$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft File: ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json) Hash identifier: /2jIYM1ze4J7K7IxN6KCY+zXMmNRUJNj6ytcINxOEDM= Subject key identifier: E7:39:99:95:F1:96:89:80:CC:EC:BE:71:40:3B:06:F8:A4:96:04:5A Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC Certificate issuer: /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Certificate serial: 342E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft Manifest number: 342E Signing time: Fri 22 Nov 2024 14:45:53 +0000 Manifest this update: Fri 22 Nov 2024 14:45:52 +0000 Manifest next update: Fri 29 Nov 2024 14:45:52 +0000 Files and hashes: 1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: iRu4O4b+LYzAvyTh3VnF9ZEWjhI95r/hWqvbvt0ngNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13358 (0x342e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Validity Not Before: Nov 22 14:45:52 2024 GMT Not After : Nov 29 14:45:52 2024 GMT Subject: CN=67409920-920c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9a:22:2d:73:11:fd:1d:8d:51:53:78:f8:3c: 44:d1:d6:3f:e5:d6:01:12:34:bb:94:ae:82:23:a1: a3:93:be:97:67:45:8e:3f:df:a6:d7:b6:2a:67:11: 30:50:6c:7d:37:0a:c6:95:d6:0d:32:c6:8c:28:aa: 6e:f4:64:fc:7f:5b:76:2f:78:7a:c8:99:fb:91:61: 92:fc:10:88:f4:8d:a5:9a:80:a3:d0:73:38:aa:8d: 85:be:8c:f4:79:56:ec:55:79:a8:e8:5e:59:63:da: dc:13:8e:7a:4d:fb:f6:f7:49:11:ba:80:d9:d6:54: b3:92:04:11:cc:80:5e:b3:e4:6c:af:67:a5:da:95: c0:67:38:a8:07:67:af:5b:53:a4:28:bb:67:29:e4: 60:7a:09:bf:d4:63:97:38:4b:6f:c5:a2:05:48:8a: 87:47:a3:cc:66:02:6a:e7:f8:ae:80:e9:dc:4f:48: 31:82:66:ad:46:ff:2d:c5:a4:cb:ea:b7:38:23:dc: 56:ec:b2:f4:bd:f3:c0:86:7d:c1:d4:e6:16:26:dc: 40:7b:d8:09:4e:f6:95:ab:e0:84:ea:fc:1d:5d:3e: d6:20:c2:4d:ea:b5:9a:1f:43:24:2e:0e:63:9c:57: d7:f7:fb:bd:12:e1:35:b6:7f:6b:80:92:dd:c7:0b: 9a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:39:99:95:F1:96:89:80:CC:EC:BE:71:40:3B:06:F8:A4:96:04:5A X509v3 Authority Key Identifier: keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:ed:68:36:2e:08:d6:32:95:25:ab:9e:67:1d:5e:a6:99:3c: 02:89:3f:b4:83:7b:78:d9:4d:25:86:08:70:a3:f8:2a:60:d8: 5c:88:7b:78:31:56:64:23:32:5e:fb:18:e6:27:23:89:17:a2: bb:9e:1f:11:84:02:89:b3:d9:0c:2c:4d:39:0a:0e:45:2c:a0: c7:a5:38:cb:e2:51:7b:84:70:95:83:ad:4c:19:18:79:1b:91: 20:03:6e:3a:94:2d:d4:a2:d0:43:5f:95:6d:a7:a5:ac:85:1f: 61:2e:98:06:e9:61:af:92:87:54:a4:be:70:a4:fe:55:ee:32: 72:1b:bd:52:8c:df:ae:5f:ab:55:ed:58:7e:f7:6c:26:cb:6b: d7:4f:8c:99:28:d8:3a:7b:81:06:09:83:1d:b6:07:55:97:2e: dd:0d:87:81:be:9a:c0:c5:d2:e4:66:7f:6b:71:08:34:b2:54: be:7d:46:11:c3:24:1f:e9:63:74:4c:d5:54:9f:76:f9:14:d8: 01:6d:87:92:5d:94:6b:77:6d:6c:1e:30:d8:56:ee:f1:93:2a: 12:3c:c7:7f:63:71:1c:9f:8e:b0:3a:ea:99:cb:97:2c:bf:c1: 94:59:0d:4c:79:05:9c:ce:52:c2:26:3a:f5:a7:a2:c7:78:82: 98:b7:f1:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk3RTgxMTAvBgNVBAUTKEM5QzI4Rjk5MEI2Mjc0MTJDOTdDMkRDRUM3QzkwNkU2 MUFEMzI1QUMwHhcNMjQxMTIyMTQ0NTUyWhcNMjQxMTI5MTQ0NTUyWjAYMRYwFAYD VQQDEw02NzQwOTkyMC05MjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JoiLXMR/R2NUVN4+DxE0dY/5dYBEjS7lK6CI6Gjk76XZ0WOP9+m17YqZxEw UGx9NwrGldYNMsaMKKpu9GT8f1t2L3h6yJn7kWGS/BCI9I2lmoCj0HM4qo2Fvoz0 eVbsVXmo6F5ZY9rcE456Tfv290kRuoDZ1lSzkgQRzIBes+Rsr2el2pXAZzioB2ev W1OkKLtnKeRgegm/1GOXOEtvxaIFSIqHR6PMZgJq5/iugOncT0gxgmatRv8txaTL 6rc4I9xW7LL0vfPAhn3B1OYWJtxAe9gJTvaVq+CE6vwdXT7WIMJN6rWaH0MkLg5j nFfX9/u9EuE1tn9rgJLdxwuaWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOc5mZXx lomAzOy+cUA7BviklgRaMB8GA1UdIwQYMBaAFMnCj5kLYnQSyXwtzsfJBuYa0yWs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTdFOC83QTBGRTdGQTFE OTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRCTEpmQzNPeDhrRzVoclRK YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljS1BtUXRpZEJMSmZDM094OGtHNWhyVEphdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTdFOC83QTBGRTdGQTFEOTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRC TEpmQzNPeDhrRzVoclRKYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ7Wg2LgjWMpUlq55nHV6mmTwCiT+0g3t42U0lhghwo/gqYNhciHt4 MVZkIzJe+xjmJyOJF6K7nh8RhAKJs9kMLE05Cg5FLKDHpTjL4lF7hHCVg61MGRh5 G5EgA246lC3UotBDX5Vtp6WshR9hLpgG6WGvkodUpL5wpP5V7jJyG71SjN+uX6tV 7Vh+92wmy2vXT4yZKNg6e4EGCYMdtgdVly7dDYeBvprAxdLkZn9rcQg0slS+fUYR wyQf6WN0TNVUn3b5FNgBbYeSXZRrd21sHjDYVu7xkyoSPMd/Y3Ecn46wOuqZy5cs v8GUWQ1MeQWczlLCJjr1p6LHeIKYt/FG -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:20 2024 by rpki-client on console-ams.rpki-client.org