$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: q9CuZ92kd807tAhYNgFHqoLFD3rTe+1Ch8OI9oOZHFc= Subject key identifier: F2:83:7F:7D:5F:5F:37:90:9E:B9:D5:B1:CD:96:CA:AF:0B:FC:46:B2 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0A81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 0A69 Signing time: Wed 20 Nov 2024 19:27:25 +0000 Manifest this update: Wed 20 Nov 2024 19:27:25 +0000 Manifest next update: Wed 27 Nov 2024 19:27:25 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: 0YJqehuH4ZjoR6jrkHxIWzN8t+2hOcw27ktw7zQPdcg=) 2: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: b6XLk77YmW0zXiOErVi5OmWJQw5FWv6IwcAZrV/V3KA=) 3: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: GniYTYc+rkB55fqBkTbtJuPpFjVN9/DglrpXWuCGSdc=) 4: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: DBysmfWMy9lYVGepCi0Ma5VGyIIRzRfP58+h2cMR+Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:27:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2689 (0xa81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: Nov 20 19:27:25 2024 GMT Not After : Nov 27 19:27:25 2024 GMT Subject: CN=673e381d-1caa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7f:48:6a:47:73:7f:62:ca:96:10:a6:b0:9d: 0b:e1:9e:86:96:59:1a:1d:48:90:9e:f4:a5:f9:eb: 09:b4:f1:3a:7b:24:e3:57:31:6f:6f:16:3e:cb:10: 25:21:99:39:25:36:e5:a8:5e:50:c5:b5:e0:dc:d5: d1:e8:69:d2:00:f5:24:77:2d:f2:06:3d:15:7f:12: 25:ea:dc:49:47:65:58:df:9c:ac:a0:90:34:54:73: 4a:15:8b:c5:42:d4:b5:65:49:89:9e:e3:ab:26:54: 0b:1b:2a:d5:78:91:8f:8b:af:bd:5f:cf:e6:77:76: 49:94:1a:8f:fa:6d:6f:7d:cf:54:3f:ef:80:ea:3e: ed:4e:d4:bf:c0:06:fd:74:13:f9:f7:43:2c:10:d6: f3:19:56:48:79:23:93:f2:06:ab:64:b7:50:94:30: 1f:7e:87:59:3a:48:8d:e5:dd:d1:b2:b9:75:c8:8d: 7e:46:24:f5:01:0a:cb:e6:76:ed:51:b0:9e:57:c6: 8b:41:92:32:e2:0a:ba:97:c3:88:4a:44:f7:46:3d: 93:bb:4d:60:0a:a4:1e:63:b4:2c:21:c5:e5:90:e9: 0c:00:7a:ce:70:1a:bb:b6:19:c3:3b:2b:89:38:47: 36:10:af:65:0a:19:64:94:d1:71:f7:c4:9c:8e:c6: 46:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:83:7F:7D:5F:5F:37:90:9E:B9:D5:B1:CD:96:CA:AF:0B:FC:46:B2 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:8b:4c:da:7f:76:81:1f:89:61:f6:ab:ad:fc:93:45:79:b9: bb:ce:51:c7:f1:40:29:e3:c3:f4:8c:5f:bd:17:25:db:80:72: e1:fc:a6:04:4e:64:9d:ff:30:3d:53:6e:c4:8b:83:64:82:1b: d1:bb:9d:1a:8f:27:4f:6a:63:ae:e7:ee:22:32:d0:b1:f0:02: 71:04:9c:83:88:7b:e0:81:a7:f8:78:10:df:89:40:65:90:2a: d2:40:15:c7:9a:32:09:cf:72:2d:2d:13:3a:3a:7f:86:5a:45: e1:f2:7b:a5:7f:1c:da:2e:2f:a0:0d:cc:52:2a:e8:99:a9:ca: 2b:2c:2e:5f:2f:ea:5b:2e:ee:c3:cb:22:09:d4:8d:70:c2:3a: eb:37:53:50:9a:7b:f0:c7:4f:eb:6a:9c:a5:fb:8e:4c:15:7a: e9:c9:83:4b:02:25:1b:87:2a:5d:d3:1f:d0:c4:91:26:06:b0: 86:c9:79:f8:7a:f8:10:3d:45:d8:fc:ed:44:64:a0:10:3a:5b: 5a:5c:ac:6e:45:0c:db:9f:77:87:60:11:44:99:ac:39:07:df: 0d:cb:af:79:35:db:6a:cc:70:9b:74:09:8a:f6:0e:fa:fc:7f: 05:14:f9:b0:7e:d7:8b:54:dc:d2:e4:5e:8c:95:54:f4:17:2d: 5d:6e:d6:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjQxMTIwMTkyNzI1WhcNMjQxMTI3MTkyNzI1WjAYMRYwFAYD VQQDEw02NzNlMzgxZC0xY2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn39Iakdzf2LKlhCmsJ0L4Z6GllkaHUiQnvSl+esJtPE6eyTjVzFvbxY+yxAl IZk5JTblqF5QxbXg3NXR6GnSAPUkdy3yBj0VfxIl6txJR2VY35ysoJA0VHNKFYvF QtS1ZUmJnuOrJlQLGyrVeJGPi6+9X8/md3ZJlBqP+m1vfc9UP++A6j7tTtS/wAb9 dBP590MsENbzGVZIeSOT8garZLdQlDAffodZOkiN5d3Rsrl1yI1+RiT1AQrL5nbt UbCeV8aLQZIy4gq6l8OISkT3Rj2Tu01gCqQeY7QsIcXlkOkMAHrOcBq7thnDOyuJ OEc2EK9lChlklNFx98ScjsZG7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKDf31f XzeQnrnVsc2Wyq8L/EayMB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBi0zaf3aBH4lh9qut/JNFebm7zlHH8UAp48P0jF+9FyXbgHLh/KYE TmSd/zA9U27Ei4NkghvRu50ajydPamOu5+4iMtCx8AJxBJyDiHvggaf4eBDfiUBl kCrSQBXHmjIJz3ItLRM6On+GWkXh8nulfxzaLi+gDcxSKuiZqcorLC5fL+pbLu7D yyIJ1I1wwjrrN1NQmnvwx0/rapyl+45MFXrpyYNLAiUbhypd0x/QxJEmBrCGyXn4 evgQPUXY/O1EZKAQOltaXKxuRQzbn3eHYBFEmaw5B98Ny695NdtqzHCbdAmK9g76 /H8FFPmwfteLVNzS5F6MlVT0Fy1dbtbH -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org