$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: QryPS+LjlhtQtaVl/wwyQNbyB7bB39BIKXCXXwhPVXU= Subject key identifier: 5A:20:FA:1B:84:70:C7:ED:27:D6:9B:34:58:DD:FA:81:75:E8:D0:19 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: 74 Signing time: Sat 23 Nov 2024 04:48:01 +0000 Manifest this update: Sat 23 Nov 2024 04:48:00 +0000 Manifest next update: Sat 30 Nov 2024 04:48:00 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: oYFkVO/9kxSgmpyO/u/uMNO8iGJs+pqIuI/kfijZ4dI=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 1mGAGUdcHgzIXHfMP/sj7r20tyRJ1V+9II4lN7eXdqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Nov 23 04:48:00 2024 GMT Not After : Nov 30 04:48:00 2024 GMT Subject: CN=67415e81-962a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:10:13:18:5d:9d:5f:bb:49:7d:a1:09:a7:6d: 05:51:be:08:0f:f0:f0:be:7f:c8:5f:06:8b:51:c1: a5:a5:f7:5f:08:77:ee:b6:7d:c0:71:da:1d:ae:41: ef:df:20:d5:50:82:41:ca:79:eb:68:be:5e:ab:0d: c1:04:4b:3d:c9:64:6a:c6:7b:6b:4c:69:45:e7:81: 83:5b:f4:13:e4:81:d8:00:c0:76:d0:25:52:8f:c0: fa:ee:9b:27:dd:39:78:e4:d0:2f:6c:f8:02:e5:94: d2:fd:d2:67:d1:c0:da:0c:b3:4e:30:08:27:66:b2: e1:35:5e:07:6f:f8:a5:28:74:75:1c:93:07:66:af: 92:29:51:cb:02:1d:38:15:c8:56:d6:5d:71:1b:d2: 55:8b:1b:fa:57:df:e8:02:6b:6b:93:fe:22:03:cc: 6b:d3:b8:10:df:53:f4:b4:59:10:11:42:45:52:66: c1:71:69:f8:8a:d5:9b:6a:35:9a:2b:58:e4:3b:9d: 94:ea:7e:cd:79:78:6f:f8:f4:91:0c:4b:7a:9b:6f: cb:00:d7:17:df:49:0d:a6:91:dc:f7:5f:6f:5a:55: 31:cb:d9:62:98:b3:98:83:ad:70:6d:cc:d0:e3:46: 6c:e0:ee:ba:12:fe:5c:a4:c2:8e:19:ba:2a:4e:e4: 9c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:20:FA:1B:84:70:C7:ED:27:D6:9B:34:58:DD:FA:81:75:E8:D0:19 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:cf:db:aa:74:19:b3:8a:f7:9d:b5:57:79:ae:aa:0c:68:40: a1:64:99:21:f1:a3:fa:1e:6f:48:32:58:34:a7:01:ef:cd:78: 18:06:fe:e7:d7:ee:b8:19:e0:e6:38:d4:b7:e4:86:7f:2b:56: 9e:eb:78:f2:55:c5:ef:03:9c:b6:4b:3d:4b:e6:b8:52:de:e2: c6:3d:7d:ca:ec:06:c2:3d:bc:17:e4:59:c7:51:33:98:88:49: 46:4b:b5:42:7b:90:d0:7e:d1:61:ca:d0:09:7c:95:01:67:cf: b3:85:a2:bb:b6:d9:42:70:2c:1d:db:e5:ae:26:55:92:10:94: 82:5c:6b:3c:ea:17:31:5a:cd:a0:b7:3b:67:6d:0b:f0:11:de: b5:59:48:a6:c8:78:e9:ae:2c:c7:ec:da:0b:70:5b:03:07:d8: 75:f4:bb:62:fa:81:2c:46:ce:f3:ce:c9:b5:31:d8:05:ff:47: 38:3b:04:47:ca:51:f9:12:fa:7f:ad:2a:a9:bc:5f:9e:78:7b: 0b:57:58:c3:ac:41:8c:a2:3d:d5:07:db:fd:17:1a:7d:43:bb: 2e:b5:34:92:5f:19:9b:c7:e5:94:81:f0:e2:3d:35:87:2a:61: 8c:a7:1f:31:be:44:ef:76:f5:73:1e:7b:82:b3:c0:b0:70:61: e1:c4:0e:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzQ1OTExMC8GA1UEBRMoQzgyMTUwNDlBNUVDMTEzNjVGQjY3NDBCODIxNzA2NzYy NjgwQUQxNzAeFw0yNDExMjMwNDQ4MDBaFw0yNDExMzAwNDQ4MDBaMBgxFjAUBgNV BAMTDTY3NDE1ZTgxLTk2MmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3EBMYXZ1fu0l9oQmnbQVRvggP8PC+f8hfBotRwaWl918Id+62fcBx2h2uQe/f INVQgkHKeetovl6rDcEESz3JZGrGe2tMaUXngYNb9BPkgdgAwHbQJVKPwPrumyfd OXjk0C9s+ALllNL90mfRwNoMs04wCCdmsuE1Xgdv+KUodHUckwdmr5IpUcsCHTgV yFbWXXEb0lWLG/pX3+gCa2uT/iIDzGvTuBDfU/S0WRARQkVSZsFxafiK1ZtqNZor WOQ7nZTqfs15eG/49JEMS3qbb8sA1xffSQ2mkdz3X29aVTHL2WKYs5iDrXBtzNDj Rmzg7roS/lykwo4ZuipO5JxrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWiD6G4Rw x+0n1ps0WN36gXXo0BkwHwYDVR0jBBgwFoAUyCFQSaXsETZftnQLghcGdiaArRcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDNDU5L0E5MzUwN0JDRjZE NTExRUVCODc4M0MxRUM0RjlBRTAyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJS Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUNGUVNhWHNFVFpmdG5RTGdoY0dkaWFBclJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD NDU5L0E5MzUwN0JDRjZENTExRUVCODc4M0MxRUM0RjlBRTAyL3lDRlFTYVhzRVRa ZnRuUUxnaGNHZGlhQXJSYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGjP26p0GbOK9521V3muqgxoQKFkmSHxo/oeb0gyWDSnAe/NeBgG/ufX 7rgZ4OY41Lfkhn8rVp7rePJVxe8DnLZLPUvmuFLe4sY9fcrsBsI9vBfkWcdRM5iI SUZLtUJ7kNB+0WHK0Al8lQFnz7OForu22UJwLB3b5a4mVZIQlIJcazzqFzFazaC3 O2dtC/AR3rVZSKbIeOmuLMfs2gtwWwMH2HX0u2L6gSxGzvPOybUx2AX/Rzg7BEfK UfkS+n+tKqm8X554ewtXWMOsQYyiPdUH2/0XGn1Duy61NJJfGZvH5ZSB8OI9NYcq YYynHzG+RO929XMee4KzwLBwYeHEDg0= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:25 2024 by rpki-client on console-ams.rpki-client.org