$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft File: YqwbuVgKcRmBnntrbrLDUVNHh_0.mft (raw, json) Hash identifier: sUkPqe5ObTpqFpdhhq2L3gnNEi4jMIO+IHrpYYRKjlc= Subject key identifier: 1B:F0:14:F7:59:FA:23:3E:E1:89:9A:82:51:F0:35:95:A9:52:A3:5C Authority key identifier: 62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD Certificate issuer: /CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft Manifest number: 37 Signing time: Thu 21 Nov 2024 05:38:05 +0000 Manifest this update: Thu 21 Nov 2024 05:38:05 +0000 Manifest next update: Thu 28 Nov 2024 05:38:05 +0000 Files and hashes: 1: YqwbuVgKcRmBnntrbrLDUVNHh_0.crl (hash: PnLaYKvyEbRxq6smKmcaEoYP8sVCJRBddKY2Z86FWJA=) 2: 652283665B1A11EFA78B847EC4F9AE02.roa (hash: tP/YOIdnoY7zTO5p4ZVWJihHDwAVW3mBLrg6H6OaTlM=) 3: 474934DE5B1A11EFBF0E1F7CC4F9AE02.roa (hash: AbR4JwNeIxvK28YKeU+rC69Mel7G0dy68L3LDpPyx/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Validity Not Before: Nov 21 05:38:05 2024 GMT Not After : Nov 28 05:38:05 2024 GMT Subject: CN=673ec73d-f9c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8b:90:86:8e:21:56:55:f0:23:f8:9a:f9:3e: e7:de:d4:56:78:22:81:c0:ff:16:39:3b:f4:d6:7b: db:5d:08:8b:04:be:2d:fa:08:34:41:a1:03:5e:5d: 44:09:79:10:a9:ab:0d:81:a8:1b:d1:30:70:7a:a6: 09:51:8f:ed:d1:e0:35:45:3e:42:78:7d:08:79:cf: 6e:dc:bf:a4:ba:57:09:24:2c:0d:2a:58:82:1c:25: 99:c3:66:b9:99:65:57:6b:84:4c:c7:e8:2f:de:5e: 29:34:68:74:dd:d6:9b:e5:f1:b6:0b:bb:db:5a:f7: a8:3b:17:14:46:67:6f:45:10:53:86:b5:c6:e2:4f: ee:08:2a:4c:91:9e:b8:79:44:a2:8a:49:a1:0e:82: 8f:49:56:3f:c5:2d:dd:1b:af:d9:4b:77:92:15:98: b1:9c:43:1d:50:93:ff:36:22:ef:84:66:8f:3d:1f: 23:61:4d:38:f2:89:07:39:68:58:f2:2f:69:c6:4c: be:db:87:48:1e:d0:25:38:8a:0d:d9:d8:19:47:f2: d0:06:4b:76:5b:f8:da:2b:81:90:eb:1b:3f:ae:b3: d4:e4:67:7f:e4:e8:b1:d8:32:6b:54:c9:8e:5b:60: 08:a8:08:9c:43:85:2e:32:c5:80:67:da:0e:ca:9b: d0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F0:14:F7:59:FA:23:3E:E1:89:9A:82:51:F0:35:95:A9:52:A3:5C X509v3 Authority Key Identifier: keyid:62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:56:e0:dd:90:76:7e:0b:aa:f7:6f:53:bd:4a:88:48:0d:70: c7:85:00:00:cb:04:e9:43:74:ab:7f:de:58:a1:b9:a2:9c:42: bb:ac:03:0a:7e:61:db:c5:45:1b:3b:d3:f3:17:3a:98:ee:39: bd:9c:b0:55:fa:9f:c5:dc:ad:d2:ed:10:e2:5a:20:ed:2d:50: 12:76:57:08:75:2c:0d:56:dd:75:a3:fe:e9:e5:ad:82:69:fd: 39:1e:24:c3:0b:9e:01:96:8b:ec:35:6a:b7:01:43:f9:cc:d9: 77:b1:bb:f9:50:3b:09:ef:9b:6e:50:06:39:e1:b7:98:62:0a: 57:e0:25:50:09:b9:26:8a:03:20:e1:31:05:e2:05:b7:93:94: bd:f6:dc:32:11:1e:8e:c2:c7:18:e0:04:6e:de:95:b5:37:27: 2f:5a:8c:33:32:91:72:15:d1:f5:d0:f7:20:82:a2:1a:1a:d8: fa:4d:26:83:15:6a:ec:c6:bb:12:7f:c0:57:b7:3f:84:aa:12: 22:23:5b:9b:c0:00:8e:66:f8:f0:35:33:4d:69:fb:3a:26:b1: d0:91:61:97:ff:bd:dd:23:53:72:ed:9e:b4:d2:ce:c9:9f:5a: 1c:c6:37:d4:1e:7e:68:e6:29:c0:67:9c:3c:12:db:43:3a:e9: 5b:de:38:39 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx REQwODExMC8GA1UEBRMoNjJBQzFCQjk1ODBBNzExOTgxOUU3QjZCNkVCMkMzNTE1 MzQ3ODdGRDAeFw0yNDExMjEwNTM4MDVaFw0yNDExMjgwNTM4MDVaMBgxFjAUBgNV BAMTDTY3M2VjNzNkLWY5YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDai5CGjiFWVfAj+Jr5Pufe1FZ4IoHA/xY5O/TWe9tdCIsEvi36CDRBoQNeXUQJ eRCpqw2BqBvRMHB6pglRj+3R4DVFPkJ4fQh5z27cv6S6VwkkLA0qWIIcJZnDZrmZ ZVdrhEzH6C/eXik0aHTd1pvl8bYLu9ta96g7FxRGZ29FEFOGtcbiT+4IKkyRnrh5 RKKKSaEOgo9JVj/FLd0br9lLd5IVmLGcQx1Qk/82Iu+EZo89HyNhTTjyiQc5aFjy L2nGTL7bh0ge0CU4ig3Z2BlH8tAGS3Zb+NorgZDrGz+us9TkZ3/k6LHYMmtUyY5b YAioCJxDhS4yxYBn2g7Km9DLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUG/AU91n6 Iz7hiZqCUfA1lalSo1wwHwYDVR0jBBgwFoAUYqwbuVgKcRmBnntrbrLDUVNHh/0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFERDA4LzlBNUZCQjYyNUIx OTExRUZCRUQwQzQ3QUM0RjlBRTAyL1lxd2J1VmdLY1JtQm5udHJickxEVVZOSGhf MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWXF3YnVWZ0tjUm1Cbm50cmJyTERVVk5IaF8wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFE RDA4LzlBNUZCQjYyNUIxOTExRUZCRUQwQzQ3QUM0RjlBRTAyL1lxd2J1VmdLY1Jt Qm5udHJickxEVVZOSGhfMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK1W4N2Qdn4LqvdvU71KiEgNcMeFAADLBOlDdKt/3lihuaKcQrusAwp+ YdvFRRs70/MXOpjuOb2csFX6n8XcrdLtEOJaIO0tUBJ2Vwh1LA1W3XWj/unlrYJp /TkeJMMLngGWi+w1arcBQ/nM2Xexu/lQOwnvm25QBjnht5hiClfgJVAJuSaKAyDh MQXiBbeTlL323DIRHo7CxxjgBG7elbU3Jy9ajDMykXIV0fXQ9yCCohoa2PpNJoMV auzGuxJ/wFe3P4SqEiIjW5vAAI5m+PA1M01p+zomsdCRYZf/vd0jU3LtnrTSzsmf WhzGN9QefmjmKcBnnDwS20M66VveODk= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:00 2024 by rpki-client on console-ams.rpki-client.org