$ rpki-client -vvf rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.mft File: y8CtGWWFFkH2YRHo4pAmmKm57YA.mft (raw, json) Hash identifier: ZPtY29qb7LjVNb+Ypoh6tygQ0l0opeAFofTm2FT0dhw= Subject key identifier: 0B:6A:3F:D0:07:92:D5:5B:B9:DF:F6:78:47:94:0B:AF:B1:EB:CE:D3 Authority key identifier: CB:C0:AD:19:65:85:16:41:F6:61:11:E8:E2:90:26:98:A9:B9:ED:80 Certificate issuer: /CN=A91C38CC/serialNumber=CBC0AD1965851641F66111E8E2902698A9B9ED80 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8CtGWWFFkH2YRHo4pAmmKm57YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.mft Manifest number: 89 Signing time: Sat 23 Nov 2024 04:34:51 +0000 Manifest this update: Sat 23 Nov 2024 04:34:50 +0000 Manifest next update: Sat 30 Nov 2024 04:34:50 +0000 Files and hashes: 1: y8CtGWWFFkH2YRHo4pAmmKm57YA.crl (hash: TzAfe6DmLvYe9gPB4XCiJNzcG/v+qOW70EEsey0N0Yc=) 2: CA2A06D6D5E511EE9B319A12C4F9AE02.roa (hash: Qq5UU0tcDxAU8exKz+6U8pmnC5amKrv1RDGkSY0cphM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.crl rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8CtGWWFFkH2YRHo4pAmmKm57YA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C38CC/serialNumber=CBC0AD1965851641F66111E8E2902698A9B9ED80 Validity Not Before: Nov 23 04:34:50 2024 GMT Not After : Nov 30 04:34:50 2024 GMT Subject: CN=67415b6b-71c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:2f:d7:27:2e:be:87:84:85:b4:7e:11:ef:d9: e3:e6:6b:78:c9:b7:21:fd:d1:1a:d6:59:94:e6:5f: ec:b1:fc:7c:a2:41:0c:a5:eb:cc:f5:c7:be:22:a6: c5:dc:93:a7:04:94:18:7a:84:2a:8e:91:cc:27:b6: 31:6d:3d:61:45:16:21:ea:35:f5:2c:58:fd:0f:77: f1:90:09:74:1d:b5:4b:2a:61:c4:62:31:d7:50:8b: 9e:17:bc:21:c5:24:87:ef:8a:0e:2e:50:c0:53:e7: 39:1d:f7:87:37:5c:b4:99:87:94:79:f8:c1:1f:8d: 52:5e:4c:25:d0:6f:ef:b6:96:a8:9e:de:cd:b8:f4: 29:ca:41:32:c6:6e:45:1f:d0:e3:e5:8e:73:1d:4b: 2f:ae:37:7a:fb:63:2d:e7:b6:34:b7:cc:f6:e8:d2: 5b:32:f6:c2:d7:48:b7:3f:3d:67:77:4d:bc:67:0a: 3d:0f:f6:18:ef:e4:fb:3b:2e:f4:54:97:4f:23:b4: ca:c8:e6:6c:dc:fd:60:c9:53:94:ef:a4:d6:77:1b: 4e:8b:12:ca:d1:b3:37:1a:98:f3:c2:2d:1e:a7:8e: 64:07:5f:d4:8d:d5:7d:cc:33:df:56:ac:a8:f2:b0: dd:bd:c0:09:4c:49:fb:c0:50:5f:47:92:6f:b2:47: f7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6A:3F:D0:07:92:D5:5B:B9:DF:F6:78:47:94:0B:AF:B1:EB:CE:D3 X509v3 Authority Key Identifier: keyid:CB:C0:AD:19:65:85:16:41:F6:61:11:E8:E2:90:26:98:A9:B9:ED:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8CtGWWFFkH2YRHo4pAmmKm57YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:ee:c5:f9:4d:64:9e:a3:0a:72:63:40:2d:5b:49:86:64:33: 9b:a2:dc:89:e5:54:cc:a4:8b:2e:15:4c:db:ca:9f:af:af:fe: 75:54:cd:28:27:c3:c6:9d:58:88:72:33:d9:a3:5f:31:94:db: 39:ca:04:a0:ba:f1:cc:77:ff:6a:07:db:84:7d:59:42:c4:83: 73:d0:03:8a:a2:36:fa:4c:5d:26:d5:82:60:f0:c0:28:58:83: 31:67:c8:a2:f7:52:ab:ea:16:e8:12:91:81:fc:d5:d7:bb:7f: 2b:8e:bd:bd:ad:99:70:81:92:65:c2:4c:99:16:b9:e7:95:fa: 83:2c:37:0d:73:97:1a:c3:98:67:d8:4d:0d:f6:ec:db:14:65: 3a:de:83:6f:ff:ed:d9:0f:57:4c:e4:85:c5:ca:ef:59:7c:a4: 7f:e7:9c:f5:ed:8f:fe:55:73:c5:6a:c0:74:63:ef:60:a8:53: 58:31:ff:a4:7e:4b:ad:78:17:41:02:d0:98:65:e6:5d:81:5d: da:15:c4:6d:f1:16:27:e6:e8:74:5c:f6:0c:d8:c4:b6:b0:16: f0:3b:a8:f0:0a:6c:bf:70:53:66:9e:ac:c2:18:e7:06:0f:85: 76:ae:17:1b:46:d8:f3:4d:13:8b:fe:6b:81:7b:be:8a:c0:4a: 7e:95:1f:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM4Q0MxMTAvBgNVBAUTKENCQzBBRDE5NjU4NTE2NDFGNjYxMTFFOEUyOTAyNjk4 QTlCOUVEODAwHhcNMjQxMTIzMDQzNDUwWhcNMjQxMTMwMDQzNDUwWjAYMRYwFAYD VQQDEw02NzQxNWI2Yi03MWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5i/XJy6+h4SFtH4R79nj5mt4ybch/dEa1lmU5l/ssfx8okEMpevM9ce+IqbF 3JOnBJQYeoQqjpHMJ7YxbT1hRRYh6jX1LFj9D3fxkAl0HbVLKmHEYjHXUIueF7wh xSSH74oOLlDAU+c5HfeHN1y0mYeUefjBH41SXkwl0G/vtpaont7NuPQpykEyxm5F H9Dj5Y5zHUsvrjd6+2Mt57Y0t8z26NJbMvbC10i3Pz1nd028Zwo9D/YY7+T7Oy70 VJdPI7TKyOZs3P1gyVOU76TWdxtOixLK0bM3Gpjzwi0ep45kB1/UjdV9zDPfVqyo 8rDdvcAJTEn7wFBfR5Jvskf3VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtqP9AH ktVbud/2eEeUC6+x687TMB8GA1UdIwQYMBaAFMvArRllhRZB9mER6OKQJpipue2A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzhDQy8zQUM1N0M4Q0Q1 RTUxMUVFQjc3OTIyM0VDNEY5QUUwMi95OEN0R1dXRkZrSDJZUkhvNHBBbW1LbTU3 WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k4Q3RHV1dGRmtIMllSSG80cEFtbUttNTdZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzhDQy8zQUM1N0M4Q0Q1RTUxMUVFQjc3OTIyM0VDNEY5QUUwMi95OEN0R1dXRkZr SDJZUkhvNHBBbW1LbTU3WUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj7sX5TWSeowpyY0AtW0mGZDObotyJ5VTMpIsuFUzbyp+vr/51VM0o J8PGnViIcjPZo18xlNs5ygSguvHMd/9qB9uEfVlCxINz0AOKojb6TF0m1YJg8MAo WIMxZ8ii91Kr6hboEpGB/NXXu38rjr29rZlwgZJlwkyZFrnnlfqDLDcNc5caw5hn 2E0N9uzbFGU63oNv/+3ZD1dM5IXFyu9ZfKR/55z17Y/+VXPFasB0Y+9gqFNYMf+k fkuteBdBAtCYZeZdgV3aFcRt8RYn5uh0XPYM2MS2sBbwO6jwCmy/cFNmnqzCGOcG D4V2rhcbRtjzTROL/muBe76KwEp+lR9d -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org