$ rpki-client -vvf rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft File: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft (raw, json) Hash identifier: /fv18hf9dhmyBz2vNS8Qm39RpUvXnG/Wl18WxkrH1qE= Subject key identifier: FC:17:5A:3E:DE:BF:30:BF:1D:C7:A2:B1:D8:FE:2E:41:1B:EB:4B:81 Authority key identifier: D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 Certificate issuer: /CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft Manifest number: 76 Signing time: Sat 23 Nov 2024 04:48:40 +0000 Manifest this update: Sat 23 Nov 2024 04:48:40 +0000 Manifest next update: Sat 30 Nov 2024 04:48:40 +0000 Files and hashes: 1: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl (hash: NjKGkFY9k1jCV9LBf4vyc3Up86oyNOwvmuInalrciS4=) 2: F220949E1C3411EFAF8F6A5BC4F9AE02.roa (hash: FuzVkN28KBSRdE3py4BBCf6dkz1hoCYnNgurT7k+8YU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Validity Not Before: Nov 23 04:48:40 2024 GMT Not After : Nov 30 04:48:40 2024 GMT Subject: CN=67415ea8-7c37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:91:7a:bf:de:a1:1f:ff:82:79:4c:ed:ce:25: 7c:fd:9a:12:41:c4:5a:e0:c2:cd:bf:c0:e3:71:67: 7b:fa:a2:2c:08:fb:97:bb:59:d4:28:04:92:bb:61: 6a:0d:f6:4f:d6:f6:8d:3f:4f:f0:88:28:4f:e3:5a: 7e:34:a1:e7:7a:2f:68:86:15:bb:4c:20:86:68:3a: e8:b2:50:06:7c:4c:23:d0:96:2a:dc:22:41:35:e8: ab:a2:2b:b8:9c:c8:3b:fb:39:9c:ac:eb:1a:ee:f4: 5d:0d:cd:29:02:20:0a:76:a8:05:e5:ff:27:f7:18: d4:05:a7:19:14:18:92:ed:41:b8:f3:53:9c:88:e4: 84:13:a5:48:5c:55:18:58:e6:2b:f8:c1:0f:59:51: c5:ab:e2:c0:66:c5:1e:b9:cb:40:c0:c2:7e:49:22: 8e:f1:5c:8c:56:ec:f4:b4:fd:7d:d5:18:07:a8:34: 4e:18:7a:de:9a:a0:56:87:54:4a:ea:11:09:b7:1d: f8:b7:4e:98:10:e6:9c:c8:b8:09:f9:79:ff:e4:0b: 75:b9:4b:0a:e7:da:14:dd:5d:05:25:43:e4:d3:2f: 83:aa:9e:d3:96:de:24:d8:8e:12:53:76:ff:28:1d: ac:66:89:ba:33:69:f2:20:06:6b:e8:e6:7b:77:4f: 55:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:17:5A:3E:DE:BF:30:BF:1D:C7:A2:B1:D8:FE:2E:41:1B:EB:4B:81 X509v3 Authority Key Identifier: keyid:D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:6b:5b:9f:b6:0e:4c:8d:bf:e5:e5:8e:5b:c5:7b:d6:94:3f: 7f:99:4e:93:85:d3:d4:8e:6e:6d:3d:d9:3d:42:0a:9c:99:16: 93:8d:ca:00:68:b0:50:1e:e5:48:b8:99:e0:0b:88:8b:1c:00: 4f:4e:ac:d1:e8:22:74:35:09:55:89:38:88:0d:74:cf:53:e6: 61:83:7b:85:97:06:c2:ad:c1:77:6a:a8:e9:a7:91:7a:9d:ea: 15:54:aa:47:59:42:fd:ad:51:21:e7:ee:37:95:20:c1:f0:bb: 3b:66:d1:76:33:77:a0:de:fc:10:90:83:b3:d6:e8:ba:85:cb: 37:65:af:52:e3:39:4f:0c:97:29:c7:c6:08:00:b6:cc:a8:96: 58:8f:76:c3:cd:0a:36:fa:f9:94:5f:c3:5e:1f:42:fa:7f:7e: 13:7a:53:3e:b9:98:31:dd:12:bb:21:6c:e0:8e:69:65:b3:83: 5f:e7:7b:9f:04:5b:4c:ff:60:b2:8e:0e:6c:b3:ae:51:fb:e1: ca:76:68:d6:3e:04:a8:a4:49:9b:59:34:a0:d8:95:a9:35:c4: 3a:66:1e:79:ce:23:11:aa:d5:13:b2:df:f1:6a:50:4a:91:40: 68:cc:ae:69:ba:18:3e:35:1c:5c:c2:0c:01:c1:d4:41:72:f1: 1a:8f:65:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB ODIyRjExMC8GA1UEBRMoRDk4NzJDMTkzRTE4REMxNTFGRTNFRjlFMjlBRkU4MzEy MUIyNEQxMDAeFw0yNDExMjMwNDQ4NDBaFw0yNDExMzAwNDQ4NDBaMBgxFjAUBgNV BAMTDTY3NDE1ZWE4LTdjMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCokXq/3qEf/4J5TO3OJXz9mhJBxFrgws2/wONxZ3v6oiwI+5e7WdQoBJK7YWoN 9k/W9o0/T/CIKE/jWn40oed6L2iGFbtMIIZoOuiyUAZ8TCPQlircIkE16KuiK7ic yDv7OZys6xru9F0NzSkCIAp2qAXl/yf3GNQFpxkUGJLtQbjzU5yI5IQTpUhcVRhY 5iv4wQ9ZUcWr4sBmxR65y0DAwn5JIo7xXIxW7PS0/X3VGAeoNE4Yet6aoFaHVErq EQm3Hfi3TpgQ5pzIuAn5ef/kC3W5Swrn2hTdXQUlQ+TTL4OqntOW3iTYjhJTdv8o HaxmibozafIgBmvo5nt3T1V1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/BdaPt6/ ML8dx6Kx2P4uQRvrS4EwHwYDVR0jBBgwFoAU2YcsGT4Y3BUf4++eKa/oMSGyTRAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4MjJGLzU4NDJEMzA0RjdG MDExRUU5OEM4QzkyQkM0RjlBRTAyLzJZY3NHVDRZM0JVZjQtLWVLYV9vTVNHeVRS QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlljc0dUNFkzQlVmNC0tZUthX29NU0d5VFJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4 MjJGLzU4NDJEMzA0RjdGMDExRUU5OEM4QzkyQkM0RjlBRTAyLzJZY3NHVDRZM0JV ZjQtLWVLYV9vTVNHeVRSQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALtrW5+2DkyNv+XljlvFe9aUP3+ZTpOF09SObm092T1CCpyZFpONygBo sFAe5Ui4meALiIscAE9OrNHoInQ1CVWJOIgNdM9T5mGDe4WXBsKtwXdqqOmnkXqd 6hVUqkdZQv2tUSHn7jeVIMHwuztm0XYzd6De/BCQg7PW6LqFyzdlr1LjOU8MlynH xggAtsyolliPdsPNCjb6+ZRfw14fQvp/fhN6Uz65mDHdErshbOCOaWWzg1/ne58E W0z/YLKODmyzrlH74cp2aNY+BKikSZtZNKDYlak1xDpmHnnOIxGq1ROy3/FqUEqR QGjMrmm6GD41HFzCDAHB1EFy8RqPZQA= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org