$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: 4y6RmwzhbYaOdcoiExQLET1yEACaKtQBWMGBd3jQWPs= Subject key identifier: 27:D2:F2:0E:B1:CE:F2:BF:FD:41:74:38:AC:A5:79:B8:4E:3D:FE:09 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 0129 Signing time: Sat 23 Nov 2024 02:51:15 +0000 Manifest this update: Sat 23 Nov 2024 02:51:14 +0000 Manifest next update: Sat 30 Nov 2024 02:51:14 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: QBO8lgoI6UJpftF/CJH6BpSKg9H5d0gnIFzY7/yNzk8=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: TdhZIYOqiSxv9GOoUzAaigjvIFJrtJpP2QczwEIQ1mA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Nov 23 02:51:14 2024 GMT Not After : Nov 30 02:51:14 2024 GMT Subject: CN=67414322-7739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:27:a9:6a:75:87:18:f5:07:d5:64:6d:2d:d2: c4:be:f8:06:01:08:09:9a:9a:d1:12:63:e8:87:67: 92:d1:cc:65:ce:ae:36:56:6d:6c:97:ce:55:8c:56: 7f:c3:43:c8:a9:21:5f:b0:54:3b:76:b7:4a:f0:39: a9:03:f9:a9:f9:0a:3d:6a:0e:dd:64:01:34:5d:42: 37:39:f0:42:d1:10:be:ab:fa:59:33:8f:b7:e5:65: f9:6a:bd:d8:84:a9:74:a4:89:d6:80:3b:f7:9c:c0: 64:f3:da:b9:8b:63:2a:09:d1:36:03:09:2f:3d:85: f9:a3:cc:a9:45:88:d8:8d:b3:14:b3:4c:a7:d0:88: e1:4b:67:1f:91:bc:1d:2d:92:4e:8c:c3:2a:3c:ad: c2:7a:8c:0a:1f:f4:69:2e:a5:35:14:1b:9b:03:fc: ff:3a:25:50:dc:7c:7f:59:fa:b6:1e:09:ad:dc:b3: 7d:bd:d5:8b:5b:6b:a3:83:14:d8:66:97:fd:64:46: 73:5c:b4:4f:7a:3c:d5:98:2d:42:3a:86:9e:ab:b8: 0d:7e:5a:31:77:47:81:a9:b0:ba:42:4a:e1:60:9a: 0f:33:27:4c:bc:8c:e2:8d:ca:1d:84:b0:b2:2e:80: cf:4c:bb:e5:9c:dd:56:82:0b:12:7a:14:58:cd:c4: 7f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:D2:F2:0E:B1:CE:F2:BF:FD:41:74:38:AC:A5:79:B8:4E:3D:FE:09 X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:88:a3:d2:67:79:cf:d1:ad:a1:a3:6e:62:19:dc:75:d3:4e: 9a:65:91:a9:b3:aa:b7:a8:ed:18:47:e9:c4:57:a1:f4:68:67: f2:9e:0c:3f:cb:10:9a:09:83:52:d9:d5:76:99:91:50:2d:68: 0f:22:29:f4:09:50:ff:c6:c6:61:07:2c:9d:db:83:17:f5:5e: 84:9e:54:82:86:b9:dc:93:78:63:e8:61:4e:9e:49:fc:cc:10: 9b:f9:55:c9:91:a9:ab:1c:4d:bc:bf:e0:1d:9e:a1:6c:fa:85: 66:9f:62:e5:1f:d3:c7:98:5d:d7:0b:e5:90:6d:22:55:3f:97: 6e:b4:01:90:65:23:cc:1a:47:50:74:53:62:9a:65:21:ab:8f: 7a:e9:06:1d:55:88:15:b2:7b:2b:f6:76:fc:3b:6c:64:db:32: a2:54:f5:bf:44:1c:0c:b7:e4:cc:ca:8f:4e:ad:24:ec:a0:e1: 04:c4:5c:c5:8b:11:31:a2:05:ba:36:51:66:bd:91:6c:25:6d: 05:82:f9:d8:bf:3c:0a:28:78:f9:e2:94:88:34:73:8f:70:6f: a3:8a:52:d3:a9:aa:5d:e6:06:a6:da:d9:83:41:24:13:80:08: 25:7b:21:fa:3a:03:1b:01:42:fb:28:9e:9a:bc:4f:7e:ce:cd: c6:30:e6:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjQxMTIzMDI1MTE0WhcNMjQxMTMwMDI1MTE0WjAYMRYwFAYD VQQDEw02NzQxNDMyMi03NzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SepanWHGPUH1WRtLdLEvvgGAQgJmprREmPoh2eS0cxlzq42Vm1sl85VjFZ/ w0PIqSFfsFQ7drdK8DmpA/mp+Qo9ag7dZAE0XUI3OfBC0RC+q/pZM4+35WX5ar3Y hKl0pInWgDv3nMBk89q5i2MqCdE2AwkvPYX5o8ypRYjYjbMUs0yn0IjhS2cfkbwd LZJOjMMqPK3CeowKH/RpLqU1FBubA/z/OiVQ3Hx/Wfq2Hgmt3LN9vdWLW2ujgxTY Zpf9ZEZzXLRPejzVmC1COoaeq7gNfloxd0eBqbC6QkrhYJoPMydMvIzijcodhLCy LoDPTLvlnN1WggsSehRYzcR/wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfS8g6x zvK//UF0OKylebhOPf4JMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCziKPSZ3nP0a2ho25iGdx1006aZZGps6q3qO0YR+nEV6H0aGfyngw/ yxCaCYNS2dV2mZFQLWgPIin0CVD/xsZhByyd24MX9V6EnlSChrnck3hj6GFOnkn8 zBCb+VXJkamrHE28v+AdnqFs+oVmn2LlH9PHmF3XC+WQbSJVP5dutAGQZSPMGkdQ dFNimmUhq4966QYdVYgVsnsr9nb8O2xk2zKiVPW/RBwMt+TMyo9OrSTsoOEExFzF ixExogW6NlFmvZFsJW0FgvnYvzwKKHj54pSINHOPcG+jilLTqapd5gam2tmDQSQT gAgleyH6OgMbAUL7KJ6avE9+zs3GMOZZ -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org