$ rpki-client -vvf rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft File: ybTeSHSWW_87LwRxASJXfm2bHRQ.mft (raw, json) Hash identifier: 2NZggxBoF/QU349ZKMBaJNhTKgoQFEF+jBF+X/EDbcc= Subject key identifier: BA:6F:68:1D:7E:CB:BB:44:53:6B:D5:A0:07:96:47:83:C4:4C:21:42 Authority key identifier: C9:B4:DE:48:74:96:5B:FF:3B:2F:04:71:01:22:57:7E:6D:9B:1D:14 Certificate issuer: /CN=A91B166D/serialNumber=C9B4DE4874965BFF3B2F04710122577E6D9B1D14 Certificate serial: 0B7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybTeSHSWW_87LwRxASJXfm2bHRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft Manifest number: 0B73 Signing time: Fri 22 Nov 2024 18:49:00 +0000 Manifest this update: Fri 22 Nov 2024 18:49:00 +0000 Manifest next update: Fri 29 Nov 2024 18:49:00 +0000 Files and hashes: 1: ybTeSHSWW_87LwRxASJXfm2bHRQ.crl (hash: HA7neTaMyOjU2XyXEFEV1ryV5webeZA5tjxtXDnusw0=) 2: AA378BD6405111ECB91F2A37C4F9AE02.roa (hash: OZYL23mGG9CPsVcj8UrHa3HS/iPUrNbOkuZRw+Rgyck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.crl rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybTeSHSWW_87LwRxASJXfm2bHRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2940 (0xb7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B166D/serialNumber=C9B4DE4874965BFF3B2F04710122577E6D9B1D14 Validity Not Before: Nov 22 18:49:00 2024 GMT Not After : Nov 29 18:49:00 2024 GMT Subject: CN=6740d21c-d621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:33:5a:a8:cf:85:c5:3e:6f:7c:b7:8e:12:79: 41:c0:a5:53:5b:59:19:46:3c:31:56:39:71:97:cd: 92:00:c2:f2:68:5a:b4:f1:d0:ef:85:44:57:cd:9f: ff:9e:52:15:a6:b0:0b:69:f6:fc:70:b3:44:2c:c5: 16:da:e8:7d:22:36:03:a4:85:79:b4:7d:bb:9f:e0: c0:5a:f1:89:5f:c1:2e:ad:cc:f2:aa:ec:9e:b6:76: 5c:2a:4a:68:bd:4e:de:1b:88:88:1b:df:1b:a0:7f: d3:df:b5:0a:31:76:29:ef:91:31:2a:90:59:90:7f: 77:54:d7:6a:70:e2:c2:95:87:2c:f9:cc:5f:ec:38: 0b:d0:e0:98:32:0c:35:d4:20:2b:19:a0:c2:cc:e8: 82:a5:39:42:4f:2c:85:d8:9e:53:23:92:09:b7:20: 24:57:e5:bb:bd:d8:da:d9:f4:11:c6:06:88:f9:e2: c4:8c:e8:0f:fa:3f:57:7b:a8:79:df:be:05:d0:e7: 64:23:8e:d7:8b:d8:7c:b0:d2:fc:21:b8:12:57:6f: c3:d8:da:66:f4:60:2c:89:7b:10:40:79:6f:56:eb: cf:8d:cd:7a:b4:6a:b7:b5:e2:d5:d8:74:36:05:0c: b1:61:54:ea:ef:2b:9c:b5:f4:2a:40:88:8f:41:5e: 6a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:6F:68:1D:7E:CB:BB:44:53:6B:D5:A0:07:96:47:83:C4:4C:21:42 X509v3 Authority Key Identifier: keyid:C9:B4:DE:48:74:96:5B:FF:3B:2F:04:71:01:22:57:7E:6D:9B:1D:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybTeSHSWW_87LwRxASJXfm2bHRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:f1:07:8a:d5:f7:63:27:eb:ad:a6:71:e3:dc:54:6c:65:63: 6c:e0:6f:d8:e4:62:0d:bb:26:1e:39:bc:41:29:9b:9e:8b:43: a4:4f:25:42:ca:08:3e:68:eb:33:ba:cd:47:ea:62:27:83:72: 65:e0:c9:9c:64:b1:1d:da:9a:8d:90:3c:f8:66:e4:a3:af:31: ee:2d:55:0c:4c:93:fc:1d:c4:67:2a:8f:a1:65:94:bf:8a:6e: 08:34:d8:1c:37:33:0f:1b:a4:49:03:5a:07:f0:46:4b:98:4c: 0d:65:e3:d2:ef:9d:59:e9:40:b6:e0:d2:0a:ef:56:a7:2a:31: fc:b5:20:b1:cc:fb:b0:25:69:d5:9f:c9:fc:f7:51:96:4c:e3: e6:d7:f5:64:f5:5f:41:71:60:ff:15:e3:f5:33:47:7a:bc:34: 9d:ef:30:34:38:20:01:f9:9c:55:ad:35:e5:0d:4c:07:a9:de: 8c:5d:02:5f:04:76:f5:88:65:7b:b2:0f:b4:3e:14:06:7d:c1: a0:87:da:3d:84:24:c7:8c:a8:f2:a7:ee:6c:ca:01:50:c3:c5: 24:69:14:3c:ce:90:f9:29:2a:ce:74:64:b4:34:ad:7b:ae:9a: 69:af:67:af:39:bf:8b:e5:f3:5f:ff:bf:93:7a:af:95:e8:df: 99:05:10:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE2NkQxMTAvBgNVBAUTKEM5QjRERTQ4NzQ5NjVCRkYzQjJGMDQ3MTAxMjI1NzdF NkQ5QjFEMTQwHhcNMjQxMTIyMTg0OTAwWhcNMjQxMTI5MTg0OTAwWjAYMRYwFAYD VQQDEw02NzQwZDIxYy1kNjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjNaqM+FxT5vfLeOEnlBwKVTW1kZRjwxVjlxl82SAMLyaFq08dDvhURXzZ// nlIVprALafb8cLNELMUW2uh9IjYDpIV5tH27n+DAWvGJX8EurczyquyetnZcKkpo vU7eG4iIG98boH/T37UKMXYp75ExKpBZkH93VNdqcOLClYcs+cxf7DgL0OCYMgw1 1CArGaDCzOiCpTlCTyyF2J5TI5IJtyAkV+W7vdja2fQRxgaI+eLEjOgP+j9Xe6h5 374F0OdkI47Xi9h8sNL8IbgSV2/D2Npm9GAsiXsQQHlvVuvPjc16tGq3teLV2HQ2 BQyxYVTq7yuctfQqQIiPQV5qfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpvaB1+ y7tEU2vVoAeWR4PETCFCMB8GA1UdIwQYMBaAFMm03kh0llv/Oy8EcQEiV35tmx0U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTY2RC8yRTc2MjM1ODFC MUExMUVBOTczODlGNzdDNEY5QUUwMi95YlRlU0hTV1dfODdMd1J4QVNKWGZtMmJI UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3liVGVTSFNXV184N0x3UnhBU0pYZm0yYkhSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTY2RC8yRTc2MjM1ODFCMUExMUVBOTczODlGNzdDNEY5QUUwMi95YlRlU0hTV1df ODdMd1J4QVNKWGZtMmJIUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa8QeK1fdjJ+utpnHj3FRsZWNs4G/Y5GINuyYeObxBKZuei0OkTyVC ygg+aOszus1H6mIng3Jl4MmcZLEd2pqNkDz4ZuSjrzHuLVUMTJP8HcRnKo+hZZS/ im4INNgcNzMPG6RJA1oH8EZLmEwNZePS751Z6UC24NIK71anKjH8tSCxzPuwJWnV n8n891GWTOPm1/Vk9V9BcWD/FeP1M0d6vDSd7zA0OCAB+ZxVrTXlDUwHqd6MXQJf BHb1iGV7sg+0PhQGfcGgh9o9hCTHjKjyp+5sygFQw8UkaRQ8zpD5KSrOdGS0NK17 rpppr2evOb+L5fNf/7+Teq+V6N+ZBRA9 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org