$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: u7NH05uogm3yIx03Yyq+9OgnmQUM6vDChwJEx/C29JA= Subject key identifier: D9:43:16:E6:58:57:27:7F:DB:BC:E2:11:05:54:F1:B4:FF:51:F0:AC Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 0161 Signing time: Sat 23 Nov 2024 02:19:12 +0000 Manifest this update: Sat 23 Nov 2024 02:19:11 +0000 Manifest next update: Sat 30 Nov 2024 02:19:11 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: ZDJe7zBlxgqca750q9ZCdhgKztVmcU0vYVaRhzc8TiE=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: /uWMNP1WtMNTZYHRDA417xpJfUKrmS6c5bkJ4hhX1ME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Nov 23 02:19:11 2024 GMT Not After : Nov 30 02:19:11 2024 GMT Subject: CN=67413b9f-16ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:28:03:c2:28:d8:0f:05:f1:1a:48:af:9f:81: e7:69:bd:53:68:fc:2b:49:78:37:b0:e0:58:12:38: 87:bc:76:f4:d9:63:92:3f:7e:13:64:34:f9:77:10: 8c:9e:c8:b2:98:90:fb:cf:3d:5a:0c:ba:07:84:14: f4:70:94:0a:16:39:10:c7:a9:b6:8a:3b:53:64:71: c8:90:4e:8b:ef:5c:37:f1:da:01:35:76:ee:d0:a4: 45:45:c2:c2:be:19:8d:d5:c2:18:77:ee:5a:dd:dd: 9e:87:19:86:fa:f4:d9:85:f4:6e:28:17:7b:b9:ea: 7c:07:d0:04:c5:f5:b6:cb:be:80:47:07:70:79:ae: ee:e5:55:28:c0:ac:43:72:bb:b0:30:53:51:b8:73: a1:ad:47:14:6b:d2:5b:c8:da:93:0b:05:a9:e8:87: e9:a2:c9:61:3a:b2:86:dd:0a:a8:df:f0:6d:2e:ff: ad:f1:02:7b:d2:b2:d7:93:00:8a:90:95:25:92:e1: fb:ef:84:05:26:c3:7f:bf:d4:93:b2:7c:13:7f:84: 8c:4d:3b:cf:4c:c9:1a:95:30:86:ab:87:66:d9:90: c9:cb:12:96:bc:5d:f2:c5:54:33:2f:1c:45:fd:b6: e5:a4:9a:ee:80:5d:e8:d7:85:b7:f2:5d:c9:93:5a: 10:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:43:16:E6:58:57:27:7F:DB:BC:E2:11:05:54:F1:B4:FF:51:F0:AC X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:04:f6:77:0c:3a:61:2e:f9:17:2e:ff:77:69:b9:d7:e1:54: 27:74:65:f8:34:c8:b6:a1:1a:f8:02:e7:b8:a8:2c:c5:01:03: 4f:e5:0e:7e:77:e0:0b:74:d9:f1:df:c0:d0:7f:aa:74:ae:5e: fe:39:3f:69:9d:ef:f0:12:59:3e:05:e6:45:59:cd:4a:94:d6: 33:82:af:30:2c:a1:0e:4d:1e:ea:a1:f0:f7:d6:2c:b7:14:cd: dc:25:fe:ca:70:3a:8c:11:57:e3:6c:6d:b7:b3:4f:49:9f:d8: 74:70:81:57:9a:34:d7:68:58:cf:2a:1f:e6:e9:38:90:bf:bf: 09:5c:32:7d:59:37:31:ba:00:b5:bf:20:7b:35:1b:4b:0d:86: d5:7a:ed:b1:6c:2d:97:75:e2:d9:1f:ab:1d:b8:18:5d:c2:3d: 9f:34:2b:d4:2d:f9:b5:bc:82:80:5e:fe:74:d8:16:3c:1e:ba: 20:61:f0:ef:f3:a5:fe:08:39:67:57:f6:13:f2:71:82:f3:4f: cf:d4:09:24:2b:c2:52:b1:13:9c:15:3f:f4:5b:fb:6f:b9:0d: 22:d7:d8:c3:b9:a3:da:de:2b:9e:cd:d1:55:38:1e:95:ea:51: af:b7:e6:24:08:ea:e6:a1:00:03:e5:bf:69:0f:c3:77:c5:e5: 54:13:d8:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjQxMTIzMDIxOTExWhcNMjQxMTMwMDIxOTExWjAYMRYwFAYD VQQDEw02NzQxM2I5Zi0xNmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3igDwijYDwXxGkivn4Hnab1TaPwrSXg3sOBYEjiHvHb02WOSP34TZDT5dxCM nsiymJD7zz1aDLoHhBT0cJQKFjkQx6m2ijtTZHHIkE6L71w38doBNXbu0KRFRcLC vhmN1cIYd+5a3d2ehxmG+vTZhfRuKBd7uep8B9AExfW2y76ARwdwea7u5VUowKxD cruwMFNRuHOhrUcUa9JbyNqTCwWp6IfposlhOrKG3Qqo3/BtLv+t8QJ70rLXkwCK kJUlkuH774QFJsN/v9STsnwTf4SMTTvPTMkalTCGq4dm2ZDJyxKWvF3yxVQzLxxF /bblpJrugF3o14W38l3Jk1oQtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlDFuZY Vyd/27ziEQVU8bT/UfCsMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLBPZ3DDphLvkXLv93abnX4VQndGX4NMi2oRr4Aue4qCzFAQNP5Q5+ d+ALdNnx38DQf6p0rl7+OT9pne/wElk+BeZFWc1KlNYzgq8wLKEOTR7qofD31iy3 FM3cJf7KcDqMEVfjbG23s09Jn9h0cIFXmjTXaFjPKh/m6TiQv78JXDJ9WTcxugC1 vyB7NRtLDYbVeu2xbC2XdeLZH6sduBhdwj2fNCvULfm1vIKAXv502BY8HrogYfDv 86X+CDlnV/YT8nGC80/P1AkkK8JSsROcFT/0W/tvuQ0i19jDuaPa3iuezdFVOB6V 6lGvt+YkCOrmoQAD5b9pD8N3xeVUE9jt -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org