$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft File: YeT4YWtiQmYakffQErbNHkCTiQs.mft (raw, json) Hash identifier: /ydJDtx6ANhEMK8uvmrvRlwkLSvuFB0a+D76qnA/yN8= Subject key identifier: 2A:EC:C8:FE:A8:A2:07:AC:8F:8D:6C:06:0E:A2:45:FB:E8:62:F8:BD Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft Manifest number: 80 Signing time: Sat 23 Nov 2024 04:39:59 +0000 Manifest this update: Sat 23 Nov 2024 04:39:58 +0000 Manifest next update: Sat 30 Nov 2024 04:39:58 +0000 Files and hashes: 1: YeT4YWtiQmYakffQErbNHkCTiQs.crl (hash: yRlQePB5qPbrmMvdM+LGGHVIbqq7mRzdf2eC1if7JaI=) 2: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (hash: a7kXfwNeuBzF/aeEMRcbCbD2kj3ZcaqnqO+KkH+rl/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Validity Not Before: Nov 23 04:39:58 2024 GMT Not After : Nov 30 04:39:58 2024 GMT Subject: CN=67415c9e-7306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1b:5b:b8:7c:8e:ba:eb:e6:e8:1a:21:4e:bc: 76:95:eb:fb:c9:05:11:98:5b:c0:59:3c:f2:74:a5: 05:6a:5e:7b:63:af:dc:f5:6d:27:5c:2e:ac:40:91: 6a:9b:31:9d:81:15:37:1c:63:07:5b:af:18:35:b4: 35:65:3d:39:e4:32:4e:8e:59:f1:65:f4:4b:6f:32: 6b:a7:6b:eb:15:c6:43:a6:f2:db:10:63:e5:d5:37: 17:90:35:8b:96:34:92:03:02:8a:ea:81:57:d9:ee: 45:55:09:21:d5:75:fb:9b:0d:b4:9b:bc:12:ff:2c: fc:0c:d1:fb:4e:40:f7:5e:d2:2b:3b:34:a9:1a:10: ed:ff:6b:44:8f:07:c4:59:a6:6d:2a:5f:6a:93:e9: 29:3d:6d:ab:e1:d1:76:8f:94:06:cb:41:d9:b8:eb: ad:12:f7:7c:b1:98:92:d7:24:24:e1:e1:ac:f4:85: ae:1c:bb:29:0a:74:46:b7:23:8b:ea:18:d2:5c:f0: e4:2f:07:94:10:b3:f6:01:9a:32:3a:10:ae:57:c5: 87:d7:25:cd:80:ff:bd:bf:df:3c:c4:41:d3:4d:25: ee:43:f1:52:17:9e:bb:9a:2c:cb:f2:d1:f9:89:46: 66:30:dc:fb:98:01:ae:43:a3:7e:73:ac:76:d8:fa: 66:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:EC:C8:FE:A8:A2:07:AC:8F:8D:6C:06:0E:A2:45:FB:E8:62:F8:BD X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:ec:05:f9:70:50:e9:f5:85:9a:40:89:d2:8a:6b:f8:57:64: 9d:28:d4:f1:d8:dc:4e:0f:b9:d0:48:9d:70:7d:a8:7f:6a:d2: 5b:75:d1:1c:d4:cd:6f:b8:a8:c4:8a:b6:69:37:ba:96:da:04: ba:b8:ea:22:13:68:ae:4b:f9:be:ae:90:18:d0:b7:00:92:a3: 3d:a9:53:07:79:f4:f8:10:79:ef:ba:01:a9:38:0e:4f:b2:93: ce:c9:43:bb:bf:40:5f:d8:40:b3:38:b7:c7:73:b7:83:f8:75: 5e:64:ca:3a:75:24:03:a4:a0:0f:56:e6:74:2f:9f:83:c9:6d: 44:5b:00:4d:09:9b:ff:cc:98:b6:ed:fa:6f:68:bf:62:54:f3: 44:94:21:70:9d:01:18:db:fa:61:8f:07:d1:ef:be:61:1b:b2: c0:ad:ac:b2:4d:08:4c:35:30:eb:c5:6d:5a:54:0b:99:83:05: 84:ad:1b:60:fe:bd:74:f5:d6:51:de:33:c3:41:4f:97:96:36: 08:ac:e3:91:a1:87:ae:ec:52:7c:24:ae:a9:1f:f6:a5:41:81: 14:4b:f6:ec:b5:03:df:98:2d:c3:38:97:7e:d5:fe:37:51:85: 14:f4:c1:a1:bc:38:5e:15:4e:2c:b0:0a:4f:da:8d:b2:a6:e1: f9:29:7b:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA1RDcxMTAvBgNVBAUTKDYxRTRGODYxNkI2MjQyNjYxQTkxRjdEMDEyQjZDRDFF NDA5Mzg5MEIwHhcNMjQxMTIzMDQzOTU4WhcNMjQxMTMwMDQzOTU4WjAYMRYwFAYD VQQDEw02NzQxNWM5ZS03MzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBtbuHyOuuvm6BohTrx2lev7yQURmFvAWTzydKUFal57Y6/c9W0nXC6sQJFq mzGdgRU3HGMHW68YNbQ1ZT055DJOjlnxZfRLbzJrp2vrFcZDpvLbEGPl1TcXkDWL ljSSAwKK6oFX2e5FVQkh1XX7mw20m7wS/yz8DNH7TkD3XtIrOzSpGhDt/2tEjwfE WaZtKl9qk+kpPW2r4dF2j5QGy0HZuOutEvd8sZiS1yQk4eGs9IWuHLspCnRGtyOL 6hjSXPDkLweUELP2AZoyOhCuV8WH1yXNgP+9v988xEHTTSXuQ/FSF567mizL8tH5 iUZmMNz7mAGuQ6N+c6x22PpmlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrsyP6o ogesj41sBg6iRfvoYvi9MB8GA1UdIwQYMBaAFGHk+GFrYkJmGpH30BK2zR5Ak4kL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDVENy8zQjUwRjEzMkU1 N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFtWWFrZmZRRXJiTkhrQ1Rp UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDVENy8zQjUwRjEzMkU1N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFt WWFrZmZRRXJiTkhrQ1RpUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA37AX5cFDp9YWaQInSimv4V2SdKNTx2NxOD7nQSJ1wfah/atJbddEc 1M1vuKjEirZpN7qW2gS6uOoiE2iuS/m+rpAY0LcAkqM9qVMHefT4EHnvugGpOA5P spPOyUO7v0Bf2ECzOLfHc7eD+HVeZMo6dSQDpKAPVuZ0L5+DyW1EWwBNCZv/zJi2 7fpvaL9iVPNElCFwnQEY2/phjwfR775hG7LArayyTQhMNTDrxW1aVAuZgwWErRtg /r109dZR3jPDQU+XljYIrOORoYeu7FJ8JK6pH/alQYEUS/bstQPfmC3DOJd+1f43 UYUU9MGhvDheFU4ssApP2o2ypuH5KXvW -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:08 2024 by rpki-client on console-ams.rpki-client.org