$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft File: YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json) Hash identifier: HPKPBL765rS/52OSmtQUR6r/WcsbSDGb9jdpv2NW1ZE= Subject key identifier: F1:8D:49:EA:D2:5B:2B:4B:8F:1B:A7:14:54:8F:B8:A8:75:27:76:76 Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E Certificate issuer: /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft Manifest number: 07 Signing time: Thu 21 Nov 2024 06:13:54 +0000 Manifest this update: Thu 21 Nov 2024 06:13:53 +0000 Manifest next update: Thu 28 Nov 2024 06:13:53 +0000 Files and hashes: 1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: mqnTCTtn0B5wafoc8hTgzGm0+z8XS6UcjHmuV8Jj+RI=) 2: 181772049FD811EF8680B438C4F9AE02.roa (hash: kL8m2A2/eVPCA0J/9/iLQOKzk2RiAB33QgbmFjlKwTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Validity Not Before: Nov 21 06:13:53 2024 GMT Not After : Nov 28 06:13:53 2024 GMT Subject: CN=673ecfa1-d050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6d:d5:c8:68:c7:bf:ac:98:9b:4d:c2:73:65: 1f:fc:a9:f6:36:a3:ea:b5:4b:1b:67:4d:40:32:c9: d5:f4:78:41:10:76:8f:ab:09:9b:ae:c3:8a:57:03: 2c:b7:e0:89:15:5f:80:1d:ee:e4:fb:66:2c:2c:bb: e8:57:51:01:f2:8f:5a:15:33:68:3e:de:ef:9d:ef: e6:52:41:36:4e:96:e6:64:5c:e2:3b:4b:ea:91:97: 8e:54:4d:4c:b7:4a:82:cb:55:59:55:54:f5:15:5f: e7:0e:c9:ef:6b:16:98:d9:05:54:bd:b9:27:ae:94: 28:a4:d9:78:e8:60:5e:50:04:b5:a7:38:fb:0d:1b: 72:38:e4:9c:ac:0b:f0:d7:29:48:f0:63:cf:a4:7a: 91:53:a3:e9:ef:22:b9:4a:5d:5b:9a:88:a1:69:f8: b8:5b:e4:c9:bc:e4:fb:75:fe:c0:cf:59:43:e8:5b: 19:ae:fb:11:a9:91:1b:0e:21:8e:e9:0a:9b:ac:b1: d1:fc:77:f4:ef:65:55:40:44:fa:f3:a0:2b:05:67: c0:c9:d2:73:2f:17:8c:4b:e1:00:bf:8b:e9:ac:10: 63:f5:85:fd:74:3b:03:13:8b:2c:5e:4d:00:56:d5: 31:89:4e:b6:70:da:59:90:78:0a:39:60:42:18:f6: 02:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:8D:49:EA:D2:5B:2B:4B:8F:1B:A7:14:54:8F:B8:A8:75:27:76:76 X509v3 Authority Key Identifier: keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:93:67:f1:c8:4b:18:8f:50:b1:ce:6f:d6:e1:1d:b2:eb:9b: a4:fe:eb:78:8b:35:08:90:19:59:15:84:91:d0:53:13:1c:4f: c1:3c:b6:93:22:24:cc:10:71:a6:9f:90:e6:e3:dd:eb:f1:0f: 18:1e:24:8c:97:b3:7f:37:63:48:f6:53:f0:8c:f0:e7:3f:f5: 9d:bb:83:94:50:33:61:44:ae:09:7a:3a:8b:89:d3:b5:06:50: fc:83:8c:ae:91:1f:14:7d:f1:49:00:f2:a7:c2:67:03:6f:ac: e8:45:f4:b3:88:b0:56:60:93:35:1d:24:3d:1a:63:de:1e:69: 8b:64:7d:3c:cf:29:47:60:3c:24:7e:47:c7:a2:27:a5:07:63: 8f:86:d3:a6:2f:db:5f:51:03:b0:32:2a:f8:6e:9a:97:f7:70: 95:1b:ef:e0:f4:b9:a0:c0:36:0d:bc:7e:7a:bc:d3:37:18:1d: 5d:f8:97:42:58:f2:6a:4b:c0:bb:64:68:b7:ec:75:5d:2b:1f: b4:7d:43:ae:e5:d6:1f:90:ec:f1:2e:14:3a:44:81:22:bc:44: 4f:6c:0e:67:50:be:f5:86:59:06:64:8a:f9:22:41:40:7e:2d: 60:ec:d8:05:bd:57:bd:55:ad:90:96:2a:8a:05:fb:55:a2:24: b3:e1:d6:8c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEQzRTExMC8GA1UEBRMoNjA2RUIyOTU4MjU0QUM5OEI2MzM2RUFBNDFBQzgwQjJE Q0IxOUM2RTAeFw0yNDExMjEwNjEzNTNaFw0yNDExMjgwNjEzNTNaMBgxFjAUBgNV BAMTDTY3M2VjZmExLWQwNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHbdXIaMe/rJibTcJzZR/8qfY2o+q1SxtnTUAyydX0eEEQdo+rCZuuw4pXAyy3 4IkVX4Ad7uT7Ziwsu+hXUQHyj1oVM2g+3u+d7+ZSQTZOluZkXOI7S+qRl45UTUy3 SoLLVVlVVPUVX+cOye9rFpjZBVS9uSeulCik2XjoYF5QBLWnOPsNG3I45JysC/DX KUjwY8+kepFTo+nvIrlKXVuaiKFp+Lhb5Mm85Pt1/sDPWUPoWxmu+xGpkRsOIY7p CpussdH8d/TvZVVARPrzoCsFZ8DJ0nMvF4xL4QC/i+msEGP1hf10OwMTiyxeTQBW 1TGJTrZw2lmQeAo5YEIY9gIHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8Y1J6tJb K0uPG6cUVI+4qHUndnYwHwYDVR0jBBgwFoAUYG6ylYJUrJi2M26qQayAstyxnG4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRDNFL0I1REZDOEMwOUZE NzExRUY5RTM4QTgzN0M0RjlBRTAyL1lHNnlsWUpVckppMk0yNnFRYXlBc3R5eG5H NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWUc2eWxZSlVySmkyTTI2cVFheUFzdHl4bkc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RDNFL0I1REZDOEMwOUZENzExRUY5RTM4QTgzN0M0RjlBRTAyL1lHNnlsWUpVckpp Mk0yNnFRYXlBc3R5eG5HNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACWTZ/HISxiPULHOb9bhHbLrm6T+63iLNQiQGVkVhJHQUxMcT8E8tpMi JMwQcaafkObj3evxDxgeJIyXs383Y0j2U/CM8Oc/9Z27g5RQM2FErgl6OouJ07UG UPyDjK6RHxR98UkA8qfCZwNvrOhF9LOIsFZgkzUdJD0aY94eaYtkfTzPKUdgPCR+ R8eiJ6UHY4+G06Yv219RA7AyKvhumpf3cJUb7+D0uaDANg28fnq80zcYHV34l0JY 8mpLwLtkaLfsdV0rH7R9Q67l1h+Q7PEuFDpEgSK8RE9sDmdQvvWGWQZkivkiQUB+ LWDs2AW9V71VrZCWKooF+1WiJLPh1ow= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org