$ rpki-client -vvf rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft File: YRQatT_Urx2yqGr-fsj-yX1eodU.mft (raw, json) Hash identifier: aElOBD1JHjWMuEU3SEZF1xIWggCO8UgfTot0izaQ1TQ= Subject key identifier: FC:BF:3F:84:78:D0:D4:D2:F3:B2:C9:2E:6D:25:85:CF:80:1E:2A:D8 Authority key identifier: 61:14:1A:B5:3F:D4:AF:1D:B2:A8:6A:FE:7E:C8:FE:C9:7D:5E:A1:D5 Certificate issuer: /CN=A918DEF0/serialNumber=61141AB53FD4AF1DB2A86AFE7EC8FEC97D5EA1D5 Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft Manifest number: 010E Signing time: Sat 23 Nov 2024 03:06:40 +0000 Manifest this update: Sat 23 Nov 2024 03:06:40 +0000 Manifest next update: Sat 30 Nov 2024 03:06:40 +0000 Files and hashes: 1: YRQatT_Urx2yqGr-fsj-yX1eodU.crl (hash: XprTwQ39Dl1IFEZpApbB7NwFMCCFscd3Que6yhhEptY=) 2: 6CE958B60A6E11EEA48F3036C4F9AE02.roa (hash: pnP8HGWyh4IaDoH3gtVkiqLPQPUCIyMk/JTjHMVioyQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.crl rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DEF0/serialNumber=61141AB53FD4AF1DB2A86AFE7EC8FEC97D5EA1D5 Validity Not Before: Nov 23 03:06:40 2024 GMT Not After : Nov 30 03:06:40 2024 GMT Subject: CN=674146c0-4979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:57:8d:8e:ff:c6:82:d1:69:6a:39:94:ce:c3: 34:4a:a8:0d:31:16:2b:e2:d2:34:7f:d3:2b:0b:db: 77:82:9e:42:e3:e5:f3:ee:32:80:de:3e:67:a8:5e: 95:2b:16:c0:9f:18:46:3d:25:a0:c2:5f:17:d3:55: bb:fd:a9:6d:93:24:07:f8:08:c5:d8:fe:71:3e:53: b8:cf:dc:9c:e2:12:d7:6c:bf:6f:90:3a:2e:92:22: 10:db:f0:49:92:14:1a:34:d0:78:55:71:34:81:de: ab:19:be:8e:15:b1:d8:f9:fe:93:79:35:5c:81:16: 27:83:1e:5f:4f:f6:36:3e:e7:33:f3:ea:58:00:e7: d4:f9:7a:a8:c5:ec:93:48:b9:e5:93:86:b0:31:97: b4:b5:b7:59:51:87:4c:43:9e:18:fc:a0:db:0a:a1: 08:25:ca:5f:4d:57:3a:0d:9a:3c:40:9e:b2:cd:f5: 40:22:62:1d:34:21:c4:b0:a7:3a:bd:b3:27:7a:17: 08:00:cf:c2:4c:8b:9a:be:5c:03:fa:da:1a:43:5b: 91:3c:49:e3:7a:0f:ea:07:7f:4e:0e:03:e7:38:ec: b0:f6:54:6b:d8:f5:b5:48:5a:32:91:20:06:87:a7: 15:8f:1c:76:ae:d1:1b:c1:76:91:b6:23:23:d0:6d: 22:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:BF:3F:84:78:D0:D4:D2:F3:B2:C9:2E:6D:25:85:CF:80:1E:2A:D8 X509v3 Authority Key Identifier: keyid:61:14:1A:B5:3F:D4:AF:1D:B2:A8:6A:FE:7E:C8:FE:C9:7D:5E:A1:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:89:ae:24:54:01:c4:76:f4:a3:b7:db:bd:7f:08:aa:60:e5: 4c:f6:00:41:14:20:34:d6:09:1c:b7:85:7b:ad:71:4d:6b:6f: f6:9c:48:d2:90:ac:1f:9f:fa:58:d2:0b:9f:e2:f4:3c:69:b9: d6:7d:2b:69:d6:ce:28:71:8a:e1:88:51:f7:38:06:a9:21:05: 1e:c2:bb:bf:62:76:f3:c2:62:9d:b7:2e:ed:a4:69:36:19:6a: 50:c6:85:6a:5c:c7:77:e6:29:c6:56:59:08:33:9a:df:7f:b6: 42:f6:d6:9d:6b:14:e8:b1:ac:0c:95:77:aa:60:34:0b:ea:85: 6d:92:89:fd:79:17:df:08:8c:b9:ff:b1:c1:da:37:16:40:fd: b0:41:3e:04:d1:c9:d1:6b:d2:1c:d6:27:62:e1:2b:58:6c:a5: c3:9c:b1:06:b7:1c:cf:c5:8c:e0:5d:0c:fa:25:11:35:32:62: fd:72:c7:c6:cf:3e:8a:a6:05:64:cc:62:ba:67:dc:52:a8:9b: 04:9f:bd:0c:79:9a:d9:2d:6f:07:d3:00:b8:98:56:c6:1b:0a: e0:cd:a4:f5:2c:60:a4:95:04:f1:00:43:81:a6:08:6a:6e:7f: 1e:97:4c:14:7f:60:c2:34:01:c4:b9:d4:db:69:c0:9a:76:79: 25:87:9e:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERFRjAxMTAvBgNVBAUTKDYxMTQxQUI1M0ZENEFGMURCMkE4NkFGRTdFQzhGRUM5 N0Q1RUExRDUwHhcNMjQxMTIzMDMwNjQwWhcNMjQxMTMwMDMwNjQwWjAYMRYwFAYD VQQDEw02NzQxNDZjMC00OTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7leNjv/GgtFpajmUzsM0SqgNMRYr4tI0f9MrC9t3gp5C4+Xz7jKA3j5nqF6V KxbAnxhGPSWgwl8X01W7/altkyQH+AjF2P5xPlO4z9yc4hLXbL9vkDoukiIQ2/BJ khQaNNB4VXE0gd6rGb6OFbHY+f6TeTVcgRYngx5fT/Y2Pucz8+pYAOfU+XqoxeyT SLnlk4awMZe0tbdZUYdMQ54Y/KDbCqEIJcpfTVc6DZo8QJ6yzfVAImIdNCHEsKc6 vbMnehcIAM/CTIuavlwD+toaQ1uRPEnjeg/qB39ODgPnOOyw9lRr2PW1SFoykSAG h6cVjxx2rtEbwXaRtiMj0G0i0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPy/P4R4 0NTS87LJLm0lhc+AHirYMB8GA1UdIwQYMBaAFGEUGrU/1K8dsqhq/n7I/sl9XqHV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REVGMC84MjAzMDlDMjBB NUYxMUVFQjRGRUQyNjVDNEY5QUUwMi9ZUlFhdFRfVXJ4MnlxR3ItZnNqLXlYMWVv ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSUWF0VF9VcngyeXFHci1mc2oteVgxZW9kVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REVGMC84MjAzMDlDMjBBNUYxMUVFQjRGRUQyNjVDNEY5QUUwMi9ZUlFhdFRfVXJ4 MnlxR3ItZnNqLXlYMWVvZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8ia4kVAHEdvSjt9u9fwiqYOVM9gBBFCA01gkct4V7rXFNa2/2nEjS kKwfn/pY0guf4vQ8abnWfStp1s4ocYrhiFH3OAapIQUewru/YnbzwmKdty7tpGk2 GWpQxoVqXMd35inGVlkIM5rff7ZC9tadaxTosawMlXeqYDQL6oVtkon9eRffCIy5 /7HB2jcWQP2wQT4E0cnRa9Ic1idi4StYbKXDnLEGtxzPxYzgXQz6JRE1MmL9csfG zz6KpgVkzGK6Z9xSqJsEn70MeZrZLW8H0wC4mFbGGwrgzaT1LGCklQTxAEOBpghq bn8el0wUf2DCNAHEudTbacCadnklh54Z -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:13 2024 by rpki-client on console-ams.rpki-client.org