$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: Gb2WXE6BllP78SoD7d2w2c/7tXmdwH9ERicONBxIHqc= Subject key identifier: 45:DD:7E:EF:59:83:F0:B4:8C:BE:28:8C:21:E1:02:BC:42:23:46:9B Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1AC5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1A9B Signing time: Wed 20 Nov 2024 16:18:38 +0000 Manifest this update: Wed 20 Nov 2024 16:18:37 +0000 Manifest next update: Wed 27 Nov 2024 16:18:37 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: wHsF5XqUbSIfDH8kQPF8+iO/RC6Y8Cr+wFodOl3nFuw=) 2: D90961489C1311EFA0BF1480C4F9AE02.roa (hash: j0mJ0mAPy+58lCgkLchY+5j/S4lXHOE/HC1eBYmlnTs=) 3: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: Vek/WzrMVx7KqqfBWKpfk6Pa/vctgDmGCLNJlCCefXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:18:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6853 (0x1ac5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Nov 20 16:18:37 2024 GMT Not After : Nov 27 16:18:37 2024 GMT Subject: CN=673e0bdd-b9e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:99:d6:83:b9:a8:39:98:6d:28:4f:e6:d0:7a: b0:70:99:36:43:2e:c6:44:5c:d7:86:9c:7e:53:65: 41:eb:a4:fb:ac:b4:a6:4e:2e:8d:e4:e1:3a:4a:c9: 91:78:31:7f:79:79:74:07:1e:26:5d:29:31:61:ba: b6:f0:18:2d:33:85:f6:21:09:c4:7f:6e:4e:84:34: 0d:43:25:70:b7:1f:56:09:44:a2:e3:30:18:a5:51: 8c:77:5d:c5:06:92:30:5a:59:16:fe:b7:19:9d:1d: 5b:2a:37:82:6a:08:1d:cf:78:34:b2:3b:d3:02:66: ed:5d:28:81:d9:33:40:67:b2:b4:82:5f:d8:a9:f0: cf:21:7c:fb:f3:a2:d9:f4:98:f1:82:e6:53:65:e0: 3a:01:5c:ae:34:0e:bb:4c:80:17:04:2f:4a:51:b4: 61:fb:ff:30:ef:77:50:63:97:62:d5:53:65:78:3e: a7:fa:e9:f5:be:84:2a:2e:b7:e0:41:04:86:83:a6: 67:62:ff:81:bd:b6:3c:ba:b7:f7:df:20:1a:8f:db: 53:68:ac:0d:1c:63:43:b1:d1:92:12:c2:fc:6b:5c: db:f0:14:dc:f8:5c:3e:cb:1a:b6:68:9c:0f:1a:3b: 1a:12:79:26:6e:15:ff:fb:54:7a:f2:99:2d:c7:f0: fa:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:DD:7E:EF:59:83:F0:B4:8C:BE:28:8C:21:E1:02:BC:42:23:46:9B X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:da:4d:33:85:1a:a7:50:1b:98:61:cf:6d:eb:93:f3:b0:53: cf:b3:b2:25:14:1c:c8:29:ea:46:45:e1:32:83:69:27:40:42: 9d:bc:90:09:a2:42:11:e3:f0:ec:57:f8:fd:ee:02:36:f9:fa: 23:de:35:ad:cc:6b:9d:21:5d:8c:cd:70:54:91:78:34:09:97: 86:e3:80:d6:35:59:00:8b:05:30:f5:a4:72:a3:5f:52:4b:f7: c5:22:fe:5b:b5:80:76:6d:71:65:50:b6:76:01:82:1c:a1:10: f4:b7:ca:48:7b:df:0c:8e:92:65:4e:ca:04:bf:a5:18:57:06: c4:43:41:96:18:e7:15:e1:81:8b:31:3d:3d:43:71:85:fb:ec: d3:34:d1:06:d6:68:92:22:4b:f0:f2:85:4d:65:9e:5a:cb:39: e2:01:b2:6a:0b:5b:44:60:03:da:0e:e5:5f:fb:7e:67:8f:42: 2a:e0:3f:4a:12:73:2e:1b:3b:d9:cb:af:1a:05:d7:34:bf:77: 07:ae:36:9d:6a:54:f6:eb:30:fb:1f:71:83:55:98:90:ec:cf: 6b:d7:79:e3:b1:33:ab:f3:31:43:c0:92:8f:9f:a7:c1:ec:f8: 29:b2:cb:47:86:73:06:67:6d:c1:a3:4f:b8:f0:09:30:09:fd: 52:85:4b:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjQxMTIwMTYxODM3WhcNMjQxMTI3MTYxODM3WjAYMRYwFAYD VQQDEw02NzNlMGJkZC1iOWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZnWg7moOZhtKE/m0HqwcJk2Qy7GRFzXhpx+U2VB66T7rLSmTi6N5OE6SsmR eDF/eXl0Bx4mXSkxYbq28BgtM4X2IQnEf25OhDQNQyVwtx9WCUSi4zAYpVGMd13F BpIwWlkW/rcZnR1bKjeCaggdz3g0sjvTAmbtXSiB2TNAZ7K0gl/YqfDPIXz786LZ 9JjxguZTZeA6AVyuNA67TIAXBC9KUbRh+/8w73dQY5di1VNleD6n+un1voQqLrfg QQSGg6ZnYv+BvbY8urf33yAaj9tTaKwNHGNDsdGSEsL8a1zb8BTc+Fw+yxq2aJwP GjsaEnkmbhX/+1R68pktx/D6KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXdfu9Z g/C0jL4ojCHhArxCI0abMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK2k0zhRqnUBuYYc9t65PzsFPPs7IlFBzIKepGReEyg2knQEKdvJAJ okIR4/DsV/j97gI2+foj3jWtzGudIV2MzXBUkXg0CZeG44DWNVkAiwUw9aRyo19S S/fFIv5btYB2bXFlULZ2AYIcoRD0t8pIe98MjpJlTsoEv6UYVwbEQ0GWGOcV4YGL MT09Q3GF++zTNNEG1miSIkvw8oVNZZ5ayzniAbJqC1tEYAPaDuVf+35nj0Iq4D9K EnMuGzvZy68aBdc0v3cHrjadalT26zD7H3GDVZiQ7M9r13njsTOr8zFDwJKPn6fB 7PgpsstHhnMGZ23Bo0+48AkwCf1ShUvF -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:16 2024 by rpki-client on console-ams.rpki-client.org