$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft File: _RYHGGNz6B9E0TeyoOlpV-YquKE.mft (raw, json) Hash identifier: CJPt1ykrK3uadAjnNI5N778e221EBgamhN5QrkN23dM= Subject key identifier: DE:35:2E:88:87:10:28:2F:AD:33:4E:A7:91:B7:F9:71:1B:1C:DC:D0 Authority key identifier: FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 Certificate issuer: /CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Certificate serial: 3465 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft Manifest number: 3448 Signing time: Fri 22 Nov 2024 15:03:46 +0000 Manifest this update: Fri 22 Nov 2024 15:03:46 +0000 Manifest next update: Fri 29 Nov 2024 15:03:46 +0000 Files and hashes: 1: _RYHGGNz6B9E0TeyoOlpV-YquKE.crl (hash: Zis/iINsojKHYvlXvr7zE/Jd3D/yMylmEMY+/Qf0fpI=) 2: 5A7BB752BD2F11EBB84EE532C4F9AE02.roa (hash: BdwgkrEVvS7EaJMjyx021N1wHkcgwHBJVY8E6E534xQ=) 3: D347187A7E9511ECA9132A0BC4F9AE02.roa (hash: 4i/7LdEU/T1ZHgOr95PKDKNxvTm/ZtFlmP55xUeSbB0=) 4: 59F4A758BD2F11EBB84EE532C4F9AE02.roa (hash: c0Nj/EakD9jZWUmq6GYt4WJPzbB76p849p8VWNsKos4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13413 (0x3465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Validity Not Before: Nov 22 15:03:46 2024 GMT Not After : Nov 29 15:03:46 2024 GMT Subject: CN=67409d52-3458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:76:14:84:43:bd:1a:dc:a5:02:e8:12:2d:4b: f6:dd:5a:b6:7d:af:b6:c9:3f:3c:37:b6:b7:2b:70: 79:45:5f:b7:41:63:a1:ef:a9:76:e0:44:8c:66:10: 8d:c4:39:75:39:65:db:00:e9:64:b7:b2:61:b3:7c: 63:f9:c1:0a:43:5b:e5:4a:28:2e:09:87:3e:ec:1c: de:61:cd:87:f5:2a:26:38:57:b0:48:67:d8:00:d8: 09:d9:b8:0f:98:cc:3b:44:0b:c6:5d:9d:24:80:ed: 6e:d7:8d:b1:ea:c8:35:b6:e7:ee:7d:2d:93:54:7e: 66:6b:25:0b:66:75:a9:fc:59:0a:24:d5:45:4d:39: 2f:cb:52:68:d7:3e:bb:cc:a3:a9:b7:88:4e:da:42: b8:fc:f3:7c:25:2e:fa:43:a3:2e:c2:28:51:e0:b0: 6c:75:6d:f6:37:6d:34:af:66:5b:96:67:34:90:6d: 16:92:a8:7f:c5:20:42:6f:25:c1:96:3b:63:da:5c: b8:01:7e:a9:91:c6:68:79:0f:9f:fb:bf:15:d3:db: cd:04:6f:47:1b:6b:29:ee:63:95:fa:51:e0:7d:ec: 67:13:99:7a:9b:2c:37:51:24:4b:6a:ab:4a:f9:4b: e7:34:23:69:fd:f1:03:a5:0d:37:62:bf:0f:f1:78: 60:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:35:2E:88:87:10:28:2F:AD:33:4E:A7:91:B7:F9:71:1B:1C:DC:D0 X509v3 Authority Key Identifier: keyid:FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:bb:1e:fb:2f:93:b5:cf:b5:4b:7f:2f:1a:b9:7d:1d:0d:a9: 96:e9:60:12:0e:4a:c7:58:94:91:26:04:ee:99:0b:29:47:7e: d3:dc:ef:1d:c4:13:b1:37:6f:0c:2c:eb:60:e3:fb:a8:dc:e4: b6:f3:9e:fd:09:61:6f:b2:aa:0d:f7:70:b1:2e:d6:32:48:b8: 11:d5:c3:9e:61:52:cc:a8:38:15:f2:62:3b:3a:ef:96:17:b0: 8c:83:12:fb:91:13:3a:c9:34:6e:08:71:69:7f:75:9c:ef:41: 62:8a:57:59:4f:5f:da:09:09:d5:23:75:42:4a:ff:2a:ef:c3: 76:0e:ca:54:bb:28:95:1d:4d:71:8f:02:fb:39:08:4f:89:66: cf:d9:63:21:87:29:cc:9f:63:ab:03:de:bf:75:8c:69:12:6d: 15:7a:c6:74:83:5f:52:75:b4:6f:43:3a:10:07:c0:57:93:65: 64:15:90:7b:4c:f5:6c:82:64:cc:a9:87:1a:97:fd:04:00:26: e9:11:10:41:60:6f:49:85:5f:dc:a3:c2:51:dc:9e:4d:c2:b1: c1:49:d1:1b:4d:20:bb:ff:43:d7:73:07:20:87:94:ea:e7:fe: fb:bd:44:6f:85:2c:99:99:5f:a4:b1:fd:2b:02:51:0f:9e:d9: 09:46:fc:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKEZEMTYwNzE4NjM3M0U4MUY0NEQxMzdCMkEwRTk2OTU3 RTYyQUI4QTEwHhcNMjQxMTIyMTUwMzQ2WhcNMjQxMTI5MTUwMzQ2WjAYMRYwFAYD VQQDEw02NzQwOWQ1Mi0zNDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXYUhEO9GtylAugSLUv23Vq2fa+2yT88N7a3K3B5RV+3QWOh76l24ESMZhCN xDl1OWXbAOlkt7Jhs3xj+cEKQ1vlSiguCYc+7BzeYc2H9SomOFewSGfYANgJ2bgP mMw7RAvGXZ0kgO1u142x6sg1tufufS2TVH5mayULZnWp/FkKJNVFTTkvy1Jo1z67 zKOpt4hO2kK4/PN8JS76Q6MuwihR4LBsdW32N200r2Zblmc0kG0Wkqh/xSBCbyXB ljtj2ly4AX6pkcZoeQ+f+78V09vNBG9HG2sp7mOV+lHgfexnE5l6myw3USRLaqtK +UvnNCNp/fEDpQ03Yr8P8Xhg6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN41LoiH ECgvrTNOp5G3+XEbHNzQMB8GA1UdIwQYMBaAFP0WBxhjc+gfRNE3sqDpaVfmKrih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC81QUUxOTdGNDFE OUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZCOUUwVGV5b09scFYtWXF1 S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19SWUhHR056NkI5RTBUZXlvT2xwVi1ZcXVLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk1OC81QUUxOTdGNDFEOUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZC OUUwVGV5b09scFYtWXF1S0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVux77L5O1z7VLfy8auX0dDamW6WASDkrHWJSRJgTumQspR37T3O8d xBOxN28MLOtg4/uo3OS28579CWFvsqoN93CxLtYySLgR1cOeYVLMqDgV8mI7Ou+W F7CMgxL7kRM6yTRuCHFpf3Wc70FiildZT1/aCQnVI3VCSv8q78N2DspUuyiVHU1x jwL7OQhPiWbP2WMhhynMn2OrA96/dYxpEm0VesZ0g19SdbRvQzoQB8BXk2VkFZB7 TPVsgmTMqYcal/0EACbpERBBYG9JhV/co8JR3J5NwrHBSdEbTSC7/0PXcwcgh5Tq 5/77vURvhSyZmV+ksf0rAlEPntkJRvyZ -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:06 2024 by rpki-client on console-ams.rpki-client.org