$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft File: YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft (raw, json) Hash identifier: psmxXSgftGsw4COgkovJ8iLSK4rHnwo4oONbTg8UcCY= Subject key identifier: EB:F2:70:41:FB:1A:F5:E7:06:71:F2:52:8C:79:20:F4:E4:DF:1F:FA Authority key identifier: 60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B Certificate issuer: /CN=A91E5998/serialNumber=601DC54B1F5205080EFD9AA6CFA5A51C4A79DD2B Certificate serial: 05BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft Manifest number: 05B9 Signing time: Fri 22 Nov 2024 22:39:54 +0000 Manifest this update: Fri 22 Nov 2024 22:39:53 +0000 Manifest next update: Fri 29 Nov 2024 22:39:53 +0000 Files and hashes: 1: YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl (hash: zBR9IVDu2hy5W4GbiVBzSu69qNkbCl1TlcdmJ9L3N4E=) 2: 43F7D8B29F2011EB84479343C4F9AE02.roa (hash: InUCnpwuHID+w/5DgZFSxCnHtNAeoihOwtXlguK1z1s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1470 (0x5be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5998/serialNumber=601DC54B1F5205080EFD9AA6CFA5A51C4A79DD2B Validity Not Before: Nov 22 22:39:53 2024 GMT Not After : Nov 29 22:39:53 2024 GMT Subject: CN=67410839-c9a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ff:77:e3:43:ce:91:c9:25:a5:29:2e:62:6b: eb:6c:05:8c:f6:10:da:d4:6c:3a:f7:52:6a:75:38: b5:2e:fb:fe:78:8c:0c:82:96:63:d0:29:90:38:91: bb:06:4c:00:f8:55:2b:e8:61:09:40:20:83:ec:1f: 23:f5:e0:4b:4f:3c:dc:5a:6f:03:e8:ef:8a:84:43: 8a:3f:95:71:1d:66:57:40:c5:3b:4a:63:99:d5:02: c2:da:f8:c7:9a:4e:8f:71:33:33:01:5a:ae:74:63: fd:77:17:40:c8:0d:66:88:dc:8e:e1:99:4d:52:c6: b0:5a:04:ba:79:43:8b:c8:c9:3b:d0:e7:56:d5:d0: e8:20:e3:99:9b:a1:8a:37:90:c0:48:20:6a:c1:d7: 6d:5a:51:96:33:82:b6:73:ed:c7:93:bb:99:aa:ca: f6:99:11:da:9f:1a:a3:f3:a3:b6:19:f1:2f:7c:f8: 97:29:78:cc:05:33:73:fc:39:e3:72:ef:e2:7f:35: c0:a7:8f:72:31:6b:04:4b:1a:eb:d8:71:8c:71:28: 1d:46:54:94:52:69:00:ca:5e:78:bf:c2:bc:8d:c2: 71:39:cf:73:cc:19:cc:2c:a4:12:07:b2:91:c1:dd: cc:80:d9:c4:a2:a5:9a:f4:74:32:46:55:3a:56:ff: 2c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F2:70:41:FB:1A:F5:E7:06:71:F2:52:8C:79:20:F4:E4:DF:1F:FA X509v3 Authority Key Identifier: keyid:60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:3e:df:53:68:a3:d5:99:59:d5:7c:4b:f1:08:46:87:14:fa: 01:17:13:48:af:e1:fc:b3:4a:ac:e0:e1:d8:bc:e8:2a:18:b4: 1e:60:8a:d7:be:84:39:a0:09:75:bd:a2:a1:60:5a:e3:7d:64: 74:28:9c:d6:18:41:0b:16:45:bc:aa:bb:60:9a:af:02:e9:1d: 5f:e1:73:9a:f1:04:50:82:a1:6d:45:5f:cc:b6:c1:a3:ab:3f: 0d:0c:3d:85:1c:35:2f:88:f0:0a:18:f5:d6:45:36:1a:36:25: 54:c2:ef:72:b1:06:02:5c:e5:20:d9:a0:e9:87:37:f7:c3:1e: 49:80:ec:62:a4:06:47:4b:7e:44:e3:74:c8:78:41:5c:0b:4d: 4b:27:9b:ff:f0:00:4c:ed:64:57:32:7f:54:f0:25:c2:4c:90: f0:1d:67:0a:a1:80:d3:ae:24:bc:d5:bc:68:2d:0d:66:ae:0c: c1:6f:72:4d:b0:3c:38:84:c5:24:ab:41:3b:88:a4:f8:bd:68: f6:49:34:74:11:ec:de:90:88:ee:e6:11:cf:dc:56:86:e4:56: 41:f2:d6:81:01:23:a0:89:18:70:74:21:9e:ca:51:4a:06:73: bb:d0:45:18:10:c2:80:c7:1b:32:d7:e5:6c:59:c9:cc:1b:ce: cf:df:99:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU5OTgxMTAvBgNVBAUTKDYwMURDNTRCMUY1MjA1MDgwRUZEOUFBNkNGQTVBNTFD NEE3OUREMkIwHhcNMjQxMTIyMjIzOTUzWhcNMjQxMTI5MjIzOTUzWjAYMRYwFAYD VQQDEw02NzQxMDgzOS1jOWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtv9340POkcklpSkuYmvrbAWM9hDa1Gw691JqdTi1Lvv+eIwMgpZj0CmQOJG7 BkwA+FUr6GEJQCCD7B8j9eBLTzzcWm8D6O+KhEOKP5VxHWZXQMU7SmOZ1QLC2vjH mk6PcTMzAVqudGP9dxdAyA1miNyO4ZlNUsawWgS6eUOLyMk70OdW1dDoIOOZm6GK N5DASCBqwddtWlGWM4K2c+3Hk7uZqsr2mRHanxqj86O2GfEvfPiXKXjMBTNz/Dnj cu/ifzXAp49yMWsESxrr2HGMcSgdRlSUUmkAyl54v8K8jcJxOc9zzBnMLKQSB7KR wd3MgNnEoqWa9HQyRlU6Vv8sBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOvycEH7 GvXnBnHyUox5IPTk3x/6MB8GA1UdIwQYMBaAFGAdxUsfUgUIDv2aps+lpRxKed0r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTk5OC8yQzU5MkUyODlG MUYxMUVCQjMwRDU3NDNDNEY5QUUwMi9ZQjNGU3g5U0JRZ09fWnFtejZXbEhFcDUz U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCM0ZTeDlTQlFnT19acW16NldsSEVwNTNTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTk5OC8yQzU5MkUyODlGMUYxMUVCQjMwRDU3NDNDNEY5QUUwMi9ZQjNGU3g5U0JR Z09fWnFtejZXbEhFcDUzU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6Pt9TaKPVmVnVfEvxCEaHFPoBFxNIr+H8s0qs4OHYvOgqGLQeYIrX voQ5oAl1vaKhYFrjfWR0KJzWGEELFkW8qrtgmq8C6R1f4XOa8QRQgqFtRV/MtsGj qz8NDD2FHDUviPAKGPXWRTYaNiVUwu9ysQYCXOUg2aDphzf3wx5JgOxipAZHS35E 43TIeEFcC01LJ5v/8ABM7WRXMn9U8CXCTJDwHWcKoYDTriS81bxoLQ1mrgzBb3JN sDw4hMUkq0E7iKT4vWj2STR0EezekIju5hHP3FaG5FZB8taBASOgiRhwdCGeylFK BnO70EUYEMKAxxsy1+VsWcnMG87P35nD -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:36 2024 by rpki-client on console-fra.rpki-client.org