$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.mft File: Y5I5BjkX7pLAmeRq02lsLsp8UQo.mft (raw, json) Hash identifier: h1MSWt2plXAfZs0qhb9NlcIajzG7bOeUuIrnTILpR3I= Subject key identifier: 7D:4C:1D:77:31:5B:0E:7E:51:DB:59:77:2A:43:C6:DB:47:9F:F8:35 Authority key identifier: 63:92:39:06:39:17:EE:92:C0:99:E4:6A:D3:69:6C:2E:CA:7C:51:0A Certificate issuer: /CN=A91D2706/serialNumber=639239063917EE92C099E46AD3696C2ECA7C510A Certificate serial: 06D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y5I5BjkX7pLAmeRq02lsLsp8UQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.mft Manifest number: 06CB Signing time: Fri 22 Nov 2024 21:39:25 +0000 Manifest this update: Fri 22 Nov 2024 21:39:25 +0000 Manifest next update: Fri 29 Nov 2024 21:39:25 +0000 Files and hashes: 1: Y5I5BjkX7pLAmeRq02lsLsp8UQo.crl (hash: yb/wVzaZFheUE0crrzp2H90tX0GxIoyiC3mHQhskueM=) 2: 35D4363E330711EB9D3AA60BC4F9AE02.roa (hash: h6Fx/uAqoWCql+z98xYpdBMVKGKFUnyPa/cdVN0UCkM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.crl rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y5I5BjkX7pLAmeRq02lsLsp8UQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1744 (0x6d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2706/serialNumber=639239063917EE92C099E46AD3696C2ECA7C510A Validity Not Before: Nov 22 21:39:25 2024 GMT Not After : Nov 29 21:39:25 2024 GMT Subject: CN=6740fa0d-4847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:39:4f:04:94:50:6b:41:e1:23:25:33:b9:57: 36:9b:c5:6c:30:17:a0:72:01:dc:75:6a:79:20:3c: f9:c1:f0:b1:99:ef:c4:3f:fe:2f:00:e1:f0:15:3f: a2:18:f0:a7:f5:de:9f:4f:4a:de:84:c5:7c:d3:c3: bd:75:93:38:bb:9f:d6:35:51:db:70:ad:4b:f3:35: c8:e0:34:f9:03:56:e4:9d:d5:8c:50:27:a3:1d:19: 62:c1:52:6c:11:a4:df:89:90:5f:99:2e:0e:94:a0: f1:d3:0b:cb:4b:cb:b7:50:4e:82:93:a3:e7:a6:72: f6:a9:f3:6c:3d:c1:bd:fe:b1:c8:07:d5:38:b9:cf: df:68:a5:55:81:e2:17:55:52:2c:3a:36:a0:f7:6d: 5d:46:59:69:c9:ce:de:20:e6:49:0e:b9:1e:92:a9: 1c:c5:3d:29:bd:94:25:f1:8c:a9:e8:83:1b:2b:e4: c5:68:ba:2f:da:4c:57:9c:0c:5a:0c:80:01:9d:1e: b4:6f:b1:ef:b0:f3:aa:4b:9f:7d:d7:7d:4f:7b:91: b3:c0:fc:53:23:d4:a7:73:d5:18:b0:47:d4:45:bf: 00:7e:96:0e:d1:cd:44:85:24:1f:3f:c8:62:e3:e1: 05:6c:35:57:2d:0b:23:86:f6:7e:ff:26:ba:4b:ee: 65:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:4C:1D:77:31:5B:0E:7E:51:DB:59:77:2A:43:C6:DB:47:9F:F8:35 X509v3 Authority Key Identifier: keyid:63:92:39:06:39:17:EE:92:C0:99:E4:6A:D3:69:6C:2E:CA:7C:51:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y5I5BjkX7pLAmeRq02lsLsp8UQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:69:50:d5:fa:33:a5:48:09:1e:7b:9b:4f:90:a7:86:a0:bd: 2a:69:15:68:ee:42:a9:12:42:ca:ce:6c:88:d2:0f:af:eb:fb: ce:bc:53:04:20:25:80:24:70:59:71:95:27:71:7f:c3:2d:1a: dd:40:87:69:25:63:77:d5:17:2d:34:63:5e:f1:80:e5:48:32: 21:ad:0d:88:5a:30:8f:e9:0e:bd:5b:23:ff:39:10:c6:9b:2a: 3d:10:42:33:c9:bc:e1:08:cc:a4:ba:1b:9e:23:ea:ae:88:91: 1b:e3:11:b5:67:7d:da:62:91:2c:d7:b7:61:8a:ce:3d:e7:4e: 67:df:77:39:d7:3d:2a:52:d6:07:61:ca:9f:8b:53:8e:c3:76: 10:c3:2a:d0:d2:3a:5a:85:44:16:34:6f:55:e4:8c:87:f3:74: ed:48:69:30:18:1f:a8:d2:1c:b9:b3:eb:10:ad:2b:b5:5c:e9: 87:91:d4:1c:37:cf:05:29:bb:d8:4b:65:db:8c:4a:81:83:d7: 8e:27:5a:4a:3f:d8:41:f1:08:5d:e2:8c:eb:62:4f:e4:0e:04: e4:03:b7:de:f2:ea:6c:01:69:20:df:03:47:c9:fd:8e:b8:3d: f6:83:cd:95:ce:4e:d3:3e:e9:b2:d9:4d:7b:79:8d:e0:7a:e3: 92:30:95:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI3MDYxMTAvBgNVBAUTKDYzOTIzOTA2MzkxN0VFOTJDMDk5RTQ2QUQzNjk2QzJF Q0E3QzUxMEEwHhcNMjQxMTIyMjEzOTI1WhcNMjQxMTI5MjEzOTI1WjAYMRYwFAYD VQQDEw02NzQwZmEwZC00ODQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DlPBJRQa0HhIyUzuVc2m8VsMBegcgHcdWp5IDz5wfCxme/EP/4vAOHwFT+i GPCn9d6fT0rehMV808O9dZM4u5/WNVHbcK1L8zXI4DT5A1bkndWMUCejHRliwVJs EaTfiZBfmS4OlKDx0wvLS8u3UE6Ck6PnpnL2qfNsPcG9/rHIB9U4uc/faKVVgeIX VVIsOjag921dRllpyc7eIOZJDrkekqkcxT0pvZQl8Yyp6IMbK+TFaLov2kxXnAxa DIABnR60b7HvsPOqS599131Pe5GzwPxTI9Snc9UYsEfURb8AfpYO0c1EhSQfP8hi 4+EFbDVXLQsjhvZ+/ya6S+5lvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1MHXcx Ww5+UdtZdypDxttHn/g1MB8GA1UdIwQYMBaAFGOSOQY5F+6SwJnkatNpbC7KfFEK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjcwNi8wNEQ0NTdDMjMz MDYxMUVCQTI4MkQzMEFDNEY5QUUwMi9ZNUk1QmprWDdwTEFtZVJxMDJsc0xzcDhV UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k1STVCamtYN3BMQW1lUnEwMmxzTHNwOFVRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjcwNi8wNEQ0NTdDMjMzMDYxMUVCQTI4MkQzMEFDNEY5QUUwMi9ZNUk1QmprWDdw TEFtZVJxMDJsc0xzcDhVUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoaVDV+jOlSAkee5tPkKeGoL0qaRVo7kKpEkLKzmyI0g+v6/vOvFME ICWAJHBZcZUncX/DLRrdQIdpJWN31RctNGNe8YDlSDIhrQ2IWjCP6Q69WyP/ORDG myo9EEIzybzhCMykuhueI+quiJEb4xG1Z33aYpEs17dhis49505n33c51z0qUtYH Ycqfi1OOw3YQwyrQ0jpahUQWNG9V5IyH83TtSGkwGB+o0hy5s+sQrSu1XOmHkdQc N88FKbvYS2XbjEqBg9eOJ1pKP9hB8Qhd4ozrYk/kDgTkA7fe8upsAWkg3wNHyf2O uD32g82Vzk7TPumy2U17eY3geuOSMJWf -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:12 2024 by rpki-client on console-fra.rpki-client.org