$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft File: YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft (raw, json) Hash identifier: Hg/CDJoRR76aep6P0dibNijzuYK7roU96i6Pwg8pbEY= Subject key identifier: A3:32:A5:7B:A4:CF:C5:D2:93:F3:75:36:6C:9C:3E:10:48:4F:26:55 Authority key identifier: 61:1E:1C:14:95:28:F1:7A:0E:C7:99:C3:9D:56:26:19:C9:A1:51:00 Certificate issuer: /CN=A91C2F8C/serialNumber=611E1C149528F17A0EC799C39D562619C9A15100 Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft Manifest number: 19 Signing time: Sat 23 Nov 2024 05:52:54 +0000 Manifest this update: Sat 23 Nov 2024 05:52:54 +0000 Manifest next update: Sat 30 Nov 2024 05:52:54 +0000 Files and hashes: 1: YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl (hash: mkU1Hpw12ZuG88QKoWwjDuO9o5auc3FvbeRuIcVgc+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2F8C/serialNumber=611E1C149528F17A0EC799C39D562619C9A15100 Validity Not Before: Nov 23 05:52:54 2024 GMT Not After : Nov 30 05:52:54 2024 GMT Subject: CN=67416db6-0705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:85:eb:27:25:29:84:69:d5:9c:09:f8:2e:12: d0:3b:79:de:be:de:94:74:bc:ee:e2:66:a0:64:0f: 15:4a:b2:bc:ac:db:08:a3:b0:ec:bd:df:5c:fb:16: 25:a2:49:69:c0:d6:6c:77:a1:67:a1:fe:d3:0b:af: d2:7b:4e:78:e1:42:de:d6:23:42:91:da:fd:26:f5: c9:3a:96:7d:d0:d1:97:37:f8:70:19:05:06:e2:11: e8:25:28:c5:c6:15:fa:a1:b6:0d:2a:bc:a2:1e:3b: 60:16:a4:4b:93:0f:49:58:10:57:a5:55:1b:c3:83: ff:9f:88:b5:c5:17:d2:b5:4c:c7:3a:1b:41:7a:db: 7a:4b:74:73:35:7a:0b:b4:aa:ea:f3:24:c5:ec:43: e7:d6:ec:11:81:bf:e6:90:52:c4:21:a6:95:de:7a: 06:f3:ae:bb:7e:44:b4:4c:bf:5c:32:de:4e:aa:53: ac:cd:2f:31:b1:4d:2f:cb:32:03:d6:e9:8f:76:2b: e5:6c:34:e7:03:b2:db:11:df:44:f6:b9:a3:51:8b: 21:7a:18:bb:c8:28:d2:b8:a9:c9:9e:5e:0e:29:42: 99:16:75:6e:81:c0:b6:a7:e2:fa:39:d7:1f:f5:4c: 04:31:35:1c:4f:38:10:fc:6d:03:82:2c:4f:76:5e: 43:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:32:A5:7B:A4:CF:C5:D2:93:F3:75:36:6C:9C:3E:10:48:4F:26:55 X509v3 Authority Key Identifier: keyid:61:1E:1C:14:95:28:F1:7A:0E:C7:99:C3:9D:56:26:19:C9:A1:51:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:4b:17:d8:e7:60:1a:dd:fd:21:07:33:ab:dd:76:92:f2:55: 49:df:6f:32:4c:87:3d:2e:69:aa:6e:d3:ec:88:c5:3f:cb:00: d6:75:45:9e:59:dc:6b:4a:55:40:34:4f:25:b8:8d:99:f9:9b: 3b:5c:f8:c3:7d:a4:79:82:ea:df:94:15:8d:f5:3c:76:c4:13: 80:09:45:1d:98:ee:5a:6f:11:45:7d:f4:41:1e:de:2d:ba:f4: ec:f9:7a:b3:cb:ba:e9:d3:a3:e5:32:56:99:4c:76:d8:e9:f0: cf:ca:74:89:bf:a8:fd:5a:c5:9b:4d:70:b2:40:56:51:e0:77: f7:2d:26:87:5b:1a:e2:f2:d6:6b:a9:88:c9:6b:8e:54:8e:bc: ea:8a:7d:21:17:c5:8c:8c:b0:f4:96:eb:59:45:94:86:b7:29: 83:b3:e5:a6:94:5e:ad:54:25:ab:a5:9a:d1:13:89:ff:3a:b8: 45:00:91:e7:b3:ba:53:2d:45:f9:8a:ff:a9:aa:dc:0d:b3:15: 25:13:6a:e7:55:c6:10:54:78:39:fd:21:f1:a3:a1:eb:c2:60: 86:89:b1:14:8c:d8:3a:dd:a7:33:15:f1:c9:71:57:3c:5a:4d: 54:0d:68:b5:c6:87:bf:e9:b9:ae:3d:66:05:5b:36:f8:93:aa: af:e4:62:fb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkY4QzExMC8GA1UEBRMoNjExRTFDMTQ5NTI4RjE3QTBFQzc5OUMzOUQ1NjI2MTlD OUExNTEwMDAeFw0yNDExMjMwNTUyNTRaFw0yNDExMzAwNTUyNTRaMBgxFjAUBgNV BAMTDTY3NDE2ZGI2LTA3MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdhesnJSmEadWcCfguEtA7ed6+3pR0vO7iZqBkDxVKsrys2wijsOy931z7FiWi SWnA1mx3oWeh/tMLr9J7TnjhQt7WI0KR2v0m9ck6ln3Q0Zc3+HAZBQbiEeglKMXG Ffqhtg0qvKIeO2AWpEuTD0lYEFelVRvDg/+fiLXFF9K1TMc6G0F623pLdHM1egu0 qurzJMXsQ+fW7BGBv+aQUsQhppXeegbzrrt+RLRMv1wy3k6qU6zNLzGxTS/LMgPW 6Y92K+VsNOcDstsR30T2uaNRiyF6GLvIKNK4qcmeXg4pQpkWdW6BwLan4vo51x/1 TAQxNRxPOBD8bQOCLE92XkOLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUozKle6TP xdKT83U2bJw+EEhPJlUwHwYDVR0jBBgwFoAUYR4cFJUo8XoOx5nDnVYmGcmhUQAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyRjhDLzVFMDcyQUZFODZF MDExRUY5QjZCMTc3RUM0RjlBRTAyL1lSNGNGSlVvOFhvT3g1bkRuVlltR2NtaFVR QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVI0Y0ZKVW84WG9PeDVuRG5WWW1HY21oVVFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMy RjhDLzVFMDcyQUZFODZFMDExRUY5QjZCMTc3RUM0RjlBRTAyL1lSNGNGSlVvOFhv T3g1bkRuVlltR2NtaFVRQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMZLF9jnYBrd/SEHM6vddpLyVUnfbzJMhz0uaapu0+yIxT/LANZ1RZ5Z 3GtKVUA0TyW4jZn5mztc+MN9pHmC6t+UFY31PHbEE4AJRR2Y7lpvEUV99EEe3i26 9Oz5erPLuunTo+UyVplMdtjp8M/KdIm/qP1axZtNcLJAVlHgd/ctJodbGuLy1mup iMlrjlSOvOqKfSEXxYyMsPSW61lFlIa3KYOz5aaUXq1UJaulmtETif86uEUAkeez ulMtRfmK/6mq3A2zFSUTaudVxhBUeDn9IfGjoevCYIaJsRSM2DrdpzMV8clxVzxa TVQNaLXGh7/pua49ZgVbNviTqq/kYvs= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org