$ rpki-client -vvf rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft File: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft (raw, json) Hash identifier: uEztnCZDs+pM0Kw4W8sbjmib43hInwj1CPCb77m4tj0= Subject key identifier: E4:CB:D4:73:CB:6C:D8:48:E3:AE:5B:88:44:45:57:7A:48:85:BB:85 Authority key identifier: CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 Certificate issuer: /CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Certificate serial: 2074 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft Manifest number: 2069 Signing time: Sun 24 Nov 2024 15:52:33 +0000 Manifest this update: Sun 24 Nov 2024 15:52:32 +0000 Manifest next update: Sun 01 Dec 2024 15:52:32 +0000 Files and hashes: 1: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl (hash: 71LZjP3mrAU7wbeN0JnMMXpqERhwwahGECEr9NaMD9c=) 2: C49E2E22FF0111E591C15659C4F9AE02.roa (hash: 8rysbZt21FvuQ0omuoFXFp8YfdP5EnJpmuu61zguRxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8308 (0x2074) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Validity Not Before: Nov 24 15:52:32 2024 GMT Not After : Dec 1 15:52:32 2024 GMT Subject: CN=67434bc1-55a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f9:05:1e:47:4e:1e:5c:03:a9:fe:81:fd:2f: cf:a8:34:9a:5b:b9:65:1e:21:5a:69:8d:04:0d:af: 57:c9:18:18:e9:41:25:9c:1e:0e:66:19:f7:21:a2: 56:e1:7e:1f:42:12:3a:4f:32:77:82:c3:03:8a:be: 24:d4:e5:79:57:e5:61:15:fd:8d:e1:59:4a:9d:e3: 08:e6:5a:ea:74:44:e7:1e:38:cd:f7:e0:7d:15:3c: 10:75:6b:96:86:91:e8:a0:2f:52:9f:9d:d4:4b:1a: 63:39:8f:89:35:1a:0e:c0:e5:65:f4:b6:15:e5:5c: 31:46:53:18:aa:b6:a0:c3:74:79:dd:bb:cd:4a:aa: 73:a8:6e:a6:f2:bd:61:1b:c1:05:05:98:09:38:9c: a9:8a:5d:c8:0e:b4:9b:95:8b:22:ab:cc:bf:3e:84: 0b:86:11:5c:16:e1:55:b7:96:02:f7:b9:d3:d3:1b: c7:f6:d4:1a:56:c3:af:bf:bd:6f:07:39:9b:58:70: 44:3d:cc:46:b6:06:28:71:90:1a:4c:b7:94:b1:f1: 67:77:8e:15:11:54:9a:06:6d:34:4b:8d:e8:24:47: de:dd:87:7a:4a:b8:b5:bb:26:df:0c:4d:6c:28:04: 55:60:01:ae:70:a6:ef:70:c3:b8:3b:7d:a2:68:f6: 65:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:CB:D4:73:CB:6C:D8:48:E3:AE:5B:88:44:45:57:7A:48:85:BB:85 X509v3 Authority Key Identifier: keyid:CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:77:30:5d:fa:99:f3:4a:e0:7f:45:d4:66:74:ed:17:20:74: 8e:3b:02:84:99:b1:c6:0c:6d:67:f6:4c:b6:c3:02:3f:fb:b7: 28:44:7a:94:db:51:1f:44:5b:84:66:31:41:6b:36:8c:9c:77: c4:98:32:60:91:57:40:7f:68:ed:97:5d:d5:28:27:54:2b:47: 51:73:fe:fb:63:13:21:eb:bd:b9:c6:9e:30:be:6c:30:bd:63: db:95:8e:d1:0e:41:f5:4b:35:f8:0c:49:45:99:bb:9d:2b:3a: 3c:d8:e9:72:c0:02:75:0b:13:09:a4:27:26:cb:69:2c:8b:48: 05:5b:c5:a1:4d:36:56:9b:ba:37:ec:72:c5:29:3b:4d:9e:96: e2:81:e9:9d:b1:fd:85:c0:f9:a6:ff:94:60:bc:04:31:68:ac: f3:50:15:08:78:f2:27:f4:dc:34:03:01:b0:99:a4:cf:db:e5: 27:58:30:3d:11:01:18:87:d5:de:94:74:2a:30:79:6c:70:e2: 10:45:45:63:c8:5f:33:41:a7:1c:ac:26:7b:8f:c2:55:f7:19: eb:4a:70:14:eb:21:fc:bd:2b:73:e8:d8:33:b0:ee:2e:9c:b4: 4e:98:2f:98:16:cf:48:fe:47:e3:fc:94:56:8c:28:e9:e4:a6: 57:f2:26:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI1QkIxMTAvBgNVBAUTKENBQzQ0NzhGMEZERDlBRTQxRTI0RTlGQzY3Rjg1MUZG NDNDMzMzMDkwHhcNMjQxMTI0MTU1MjMyWhcNMjQxMjAxMTU1MjMyWjAYMRYwFAYD VQQDEw02NzQzNGJjMS01NWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvkFHkdOHlwDqf6B/S/PqDSaW7llHiFaaY0EDa9XyRgY6UElnB4OZhn3IaJW 4X4fQhI6TzJ3gsMDir4k1OV5V+VhFf2N4VlKneMI5lrqdETnHjjN9+B9FTwQdWuW hpHooC9Sn53USxpjOY+JNRoOwOVl9LYV5VwxRlMYqragw3R53bvNSqpzqG6m8r1h G8EFBZgJOJypil3IDrSblYsiq8y/PoQLhhFcFuFVt5YC97nT0xvH9tQaVsOvv71v BzmbWHBEPcxGtgYocZAaTLeUsfFnd44VEVSaBm00S43oJEfe3Yd6Sri1uybfDE1s KARVYAGucKbvcMO4O32iaPZlSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTL1HPL bNhI465biERFV3pIhbuFMB8GA1UdIwQYMBaAFMrER48P3ZrkHiTp/Gf4Uf9DwzMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjVCQi80NEJCQzE0Q0ZG MDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11UWVKT244Wl9oUl8wUERN d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzUkhqd19kbXVRZUpPbjhaX2hSXzBQRE13ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjVCQi80NEJCQzE0Q0ZGMDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11 UWVKT244Wl9oUl8wUERNd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEdzBd+pnzSuB/RdRmdO0XIHSOOwKEmbHGDG1n9ky2wwI/+7coRHqU 21EfRFuEZjFBazaMnHfEmDJgkVdAf2jtl13VKCdUK0dRc/77YxMh6725xp4wvmww vWPblY7RDkH1SzX4DElFmbudKzo82OlywAJ1CxMJpCcmy2ksi0gFW8WhTTZWm7o3 7HLFKTtNnpbigemdsf2FwPmm/5RgvAQxaKzzUBUIePIn9Nw0AwGwmaTP2+UnWDA9 EQEYh9XelHQqMHlscOIQRUVjyF8zQaccrCZ7j8JV9xnrSnAU6yH8vStz6NgzsO4u nLROmC+YFs9I/kfj/JRWjCjp5KZX8iYC -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:47 2024 by rpki-client on console-fra.rpki-client.org