$ rpki-client -vvf rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft File: sYTDX2rtv7hd2kET8nUuDInKOpA.mft (raw, json) Hash identifier: mgRw5Z2+fRtguneaGEB1DLsqj93dUk4KqPac5xb7q/M= Subject key identifier: 3E:18:7B:86:E5:E2:36:27:44:FF:27:55:9F:B9:84:C1:27:8D:45:6A Authority key identifier: B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 Certificate issuer: /CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Certificate serial: 0A90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft Manifest number: 0A89 Signing time: Fri 22 Nov 2024 19:22:00 +0000 Manifest this update: Fri 22 Nov 2024 19:22:00 +0000 Manifest next update: Fri 29 Nov 2024 19:22:00 +0000 Files and hashes: 1: sYTDX2rtv7hd2kET8nUuDInKOpA.crl (hash: u6iW2NVsLSRI4aep6oI+MkRUIjLOrsNFVPSaiqElRWw=) 2: F9D16F1CC7D811EDB42DFF20C4F9AE02.roa (hash: CtRLKn6Ho9BgRI41OP+GfRuStv7HD0JEHEC66mznFgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2704 (0xa90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Validity Not Before: Nov 22 19:22:00 2024 GMT Not After : Nov 29 19:22:00 2024 GMT Subject: CN=6740d9d8-3584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e6:f0:5f:1f:70:59:77:6b:9b:f8:e5:39:d4: 2a:6d:3d:58:0b:dc:2e:60:c3:4e:c4:df:65:b0:f0: 91:40:67:c9:d0:c4:a2:a2:a4:1b:2a:4a:46:8d:af: fd:7e:ba:46:33:04:0e:75:fd:3e:85:a4:b0:17:01: be:40:8b:4e:cc:a3:6b:fe:ef:1f:db:11:83:76:8d: 75:73:d0:1e:af:c5:35:e4:e2:eb:ed:f6:9c:52:09: e5:4a:bf:2f:e8:e4:0b:b3:cf:fc:12:04:aa:71:9e: ac:56:e4:f0:73:97:d0:2f:e3:4f:5d:6b:01:de:83: c6:63:61:b2:2d:e7:af:1f:8f:34:8b:9e:37:73:76: e4:f2:7c:47:8d:ea:e0:97:c6:92:6f:0e:57:3a:43: de:8e:74:68:a3:f7:f9:7e:89:79:97:8a:89:2d:18: 98:c2:71:af:29:59:c3:24:0c:b2:39:95:c0:bb:9f: 82:a7:d6:07:a0:67:be:b0:e0:8f:7b:e7:bc:e7:fb: 69:a0:e2:fe:32:a3:c3:03:68:f3:03:bf:64:62:87: 67:c7:eb:60:38:be:aa:1b:a1:91:a1:54:3b:22:91: 1d:71:d4:c4:5d:c4:cd:e4:cf:ef:8e:7e:05:6b:ba: d4:cb:7d:73:60:dd:2f:c6:7e:42:64:88:9e:f5:f5: 29:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:18:7B:86:E5:E2:36:27:44:FF:27:55:9F:B9:84:C1:27:8D:45:6A X509v3 Authority Key Identifier: keyid:B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:4e:8d:f7:05:04:95:20:06:9d:8b:dc:44:ad:ec:1b:17:a9: ea:0e:ac:53:96:e0:9a:74:d3:fe:91:b1:61:5c:dc:b2:81:09: 3d:28:29:59:2f:e2:6b:19:a7:ae:33:61:52:2d:8a:ce:3e:d7: ad:a6:f5:9a:41:e2:4c:0a:d0:8e:e3:4b:9f:f1:9f:ea:90:c8: 1f:89:94:72:a8:aa:0c:5b:a7:d1:8d:05:91:4d:6d:27:c4:11: 1e:cd:f1:b2:c3:24:58:d1:cb:0f:ab:c0:97:55:ba:95:3a:ad: 14:27:91:ba:93:84:15:62:2b:cd:11:c2:26:ce:ee:ce:b6:26: 01:f8:be:7f:c2:99:f0:a3:c8:ee:5b:cd:89:5c:48:9e:90:99: e0:21:76:71:d8:7a:0e:8c:38:8f:6e:5a:8c:4a:dc:ce:04:87: b0:d6:94:8c:e6:24:b3:a7:05:33:ec:d5:ce:59:c0:c8:6b:7f: 9e:c8:f2:d0:c3:c8:1d:38:b4:69:a4:c8:2e:27:0b:84:56:a2: a6:aa:56:f3:64:bb:d3:33:d1:a7:a5:91:b7:92:54:e4:38:7c: 06:17:d4:30:c2:7b:e6:2a:45:96:62:77:6d:28:48:14:5b:8d: f0:29:7d:9c:67:46:59:64:55:9c:93:46:39:34:7c:ba:62:52: 75:67:45:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg4RjQxMTAvBgNVBAUTKEIxODRDMzVGNkFFREJGQjg1RERBNDExM0YyNzUyRTBD ODlDQTNBOTAwHhcNMjQxMTIyMTkyMjAwWhcNMjQxMTI5MTkyMjAwWjAYMRYwFAYD VQQDEw02NzQwZDlkOC0zNTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArObwXx9wWXdrm/jlOdQqbT1YC9wuYMNOxN9lsPCRQGfJ0MSioqQbKkpGja/9 frpGMwQOdf0+haSwFwG+QItOzKNr/u8f2xGDdo11c9Aer8U15OLr7facUgnlSr8v 6OQLs8/8EgSqcZ6sVuTwc5fQL+NPXWsB3oPGY2GyLeevH480i543c3bk8nxHjerg l8aSbw5XOkPejnRoo/f5fol5l4qJLRiYwnGvKVnDJAyyOZXAu5+Cp9YHoGe+sOCP e+e85/tpoOL+MqPDA2jzA79kYodnx+tgOL6qG6GRoVQ7IpEdcdTEXcTN5M/vjn4F a7rUy31zYN0vxn5CZIie9fUp/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4Ye4bl 4jYnRP8nVZ+5hMEnjUVqMB8GA1UdIwQYMBaAFLGEw19q7b+4XdpBE/J1LgyJyjqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODhGNC8wN0FFNzdDQzQ4 Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3aGQya0VUOG5VdURJbktP cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZVERYMnJ0djdoZDJrRVQ4blV1REluS09wQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODhGNC8wN0FFNzdDQzQ4Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3 aGQya0VUOG5VdURJbktPcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMTo33BQSVIAadi9xErewbF6nqDqxTluCadNP+kbFhXNyygQk9KClZ L+JrGaeuM2FSLYrOPtetpvWaQeJMCtCO40uf8Z/qkMgfiZRyqKoMW6fRjQWRTW0n xBEezfGywyRY0csPq8CXVbqVOq0UJ5G6k4QVYivNEcImzu7OtiYB+L5/wpnwo8ju W82JXEiekJngIXZx2HoOjDiPblqMStzOBIew1pSM5iSzpwUz7NXOWcDIa3+eyPLQ w8gdOLRppMguJwuEVqKmqlbzZLvTM9GnpZG3klTkOHwGF9QwwnvmKkWWYndtKEgU W43wKX2cZ0ZZZFWck0Y5NHy6YlJ1Z0Vs -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org