$ rpki-client -vvf rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft File: ymSxcxGVIJPNTWDarxe2rKD3pRY.mft (raw, json) Hash identifier: BNEZmr2Ck5ojugr8Sv812XV3/jSBhGs8vVYC38Zkx6g= Subject key identifier: 6F:53:7F:A0:F9:F3:BD:E9:8F:22:29:C1:02:7A:A2:19:7B:F0:2F:8B Authority key identifier: CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 Certificate issuer: /CN=A9112B24/serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft Manifest number: 34 Signing time: Thu 21 Nov 2024 05:39:50 +0000 Manifest this update: Thu 21 Nov 2024 05:39:49 +0000 Manifest next update: Thu 28 Nov 2024 05:39:49 +0000 Files and hashes: 1: ymSxcxGVIJPNTWDarxe2rKD3pRY.crl (hash: 5WQEMf/kaYNSp9BKTwFrtTlsUVWo2gk0fHGnXx4daP4=) 2: C384F0025BA011EFB7E79861C4F9AE02.roa (hash: HB8QMXYnImTcdy2zBeTOvUb91weeMYAQqjoTwrsvfrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112B24/serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Validity Not Before: Nov 21 05:39:49 2024 GMT Not After : Nov 28 05:39:49 2024 GMT Subject: CN=673ec7a5-582f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:68:40:80:d8:b1:21:cd:40:0e:35:be:cd:60: 6a:95:b3:bc:fa:eb:2c:98:51:97:a7:4e:47:48:21: 75:14:a8:6c:c5:39:24:ba:56:a8:23:af:0d:c2:16: c8:fd:eb:8e:da:eb:25:72:0a:68:b3:de:c4:4a:ca: 78:03:83:97:f9:a8:06:34:08:20:01:d0:77:e5:97: 31:51:cc:dd:9d:70:e7:34:a9:e2:18:a7:3e:22:4d: 56:c5:e7:99:dd:83:81:a4:4f:50:34:98:4f:aa:5c: ed:f6:5e:26:f4:de:5a:68:88:5c:44:97:7f:45:38: 6c:75:3b:34:d3:d5:26:dc:1b:e5:e9:52:6e:27:30: 11:f5:e5:e8:f8:f7:aa:fe:c2:84:0f:8e:f4:8f:bd: fb:de:e8:83:76:09:82:d7:23:da:dc:83:f9:a8:96: 75:65:3a:a8:db:20:12:d9:d1:c3:77:b8:e2:28:37: 30:28:d9:5d:06:8a:a5:02:fc:fa:29:6b:1b:d8:5e: a6:0e:39:3e:75:b9:a9:9a:eb:b0:37:93:94:88:86: a3:b7:68:c4:47:76:68:7b:d3:7b:fa:67:93:e9:47: 4f:b8:c1:42:53:9b:e1:7a:20:24:36:8e:13:62:77: bd:b4:cd:94:37:8d:d8:cb:52:a6:c3:69:5d:be:db: 11:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:53:7F:A0:F9:F3:BD:E9:8F:22:29:C1:02:7A:A2:19:7B:F0:2F:8B X509v3 Authority Key Identifier: keyid:CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:df:0a:cd:93:b1:18:6c:4b:5e:3e:28:f4:30:1d:cc:7f:e5: 37:ee:f0:69:19:4f:1e:31:f2:8b:ef:8b:0e:7c:7c:d7:b2:37: 75:d0:cd:1a:ea:d7:c7:61:a3:82:ff:3c:83:0c:2f:25:6f:1b: 3c:1a:09:8a:01:fa:2e:d4:93:98:d4:18:42:23:b1:56:b8:a3: 98:70:b4:6e:0e:1e:ed:76:e9:67:b6:7c:78:fd:96:7a:2c:52: ac:79:26:3d:7b:10:db:d7:0e:f5:34:4b:d6:7a:4d:e1:e4:bb: 51:e9:e0:d6:80:3e:ce:89:8e:63:19:0c:0b:cb:f1:65:77:cf: 2e:4a:1b:4e:1a:01:77:89:b5:51:a3:5c:63:f0:a6:4a:a1:e7: 2a:7a:8c:39:2a:f6:bd:69:2e:51:c0:d3:84:e6:a7:6b:98:c6: f5:fd:d3:b7:b3:85:9d:28:4b:53:d0:a4:2f:cf:7e:78:c9:5d: 66:e8:e3:83:96:f3:2b:79:66:28:16:95:bc:bd:95:ba:37:dd: 9d:62:dc:f6:01:d9:4b:cb:97:d5:be:80:69:7a:ea:cb:11:17: a4:29:5f:08:b7:69:75:8a:eb:8c:7e:75:01:c5:0b:44:99:d7: 5e:44:a1:05:d8:8a:e7:a2:38:fe:84:26:b8:67:5d:e8:c9:4c: de:75:06:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MkIyNDExMC8GA1UEBRMoQ0E2NEIxNzMxMTk1MjA5M0NENEQ2MERBQUYxN0I2QUNB MEY3QTUxNjAeFw0yNDExMjEwNTM5NDlaFw0yNDExMjgwNTM5NDlaMBgxFjAUBgNV BAMTDTY3M2VjN2E1LTU4MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOaECA2LEhzUAONb7NYGqVs7z66yyYUZenTkdIIXUUqGzFOSS6Vqgjrw3CFsj9 647a6yVyCmiz3sRKyngDg5f5qAY0CCAB0HfllzFRzN2dcOc0qeIYpz4iTVbF55nd g4GkT1A0mE+qXO32Xib03lpoiFxEl39FOGx1OzTT1SbcG+XpUm4nMBH15ej496r+ woQPjvSPvfve6IN2CYLXI9rcg/molnVlOqjbIBLZ0cN3uOIoNzAo2V0GiqUC/Pop axvYXqYOOT51uama67A3k5SIhqO3aMRHdmh703v6Z5PpR0+4wUJTm+F6ICQ2jhNi d720zZQ3jdjLUqbDaV2+2xHfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUb1N/oPnz vemPIinBAnqiGXvwL4swHwYDVR0jBBgwFoAUymSxcxGVIJPNTWDarxe2rKD3pRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEyQjI0LzhBMTZGRjcyNUJB MDExRUY5RjJGMjM2MUM0RjlBRTAyL3ltU3hjeEdWSUpQTlRXRGFyeGUycktEM3BS WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveW1TeGN4R1ZJSlBOVFdEYXJ4ZTJyS0QzcFJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEy QjI0LzhBMTZGRjcyNUJBMDExRUY5RjJGMjM2MUM0RjlBRTAyL3ltU3hjeEdWSUpQ TlRXRGFyeGUycktEM3BSWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKLfCs2TsRhsS14+KPQwHcx/5Tfu8GkZTx4x8ovviw58fNeyN3XQzRrq 18dho4L/PIMMLyVvGzwaCYoB+i7Uk5jUGEIjsVa4o5hwtG4OHu126We2fHj9lnos Uqx5Jj17ENvXDvU0S9Z6TeHku1Hp4NaAPs6JjmMZDAvL8WV3zy5KG04aAXeJtVGj XGPwpkqh5yp6jDkq9r1pLlHA04Tmp2uYxvX907ezhZ0oS1PQpC/PfnjJXWbo44OW 8yt5ZigWlby9lbo33Z1i3PYB2UvLl9W+gGl66ssRF6QpXwi3aXWK64x+dQHFC0SZ 115EoQXYiueiOP6EJrhnXejJTN51BvE= -----END CERTIFICATE-----Generated at Thu Nov 21 07:39:59 2024 by rpki-client on console-ams.rpki-client.org