$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: 2VKDokLGaJiVkc0DANf/+5iI3al5WrjSuF5cdVXQS3M= Subject key identifier: B7:E8:F7:B5:EC:9F:5D:2A:E4:C2:77:54:85:BF:78:47:D4:D1:45:24 Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 0550 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 054B Signing time: Fri 22 Nov 2024 23:00:49 +0000 Manifest this update: Fri 22 Nov 2024 23:00:49 +0000 Manifest next update: Fri 29 Nov 2024 23:00:49 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: 4gput/kFzzeqshyaYelBMamPZ+7GSNHdTMlRjwxBGwE=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: LlRmkz9YxwYm1C2j9p8xPkYv28PYadhTVXhJRGajwN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1360 (0x550) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Nov 22 23:00:49 2024 GMT Not After : Nov 29 23:00:49 2024 GMT Subject: CN=67410d21-12dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1e:ba:0f:7a:f3:e7:8d:c6:9d:21:83:ec:79: af:51:13:d2:db:ec:6b:74:79:04:f1:b5:b2:2e:ad: 1e:37:f9:83:b8:7c:d7:78:c1:9d:d0:d2:fb:fc:88: 49:40:46:9c:6b:c4:94:5b:84:d1:81:c6:54:26:ed: 5b:c9:2c:aa:d4:55:b2:12:82:c0:14:47:f7:7b:b1: 67:3a:a1:cc:80:33:3d:d3:58:a6:f8:a0:19:6f:3f: ea:73:72:07:7d:a3:8f:1a:0d:f6:af:f3:08:b1:12: 09:8d:b9:9d:9c:61:09:55:ab:4f:56:01:26:8f:c4: a8:ff:7e:15:64:8e:1a:22:e9:bb:02:65:7a:a5:b4: 39:81:56:e7:42:c3:f7:1d:81:75:87:84:e3:fb:09: f1:21:92:d6:3a:ad:b2:81:4a:1b:6e:fc:33:79:cd: f9:45:b9:99:c0:da:12:0a:e6:15:d7:c3:ce:97:e9: 7e:70:fc:5b:0e:78:64:8a:bc:4d:b1:f2:a8:9b:7a: 8a:21:61:e3:3e:a7:9b:46:56:f0:cd:32:d1:5b:6f: 55:e5:fc:66:32:a6:46:48:58:04:44:68:b3:93:53: 67:7d:b6:b4:eb:69:21:18:28:77:47:58:d6:16:cb: 10:06:24:ed:c9:bb:e5:b4:60:fb:87:6d:06:42:dd: 81:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E8:F7:B5:EC:9F:5D:2A:E4:C2:77:54:85:BF:78:47:D4:D1:45:24 X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:b8:64:a1:8a:eb:e7:bf:65:05:2b:14:21:08:cd:5e:9a:14: e2:c5:84:83:b3:ff:7d:05:3f:fa:c7:08:15:fd:7d:b4:98:a6: a5:3e:84:2f:a7:24:40:87:19:68:78:47:8f:f4:5f:0b:35:12: ac:e3:ca:46:01:c9:2f:c0:62:47:7a:6c:05:41:9a:d9:4b:7e: 19:b9:aa:1a:00:ba:56:c9:67:f9:d9:37:6c:bc:1f:5f:45:36: 2c:86:aa:2a:e4:c1:dc:20:67:96:42:69:7e:6e:8e:fd:2c:c1: ac:95:48:72:43:af:18:2b:7c:14:16:0a:c7:79:bf:9b:47:44: d0:f0:1d:27:85:97:f6:d2:b7:f4:1c:c3:76:b3:11:e0:cd:4b: 44:36:a5:ca:7a:48:8d:36:38:00:a2:b5:26:74:f9:1d:0b:2f: 49:ab:91:50:4b:8e:03:9f:42:69:e9:ab:cb:3a:38:57:ba:7d: d7:90:98:f4:f5:b6:f8:9d:31:fe:37:bc:1c:27:0f:8f:9f:fa: f6:83:a9:27:7f:6e:8e:09:bf:4a:70:f3:ef:00:b7:d0:76:2a: 22:d2:f3:75:81:a1:4e:90:65:8f:fb:1d:33:eb:d0:0a:dd:fb: 39:f7:2b:32:d3:23:da:dd:ba:2f:84:1c:df:c4:19:d4:12:e7: 01:5e:e3:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjQxMTIyMjMwMDQ5WhcNMjQxMTI5MjMwMDQ5WjAYMRYwFAYD VQQDEw02NzQxMGQyMS0xMmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzB66D3rz543GnSGD7HmvURPS2+xrdHkE8bWyLq0eN/mDuHzXeMGd0NL7/IhJ QEaca8SUW4TRgcZUJu1bySyq1FWyEoLAFEf3e7FnOqHMgDM901im+KAZbz/qc3IH faOPGg32r/MIsRIJjbmdnGEJVatPVgEmj8So/34VZI4aIum7AmV6pbQ5gVbnQsP3 HYF1h4Tj+wnxIZLWOq2ygUobbvwzec35RbmZwNoSCuYV18POl+l+cPxbDnhkirxN sfKom3qKIWHjPqebRlbwzTLRW29V5fxmMqZGSFgERGizk1Nnfba062khGCh3R1jW FssQBiTtybvltGD7h20GQt2BmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfo97Xs n10q5MJ3VIW/eEfU0UUkMB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvuGShiuvnv2UFKxQhCM1emhTixYSDs/99BT/6xwgV/X20mKalPoQv pyRAhxloeEeP9F8LNRKs48pGAckvwGJHemwFQZrZS34ZuaoaALpWyWf52TdsvB9f RTYshqoq5MHcIGeWQml+bo79LMGslUhyQ68YK3wUFgrHeb+bR0TQ8B0nhZf20rf0 HMN2sxHgzUtENqXKekiNNjgAorUmdPkdCy9Jq5FQS44Dn0Jp6avLOjhXun3XkJj0 9bb4nTH+N7wcJw+Pn/r2g6knf26OCb9KcPPvALfQdioi0vN1gaFOkGWP+x0z69AK 3fs59ysy0yPa3bovhBzfxBnUEucBXuPP -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org