:58:98:2d:f5:a4:5a:a5:57:7e:fd:49:2b:41:25: 59:ef:21:40:45:63:62:99:d6:12:33:7f:37:c8:e4: 3e:89:58:bd:77:2b:1f:4c:16:1e:9c:20:e8:cb:63: 9b:c1:8e:d0:0c:cb:f0:39:38:ec:42:59:13:a5:89: a0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D0:FB:C3:CA:FB:C3:C8:DB:36:10:16:06:83:3E:1F:C1:36:31:E3 X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:13:13:6a:b1:6b:ac:01:2c:d3:de:b5:0f:17:06:08:77:13: ff:87:f3:7e:e8:8e:63:4f:57:da:20:e1:89:a9:14:e4:53:a1: 59:b9:6d:6b:4c:4c:03:71:38:0a:47:dc:be:a2:f7:f0:95:0a: e9:27:e5:e9:af:52:e9:e3:b3:99:1d:37:b6:57:f1:02:aa:02: a1:e5:1a:94:8d:51:b9:de:15:64:17:34:8b:de:da:ae:54:86: 04:d2:8b:bd:19:27:9b:6b:b8:c1:f9:0a:fd:2f:ae:6f:1e:fd: 39:f4:4a:ec:e8:4a:7c:89:99:a7:55:b1:50:ba:0e:94:e8:a2: 95:30:60:42:c9:39:0a:0c:fa:0f:87:99:9e:2d:ab:12:20:26: 1f:fc:62:4f:0b:50:07:0b:10:f0:fb:17:b1:12:b9:2b:5d:48: 95:93:7e:cf:fa:f0:8b:9a:a6:f9:b4:1f:7e:a6:4d:95:e2:ec: 83:c5:13:0e:b1:7a:88:d9:3c:01:c6:17:7e:eb:74:9c:8e:59: 35:dd:58:5e:6e:80:3e:ac:ba:6f:f7:85:30:97:10:2d:2c:e6: 5f:15:c6:b7:bc:9c:c0:52:01:33:04:eb:9c:b4:f5:eb:01:fa: 2c:cd:d9:be:96:14:58:19:85:76:3d:0b:fc:22:27:71:17:27: 93:72:9e:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjQxMTIyMjEyMjU0WhcNMjQxMTI5MjEyMjU0WjAYMRYwFAYD VQQDEw02NzQwZjYyZS1iNDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22u+j2meXVbFmlBeHMWicKpMJ2e3wf3U1Ujx/f8yHz8hX/1ENmTky9nzyZPw QcQX6SXfOdYOQVrFdRCwx5SITJiLIA8WfiXV1RTVEYMzwlr0/nqooaRLfqJ8sSY0 O2R8M2kDoZmOg8xM/g9mT+TA0apDyph8Hw5qBvGhaU9aJh3oL5PU/1xh/fGyE5wT OJlTGweiZfBK1FtQN9qj9/MjffIMrdCicdHP/aVUsrjQ+4qNL0tmPv0NexViZtwn 02oZEnFdWJgt9aRapVd+/UkrQSVZ7yFARWNimdYSM383yOQ+iVi9dysfTBYenCDo y2ObwY7QDMvwOTjsQlkTpYmg0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3Q+8PK +8PI2zYQFgaDPh/BNjHjMB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0UyMi8xMkZBODExQTE3N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9Q bzQzYTlPLVFUN0JQNWJWa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADExNqsWusASzT3rUPFwYIdxP/h/N+6I5jT1faIOGJqRTkU6FZuW1r TEwDcTgKR9y+ovfwlQrpJ+Xpr1Lp47OZHTe2V/ECqgKh5RqUjVG53hVkFzSL3tqu VIYE0ou9GSeba7jB+Qr9L65vHv059Ers6Ep8iZmnVbFQug6U6KKVMGBCyTkKDPoP h5meLasSICYf/GJPC1AHCxDw+xexErkrXUiVk37P+vCLmqb5tB9+pk2V4uyDxRMO sXqI2TwBxhd+63Scjlk13VheboA+rLpv94UwlxAtLOZfFca3vJzAUgEzBOuctPXr Afoszdm+lhRYGYV2PQv8IidxFyeTcp4M -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:09 2024 by rpki-client on console-fra.rpki-client.org