$ rpki-client -vvf rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.mft File: yddu42nMHPDmKcUQpLr0ZeFfteE.mft (raw, json) Hash identifier: kNdpw6InYGcXsFpzxoZZAP6g4U5vn2NGUq0l2pYiRPQ= Subject key identifier: 92:25:5D:10:CA:10:76:E5:39:55:7E:1F:F3:7F:1E:D2:59:DE:BA:85 Authority key identifier: C9:D7:6E:E3:69:CC:1C:F0:E6:29:C5:10:A4:BA:F4:65:E1:5F:B5:E1 Certificate issuer: /CN=A9194E59/serialNumber=C9D76EE369CC1CF0E629C510A4BAF465E15FB5E1 Certificate serial: 03B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yddu42nMHPDmKcUQpLr0ZeFfteE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.mft Manifest number: 03B2 Signing time: Sat 23 Nov 2024 00:16:35 +0000 Manifest this update: Sat 23 Nov 2024 00:16:34 +0000 Manifest next update: Sat 30 Nov 2024 00:16:34 +0000 Files and hashes: 1: yddu42nMHPDmKcUQpLr0ZeFfteE.crl (hash: Etla101/MjKKzNTxTwS4QNOkEDJJiJdMcd4HvP8eIZA=) 2: AD9D02406C6811ECB7C0925AC4F9AE02.roa (hash: 3m69N55k503nBZXkA2Wc4jTSELjgmgkJcqb5mw8T6ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.crl rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yddu42nMHPDmKcUQpLr0ZeFfteE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194E59/serialNumber=C9D76EE369CC1CF0E629C510A4BAF465E15FB5E1 Validity Not Before: Nov 23 00:16:34 2024 GMT Not After : Nov 30 00:16:34 2024 GMT Subject: CN=67411ee3-cf12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:49:56:2e:e2:b2:a1:2a:f6:ef:f4:98:c2:14: ad:04:95:4b:2b:15:05:99:81:3a:0c:ec:82:b3:90: b1:c6:7a:9b:86:8a:42:c9:5b:a7:63:32:92:b9:4f: 4a:2b:3b:b5:11:29:90:f5:9f:2f:e5:df:1e:7d:dc: ab:ac:50:e2:fd:e0:81:fa:11:be:fb:4f:14:d8:72: aa:fd:1e:72:10:df:21:ef:c5:ae:5f:15:b1:f2:90: c8:95:19:73:47:2e:22:63:60:4d:de:d6:76:c0:7a: 5c:1a:c3:c0:20:d9:6e:f4:f2:2a:58:66:31:32:a6: b1:32:8a:82:de:0d:30:74:15:cf:d8:79:b1:b5:16: 4a:9f:cd:fd:78:6c:0d:7f:38:76:99:6b:2d:16:9b: 5e:b3:4a:07:16:ee:11:33:8c:20:30:9f:01:e6:0c: c4:36:f6:e9:49:c0:ab:e7:3a:b1:cc:9a:1f:1b:f7: d2:d3:d9:c4:38:c2:3f:82:38:23:12:2f:ca:3a:b2: e6:a8:c3:73:1d:0e:19:7d:1a:8d:20:33:f5:80:a9: 26:79:74:95:c9:58:f8:06:80:70:05:70:a7:ca:5d: 91:63:c9:6c:19:15:b9:87:55:e4:2f:61:fe:82:dc: 48:86:8e:9e:58:6f:98:f1:06:4a:9f:79:e1:0c:3f: 35:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:25:5D:10:CA:10:76:E5:39:55:7E:1F:F3:7F:1E:D2:59:DE:BA:85 X509v3 Authority Key Identifier: keyid:C9:D7:6E:E3:69:CC:1C:F0:E6:29:C5:10:A4:BA:F4:65:E1:5F:B5:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yddu42nMHPDmKcUQpLr0ZeFfteE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:e0:dc:bf:a3:d5:b8:ed:87:69:70:fa:f7:7c:99:0d:61:4c: 62:5b:df:e9:1f:0d:bc:19:d5:98:be:b7:89:29:93:a1:c4:c9: af:e3:33:98:ba:bd:6a:e5:84:af:17:68:cd:c1:fa:c9:bc:bc: df:5e:9f:b6:45:c6:de:cb:6f:04:88:81:c9:04:ca:8b:c1:de: c9:7d:ed:68:23:98:ac:a9:1d:78:69:8d:b3:d5:4d:6c:82:83: af:72:c9:eb:81:ec:18:8d:51:51:c2:86:77:fd:24:ff:77:a2: c1:39:02:ae:1c:ed:ea:1a:8c:d8:5f:8f:17:6b:c4:46:4d:38: 2d:9a:cb:6f:63:d0:b8:3f:e9:fc:59:6d:f1:05:04:8b:f8:3a: d2:7c:ee:37:66:a8:ac:57:ce:b0:a5:6e:78:35:45:2c:71:f7: d4:fe:af:80:1b:1d:f9:15:32:7c:89:98:b0:ab:83:b7:2d:fa: 10:1c:20:0e:da:d7:f0:0b:ee:98:dc:b9:d8:7a:4b:94:bb:cd: 63:a5:91:a4:70:01:3d:a6:71:1a:e2:2e:14:68:f6:ea:0b:39: b4:18:3b:0d:ad:25:0c:09:d4:f5:7f:0a:f1:2a:ed:73:aa:ae: 09:3c:8e:2e:57:72:df:d9:f2:ea:6d:c2:58:81:66:80:ce:75: eb:70:ad:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFNTkxMTAvBgNVBAUTKEM5RDc2RUUzNjlDQzFDRjBFNjI5QzUxMEE0QkFGNDY1 RTE1RkI1RTEwHhcNMjQxMTIzMDAxNjM0WhcNMjQxMTMwMDAxNjM0WjAYMRYwFAYD VQQDEw02NzQxMWVlMy1jZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0lWLuKyoSr27/SYwhStBJVLKxUFmYE6DOyCs5CxxnqbhopCyVunYzKSuU9K Kzu1ESmQ9Z8v5d8efdyrrFDi/eCB+hG++08U2HKq/R5yEN8h78WuXxWx8pDIlRlz Ry4iY2BN3tZ2wHpcGsPAINlu9PIqWGYxMqaxMoqC3g0wdBXP2HmxtRZKn839eGwN fzh2mWstFptes0oHFu4RM4wgMJ8B5gzENvbpScCr5zqxzJofG/fS09nEOMI/gjgj Ei/KOrLmqMNzHQ4ZfRqNIDP1gKkmeXSVyVj4BoBwBXCnyl2RY8lsGRW5h1XkL2H+ gtxIho6eWG+Y8QZKn3nhDD81wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIlXRDK EHblOVV+H/N/HtJZ3rqFMB8GA1UdIwQYMBaAFMnXbuNpzBzw5inFEKS69GXhX7Xh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEU1OS9BQjYxMTFCNDZD NjQxMUVDQkVBQTE4NTJDNEY5QUUwMi95ZGR1NDJuTUhQRG1LY1VRcExyMFplRmZ0 ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lkZHU0Mm5NSFBEbUtjVVFwTHIwWmVGZnRlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEU1OS9BQjYxMTFCNDZDNjQxMUVDQkVBQTE4NTJDNEY5QUUwMi95ZGR1NDJuTUhQ RG1LY1VRcExyMFplRmZ0ZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC14Ny/o9W47YdpcPr3fJkNYUxiW9/pHw28GdWYvreJKZOhxMmv4zOY ur1q5YSvF2jNwfrJvLzfXp+2Rcbey28EiIHJBMqLwd7Jfe1oI5isqR14aY2z1U1s goOvcsnrgewYjVFRwoZ3/ST/d6LBOQKuHO3qGozYX48Xa8RGTTgtmstvY9C4P+n8 WW3xBQSL+DrSfO43ZqisV86wpW54NUUscffU/q+AGx35FTJ8iZiwq4O3LfoQHCAO 2tfwC+6Y3LnYekuUu81jpZGkcAE9pnEa4i4UaPbqCzm0GDsNrSUMCdT1fwrxKu1z qq4JPI4uV3Lf2fLqbcJYgWaAznXrcK0S -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:41 2024 by rpki-client on console-fra.rpki-client.org