$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft File: _Yje-aa92-pZOJ7cYXGq3KEGtQk.mft (raw, json) Hash identifier: AzAR83tRswOnsgiDgeioiJbcB1CJGrrAnqYdgIDKRBM= Subject key identifier: 09:3C:88:1B:15:5B:8E:E7:67:FF:42:B3:70:8A:8C:59:0D:B3:54:A6 Authority key identifier: FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09 Certificate issuer: /CN=A9172FC5/serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509 Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft Manifest number: 1B Signing time: Mon 13 Jan 2025 05:55:40 +0000 Manifest this update: Mon 13 Jan 2025 05:55:40 +0000 Manifest next update: Mon 20 Jan 2025 05:55:40 +0000 Files and hashes: 1: _Yje-aa92-pZOJ7cYXGq3KEGtQk.crl (hash: b94koCEO8dSNjcCClZCRHCIxySMEwDmmdbWzZFH1tu0=) 2: 2D810A88AB4011EF849D9515C4F9AE02.roa (hash: Y+fJ5KK7IVdhYlyuLVkF2P1TQN/5/+n0ri0WCyCm2Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Jan 2025 05:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5/serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509 Validity Not Before: Jan 13 05:55:40 2025 GMT Not After : Jan 20 05:55:40 2025 GMT Subject: CN=6784aadc-9f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:8d:bc:82:41:0c:29:f8:8c:68:c5:82:93: 55:ce:0f:9c:95:c8:ef:9b:e6:6a:b9:ea:8d:9b:15: 67:97:7c:10:25:6d:56:3b:22:40:2e:05:6c:2f:8f: be:5c:29:48:d0:f1:5c:a2:31:09:ed:c5:f2:a1:97: 69:93:8c:cf:7b:4e:9e:16:5c:5f:91:fd:b7:70:d1: fe:a3:de:8b:e4:f9:bc:07:cc:e3:fd:df:66:9a:78: 8f:fe:2d:5b:ce:3b:f9:d0:6b:b7:9c:a5:ad:7d:15: 52:73:28:a9:2f:69:36:39:cd:e6:f4:a5:0e:64:9a: fb:9f:02:a3:90:02:50:f5:b5:7a:71:22:1f:5c:4b: 95:ed:36:87:48:a3:cc:44:28:df:3b:b1:2b:2e:2e: 50:84:f6:f0:00:b1:a9:60:db:23:d6:79:16:15:11: 61:ef:10:61:61:b3:5a:1a:73:73:43:82:93:5b:b6: d9:ae:50:6d:d3:9a:50:fc:1b:15:9f:79:54:3b:e1: e8:6f:1e:08:0f:4c:9e:44:65:93:20:ba:c5:ce:8a: 81:70:ea:eb:1c:8f:dd:78:8a:2e:dc:06:bd:9c:5f: a8:0e:e3:1d:ac:44:de:22:41:95:51:ef:33:cf:06: 7e:d7:62:64:d9:bc:c5:f4:24:30:80:66:38:16:65: ef:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:3C:88:1B:15:5B:8E:E7:67:FF:42:B3:70:8A:8C:59:0D:B3:54:A6 X509v3 Authority Key Identifier: keyid:FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:14:ed:f1:22:91:63:8f:58:11:02:6c:78:61:28:45:2d:49: a3:e1:84:54:f9:1c:c2:74:80:45:9d:3f:82:fe:7a:84:34:5b: f2:f8:28:61:4d:a5:d1:2d:1e:82:34:36:62:e3:f8:02:33:01: 59:f1:7d:89:14:2a:8a:f9:ac:77:e7:a5:2a:57:21:1d:ef:ce: 84:2d:3c:3e:6d:0d:44:ec:7e:05:e9:1c:c9:82:52:3d:d8:21: c7:14:ed:75:47:3c:8d:63:e7:52:15:0e:07:9d:69:09:cb:5a: 8d:f7:6c:12:c5:12:b6:fe:72:15:ce:5a:11:65:16:cb:e8:7a: 71:18:6a:06:dd:d0:cb:3a:b9:c5:47:dc:6e:c8:d7:a3:e5:78: 5c:7f:cc:b7:eb:74:15:90:97:7c:dc:70:4e:df:b9:72:b8:e4: 97:38:f3:cf:06:1e:9b:e3:b8:5c:2a:b0:25:8d:bc:9a:28:f7: 03:34:72:bd:63:05:fb:08:fe:11:18:47:6c:e1:ab:d8:d8:29: a0:ef:84:bc:c7:c3:c3:72:9c:a8:f8:f3:5a:71:db:7a:36:69: 8c:ac:7d:e9:f5:cc:4d:82:fa:bf:f2:e4:89:54:23:6a:90:fa: 81:5c:9b:7e:0e:70:74:bb:3a:e8:7c:a8:3a:30:79:a1:fc:7c: d0:42:c0:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkZDNTExMC8GA1UEBRMoRkQ4OERFRjlBNkJEREJFQTU5Mzg5RURDNjE3MUFBRENB MTA2QjUwOTAeFw0yNTAxMTMwNTU1NDBaFw0yNTAxMjAwNTU1NDBaMBgxFjAUBgNV BAMTDTY3ODRhYWRjLTlmMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwUo28gkEMKfiMaMWCk1XOD5yVyO+b5mq56o2bFWeXfBAlbVY7IkAuBWwvj75c KUjQ8VyiMQntxfKhl2mTjM97Tp4WXF+R/bdw0f6j3ovk+bwHzOP932aaeI/+LVvO O/nQa7ecpa19FVJzKKkvaTY5zeb0pQ5kmvufAqOQAlD1tXpxIh9cS5XtNodIo8xE KN87sSsuLlCE9vAAsalg2yPWeRYVEWHvEGFhs1oac3NDgpNbttmuUG3TmlD8GxWf eVQ74ehvHggPTJ5EZZMgusXOioFw6uscj914ii7cBr2cX6gO4x2sRN4iQZVR7zPP Bn7XYmTZvMX0JDCAZjgWZe//AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCTyIGxVb judn/0KzcIqMWQ2zVKYwHwYDVR0jBBgwFoAU/Yje+aa92+pZOJ7cYXGq3KEGtQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyRkM1L0VEQUJEMjMwQUIz RjExRUZCRTAyQ0YxNEM0RjlBRTAyL19ZamUtYWE5Mi1wWk9KN2NZWEdxM0tFR3RR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX1lqZS1hYTkyLXBaT0o3Y1lYR3EzS0VHdFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy RkM1L0VEQUJEMjMwQUIzRjExRUZCRTAyQ0YxNEM0RjlBRTAyL19ZamUtYWE5Mi1w Wk9KN2NZWEdxM0tFR3RRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAsU7fEikWOPWBECbHhhKEUtSaPhhFT5HMJ0gEWdP4L+eoQ0W/L4KGFN pdEtHoI0NmLj+AIzAVnxfYkUKor5rHfnpSpXIR3vzoQtPD5tDUTsfgXpHMmCUj3Y IccU7XVHPI1j51IVDgedaQnLWo33bBLFErb+chXOWhFlFsvoenEYagbd0Ms6ucVH 3G7I16PleFx/zLfrdBWQl3zccE7fuXK45Jc4888GHpvjuFwqsCWNvJoo9wM0cr1j BfsI/hEYR2zhq9jYKaDvhLzHw8NynKj481px23o2aYysfen1zE2C+r/y5IlUI2qQ +oFcm34OcHS7Ouh8qDoweaH8fNBCwMI= -----END CERTIFICATE-----Generated at Mon Jan 13 07:52:50 2025 by rpki-client on console-fra.rpki-client.org