$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft File: hYtkVOIiRseB5RNSswVkEJhoV34.mft (raw, json) Hash identifier: d2+O9GvaiHlbQ5Dwf5D/T2m6ljgB3gSQrhSjG2AHRXo= Subject key identifier: 62:B4:D0:B2:18:4D:6D:48:DA:7A:FB:B3:36:49:5E:29:0C:31:C9:39 Authority key identifier: 85:8B:64:54:E2:22:46:C7:81:E5:13:52:B3:05:64:10:98:68:57:7E Certificate issuer: /CN=A91F65C7/serialNumber=858B6454E22246C781E51352B30564109868577E Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft Manifest number: 95 Signing time: Sat 23 Nov 2024 04:25:59 +0000 Manifest this update: Sat 23 Nov 2024 04:25:58 +0000 Manifest next update: Sat 30 Nov 2024 04:25:58 +0000 Files and hashes: 1: hYtkVOIiRseB5RNSswVkEJhoV34.crl (hash: KDsO/EkWABZ8S1tZ5DweglVHRJ/nRX51j6a2HBKdzJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.crl rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65C7/serialNumber=858B6454E22246C781E51352B30564109868577E Validity Not Before: Nov 23 04:25:58 2024 GMT Not After : Nov 30 04:25:58 2024 GMT Subject: CN=67415957-178e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1d:90:9f:77:d2:e3:5f:17:76:49:0c:e7:18: f7:55:de:af:73:98:6b:6d:40:f8:9b:59:5e:6d:cc: 25:dc:37:9b:33:06:90:52:7b:d9:31:08:7e:c7:9b: dd:20:79:25:c4:47:a3:35:17:87:fb:d8:87:ce:80: a0:42:87:69:dd:b6:87:7e:89:f5:89:47:5e:12:a7: f6:73:5f:b0:98:da:6c:bc:71:79:5c:f7:6d:f7:cc: 6c:ca:94:eb:89:95:ef:25:a8:25:b6:38:48:13:54: fa:5c:69:28:2c:79:ca:bd:46:2a:39:1b:03:6a:b0: 5f:9a:e6:76:e8:40:62:be:8b:fb:c5:ee:5d:c4:98: ee:b6:ca:c0:8a:8c:3f:23:dd:79:40:f3:cf:c2:8b: f1:ef:f6:d4:9f:93:4a:79:25:77:e3:1b:02:b9:6f: d2:f6:2d:19:3d:d9:b9:7d:f5:e7:19:3d:fb:45:b1: d3:0c:c6:24:5e:28:bb:42:07:69:bb:ad:25:81:56: c9:ef:cc:57:f0:7e:41:6e:78:ff:2c:6e:3e:63:70: f3:f1:07:15:44:65:a4:0c:9d:61:0a:50:98:43:03: cd:50:a3:5b:47:af:75:52:20:9a:db:46:a9:03:25: c7:4b:bf:d5:da:83:39:6d:1a:5b:e9:1c:a7:fb:4b: a4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:B4:D0:B2:18:4D:6D:48:DA:7A:FB:B3:36:49:5E:29:0C:31:C9:39 X509v3 Authority Key Identifier: keyid:85:8B:64:54:E2:22:46:C7:81:E5:13:52:B3:05:64:10:98:68:57:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:de:ad:2f:6a:95:ae:d1:44:76:38:ad:0b:45:5e:e5:77:bf: 59:14:74:77:fd:f8:72:ef:57:1b:7b:66:7f:97:88:b6:1a:5e: d1:ad:7a:5d:43:b4:5f:2e:cf:1f:f7:25:45:63:c6:dd:79:8b: a4:0f:2b:48:b0:31:18:a0:cb:4f:35:b1:c9:18:93:32:b0:c7: e1:0f:e9:54:ec:34:57:2c:fd:c3:30:f0:3f:1a:a9:53:9a:88: 20:55:27:1c:a5:31:24:d0:47:62:ee:3e:e0:74:03:72:53:36: dc:da:d3:9c:01:08:98:21:0d:9e:38:18:1d:41:38:30:2d:6d: 49:fe:df:4b:b6:ad:3d:22:a5:49:cb:02:e5:b3:ba:d5:03:71: ef:f6:57:3f:bf:c3:d8:ef:46:79:9b:99:0d:a8:2d:78:7c:e6: ed:78:a1:0d:1d:53:fe:8f:a7:ee:da:8a:9f:ee:00:ec:bb:e5: d3:ef:8f:9a:02:ea:07:f8:d2:d5:e0:fc:f6:65:d6:e1:e9:f8: 01:f2:39:56:f1:16:7e:be:15:cb:ab:4a:37:b5:f9:ab:f8:42: f9:3d:d5:2b:40:19:d6:29:c1:4e:e1:7e:41:f2:72:aa:aa:41: a9:d3:92:96:01:f6:6d:0c:50:c5:99:81:f3:5e:04:b8:20:98: ab:59:de:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1QzcxMTAvBgNVBAUTKDg1OEI2NDU0RTIyMjQ2Qzc4MUU1MTM1MkIzMDU2NDEw OTg2ODU3N0UwHhcNMjQxMTIzMDQyNTU4WhcNMjQxMTMwMDQyNTU4WjAYMRYwFAYD VQQDEw02NzQxNTk1Ny0xNzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxB2Qn3fS418XdkkM5xj3Vd6vc5hrbUD4m1lebcwl3DebMwaQUnvZMQh+x5vd IHklxEejNReH+9iHzoCgQodp3baHfon1iUdeEqf2c1+wmNpsvHF5XPdt98xsypTr iZXvJagltjhIE1T6XGkoLHnKvUYqORsDarBfmuZ26EBivov7xe5dxJjutsrAiow/ I915QPPPwovx7/bUn5NKeSV34xsCuW/S9i0ZPdm5ffXnGT37RbHTDMYkXii7Qgdp u60lgVbJ78xX8H5Bbnj/LG4+Y3Dz8QcVRGWkDJ1hClCYQwPNUKNbR691UiCa20ap AyXHS7/V2oM5bRpb6Ryn+0ukowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGK00LIY TW1I2nr7szZJXikMMck5MB8GA1UdIwQYMBaAFIWLZFTiIkbHgeUTUrMFZBCYaFd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVDNy9FRDBGQjY4NkMz RTQxMUVFOTYxM0Y1ODNDNEY5QUUwMi9oWXRrVk9JaVJzZUI1Uk5Tc3dWa0VKaG9W MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZdGtWT0lpUnNlQjVSTlNzd1ZrRUpob1YzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVDNy9FRDBGQjY4NkMzRTQxMUVFOTYxM0Y1ODNDNEY5QUUwMi9oWXRrVk9JaVJz ZUI1Uk5Tc3dWa0VKaG9WMzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw3q0vapWu0UR2OK0LRV7ld79ZFHR3/fhy71cbe2Z/l4i2Gl7RrXpd Q7RfLs8f9yVFY8bdeYukDytIsDEYoMtPNbHJGJMysMfhD+lU7DRXLP3DMPA/GqlT moggVSccpTEk0Edi7j7gdANyUzbc2tOcAQiYIQ2eOBgdQTgwLW1J/t9Ltq09IqVJ ywLls7rVA3Hv9lc/v8PY70Z5m5kNqC14fObteKENHVP+j6fu2oqf7gDsu+XT74+a AuoH+NLV4Pz2Zdbh6fgB8jlW8RZ+vhXLq0o3tfmr+EL5PdUrQBnWKcFO4X5B8nKq qkGp05KWAfZtDFDFmYHzXgS4IJirWd6r -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org