$ rpki-client -vvf rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft File: ymSxcxGVIJPNTWDarxe2rKD3pRY.mft (raw, json) Hash identifier: aAb93Tf1rOnaH5I6eXu2DH7JHu5M0J5RRGHY9HCrB0w= Subject key identifier: 67:C9:98:4C:0A:4F:B4:19:65:C0:7C:BF:04:12:9A:63:B4:CE:EB:5D Authority key identifier: CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 Certificate issuer: /CN=A9112B24/serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft Manifest number: 14 Signing time: Thu 19 Sep 2024 06:19:49 +0000 Manifest this update: Thu 19 Sep 2024 06:19:49 +0000 Manifest next update: Thu 26 Sep 2024 06:19:49 +0000 Files and hashes: 1: ymSxcxGVIJPNTWDarxe2rKD3pRY.crl (hash: kZArpQWG3GI0TU0/Ej7//Q5AaqAAWme/HgLX8YtnapU=) 2: C384F0025BA011EFB7E79861C4F9AE02.roa (hash: HB8QMXYnImTcdy2zBeTOvUb91weeMYAQqjoTwrsvfrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112B24/serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Validity Not Before: Sep 19 06:19:49 2024 GMT Not After : Sep 26 06:19:49 2024 GMT Subject: CN=66ebc285-eda0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:36:be:2d:1b:88:62:ac:1a:73:2c:03:03:94: 68:72:98:51:1a:75:cf:dd:43:7f:21:82:6d:d2:6f: 89:70:51:2f:9c:e6:7c:cb:b2:d2:d2:50:46:31:75: 8a:93:4f:44:54:e7:42:b6:67:a7:4e:f5:d0:78:57: 09:56:93:a4:1b:66:09:73:ac:c5:ea:92:7d:61:1f: b7:9a:61:ec:91:2f:13:7b:85:bc:72:80:cd:53:92: 0d:82:c5:cc:34:48:22:8a:a3:12:e5:c0:68:41:cb: 07:d6:a4:f0:8f:fb:ec:e0:76:73:70:7b:86:52:4a: 43:9b:8e:77:12:29:cd:46:3b:05:20:4a:ee:e3:2d: 62:24:d4:db:2f:40:ac:11:b9:dd:99:0f:45:44:d1: f7:7d:9a:76:e2:bb:93:fb:fc:9d:5c:ef:72:b3:2e: 85:e8:88:6a:17:a8:19:48:c8:d9:3c:cc:76:a0:6c: 59:1d:8b:20:3f:f4:ce:59:39:4b:32:63:b1:64:8e: 16:84:e9:75:78:e5:51:e3:1e:53:46:04:f7:84:1a: 9e:1f:ab:f2:c0:9c:9d:28:b6:7c:36:ab:9c:62:af: 03:3a:a3:5f:d9:4e:d9:db:41:54:16:99:d6:3d:a1: 21:f0:67:2c:e6:a7:fe:de:e0:95:b6:a1:36:fe:5d: 8b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C9:98:4C:0A:4F:B4:19:65:C0:7C:BF:04:12:9A:63:B4:CE:EB:5D X509v3 Authority Key Identifier: keyid:CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:19:d7:e8:c1:0b:89:e0:58:9d:9a:55:ee:13:a7:a8:87:13: ca:af:1f:5b:39:c8:86:1d:1e:87:e1:cf:0d:bd:50:6d:55:ab: 5d:5d:02:7c:b7:15:06:bf:e7:57:f6:92:56:8f:45:66:01:6c: 82:cc:dd:71:77:c1:ec:6a:fd:77:e6:96:3c:6a:e2:04:3d:80: 06:20:3d:02:e7:8d:a5:eb:73:21:9e:69:62:7e:4f:33:2a:14: 03:a0:81:26:5e:da:d9:63:67:98:18:2a:0c:61:01:ca:da:7c: f5:a6:cf:df:90:0f:ef:cb:d3:4a:9e:f9:9b:74:9b:9e:09:49: 64:71:fd:f5:97:c2:64:40:42:99:35:41:29:02:b0:a4:a7:b7: 64:a0:1e:6d:c0:91:08:40:de:44:e5:43:99:c2:92:9c:3a:5b: ad:b9:66:25:7a:8b:6c:4e:53:d8:27:d6:0a:88:e3:de:9d:01: 36:81:db:f5:65:ed:a5:bd:3c:35:e8:f0:af:18:6f:c9:dd:13: 7b:ee:90:46:8d:1d:90:51:c8:b8:ba:18:1f:2f:8b:01:8f:9e: d2:d3:f5:a0:86:bf:bc:62:96:28:cd:1f:74:ee:3b:38:37:1c: f8:48:01:bc:6b:35:be:17:c3:d9:f0:d1:60:94:9f:ae:e5:40: 84:83:42:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MkIyNDExMC8GA1UEBRMoQ0E2NEIxNzMxMTk1MjA5M0NENEQ2MERBQUYxN0I2QUNB MEY3QTUxNjAeFw0yNDA5MTkwNjE5NDlaFw0yNDA5MjYwNjE5NDlaMBgxFjAUBgNV BAMTDTY2ZWJjMjg1LWVkYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdNr4tG4hirBpzLAMDlGhymFEadc/dQ38hgm3Sb4lwUS+c5nzLstLSUEYxdYqT T0RU50K2Z6dO9dB4VwlWk6QbZglzrMXqkn1hH7eaYeyRLxN7hbxygM1Tkg2Cxcw0 SCKKoxLlwGhBywfWpPCP++zgdnNwe4ZSSkObjncSKc1GOwUgSu7jLWIk1NsvQKwR ud2ZD0VE0fd9mnbiu5P7/J1c73KzLoXoiGoXqBlIyNk8zHagbFkdiyA/9M5ZOUsy Y7FkjhaE6XV45VHjHlNGBPeEGp4fq/LAnJ0otnw2q5xirwM6o1/ZTtnbQVQWmdY9 oSHwZyzmp/7e4JW2oTb+XYtrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ8mYTApP tBllwHy/BBKaY7TO610wHwYDVR0jBBgwFoAUymSxcxGVIJPNTWDarxe2rKD3pRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEyQjI0LzhBMTZGRjcyNUJB MDExRUY5RjJGMjM2MUM0RjlBRTAyL3ltU3hjeEdWSUpQTlRXRGFyeGUycktEM3BS WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveW1TeGN4R1ZJSlBOVFdEYXJ4ZTJyS0QzcFJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEy QjI0LzhBMTZGRjcyNUJBMDExRUY5RjJGMjM2MUM0RjlBRTAyL3ltU3hjeEdWSUpQ TlRXRGFyeGUycktEM3BSWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAoZ1+jBC4ngWJ2aVe4Tp6iHE8qvH1s5yIYdHofhzw29UG1Vq11dAny3 FQa/51f2klaPRWYBbILM3XF3wexq/Xfmljxq4gQ9gAYgPQLnjaXrcyGeaWJ+TzMq FAOggSZe2tljZ5gYKgxhAcrafPWmz9+QD+/L00qe+Zt0m54JSWRx/fWXwmRAQpk1 QSkCsKSnt2SgHm3AkQhA3kTlQ5nCkpw6W625ZiV6i2xOU9gn1gqI496dATaB2/Vl 7aW9PDXo8K8Yb8ndE3vukEaNHZBRyLi6GB8viwGPntLT9aCGv7xilijNH3TuOzg3 HPhIAbxrNb4Xw9nw0WCUn67lQISDQps= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:02 2024 by rpki-client on console-ams.rpki-client.org