$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: 6T4XURFIhWBZxSEAJiBwQdF8zba6d/4s93W514p0hwI= Subject key identifier: 05:DD:1F:56:AC:6C:67:69:4A:2C:3E:9E:01:1C:EC:C7:8B:59:D2:C5 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 07C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 07B5 Signing time: Fri 22 Nov 2024 20:45:27 +0000 Manifest this update: Fri 22 Nov 2024 20:45:26 +0000 Manifest next update: Fri 29 Nov 2024 20:45:26 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: I6CEXarD4W5Qge7HUY+Wm77ZmxDf3nMKOK5XaRjhJG4=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: hwrYZn+i2OUNCmUoK3ena1siLJOV1HVO2m5EjPVb3kw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1986 (0x7c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Nov 22 20:45:26 2024 GMT Not After : Nov 29 20:45:26 2024 GMT Subject: CN=6740ed67-68af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b7:d7:34:23:96:fc:ec:e7:88:c1:99:41:7a: 3a:17:cb:d8:b7:e6:9e:03:07:26:21:6b:91:9c:d1: 3e:68:fb:17:76:0a:31:73:b5:51:8d:91:4a:52:af: f7:f6:38:b5:e8:70:8b:f3:a6:2d:d3:9b:ea:a4:7f: 53:ac:70:17:dd:be:56:c5:12:2e:62:62:fb:14:9a: 67:b9:40:2d:ac:ca:e4:72:27:5b:18:98:da:16:08: 77:8b:8d:54:7b:1a:97:47:b6:d5:41:33:af:61:cd: 23:03:fd:b7:95:ae:21:d6:4a:3a:94:54:8d:43:39: b2:f9:4d:9f:b5:27:7a:4b:cf:33:25:18:b5:fd:d2: 02:f9:49:6c:e8:a4:b5:9b:b8:0e:33:c5:fb:e1:e9: 5f:12:b8:41:fb:ae:d0:ca:39:b4:64:66:b5:16:70: 36:37:93:56:ae:28:02:4d:a2:45:66:51:8b:45:e6: d3:22:1d:c5:21:7a:32:01:73:d4:54:28:cb:76:d6: 81:f3:c1:38:c3:11:c5:95:e1:2f:ab:79:9e:93:96: 12:af:f5:f2:7e:92:14:8b:36:80:d4:80:18:8b:be: d5:a9:0f:1f:dd:45:79:8b:ea:78:45:64:89:a2:cb: 5d:e6:22:5a:e4:bb:78:b3:b2:a1:40:87:86:52:70: 62:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:DD:1F:56:AC:6C:67:69:4A:2C:3E:9E:01:1C:EC:C7:8B:59:D2:C5 X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ea:43:c3:61:79:5f:b1:01:19:2f:31:b7:65:0b:39:ab:f2: 4f:3d:86:8f:df:e7:b8:ec:0d:5b:33:2a:59:02:32:63:e9:c0: 60:84:6e:e4:ae:98:86:ba:38:73:02:e3:4c:31:23:f6:99:fb: fc:43:98:51:5a:6e:55:81:0c:2d:b2:df:36:5e:77:e4:53:d0: f9:9f:a0:a7:b7:5a:4b:3d:69:1e:75:3c:6b:2e:23:e8:47:cd: 62:7d:92:8e:28:c9:16:b6:5e:35:1f:fb:1f:2e:78:36:e4:0d: 1f:de:47:fd:35:4e:7f:f1:38:8c:bd:f2:5d:18:f9:6c:75:3b: b5:a6:04:27:0d:89:98:ce:90:72:c7:aa:a3:73:75:d6:17:fc: 31:aa:54:75:ef:80:25:62:fd:4e:ae:9e:fc:7d:8a:a8:da:af: 81:e2:e2:40:da:1d:b6:a5:ed:11:bb:c2:87:cf:6c:8e:b7:5b: dd:66:da:7b:86:a2:3a:ff:6b:76:80:72:1a:c4:1c:58:60:c9: 3b:4d:fa:af:ba:ff:87:41:79:f0:ec:0f:34:76:ac:bd:a1:8f: 10:a6:9d:3e:75:b9:24:9c:21:15:11:79:1e:48:04:26:71:01: 11:f0:73:1e:10:9c:8f:a4:d7:5d:b6:d1:6f:c2:62:d3:bd:7e: 8b:2b:06:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjQxMTIyMjA0NTI2WhcNMjQxMTI5MjA0NTI2WjAYMRYwFAYD VQQDEw02NzQwZWQ2Ny02OGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAorfXNCOW/OzniMGZQXo6F8vYt+aeAwcmIWuRnNE+aPsXdgoxc7VRjZFKUq/3 9ji16HCL86Yt05vqpH9TrHAX3b5WxRIuYmL7FJpnuUAtrMrkcidbGJjaFgh3i41U exqXR7bVQTOvYc0jA/23la4h1ko6lFSNQzmy+U2ftSd6S88zJRi1/dIC+Uls6KS1 m7gOM8X74elfErhB+67Qyjm0ZGa1FnA2N5NWrigCTaJFZlGLRebTIh3FIXoyAXPU VCjLdtaB88E4wxHFleEvq3mek5YSr/XyfpIUizaA1IAYi77VqQ8f3UV5i+p4RWSJ ostd5iJa5Lt4s7KhQIeGUnBipwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXdH1as bGdpSiw+ngEc7MeLWdLFMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw6kPDYXlfsQEZLzG3ZQs5q/JPPYaP3+e47A1bMypZAjJj6cBghG7k rpiGujhzAuNMMSP2mfv8Q5hRWm5VgQwtst82XnfkU9D5n6Cnt1pLPWkedTxrLiPo R81ifZKOKMkWtl41H/sfLng25A0f3kf9NU5/8TiMvfJdGPlsdTu1pgQnDYmYzpBy x6qjc3XWF/wxqlR174AlYv1Orp78fYqo2q+B4uJA2h22pe0Ru8KHz2yOt1vdZtp7 hqI6/2t2gHIaxBxYYMk7Tfqvuv+HQXnw7A80dqy9oY8Qpp0+dbkknCEVEXkeSAQm cQER8HMeEJyPpNddttFvwmLTvX6LKwbt -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:27 2024 by rpki-client on console-ams.rpki-client.org