$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/YU2IxDGHVO4zwBKmTFQrOeoE1OE.mft File: YU2IxDGHVO4zwBKmTFQrOeoE1OE.mft (raw, json) Hash identifier: ROYTujj8Kec9zWrS9tEn86dx/rJRDVYKfcnqWzd921E= Subject key identifier: E9:68:03:30:0C:A7:AB:F7:D3:0A:A9:C3:BF:0E:1C:FA:57:27:C1:0A Authority key identifier: 61:4D:88:C4:31:87:54:EE:33:C0:12:A6:4C:54:2B:39:EA:04:D4:E1 Certificate issuer: /CN=A91AE9CC/serialNumber=614D88C4318754EE33C012A64C542B39EA04D4E1 Certificate serial: 246A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU2IxDGHVO4zwBKmTFQrOeoE1OE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/YU2IxDGHVO4zwBKmTFQrOeoE1OE.mft Manifest number: 2459 Signing time: Sun 24 Nov 2024 15:42:23 +0000 Manifest this update: Sun 24 Nov 2024 15:42:22 +0000 Manifest next update: Sun 01 Dec 2024 15:42:22 +0000 Files and hashes: 1: YU2IxDGHVO4zwBKmTFQrOeoE1OE.crl (hash: ymoDEmQLkhLyOpvotw9FL1aXrCs0hv0xK5eb9AyPQeQ=) 2: 3A73B3A254EB11E7A50F9822C4F9AE02.roa (hash: VpHAZdWeijuNJKWvKLj0k1xE9YF+5hfOXRYAI6729SM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/YU2IxDGHVO4zwBKmTFQrOeoE1OE.crl rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/YU2IxDGHVO4zwBKmTFQrOeoE1OE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU2IxDGHVO4zwBKmTFQrOeoE1OE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:42:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9322 (0x246a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE9CC/serialNumber=614D88C4318754EE33C012A64C542B39EA04D4E1 Validity Not Before: Nov 24 15:42:22 2024 GMT Not After : Dec 1 15:42:22 2024 GMT Subject: CN=6743495e-9af7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d5:8b:dc:2d:d3:a8:31:ef:e9:df:96:0c:3b: 10:18:aa:e9:51:9e:8c:63:3c:cc:08:3e:f2:0c:0b: 7e:02:20:0c:05:d4:41:34:ef:b1:1f:0d:2e:42:ee: 71:63:a2:26:3c:4d:71:af:ff:b2:d4:36:9c:fc:62: a4:e8:98:42:d9:0e:8f:95:28:06:1b:50:f5:2b:1c: 08:c1:35:0f:e1:33:56:32:86:e0:17:53:52:24:f5: b5:7e:fa:07:96:f4:20:2a:f6:aa:fc:43:bb:8a:04: ab:10:4b:e4:d7:2c:f0:49:99:10:87:bd:be:77:f1: 27:52:29:53:e9:2d:67:0f:93:8e:81:8a:65:b6:48: f2:f4:f4:99:0f:ed:55:07:a9:67:02:7d:9a:1c:19: 2b:af:89:93:17:43:21:65:44:e9:96:d6:8b:2a:cd: 50:62:19:d7:27:0a:39:59:4d:07:52:8c:b2:33:cd: a0:d8:43:84:cd:ce:a7:90:b1:c8:bc:bf:f7:de:75: 8a:e0:db:91:cc:75:e5:8c:f3:e7:0c:f9:22:56:ed: 06:30:da:93:4d:ac:e8:3e:9f:a6:0a:cb:94:dc:d1: 09:38:41:89:b6:c4:7d:7f:72:67:1b:56:2f:ac:99: be:80:1e:34:54:cf:68:10:fc:e2:78:79:ac:e2:d0: ab:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:68:03:30:0C:A7:AB:F7:D3:0A:A9:C3:BF:0E:1C:FA:57:27:C1:0A X509v3 Authority Key Identifier: keyid:61:4D:88:C4:31:87:54:EE:33:C0:12:A6:4C:54:2B:39:EA:04:D4:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/YU2IxDGHVO4zwBKmTFQrOeoE1OE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU2IxDGHVO4zwBKmTFQrOeoE1OE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/YU2IxDGHVO4zwBKmTFQrOeoE1OE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:ca:73:f4:27:50:9f:5a:bc:ed:b2:8e:3f:a3:fc:2f:fc:2a: 8c:34:aa:f2:31:f5:11:9f:6c:a8:3b:e5:51:cf:f6:f7:50:b8: a9:0b:b8:4a:db:67:d5:85:09:ba:f8:56:7a:70:3f:a5:97:df: 84:51:96:75:9e:32:d0:66:06:9f:22:54:20:e8:90:a7:a9:d3: ef:8e:bd:f4:cb:63:c0:5b:b9:84:e1:be:f5:eb:2b:2f:db:04: 83:8a:57:58:b9:bb:34:32:42:33:90:9e:67:7f:8f:70:f3:c9: 56:36:31:27:1d:c2:15:71:0b:e6:02:09:78:71:a8:f6:78:e8: c7:72:b1:34:e1:30:34:26:59:61:b5:f5:bf:62:c7:15:9b:06: 3c:ff:b8:1a:c6:50:d0:d9:d0:41:d5:42:f5:e8:2e:05:62:61: ba:94:7d:11:44:3d:b1:83:6c:6c:63:66:eb:08:72:b5:9c:48: 7d:1a:11:fc:5b:ae:37:e4:f0:23:73:0b:61:f5:02:39:b4:5e: 77:1f:da:7e:c1:69:37:0c:90:e9:d6:ba:e9:d2:4e:28:48:4b: ad:5e:66:c4:d5:50:d8:34:be:d3:1d:aa:5f:44:f9:cb:4d:5f: c2:e0:f2:ca:0e:54:04:ef:76:a7:b5:3f:4b:a5:42:25:f8:2a: 5c:b1:2c:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5Q0MxMTAvBgNVBAUTKDYxNEQ4OEM0MzE4NzU0RUUzM0MwMTJBNjRDNTQyQjM5 RUEwNEQ0RTEwHhcNMjQxMTI0MTU0MjIyWhcNMjQxMjAxMTU0MjIyWjAYMRYwFAYD VQQDEw02NzQzNDk1ZS05YWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAndWL3C3TqDHv6d+WDDsQGKrpUZ6MYzzMCD7yDAt+AiAMBdRBNO+xHw0uQu5x Y6ImPE1xr/+y1Dac/GKk6JhC2Q6PlSgGG1D1KxwIwTUP4TNWMobgF1NSJPW1fvoH lvQgKvaq/EO7igSrEEvk1yzwSZkQh72+d/EnUilT6S1nD5OOgYpltkjy9PSZD+1V B6lnAn2aHBkrr4mTF0MhZUTpltaLKs1QYhnXJwo5WU0HUoyyM82g2EOEzc6nkLHI vL/33nWK4NuRzHXljPPnDPkiVu0GMNqTTazoPp+mCsuU3NEJOEGJtsR9f3JnG1Yv rJm+gB40VM9oEPzieHms4tCrzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOloAzAM p6v30wqpw78OHPpXJ8EKMB8GA1UdIwQYMBaAFGFNiMQxh1TuM8ASpkxUKznqBNTh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTlDQy8xNDBFNTI3QzNB ODkxMUU1OUU4MDIzNjJDNEY5QUUwMi9ZVTJJeERHSFZPNHp3QkttVEZRck9lb0Ux T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lVMkl4REdIVk80endCS21URlFyT2VvRTFPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTlDQy8xNDBFNTI3QzNBODkxMUU1OUU4MDIzNjJDNEY5QUUwMi9ZVTJJeERHSFZP NHp3QkttVEZRck9lb0UxT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiynP0J1CfWrztso4/o/wv/CqMNKryMfURn2yoO+VRz/b3ULipC7hK 22fVhQm6+FZ6cD+ll9+EUZZ1njLQZgafIlQg6JCnqdPvjr30y2PAW7mE4b716ysv 2wSDildYubs0MkIzkJ5nf49w88lWNjEnHcIVcQvmAgl4caj2eOjHcrE04TA0Jllh tfW/YscVmwY8/7gaxlDQ2dBB1UL16C4FYmG6lH0RRD2xg2xsY2brCHK1nEh9GhH8 W6435PAjcwth9QI5tF53H9p+wWk3DJDp1rrp0k4oSEutXmbE1VDYNL7THapfRPnL TV/C4PLKDlQE73antT9LpUIl+CpcsSyv -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:50 2024 by rpki-client on console-fra.rpki-client.org