$ rpki-client -vvf rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft File: LyR3675WsNegrUTCcX21_ggNyug.mft (raw, json) Hash identifier: Lm0XWZYuh0aV/u8nB47QUMMraOCJurIUXr4ty0tHwks= Subject key identifier: EA:C9:A5:E7:71:10:AC:2A:23:69:FD:1E:E1:AB:8F:A3:03:82:B6:77 Authority key identifier: 2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 Certificate issuer: /CN=A91479A7/serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft Manifest number: 010C Signing time: Mon 25 Nov 2024 03:22:56 +0000 Manifest this update: Mon 25 Nov 2024 03:22:55 +0000 Manifest next update: Mon 02 Dec 2024 03:22:55 +0000 Files and hashes: 1: LyR3675WsNegrUTCcX21_ggNyug.crl (hash: 7LYY2NSNUGji227QKubvohPdi8m9lmgSMKOkdB0+Ba8=) 2: 7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa (hash: n+UG6V5XV7UFganlBH1N62nTVgBD1jdXRIOHq8v8JMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 03:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91479A7/serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Validity Not Before: Nov 25 03:22:55 2024 GMT Not After : Dec 2 03:22:55 2024 GMT Subject: CN=6743ed90-3446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:39:6d:7d:48:49:9a:1e:fb:7f:3d:54:63:01: 31:37:dd:57:32:64:96:e3:e2:51:fc:24:ab:d0:e3: 84:a9:e8:a3:40:aa:7c:c2:fb:33:07:38:d4:6a:92: 9a:6e:43:16:47:d8:87:31:7a:a6:6f:9b:2c:72:be: 08:25:6c:07:ba:19:50:6a:df:fd:9a:5c:9c:f1:a7: 10:0d:40:95:a6:24:a1:9c:69:cc:e3:32:32:00:f9: 37:80:d6:7b:27:ec:38:53:02:d2:d3:12:34:02:4a: ac:d8:93:e8:d4:5b:43:73:7a:e7:04:c1:85:d3:39: 4a:46:9b:20:a4:91:6b:1d:80:f8:d9:a1:e2:59:84: bd:ee:bb:b8:a6:31:e1:d1:cf:0e:a5:af:65:87:b1: a2:18:80:76:e0:d8:aa:a2:ea:24:f8:cc:90:ce:51: 3e:4a:d9:75:73:56:79:98:c7:9b:00:6e:33:95:1e: 5f:06:eb:df:9f:f8:a7:12:9f:8f:d6:3a:ee:05:b8: 3e:e7:bf:f8:96:a2:b4:ec:cc:c9:51:94:bf:6f:a3: 07:26:c5:e4:05:4d:38:98:b6:8f:b1:f3:3b:73:dc: 09:12:f7:ff:97:f5:05:3a:90:31:e6:6b:35:dd:95: 70:7f:53:29:90:18:31:32:21:ef:bd:f3:8a:15:c8: 33:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C9:A5:E7:71:10:AC:2A:23:69:FD:1E:E1:AB:8F:A3:03:82:B6:77 X509v3 Authority Key Identifier: keyid:2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:70:81:4f:22:86:ff:fb:62:cc:ee:e1:04:bd:70:aa:19:f6: a0:af:64:41:3b:3c:77:e4:6a:0b:68:b2:cc:19:d9:d4:a3:37: 12:b7:3e:46:a8:d2:ef:3a:d6:29:27:34:6b:83:02:b5:93:2c: 33:c5:d5:c3:79:ec:97:c8:3d:5f:cd:4b:6c:0e:59:dc:2d:04: 95:98:0b:35:44:d0:15:8b:08:59:a6:b9:e6:4a:6f:74:b2:15: bc:43:d0:c2:a2:9b:7b:03:0d:cf:d7:5d:61:53:0f:d6:a4:42: 50:72:9c:c7:9b:79:2d:db:ea:1b:3b:a9:f6:fb:dd:01:0c:36: 50:56:55:6c:23:fb:33:a7:f0:6e:00:d1:10:54:10:f0:41:e1: 31:36:a8:24:a3:df:ab:2d:b5:01:70:d8:cd:64:50:20:60:f8: 13:ea:93:e5:af:1a:14:4a:15:9b:1b:b5:0b:e4:79:c8:b7:6a: 49:e6:cc:91:78:ab:a2:8c:78:67:5e:d5:5e:23:9e:26:56:77: dc:2c:02:05:ec:2c:7a:bf:9e:a0:10:4e:6b:fc:05:26:8e:b0: d3:87:64:40:f9:7e:51:37:83:e1:31:6b:c7:63:4d:94:c9:8f: 60:ed:2c:5b:e5:0d:bb:c2:11:ff:33:83:07:99:16:1d:92:20: 1f:1d:d9:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc5QTcxMTAvBgNVBAUTKDJGMjQ3N0VCQkU1NkIwRDdBMEFENDRDMjcxN0RCNUZF MDgwRENBRTgwHhcNMjQxMTI1MDMyMjU1WhcNMjQxMjAyMDMyMjU1WjAYMRYwFAYD VQQDEw02NzQzZWQ5MC0zNDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTltfUhJmh77fz1UYwExN91XMmSW4+JR/CSr0OOEqeijQKp8wvszBzjUapKa bkMWR9iHMXqmb5sscr4IJWwHuhlQat/9mlyc8acQDUCVpiShnGnM4zIyAPk3gNZ7 J+w4UwLS0xI0Akqs2JPo1FtDc3rnBMGF0zlKRpsgpJFrHYD42aHiWYS97ru4pjHh 0c8Opa9lh7GiGIB24Niqouok+MyQzlE+Stl1c1Z5mMebAG4zlR5fBuvfn/inEp+P 1jruBbg+57/4lqK07MzJUZS/b6MHJsXkBU04mLaPsfM7c9wJEvf/l/UFOpAx5ms1 3ZVwf1MpkBgxMiHvvfOKFcgz8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrJpedx EKwqI2n9HuGrj6MDgrZ3MB8GA1UdIwQYMBaAFC8kd+u+VrDXoK1EwnF9tf4IDcro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzlBNy84QkE5NjNENDQz RjUxMUVFOUE4RTRFMTZDNEY5QUUwMi9MeVIzNjc1V3NOZWdyVVRDY1gyMV9nZ055 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x5UjM2NzVXc05lZ3JVVENjWDIxX2dnTnl1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzlBNy84QkE5NjNENDQzRjUxMUVFOUE4RTRFMTZDNEY5QUUwMi9MeVIzNjc1V3NO ZWdyVVRDY1gyMV9nZ055dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhcIFPIob/+2LM7uEEvXCqGfagr2RBOzx35GoLaLLMGdnUozcStz5G qNLvOtYpJzRrgwK1kywzxdXDeeyXyD1fzUtsDlncLQSVmAs1RNAViwhZprnmSm90 shW8Q9DCopt7Aw3P111hUw/WpEJQcpzHm3kt2+obO6n2+90BDDZQVlVsI/szp/Bu ANEQVBDwQeExNqgko9+rLbUBcNjNZFAgYPgT6pPlrxoUShWbG7UL5HnIt2pJ5syR eKuijHhnXtVeI54mVnfcLAIF7Cx6v56gEE5r/AUmjrDTh2RA+X5RN4PhMWvHY02U yY9g7Sxb5Q27whH/M4MHmRYdkiAfHdlD -----END CERTIFICATE-----Generated at Mon Nov 25 04:54:31 2024 by rpki-client on console-fra.rpki-client.org