$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft File: YCgZkDDJlCoUSqFr-zB450H27CM.mft (raw, json) Hash identifier: dFzlht3I2Ku7+nS00YWQcO/xvaQrgY5lKoAFY/cWQmg= Subject key identifier: 1B:CA:51:4B:BB:DA:20:C8:A0:4A:1B:76:A0:BB:94:DE:55:07:58:01 Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Certificate serial: 09A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft Manifest number: 0995 Signing time: Wed 20 Nov 2024 19:46:09 +0000 Manifest this update: Wed 20 Nov 2024 19:46:08 +0000 Manifest next update: Wed 27 Nov 2024 19:46:08 +0000 Files and hashes: 1: YCgZkDDJlCoUSqFr-zB450H27CM.crl (hash: 6KC7mHHfMMsfvhAVUYwjAWEDuqKH6gC8WDpCQnfd3Z8=) 2: 5D2B0616A9C011EABAAB4624C4F9AE02.roa (hash: yiUTn34nFtRxV5JAhkPGjI3Dqg4FJfadYSzxX54DxmU=) 3: 5C1CF19EA9C011EABAAB4624C4F9AE02.roa (hash: z0HhZvByumG+3blwc24Ax6Cba3C3ly99sGI80bagaU0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2467 (0x9a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Validity Not Before: Nov 20 19:46:08 2024 GMT Not After : Nov 27 19:46:08 2024 GMT Subject: CN=673e3c80-5ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e2:e9:0c:e6:b4:16:02:85:3f:cd:57:fc:a8: 2e:c0:4b:9a:37:c8:52:1a:83:f2:6d:db:e7:01:e0: ca:7b:5f:52:c1:f6:b7:c2:2e:24:97:8b:88:0b:38: 23:69:46:90:01:6b:ac:49:d6:c2:61:9c:25:68:20: 42:47:57:b5:ec:11:1e:87:54:19:c5:e0:36:9b:a9: fe:1f:e1:e0:f2:d2:51:62:16:c7:2d:8d:59:a8:8e: 21:45:b5:bb:b0:c1:ca:01:a8:07:eb:dd:48:40:56: 99:f8:2f:37:86:e6:37:35:99:51:eb:fe:2c:3b:5e: b5:fc:17:52:d2:41:73:15:ee:38:03:8b:5b:2c:4d: 37:c0:d2:64:f7:8b:9e:5a:2e:36:1b:2e:16:6e:2d: 47:b3:34:be:9c:ce:60:96:99:69:2c:6a:5d:ff:40: b9:0c:c9:3d:84:89:ea:50:b4:59:53:17:9f:b6:29: 0a:df:4c:0b:1f:18:28:22:b4:53:5c:14:e6:e3:9b: 60:2d:44:99:32:b5:1b:f4:72:05:16:99:53:4f:ce: ed:f9:d8:c0:60:cd:92:9d:9f:84:8a:9b:34:1d:bc: ed:e3:6d:2f:b1:f9:ae:33:56:c0:8e:48:fb:2f:72: 0d:f6:b1:9a:a6:51:fd:fa:da:6b:f0:92:db:88:4b: d3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:CA:51:4B:BB:DA:20:C8:A0:4A:1B:76:A0:BB:94:DE:55:07:58:01 X509v3 Authority Key Identifier: keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:a0:8a:0f:4b:91:35:af:11:60:ff:25:e6:08:f9:fe:bd:93: 92:e1:40:2a:6a:ab:9d:b1:ef:80:fd:47:af:39:d4:3a:06:42: ef:24:d3:05:e3:56:51:45:e1:da:31:3c:88:97:3e:4d:1a:f3: 38:80:79:47:b8:ec:97:db:8e:3b:49:fb:cf:36:d9:36:10:c7: 52:e3:b8:b4:95:46:bd:64:07:c2:bc:f9:5c:89:23:a7:d1:41: 63:69:65:0c:07:43:db:21:86:ea:74:e2:73:a8:8e:55:69:95: 17:7e:2a:69:8a:ad:67:50:48:cd:f4:62:cc:65:94:49:70:32: a6:3e:6f:d4:db:e8:6f:6d:4a:5f:45:75:58:b8:a2:62:d0:d1: 5b:ec:08:c6:e3:ac:97:4b:88:7d:3a:24:16:c5:ce:ba:05:9d: d7:77:c0:d2:85:f3:1d:81:51:00:22:0f:44:84:19:62:d7:4e: 4b:2c:f7:0e:39:4e:aa:53:8b:93:d1:b1:da:6b:5c:09:be:76: 35:a1:a3:d5:ad:9d:6e:11:ca:bb:fe:01:4e:33:23:fa:74:cc: 49:d4:d3:b0:ad:f4:00:33:74:b6:7a:03:e3:52:de:07:74:51: b8:9c:ab:89:ba:2a:61:91:30:da:94:a7:1a:61:31:92:5a:f5: 82:64:fd:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVENEYxMTAvBgNVBAUTKDYwMjgxOTkwMzBDOTk0MkExNDRBQTE2QkZCMzA3OEU3 NDFGNkVDMjMwHhcNMjQxMTIwMTk0NjA4WhcNMjQxMTI3MTk0NjA4WjAYMRYwFAYD VQQDEw02NzNlM2M4MC01ZGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOLpDOa0FgKFP81X/KguwEuaN8hSGoPybdvnAeDKe19Swfa3wi4kl4uICzgj aUaQAWusSdbCYZwlaCBCR1e17BEeh1QZxeA2m6n+H+Hg8tJRYhbHLY1ZqI4hRbW7 sMHKAagH691IQFaZ+C83huY3NZlR6/4sO161/BdS0kFzFe44A4tbLE03wNJk94ue Wi42Gy4Wbi1HszS+nM5glplpLGpd/0C5DMk9hInqULRZUxeftikK30wLHxgoIrRT XBTm45tgLUSZMrUb9HIFFplTT87t+djAYM2SnZ+Eips0Hbzt420vsfmuM1bAjkj7 L3IN9rGaplH9+tpr8JLbiEvThQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvKUUu7 2iDIoEobdqC7lN5VB1gBMB8GA1UdIwQYMBaAFGAoGZAwyZQqFEqha/sweOdB9uwj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUQ0Ri81ODVGNEQwRTc4 NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxDb1VTcUZyLXpCNDUwSDI3 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZ1prRERKbENvVVNxRnItekI0NTBIMjdDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUQ0Ri81ODVGNEQwRTc4NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxD b1VTcUZyLXpCNDUwSDI3Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzoIoPS5E1rxFg/yXmCPn+vZOS4UAqaqudse+A/UevOdQ6BkLvJNMF 41ZRReHaMTyIlz5NGvM4gHlHuOyX2447SfvPNtk2EMdS47i0lUa9ZAfCvPlciSOn 0UFjaWUMB0PbIYbqdOJzqI5VaZUXfippiq1nUEjN9GLMZZRJcDKmPm/U2+hvbUpf RXVYuKJi0NFb7AjG46yXS4h9OiQWxc66BZ3Xd8DShfMdgVEAIg9EhBli105LLPcO OU6qU4uT0bHaa1wJvnY1oaPVrZ1uEcq7/gFOMyP6dMxJ1NOwrfQAM3S2egPjUt4H dFG4nKuJuiphkTDalKcaYTGSWvWCZP2+ -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:41 2024 by rpki-client on console-fra.rpki-client.org