$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft File: YDUU_FCDUUDwM--oQ87pOWOWol0.mft (raw, json) Hash identifier: mC68lhN89BEkulru/H3zq/Wy/92WRfVI7xKGv+Olmfc= Subject key identifier: 92:1E:1A:13:1D:DD:24:9F:57:A1:03:DA:47:A1:57:07:E2:7E:1B:6A Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 0AB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft Manifest number: 0AAE Signing time: Fri 22 Nov 2024 19:13:16 +0000 Manifest this update: Fri 22 Nov 2024 19:13:16 +0000 Manifest next update: Fri 29 Nov 2024 19:13:16 +0000 Files and hashes: 1: YDUU_FCDUUDwM--oQ87pOWOWol0.crl (hash: UmOtaQhK4U1rUuIYwRsD8PqHzATMYAAJsJzDx7FwPc4=) 2: 42EE36A240EC11EA875BC545C4F9AE02.roa (hash: YIrw4KxM8ISIt1Ah1KvT99pW3vrO49ALdJTT54SyTO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:13:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2740 (0xab4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Validity Not Before: Nov 22 19:13:16 2024 GMT Not After : Nov 29 19:13:16 2024 GMT Subject: CN=6740d7cc-1a1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:52:50:a2:6b:c0:4c:68:2a:23:2b:40:5e:fc: 1e:c4:1b:b2:a6:45:77:ac:fa:87:5c:ae:28:ef:dd: 03:45:40:61:60:ae:d2:de:76:a1:25:f3:9d:4a:b7: f0:17:39:53:44:1e:17:2a:05:bd:94:12:f9:61:e4: 79:ec:bc:14:10:f2:45:a1:8a:12:85:67:7a:4c:06: ab:5c:69:5f:1b:fe:96:3f:24:7e:b9:2b:1b:69:83: 13:c8:1c:68:89:4f:e9:ab:22:df:0a:1d:b9:ac:4c: 97:74:69:66:ed:8c:93:e1:af:f4:c2:6e:0d:e3:5f: 07:a1:fd:ff:5c:a7:8e:3b:c0:fb:ca:56:b6:70:5b: ca:26:df:52:dd:ca:75:f3:b7:88:a9:2b:69:9a:79: 59:5d:c9:d4:9d:fd:32:68:ce:2b:9e:b4:cd:80:a8: cc:a3:61:f7:93:0c:e6:b1:78:3c:f6:2e:0a:bc:8b: 60:2a:d0:53:84:6c:c8:8c:cb:31:57:3c:b9:16:25: 02:a4:ca:be:ba:08:26:ae:96:e8:c0:67:77:ac:9a: 5b:44:0e:a4:fc:9d:13:a6:1b:fc:c0:b4:6c:d7:00: 37:4d:69:0c:4d:c0:b3:5e:ac:c4:aa:ee:d3:c3:73: ad:74:6e:59:91:f3:83:30:34:a5:f2:0c:84:ea:5d: 3f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:1E:1A:13:1D:DD:24:9F:57:A1:03:DA:47:A1:57:07:E2:7E:1B:6A X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:7c:fd:36:9e:07:5e:85:a9:df:29:bb:a7:ff:c3:c9:35:96: 75:10:cf:f3:65:da:2a:e7:dc:4f:36:ba:0e:a0:68:fb:35:6f: ae:c7:f1:b4:c4:e0:b2:56:c5:cf:e1:38:ef:b5:63:28:6a:97: f0:1e:47:f1:5b:af:62:c8:36:31:a5:02:3d:68:32:35:0b:4a: 5e:85:ed:53:74:98:7d:d8:f1:11:3a:04:b9:47:3d:fd:ec:84: e4:6c:e6:31:bf:fa:6d:da:0c:21:9e:fe:de:dc:13:35:49:c8: 44:36:2f:e5:4f:1b:d1:52:05:c0:a1:41:d9:4b:d7:dd:fa:25: e6:0a:ab:73:43:38:a2:72:e3:bf:a0:85:08:20:95:78:e7:64: d3:c2:ae:83:76:c6:e8:46:64:91:03:40:2a:9b:5f:96:36:52: b4:b5:2a:66:01:3d:b4:18:12:ad:cf:df:70:de:a8:b3:fb:1c: f0:e4:7a:5d:11:5f:b8:73:f9:4b:24:29:e4:ea:de:4f:20:06: 8b:e7:3a:04:71:7b:87:a7:97:3b:a6:79:0e:04:1f:3a:fd:e1: f3:cc:77:e1:15:c4:0d:0a:4a:84:f7:ce:a7:81:b4:ca:8b:8d: 1c:17:fa:b7:00:ba:f1:3e:71:3f:f7:e3:ea:f9:4f:fd:7d:da: 7b:66:d8:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjQxMTIyMTkxMzE2WhcNMjQxMTI5MTkxMzE2WjAYMRYwFAYD VQQDEw02NzQwZDdjYy0xYTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FJQomvATGgqIytAXvwexBuypkV3rPqHXK4o790DRUBhYK7S3nahJfOdSrfw FzlTRB4XKgW9lBL5YeR57LwUEPJFoYoShWd6TAarXGlfG/6WPyR+uSsbaYMTyBxo iU/pqyLfCh25rEyXdGlm7YyT4a/0wm4N418Hof3/XKeOO8D7yla2cFvKJt9S3cp1 87eIqStpmnlZXcnUnf0yaM4rnrTNgKjMo2H3kwzmsXg89i4KvItgKtBThGzIjMsx Vzy5FiUCpMq+uggmrpbowGd3rJpbRA6k/J0Tphv8wLRs1wA3TWkMTcCzXqzEqu7T w3OtdG5ZkfODMDSl8gyE6l0/DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIeGhMd 3SSfV6ED2kehVwfifhtqMB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MThGQS85ODQyNDQ5QzQwRUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVV RHdNLS1vUTg3cE9XT1dvbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApfP02ngdehanfKbun/8PJNZZ1EM/zZdoq59xPNroOoGj7NW+ux/G0 xOCyVsXP4TjvtWMoapfwHkfxW69iyDYxpQI9aDI1C0pehe1TdJh92PEROgS5Rz39 7ITkbOYxv/pt2gwhnv7e3BM1SchENi/lTxvRUgXAoUHZS9fd+iXmCqtzQziicuO/ oIUIIJV452TTwq6DdsboRmSRA0Aqm1+WNlK0tSpmAT20GBKtz99w3qiz+xzw5Hpd EV+4c/lLJCnk6t5PIAaL5zoEcXuHp5c7pnkOBB86/eHzzHfhFcQNCkqE986ngbTK i40cF/q3ALrxPnE/9+Pq+U/9fdp7ZtgF -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org