$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft File: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft (raw, json) Hash identifier: LybZ4tl9zS1jx/ZTJiwYxoJQFjnsqQrBH/0bPSALO2U= Subject key identifier: 25:96:2D:5C:75:21:0F:CC:B9:BF:A9:FC:B1:F6:66:3D:B4:0A:EA:1D Authority key identifier: ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 Certificate issuer: /CN=A9152787/serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft Manifest number: 13 Signing time: Sat 23 Nov 2024 05:57:33 +0000 Manifest this update: Sat 23 Nov 2024 05:57:32 +0000 Manifest next update: Sat 30 Nov 2024 05:57:32 +0000 Files and hashes: 1: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl (hash: 2cpV4ceiN7gzZZHt70GBEVZ4h+N4pPL0WaigqqPvb3s=) 2: 45D37CC28F8111EFB699FB63C4F9AE02.roa (hash: 559cCrhl2gmU3vGuvWQWRr1GfQBHKWRfQIAknTBhv8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787/serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Validity Not Before: Nov 23 05:57:32 2024 GMT Not After : Nov 30 05:57:32 2024 GMT Subject: CN=67416ecc-17e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fd:58:54:ac:d9:86:3a:67:0e:0b:76:5e:82: 45:dc:73:2c:60:46:f1:a8:e8:18:8b:c7:22:3d:f8: ba:e3:2f:44:8d:fa:ef:07:87:50:db:a1:be:55:50: 51:c4:15:b6:69:94:53:0c:39:a1:0a:ef:73:af:9c: ea:7d:56:76:6e:33:d2:01:9c:0a:22:b2:20:44:33: 5b:ed:6b:54:0c:5d:eb:54:11:b8:19:1c:bd:f2:ec: b1:13:c4:64:06:d8:60:2f:8e:53:54:04:7d:f4:25: 6f:05:c3:fc:8b:3b:83:55:c1:9d:8e:72:20:f7:ee: fc:ad:25:0c:28:15:0c:22:b7:70:a9:ad:a9:08:55: e8:9e:43:dc:51:64:98:91:a4:91:50:48:9d:45:a8: 93:80:45:41:4f:85:5e:69:c2:5f:e7:eb:a6:e1:9d: cc:00:ed:e8:0b:4f:0f:96:fb:21:28:eb:e6:17:c8: fc:e4:53:be:57:3d:2b:fc:ce:8e:d8:0b:7b:c5:8c: d6:28:2f:8c:a5:91:91:06:eb:ac:93:3e:21:4e:f3: e4:a0:c9:90:59:09:ea:92:59:b0:2c:cc:7b:c3:5e: f1:8b:0c:7b:4b:93:2c:4f:38:65:dc:75:3b:87:77: 81:85:96:80:a7:54:c5:98:d5:31:d9:28:70:e6:1a: e4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:96:2D:5C:75:21:0F:CC:B9:BF:A9:FC:B1:F6:66:3D:B4:0A:EA:1D X509v3 Authority Key Identifier: keyid:ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:37:0d:06:f4:67:2a:ce:6b:a6:44:73:7f:f7:38:d8:06:70: 88:37:ba:f6:3d:53:bd:6b:5c:44:0f:32:99:82:66:ba:70:3c: c0:d4:b4:ca:4f:b0:6a:fc:e5:6e:04:5e:09:c7:6a:fc:69:be: cb:c9:37:32:49:cf:cc:a6:e1:09:b3:88:6e:55:40:07:2b:5f: d2:bf:70:c2:f4:90:56:3a:0d:54:7a:49:ed:91:7a:89:8c:85: 41:97:31:44:63:37:26:e7:76:91:89:96:85:a0:98:33:4f:7f: f9:af:f6:c2:06:15:87:15:02:7e:29:77:1a:50:10:25:ad:6a: d3:c7:e5:ee:80:e4:59:11:1e:2e:72:75:01:ab:c3:f6:22:c9: f6:7f:96:40:d5:e7:45:76:c9:6b:49:2a:5e:5a:1f:3d:36:09: c4:3e:df:c9:1c:1a:04:9c:52:20:a7:0b:b3:71:94:01:91:c6: 99:57:af:7d:cf:fc:fa:e6:ac:12:56:4f:21:d4:f8:fe:fc:f6: 12:17:27:9d:f9:af:9e:dc:6a:a7:1d:b8:27:75:21:d1:0e:fd: 56:f1:cf:41:5d:4f:7e:0a:b7:4b:8c:d5:d4:57:90:83:51:4f: 1a:69:32:c7:f4:4b:0c:da:21:fb:09:9f:6f:ee:5d:69:7d:28: a4:01:af:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mjc4NzExMC8GA1UEBRMoRUQ4MkEyRkQ3REUxNDc1MjdDRkNDNDI0N0EyNTZDMUEw RURCNEVEMzAeFw0yNDExMjMwNTU3MzJaFw0yNDExMzAwNTU3MzJaMBgxFjAUBgNV BAMTDTY3NDE2ZWNjLTE3ZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4/VhUrNmGOmcOC3ZegkXccyxgRvGo6BiLxyI9+LrjL0SN+u8Hh1Dbob5VUFHE FbZplFMMOaEK73OvnOp9VnZuM9IBnAoisiBEM1vta1QMXetUEbgZHL3y7LETxGQG 2GAvjlNUBH30JW8Fw/yLO4NVwZ2OciD37vytJQwoFQwit3CprakIVeieQ9xRZJiR pJFQSJ1FqJOARUFPhV5pwl/n66bhncwA7egLTw+W+yEo6+YXyPzkU75XPSv8zo7Y C3vFjNYoL4ylkZEG66yTPiFO8+SgyZBZCeqSWbAszHvDXvGLDHtLkyxPOGXcdTuH d4GFloCnVMWY1THZKHDmGuRLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJZYtXHUh D8y5v6n8sfZmPbQK6h0wHwYDVR0jBBgwFoAU7YKi/X3hR1J8/MQkeiVsGg7bTtMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyNzg3LzJCMUM0N0ZFOEY3 OTExRUY5MkFDNzgxRUM0RjlBRTAyLzdZS2lfWDNoUjFKOF9NUWtlaVZzR2c3YlR0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1lLaV9YM2hSMUo4X01Ra2VpVnNHZzdiVHRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy Nzg3LzJCMUM0N0ZFOEY3OTExRUY5MkFDNzgxRUM0RjlBRTAyLzdZS2lfWDNoUjFK OF9NUWtlaVZzR2c3YlR0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFM3DQb0ZyrOa6ZEc3/3ONgGcIg3uvY9U71rXEQPMpmCZrpwPMDUtMpP sGr85W4EXgnHavxpvsvJNzJJz8ym4QmziG5VQAcrX9K/cML0kFY6DVR6Se2ReomM hUGXMURjNybndpGJloWgmDNPf/mv9sIGFYcVAn4pdxpQECWtatPH5e6A5FkRHi5y dQGrw/YiyfZ/lkDV50V2yWtJKl5aHz02CcQ+38kcGgScUiCnC7NxlAGRxplXr33P /PrmrBJWTyHU+P789hIXJ535r57caqcduCd1IdEO/Vbxz0FdT34Kt0uM1dRXkINR TxppMsf0SwzaIfsJn2/uXWl9KKQBr6k= -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:30 2024 by rpki-client on console-fra.rpki-client.org