$ rpki-client -vvf rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft File: YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft (raw, json) Hash identifier: nBcBnpAHC3MSNBRCz2gR/f3XfSCv0Wjx3yi9ehimD1Q= Subject key identifier: BC:26:C3:55:C0:D2:E4:3A:D9:E4:E9:38:41:A0:D0:D4:6A:F8:A6:53 Authority key identifier: 61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 Certificate issuer: /CN=A914F7F0/serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft Manifest number: 38 Signing time: Sat 23 Nov 2024 05:27:52 +0000 Manifest this update: Sat 23 Nov 2024 05:27:51 +0000 Manifest next update: Sat 30 Nov 2024 05:27:51 +0000 Files and hashes: 1: YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl (hash: aBGCpQl41SUtdkjzlLU6avIblWv4xxs25qZQP5Qw4oY=) 2: 9A826D9059D611EF814F004DC4F9AE02.roa (hash: L57EG0Fn/DrFvp2TO2K+O7e/Z9P96vwgKEdxXex5oZ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F7F0/serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Validity Not Before: Nov 23 05:27:51 2024 GMT Not After : Nov 30 05:27:51 2024 GMT Subject: CN=674167d7-d93e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:05:f6:89:9c:0e:bb:78:30:7b:3b:67:85:72: 75:0d:22:37:24:14:9d:cf:67:ae:e0:24:fe:ef:b0: 7b:61:d0:b1:b2:d7:a6:63:31:02:ed:cc:49:79:71: 4e:87:49:f6:bc:cf:37:aa:2c:77:b2:43:4c:38:f3: fe:11:5e:3e:e6:cf:85:71:37:0b:ec:ce:30:6e:06: 8f:58:eb:f8:05:2d:15:62:34:98:ea:16:01:dc:4d: e6:65:b0:1b:48:35:e0:79:2c:26:cb:4f:88:61:72: c3:09:55:de:05:95:d2:6e:1b:82:1e:d9:87:af:2a: fd:0b:cb:22:6c:95:1b:e0:c6:13:ac:7b:91:c4:38: d6:b6:37:dc:d5:42:ca:4d:f1:94:3c:2d:35:c0:8e: 27:59:d7:05:49:14:06:c2:ce:78:71:a9:a7:86:1d: cb:27:f1:f8:a5:7f:d6:76:af:7d:d5:c5:ec:62:2a: 70:11:2e:6f:81:e5:85:da:c6:9c:2e:0c:4d:2e:5e: c9:a7:42:b9:52:cc:b8:88:bb:9f:82:87:b3:c5:2c: ce:0a:90:44:36:23:5f:86:1d:75:ae:24:29:78:15: 7c:17:c6:b5:be:d6:52:d5:6e:6f:a7:c2:90:3a:b7: e1:58:9b:2a:1f:47:01:ac:43:b0:19:51:30:79:35: 59:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:26:C3:55:C0:D2:E4:3A:D9:E4:E9:38:41:A0:D0:D4:6A:F8:A6:53 X509v3 Authority Key Identifier: keyid:61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:90:b9:0d:f0:29:e7:b3:df:9e:06:2c:af:4e:d9:54:01:a8: 1a:fd:14:ad:38:a0:73:df:47:62:93:34:a9:4d:96:50:d3:4d: 8b:29:74:b5:e4:df:fc:ff:56:ed:ac:bf:1f:05:53:93:30:d5: fe:96:96:de:64:eb:45:5a:8e:44:82:9c:b5:78:96:b9:82:7b: 3c:b6:9f:3d:43:9d:c2:3a:23:96:e7:75:eb:c6:1d:97:56:37: 48:66:09:78:1b:7a:54:3b:6b:3f:33:d5:c1:00:8b:fd:ea:16: c3:6d:e6:fe:e2:6c:bc:d3:fc:43:15:80:ef:9f:33:7f:3d:88: 27:93:8c:a5:ed:0a:10:0a:73:9f:74:a9:e0:e2:d9:08:93:f2: dd:5c:9c:b3:02:10:35:53:35:f0:9f:88:f2:94:73:5c:b4:0a: 89:6b:1a:cb:18:c4:be:2a:19:34:39:1f:b5:85:4c:30:98:23: 11:8b:c1:74:e8:e4:a4:ce:e7:bb:fe:34:32:d1:13:d6:dc:1d: 6f:93:02:81:da:af:80:b1:e4:87:cf:99:fd:72:ab:05:91:bc: eb:25:03:52:50:85:bb:59:a2:d5:78:19:c2:90:ab:2c:d3:d6: 1a:4b:c3:92:c7:b4:6e:ef:94:81:9c:1c:46:b5:25:f0:04:9e: f0:ac:e7:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RjdGMDExMC8GA1UEBRMoNjExQ0I1NTZDODdCQzA0OUE1QTQzRUIxRjI5NzEwN0VG RjFCNzk0MDAeFw0yNDExMjMwNTI3NTFaFw0yNDExMzAwNTI3NTFaMBgxFjAUBgNV BAMTDTY3NDE2N2Q3LWQ5M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpBfaJnA67eDB7O2eFcnUNIjckFJ3PZ67gJP7vsHth0LGy16ZjMQLtzEl5cU6H Sfa8zzeqLHeyQ0w48/4RXj7mz4VxNwvszjBuBo9Y6/gFLRViNJjqFgHcTeZlsBtI NeB5LCbLT4hhcsMJVd4FldJuG4Ie2YevKv0LyyJslRvgxhOse5HEONa2N9zVQspN 8ZQ8LTXAjidZ1wVJFAbCznhxqaeGHcsn8filf9Z2r33VxexiKnARLm+B5YXaxpwu DE0uXsmnQrlSzLiIu5+Ch7PFLM4KkEQ2I1+GHXWuJCl4FXwXxrW+1lLVbm+nwpA6 t+FYmyofRwGsQ7AZUTB5NVmjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvCbDVcDS 5DrZ5Ok4QaDQ1Gr4plMwHwYDVR0jBBgwFoAUYRy1Vsh7wEmlpD6x8pcQfv8beUAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGN0YwL0M3NEVCNjlBNTlE NTExRUY4M0QyOEI0QkM0RjlBRTAyL1lSeTFWc2g3d0VtbHBENng4cGNRZnY4YmVV QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVJ5MVZzaDd3RW1scEQ2eDhwY1FmdjhiZVVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRG N0YwL0M3NEVCNjlBNTlENTExRUY4M0QyOEI0QkM0RjlBRTAyL1lSeTFWc2g3d0Vt bHBENng4cGNRZnY4YmVVQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACeQuQ3wKeez354GLK9O2VQBqBr9FK04oHPfR2KTNKlNllDTTYspdLXk 3/z/Vu2svx8FU5Mw1f6Wlt5k60VajkSCnLV4lrmCezy2nz1DncI6I5bndevGHZdW N0hmCXgbelQ7az8z1cEAi/3qFsNt5v7ibLzT/EMVgO+fM389iCeTjKXtChAKc590 qeDi2QiT8t1cnLMCEDVTNfCfiPKUc1y0ColrGssYxL4qGTQ5H7WFTDCYIxGLwXTo 5KTO57v+NDLRE9bcHW+TAoHar4Cx5IfPmf1yqwWRvOslA1JQhbtZotV4GcKQqyzT 1hpLw5LHtG7vlIGcHEa1JfAEnvCs52M= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:24 2024 by rpki-client on console-fra.rpki-client.org