$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft File: Y3kC4bqWiB1HLuyt-kW1V348HDE.mft (raw, json) Hash identifier: guCvCB7OvlYF1m/MvxKVv5+5++XqUridYEJUl6mcQys= Subject key identifier: 8B:11:AA:7A:98:49:17:D5:C9:BF:3F:35:FF:CA:23:03:F6:C5:12:ED Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft Manifest number: BE Signing time: Sat 23 Nov 2024 03:59:22 +0000 Manifest this update: Sat 23 Nov 2024 03:59:21 +0000 Manifest next update: Sat 30 Nov 2024 03:59:21 +0000 Files and hashes: 1: Y3kC4bqWiB1HLuyt-kW1V348HDE.crl (hash: B97IciaERHs4iZCpjk5Dqa3IQ7lz6DPKO5IsESMWYp4=) 2: FF1FE402898011EEB3403779C4F9AE02.roa (hash: WhOLdJmONFcVyaVlMrHX886HXRKh0RLcsl55SUDqRa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Validity Not Before: Nov 23 03:59:21 2024 GMT Not After : Nov 30 03:59:21 2024 GMT Subject: CN=67415319-d225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:43:af:0f:0c:8c:7b:d4:70:1c:06:f8:48:29: fe:fd:db:a1:c9:96:e2:03:c1:4f:1e:61:bf:59:cf: ab:2c:e5:5b:fb:9d:4b:7c:38:9a:76:14:19:f8:ce: b0:00:95:3e:ba:ac:37:e0:7e:03:84:e2:23:71:08: 23:f9:66:c5:62:1c:04:f5:3b:b2:cd:d1:01:d9:d0: bc:88:9b:4c:9a:11:8c:f1:96:51:ac:cd:41:ef:34: 33:79:3b:2f:32:c8:ba:48:87:12:b6:d0:13:84:0d: 1b:ea:f8:97:5e:4c:af:cb:a8:c8:0e:6b:ed:cb:11: 04:aa:0a:e6:72:ff:4a:dc:82:ff:e8:46:2f:57:0f: b5:f6:f4:8b:a6:4c:d7:a5:6f:da:bd:1d:ec:a3:50: 04:bf:34:0b:a3:8d:fa:90:bb:c2:79:15:30:8c:db: 75:4c:3b:96:30:51:9e:d7:51:1a:c0:c5:91:d8:89: 92:bd:de:5f:00:d6:fe:a0:5d:62:71:bf:a2:ba:8c: 5b:c0:a6:9c:96:46:66:73:09:5a:29:45:24:a7:78: cb:5a:b6:6d:dd:96:61:49:83:33:0e:5d:95:7f:89: d7:a3:d8:e4:70:8b:12:32:44:c3:fa:a2:23:bf:7b: d6:ec:7e:d5:be:26:73:ed:50:ee:dd:a3:80:f0:88: c1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:11:AA:7A:98:49:17:D5:C9:BF:3F:35:FF:CA:23:03:F6:C5:12:ED X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:f3:0f:ee:67:26:8b:c0:e5:a2:fc:8d:0c:97:3c:ea:83:6f: c7:d3:6d:b0:ba:3f:ba:2e:3f:fa:69:e8:7e:bd:95:c7:0d:34: 11:ad:77:a3:fb:18:8b:f0:0a:29:bf:f2:84:c9:ef:5f:c4:29: 07:c7:2e:92:c4:d6:60:e5:0f:1a:eb:7f:1b:41:d9:28:57:56: 00:f8:05:01:09:75:01:8d:57:29:01:84:50:8a:77:77:53:b4: eb:99:d2:ef:f5:23:ac:73:16:29:3f:fc:b2:62:36:4e:c1:a4: a2:9c:b5:c3:48:af:05:5d:45:d0:55:50:9b:a9:5c:f9:f5:55: 61:54:99:a5:b9:17:a9:98:5c:cc:5a:4c:b6:e5:d2:e6:80:00: 20:ac:f8:b8:d8:d1:a3:a3:e3:d0:49:2d:0f:a5:90:9d:10:bf: e6:e6:f7:6b:37:bd:ed:c8:46:96:24:b1:5b:2e:6a:73:34:5b: c6:8f:29:39:10:da:9a:8d:7c:46:11:d3:11:d0:b1:ba:f0:f7: ce:c4:71:4e:a8:3a:68:e9:9f:a2:63:76:6a:a5:cd:2c:cf:b3: 51:84:2a:8c:29:b5:6d:4e:63:73:56:c0:0d:22:1f:bd:62:47: c9:bc:5a:6e:9f:bb:d5:9f:c7:19:67:49:fd:ca:8d:76:26:8d: ce:e1:a6:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MjQxMTAvBgNVBAUTKDYzNzkwMkUxQkE5Njg4MUQ0NzJFRUNBREZBNDVCNTU3 N0UzQzFDMzEwHhcNMjQxMTIzMDM1OTIxWhcNMjQxMTMwMDM1OTIxWjAYMRYwFAYD VQQDEw02NzQxNTMxOS1kMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20OvDwyMe9RwHAb4SCn+/duhyZbiA8FPHmG/Wc+rLOVb+51LfDiadhQZ+M6w AJU+uqw34H4DhOIjcQgj+WbFYhwE9TuyzdEB2dC8iJtMmhGM8ZZRrM1B7zQzeTsv Msi6SIcSttAThA0b6viXXkyvy6jIDmvtyxEEqgrmcv9K3IL/6EYvVw+19vSLpkzX pW/avR3so1AEvzQLo436kLvCeRUwjNt1TDuWMFGe11EawMWR2ImSvd5fANb+oF1i cb+iuoxbwKaclkZmcwlaKUUkp3jLWrZt3ZZhSYMzDl2Vf4nXo9jkcIsSMkTD+qIj v3vW7H7VviZz7VDu3aOA8IjBdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsRqnqY SRfVyb8/Nf/KIwP2xRLtMB8GA1UdIwQYMBaAFGN5AuG6logdRy7srfpFtVd+PBwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUyNC8wQzJDMkJENjg4 QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lCMUhMdXl0LWtXMVYzNDhI REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUyNC8wQzJDMkJENjg4QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lC MUhMdXl0LWtXMVYzNDhIREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq8w/uZyaLwOWi/I0Mlzzqg2/H022wuj+6Lj/6aeh+vZXHDTQRrXej +xiL8Aopv/KEye9fxCkHxy6SxNZg5Q8a638bQdkoV1YA+AUBCXUBjVcpAYRQind3 U7TrmdLv9SOscxYpP/yyYjZOwaSinLXDSK8FXUXQVVCbqVz59VVhVJmluRepmFzM Wky25dLmgAAgrPi42NGjo+PQSS0PpZCdEL/m5vdrN73tyEaWJLFbLmpzNFvGjyk5 ENqajXxGEdMR0LG68PfOxHFOqDpo6Z+iY3Zqpc0sz7NRhCqMKbVtTmNzVsANIh+9 YkfJvFpun7vVn8cZZ0n9yo12Jo3O4aZY -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:23 2024 by rpki-client on console-ams.rpki-client.org