$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: eF8/VYfzasc9CjsnqjswW6mrVOOZv9A010p2/7LJY8c= Subject key identifier: B7:67:FC:FF:B7:C3:DB:B3:CE:77:21:DB:36:EB:74:D6:96:90:84:B7 Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0BC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0BBB Signing time: Fri 22 Nov 2024 18:38:43 +0000 Manifest this update: Fri 22 Nov 2024 18:38:43 +0000 Manifest next update: Fri 29 Nov 2024 18:38:43 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: dl2+TDr00fZt73QULNukVhWJMkMop3UjTMBhmQGcO6s=) 2: A62A1B786E6911EF85E53E66C4F9AE02.roa (hash: L3HTbFeRfnXd8aker4hjWUQjIJnyuV60oQDdUGiSBi8=) 3: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: fi7FEW5PKizqZyT+ody3libBNjg0FtOoMpVnmmBqGT4=) 4: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: /tzJtiKlrc3v7323AOuAnl0ze6HPA5F6z5bM+LQYDFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3016 (0xbc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: Nov 22 18:38:43 2024 GMT Not After : Nov 29 18:38:43 2024 GMT Subject: CN=6740cfb3-dc67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fd:27:b7:48:5b:97:d6:2b:3d:2a:6a:9c:a1: cd:68:fc:29:dc:49:17:ef:26:8f:d4:51:0f:a5:21: a9:39:0d:c6:4d:9a:a7:59:54:aa:14:c8:c8:8d:d7: 2a:cf:27:3d:2f:88:d5:42:07:87:3f:18:ff:2b:a2: c5:00:9c:c2:ba:79:a6:5f:eb:cd:59:e4:41:b8:ce: 55:45:55:0b:3e:82:af:11:60:43:8e:df:0b:3d:16: 55:c3:f3:ee:f1:06:57:da:8b:49:b2:6d:f6:6e:75: 45:06:a3:f1:f3:af:08:c6:93:3f:45:16:74:8e:d5: 52:61:48:93:d5:a1:1f:87:d3:7f:62:ec:cb:ba:8c: 22:d9:41:8f:57:d3:da:44:d4:f1:a0:33:e0:67:f8: bd:c1:f5:46:46:df:34:b9:ea:2f:b1:26:2f:25:bf: f0:f6:4b:ed:b1:5a:d8:e0:54:42:26:bb:fe:7d:38: 91:e7:d3:99:a8:bc:a7:7b:aa:27:d4:65:84:de:99: 89:b0:7e:28:4f:a3:77:88:6a:a9:d4:9d:b0:29:f3: 49:f8:90:9a:57:db:37:39:47:7d:37:58:6c:ff:58: c5:ef:8c:e1:27:96:fa:92:9c:89:da:6d:63:ef:dc: 00:ef:69:e8:b5:12:9f:18:1a:11:8d:fc:6c:fd:56: b0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:67:FC:FF:B7:C3:DB:B3:CE:77:21:DB:36:EB:74:D6:96:90:84:B7 X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:e4:e9:dd:ea:db:02:b8:31:6a:49:85:a5:50:ca:0b:97:9a: 8f:31:91:d9:d0:18:30:b3:33:a5:b2:a4:7e:52:cc:e6:a4:79: ed:2c:7b:d3:7d:fc:42:e5:a2:68:16:19:3f:50:0f:e7:53:6f: e1:bd:93:ae:9f:46:a0:f3:fb:87:96:a2:25:f4:87:64:f1:12: 39:39:68:2e:a1:d3:ee:33:1f:42:e0:d0:37:7f:25:20:f4:71: c6:4e:24:4e:45:47:23:37:16:05:32:dc:7b:6d:bc:bf:a5:4c: 5e:04:5c:ce:19:d3:3e:a4:5e:cc:4a:3a:9a:96:45:d7:e2:28: 48:f7:3c:8f:be:b6:bb:6e:ba:91:0b:ce:a0:87:71:57:2d:da: 26:aa:78:7e:cc:71:33:b6:3b:a3:6d:2f:a6:75:09:0a:50:7c: 11:10:6e:8b:5a:6c:f6:7f:8a:5c:ad:2e:32:31:7b:1f:42:eb: 38:77:e6:1e:e9:8f:3e:69:a9:4c:76:ed:59:7b:5a:7b:e1:5c: bb:46:92:f6:e0:49:f6:f8:8e:3c:88:d7:f8:79:7d:fa:88:2e: 68:48:10:74:81:85:c1:55:55:e8:8d:23:c5:d9:c6:12:f1:2d: a9:92:80:cf:74:1c:0e:7c:ea:20:57:96:2e:48:8a:80:b9:96: 2f:d8:6c:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjQxMTIyMTgzODQzWhcNMjQxMTI5MTgzODQzWjAYMRYwFAYD VQQDEw02NzQwY2ZiMy1kYzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAof0nt0hbl9YrPSpqnKHNaPwp3EkX7yaP1FEPpSGpOQ3GTZqnWVSqFMjIjdcq zyc9L4jVQgeHPxj/K6LFAJzCunmmX+vNWeRBuM5VRVULPoKvEWBDjt8LPRZVw/Pu 8QZX2otJsm32bnVFBqPx868IxpM/RRZ0jtVSYUiT1aEfh9N/YuzLuowi2UGPV9Pa RNTxoDPgZ/i9wfVGRt80ueovsSYvJb/w9kvtsVrY4FRCJrv+fTiR59OZqLyne6on 1GWE3pmJsH4oT6N3iGqp1J2wKfNJ+JCaV9s3OUd9N1hs/1jF74zhJ5b6kpyJ2m1j 79wA72notRKfGBoRjfxs/VawjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdn/P+3 w9uzznch2zbrdNaWkIS3MB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB5Ond6tsCuDFqSYWlUMoLl5qPMZHZ0BgwszOlsqR+UszmpHntLHvT ffxC5aJoFhk/UA/nU2/hvZOun0ag8/uHlqIl9Idk8RI5OWguodPuMx9C4NA3fyUg 9HHGTiRORUcjNxYFMtx7bby/pUxeBFzOGdM+pF7MSjqalkXX4ihI9zyPvra7brqR C86gh3FXLdomqnh+zHEztjujbS+mdQkKUHwREG6LWmz2f4pcrS4yMXsfQus4d+Ye 6Y8+aalMdu1Ze1p74Vy7RpL24En2+I48iNf4eX36iC5oSBB0gYXBVVXojSPF2cYS 8S2pkoDPdBwOfOogV5YuSIqAuZYv2GzF -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org