$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft File: YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft (raw, json) Hash identifier: R8ikyhUgBCmx05QfaDaH9GrFRlWq2Vy6/y3Bj8xoIdM= Subject key identifier: BB:C7:FD:51:7D:16:1B:61:BB:B1:C3:AE:FE:99:D1:BD:28:95:73:AE Authority key identifier: 60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 Certificate issuer: /CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Certificate serial: 0782 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft Manifest number: 0779 Signing time: Fri 22 Nov 2024 20:58:35 +0000 Manifest this update: Fri 22 Nov 2024 20:58:35 +0000 Manifest next update: Fri 29 Nov 2024 20:58:35 +0000 Files and hashes: 1: YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl (hash: 6I8zqDOidT2zTLKW6/GbYc6d+1gAipUC4LKEveFUIbc=) 2: 0A66C1B0C60711EE8FCEFB7AC4F9AE02.roa (hash: 7sNWwGuZ+OzZYuTBVak4Ik70FNdyKT2hyC5Tpz41AG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1922 (0x782) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Validity Not Before: Nov 22 20:58:35 2024 GMT Not After : Nov 29 20:58:35 2024 GMT Subject: CN=6740f07b-4780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:12:7d:1f:fe:89:f4:97:59:66:e6:9c:3d:f7: 67:33:c7:da:54:b6:5e:e4:08:60:d2:f4:5b:8b:99: 0d:6a:a1:e0:f6:62:e1:a0:7e:c5:d6:ce:3a:71:52: e0:91:d7:57:1b:09:ea:8e:63:e4:0f:8e:1e:ce:4f: 26:0c:06:60:d7:c7:3b:ca:31:43:b8:18:a4:b2:fd: a8:b6:87:67:3c:80:32:7c:e0:0a:23:e1:4d:b0:da: 34:48:af:c0:b4:3a:52:37:7f:87:fc:29:11:f6:28: c2:51:46:d1:7a:83:f0:ef:36:42:08:08:12:30:ea: da:60:d7:d2:10:4b:37:e3:b7:f5:65:bc:39:be:6d: 60:6d:67:33:79:73:d0:03:fd:b7:9a:2e:e1:50:09: 9a:48:fd:71:6b:1d:59:ab:71:d8:a1:d0:8e:f5:e4: 60:cc:dc:2a:42:e8:91:30:f8:2c:4e:44:84:dd:84: 2d:8f:73:a9:07:2f:5b:3b:7f:d4:99:aa:7f:52:bd: d2:77:a3:07:42:0f:4d:77:07:36:9c:fc:ac:c6:21: 79:66:a8:f9:d2:91:4a:54:f3:48:0c:a9:c3:53:53: 13:48:a6:71:4a:30:4b:ec:f7:41:4b:da:44:44:12: 75:e9:e4:b9:a2:5f:04:ff:bf:ff:74:b9:06:c7:23: ad:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C7:FD:51:7D:16:1B:61:BB:B1:C3:AE:FE:99:D1:BD:28:95:73:AE X509v3 Authority Key Identifier: keyid:60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:76:60:f1:4b:d9:e9:ad:cd:ba:85:e0:ad:7d:f4:41:5a:78: 90:50:00:31:bb:1c:e0:2f:81:af:08:72:1e:16:8e:78:3b:ba: 5b:99:2f:11:a0:e4:5a:5e:04:4b:e7:44:0b:3a:12:6d:4a:7e: 59:1a:f7:4f:bc:1e:e5:1f:30:71:d5:af:ca:b1:8b:29:c9:49: a4:07:43:37:7a:ba:d8:1f:0d:f3:4f:5c:f0:64:75:be:f1:e3: d8:0f:10:58:19:20:f1:1b:75:06:5b:7b:dc:70:ba:29:c5:70: e0:c9:0f:59:98:25:fe:4d:41:0c:7d:db:2f:62:b4:a5:72:67: d2:04:14:5a:d0:ba:24:a9:8a:f6:af:2c:5d:59:91:8b:b7:6c: 6d:bb:4f:c7:48:f0:32:7b:7a:a5:73:db:69:a1:76:db:00:0c: 7a:b7:9e:a2:44:03:64:1b:44:da:39:b0:bb:35:a9:68:5d:b9: 7b:d4:1f:97:f2:8a:7c:ba:7d:4b:c9:ab:91:5d:26:11:ee:b8: 7e:15:0b:26:ca:ea:79:12:11:cb:67:e3:d1:55:71:d3:81:12: 4c:18:36:54:65:bd:c6:b3:07:ab:87:9b:68:df:4a:10:9a:e4: c4:66:b5:e4:d3:ab:da:f7:1a:fb:b4:52:27:c1:01:00:c4:56: 57:54:1d:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzQzYxMTAvBgNVBAUTKDYwNkVFODVEQzNDNDY3RkM0NjRBODk0RUQ0N0E5RjFC RDMyMUI0NDEwHhcNMjQxMTIyMjA1ODM1WhcNMjQxMTI5MjA1ODM1WjAYMRYwFAYD VQQDEw02NzQwZjA3Yi00NzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxJ9H/6J9JdZZuacPfdnM8faVLZe5Ahg0vRbi5kNaqHg9mLhoH7F1s46cVLg kddXGwnqjmPkD44ezk8mDAZg18c7yjFDuBiksv2otodnPIAyfOAKI+FNsNo0SK/A tDpSN3+H/CkR9ijCUUbReoPw7zZCCAgSMOraYNfSEEs347f1Zbw5vm1gbWczeXPQ A/23mi7hUAmaSP1xax1Zq3HYodCO9eRgzNwqQuiRMPgsTkSE3YQtj3OpBy9bO3/U map/Ur3Sd6MHQg9Ndwc2nPysxiF5Zqj50pFKVPNIDKnDU1MTSKZxSjBL7PdBS9pE RBJ16eS5ol8E/7//dLkGxyOtSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvH/VF9 Fhthu7HDrv6Z0b0olXOuMB8GA1UdIwQYMBaAFGBu6F3DxGf8RkqJTtR6nxvTIbRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNDNi82MzFDQzE2MEYz MzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpfeEdTb2xPMUhxZkc5TWh0 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lHN29YY1BFWl94R1NvbE8xSHFmRzlNaHRFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjNDNi82MzFDQzE2MEYzMzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpf eEdTb2xPMUhxZkc5TWh0RUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPdmDxS9nprc26heCtffRBWniQUAAxuxzgL4GvCHIeFo54O7pbmS8R oORaXgRL50QLOhJtSn5ZGvdPvB7lHzBx1a/KsYspyUmkB0M3errYHw3zT1zwZHW+ 8ePYDxBYGSDxG3UGW3vccLopxXDgyQ9ZmCX+TUEMfdsvYrSlcmfSBBRa0LokqYr2 ryxdWZGLt2xtu0/HSPAye3qlc9tpoXbbAAx6t56iRANkG0TaObC7NaloXbl71B+X 8op8un1LyauRXSYR7rh+FQsmyup5EhHLZ+PRVXHTgRJMGDZUZb3Gswerh5to30oQ muTEZrXk06va9xr7tFInwQEAxFZXVB3P -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:38 2024 by rpki-client on console-ams.rpki-client.org