$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft File: YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft (raw, json) Hash identifier: 8T0E3IDxajixMiW20XMu+QxPWm6D5a6dMim7yrk2+gw= Subject key identifier: 01:10:52:A8:78:1F:CD:13:4C:D3:14:F8:34:78:BB:D6:43:89:0F:20 Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft Manifest number: 90 Signing time: Sat 23 Nov 2024 04:30:45 +0000 Manifest this update: Sat 23 Nov 2024 04:30:44 +0000 Manifest next update: Sat 30 Nov 2024 04:30:44 +0000 Files and hashes: 1: YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl (hash: 4sA7R6g3FH1RN0dyg4HlH0bZEQsR4uC3Ey/XfpWnl6Q=) 2: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (hash: Vhc0oBsN9e1AmTssIF1IG416RW4yliZF1kVCc1MWbp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Validity Not Before: Nov 23 04:30:44 2024 GMT Not After : Nov 30 04:30:44 2024 GMT Subject: CN=67415a74-7125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f8:1e:74:8b:de:f6:79:dc:b7:56:ec:9d:43: f2:76:9a:80:04:06:f2:11:83:12:3c:1c:da:7b:9c: 42:5d:2f:18:15:93:74:d0:80:e6:d7:3f:25:86:6e: c8:c9:db:ab:e9:d4:14:2a:e0:b2:91:e8:75:98:af: 8d:51:a7:6c:2d:b8:90:71:21:86:9a:f2:84:fd:da: e9:84:75:85:8c:17:62:96:7a:6c:8d:30:e3:7f:74: 46:5a:5a:8f:42:e0:27:9e:da:40:ca:22:4d:11:36: c3:7c:7c:e3:dc:c8:e5:05:99:81:34:8b:96:e7:6a: 7e:56:96:e1:ec:00:23:7b:1b:7b:d4:b3:03:de:8e: 9b:da:d9:e0:05:0b:00:10:3d:58:e8:59:94:eb:72: 1b:bf:29:8a:d8:59:8c:80:07:0f:d8:ee:21:68:3c: bd:48:64:fc:28:98:a5:43:b0:f9:bc:ad:27:d1:5c: b4:dd:a9:fa:ca:ea:71:9b:af:3e:bb:f8:30:2f:be: 48:e4:eb:93:f4:35:3c:15:08:21:63:5b:76:06:9b: 16:df:ed:ff:46:d4:83:e3:de:f3:08:f0:c4:f5:6a: 19:d9:1a:80:86:cb:bb:8b:aa:ff:8b:b8:e3:43:65: 71:cb:8c:df:c5:82:c7:2f:e1:6d:86:9f:ed:e1:e4: f8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:10:52:A8:78:1F:CD:13:4C:D3:14:F8:34:78:BB:D6:43:89:0F:20 X509v3 Authority Key Identifier: keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:39:db:9a:16:45:09:0a:87:d0:78:eb:52:2a:64:17:32:d0: dc:cf:ea:2c:24:cc:07:38:0d:fa:4e:e0:03:34:85:ce:dc:56: b5:8c:2e:72:d6:67:ac:5f:a7:ad:ad:f4:e4:50:55:e5:39:cb: eb:07:b1:5c:36:61:f9:86:b5:09:1b:58:1d:80:27:06:60:37: d9:4a:7f:dc:fa:9b:79:e4:66:d0:6d:9e:d9:ca:98:71:85:f1: e4:c3:9f:eb:17:11:fb:06:f2:9b:43:d3:52:2e:b6:e1:f6:8c: 52:1d:5f:75:3c:56:75:7d:cd:5d:d0:e2:b8:3a:64:66:2a:01: 97:57:aa:53:2d:29:25:9b:5f:ed:2f:b0:b2:1b:1d:04:d1:9d: e9:5b:e8:07:c8:4b:99:02:d4:df:ce:e5:f8:98:54:c0:1d:64: a2:ee:fa:51:65:8d:10:c7:45:7b:2e:c7:8c:a3:10:fc:b6:65: 29:ee:83:e7:5a:18:b5:0e:14:69:2a:91:c9:33:a6:bf:e3:9c: df:b1:3b:8f:c7:8c:16:0a:a4:b1:55:94:30:cd:23:af:ba:fb: a0:41:d2:2e:89:25:eb:bd:ea:38:b1:4b:d5:61:21:e7:d2:00: 0a:4a:a2:88:66:ff:17:20:65:9e:c1:b1:5e:52:40:64:08:59: 3f:97:9b:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDQUExMTAvBgNVBAUTKDYxN0YwNTRFM0NFNDUxRTBDM0U3RjQ0NkREMDlGNzg2 NDY1MkI2NTYwHhcNMjQxMTIzMDQzMDQ0WhcNMjQxMTMwMDQzMDQ0WjAYMRYwFAYD VQQDEw02NzQxNWE3NC03MTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/gedIve9nnct1bsnUPydpqABAbyEYMSPBzae5xCXS8YFZN00IDm1z8lhm7I ydur6dQUKuCykeh1mK+NUadsLbiQcSGGmvKE/drphHWFjBdilnpsjTDjf3RGWlqP QuAnntpAyiJNETbDfHzj3MjlBZmBNIuW52p+Vpbh7AAjext71LMD3o6b2tngBQsA ED1Y6FmU63IbvymK2FmMgAcP2O4haDy9SGT8KJilQ7D5vK0n0Vy03an6yupxm68+ u/gwL75I5OuT9DU8FQghY1t2BpsW3+3/RtSD497zCPDE9WoZ2RqAhsu7i6r/i7jj Q2Vxy4zfxYLHL+Fthp/t4eT4wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEQUqh4 H80TTNMU+DR4u9ZDiQ8gMB8GA1UdIwQYMBaAFGF/BU485FHgw+f0Rt0J94ZGUrZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUNBQS84RTI3NUExRUNF NEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1VlREQ1X1JHM1FuM2hrWlN0 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYOEZUanprVWVERDVfUkczUW4zaGtaU3RsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUNBQS84RTI3NUExRUNFNEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1Vl REQ1X1JHM1FuM2hrWlN0bFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpOduaFkUJCofQeOtSKmQXMtDcz+osJMwHOA36TuADNIXO3Fa1jC5y 1mesX6etrfTkUFXlOcvrB7FcNmH5hrUJG1gdgCcGYDfZSn/c+pt55GbQbZ7Zyphx hfHkw5/rFxH7BvKbQ9NSLrbh9oxSHV91PFZ1fc1d0OK4OmRmKgGXV6pTLSklm1/t L7CyGx0E0Z3pW+gHyEuZAtTfzuX4mFTAHWSi7vpRZY0Qx0V7LseMoxD8tmUp7oPn Whi1DhRpKpHJM6a/45zfsTuPx4wWCqSxVZQwzSOvuvugQdIuiSXrveo4sUvVYSHn 0gAKSqKIZv8XIGWewbFeUkBkCFk/l5uR -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:18 2024 by rpki-client on console-ams.rpki-client.org