$ rpki-client -vvf rpki.apnic.net/member_repository/A91A531A/2BDDFACE219711EBB45B0359C4F9AE02/yZNZQ2ka0elTZudBwTkwH7f35ts.mft File: yZNZQ2ka0elTZudBwTkwH7f35ts.mft (raw, json) Hash identifier: aQlz9hP1g/fgHW5nXCk/tBpn6V8JjxPUyqHTQ+WtHaQ= Subject key identifier: 2F:68:69:D7:30:A3:06:41:6D:6A:8C:08:6A:D2:41:7A:CA:7A:46:F1 Authority key identifier: C9:93:59:43:69:1A:D1:E9:53:66:E7:41:C1:39:30:1F:B7:F7:E6:DB Certificate issuer: /CN=A91A531A/serialNumber=C9935943691AD1E95366E741C139301FB7F7E6DB Certificate serial: 06FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZNZQ2ka0elTZudBwTkwH7f35ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A531A/2BDDFACE219711EBB45B0359C4F9AE02/yZNZQ2ka0elTZudBwTkwH7f35ts.mft Manifest number: 06F7 Signing time: Fri 22 Nov 2024 21:29:33 +0000 Manifest this update: Fri 22 Nov 2024 21:29:32 +0000 Manifest next update: Fri 29 Nov 2024 21:29:32 +0000 Files and hashes: 1: yZNZQ2ka0elTZudBwTkwH7f35ts.crl (hash: jqWrvvno3aYYR+sYzasCk7eWlI41I7Lhwsn3knl+jyk=) 2: 43C467CA219911EB8F75645EC4F9AE02.roa (hash: N+FtAiUxsHhBvHtKNspxZwKivHBlBWR9LK3rO/Xb0dg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A531A/2BDDFACE219711EBB45B0359C4F9AE02/yZNZQ2ka0elTZudBwTkwH7f35ts.crl rsync://rpki.apnic.net/member_repository/A91A531A/2BDDFACE219711EBB45B0359C4F9AE02/yZNZQ2ka0elTZudBwTkwH7f35ts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZNZQ2ka0elTZudBwTkwH7f35ts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1788 (0x6fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A531A/serialNumber=C9935943691AD1E95366E741C139301FB7F7E6DB Validity Not Before: Nov 22 21:29:32 2024 GMT Not After : Nov 29 21:29:32 2024 GMT Subject: CN=6740f7bd-dbb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:eb:6d:de:56:a7:ac:1f:41:d0:0c:c7:1f:2b: d1:35:08:3a:52:a9:a1:c7:30:88:e1:04:c5:70:97: 3e:b7:d3:30:3a:38:2b:64:4f:3b:a6:6a:53:c2:97: 64:b3:0d:07:ae:d6:35:4f:ce:bd:2d:27:93:6f:05: ba:d1:a7:01:ab:74:e2:b4:60:52:2b:59:da:07:68: da:3f:4d:ee:68:d0:66:8f:3f:6f:a5:67:e5:ca:19: a3:53:a9:7f:9f:82:6d:d7:23:14:a7:50:bc:e2:6f: cc:61:02:b3:4f:16:3e:67:f2:18:ca:c9:b7:ff:94: 13:bf:d1:ee:d0:23:e7:2c:ec:3a:92:bc:72:de:d7: ac:4e:e5:1d:e6:e6:75:ac:dc:33:0c:90:34:c7:15: 8f:58:f9:65:cd:38:93:27:d4:8e:84:03:e0:d0:d1: b7:f5:d8:fd:af:2d:29:5c:b9:de:53:11:f0:0e:63: 5f:56:67:b5:1f:d2:ec:3a:8e:7b:51:71:01:46:45: e6:3f:f6:6b:79:61:6f:1c:7e:a0:2b:f0:da:3b:9f: ee:f6:8a:a2:de:35:55:36:92:8e:db:69:59:df:d9: 37:8b:6c:63:b4:75:60:a0:33:cb:da:6d:e2:be:da: ac:f9:3b:ac:de:cc:82:16:f7:ef:d6:47:a1:5c:5b: 6f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:68:69:D7:30:A3:06:41:6D:6A:8C:08:6A:D2:41:7A:CA:7A:46:F1 X509v3 Authority Key Identifier: keyid:C9:93:59:43:69:1A:D1:E9:53:66:E7:41:C1:39:30:1F:B7:F7:E6:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A531A/2BDDFACE219711EBB45B0359C4F9AE02/yZNZQ2ka0elTZudBwTkwH7f35ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZNZQ2ka0elTZudBwTkwH7f35ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A531A/2BDDFACE219711EBB45B0359C4F9AE02/yZNZQ2ka0elTZudBwTkwH7f35ts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:c6:4d:25:ea:e2:8b:00:38:1d:ba:ec:af:87:d2:fd:d1:24: 0e:28:f4:4a:c6:bc:41:f3:97:f2:7e:eb:5d:51:0f:09:37:1b: bb:a6:32:91:cc:f9:43:64:f3:b3:df:71:4e:8e:80:ab:c9:d7: be:9e:e9:a1:37:21:04:4d:53:1c:18:ee:38:37:65:a7:3c:11: 90:90:e2:d7:97:c1:60:68:21:30:3c:0d:42:68:6e:b4:fd:d5: 7c:31:01:fa:ca:d9:69:82:46:44:4f:c0:32:16:21:60:5a:fa: 75:4e:51:2e:a4:6e:af:87:12:da:f5:69:7e:d7:5e:b6:f0:31: 07:3b:8e:fb:c5:da:a0:8d:f2:3b:e1:96:80:d6:b0:c2:51:42: c4:10:e3:dd:dc:ab:db:3b:73:38:52:fa:a8:c3:5a:bb:3a:a6: 90:e1:d2:b0:68:61:8a:47:7e:f8:c2:c7:bd:a8:26:99:14:8e: 40:6f:3a:6b:0e:c5:74:0e:36:db:92:e3:57:e9:ce:bd:81:e5: ec:b8:1c:9b:0f:21:e9:3c:57:49:b4:d9:df:d6:c6:79:13:2a: a8:2c:92:a4:58:e2:16:64:9d:25:15:a6:f9:de:3b:10:96:cc: 3c:6d:d8:94:42:b9:ea:e1:eb:a0:2e:5f:81:b0:5e:83:ac:1c: c3:8b:fe:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUzMUExMTAvBgNVBAUTKEM5OTM1OTQzNjkxQUQxRTk1MzY2RTc0MUMxMzkzMDFG QjdGN0U2REIwHhcNMjQxMTIyMjEyOTMyWhcNMjQxMTI5MjEyOTMyWjAYMRYwFAYD VQQDEw02NzQwZjdiZC1kYmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+tt3lanrB9B0AzHHyvRNQg6UqmhxzCI4QTFcJc+t9MwOjgrZE87pmpTwpdk sw0HrtY1T869LSeTbwW60acBq3TitGBSK1naB2jaP03uaNBmjz9vpWflyhmjU6l/ n4Jt1yMUp1C84m/MYQKzTxY+Z/IYysm3/5QTv9Hu0CPnLOw6krxy3tesTuUd5uZ1 rNwzDJA0xxWPWPllzTiTJ9SOhAPg0NG39dj9ry0pXLneUxHwDmNfVme1H9LsOo57 UXEBRkXmP/ZreWFvHH6gK/DaO5/u9oqi3jVVNpKO22lZ39k3i2xjtHVgoDPL2m3i vtqs+Tus3syCFvfv1kehXFtvPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9oadcw owZBbWqMCGrSQXrKekbxMB8GA1UdIwQYMBaAFMmTWUNpGtHpU2bnQcE5MB+39+bb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTMxQS8yQkRERkFDRTIx OTcxMUVCQjQ1QjAzNTlDNEY5QUUwMi95Wk5aUTJrYTBlbFRadWRCd1Rrd0g3ZjM1 dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laTlpRMmthMGVsVFp1ZEJ3VGt3SDdmMzV0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTMxQS8yQkRERkFDRTIxOTcxMUVCQjQ1QjAzNTlDNEY5QUUwMi95Wk5aUTJrYTBl bFRadWRCd1Rrd0g3ZjM1dHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAexk0l6uKLADgduuyvh9L90SQOKPRKxrxB85fyfutdUQ8JNxu7pjKR zPlDZPOz33FOjoCryde+numhNyEETVMcGO44N2WnPBGQkOLXl8FgaCEwPA1CaG60 /dV8MQH6ytlpgkZET8AyFiFgWvp1TlEupG6vhxLa9Wl+11628DEHO477xdqgjfI7 4ZaA1rDCUULEEOPd3KvbO3M4Uvqow1q7OqaQ4dKwaGGKR374wse9qCaZFI5Abzpr DsV0DjbbkuNX6c69geXsuBybDyHpPFdJtNnf1sZ5EyqoLJKkWOIWZJ0lFab53jsQ lsw8bdiUQrnq4eugLl+BsF6DrBzDi/5d -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:47 2024 by rpki-client on console-ams.rpki-client.org