$ rpki-client -vvf rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft File: Ys-2EOllD-PIACvGF7cFck0qAt0.mft (raw, json) Hash identifier: 0jUhfgjkXSISDFmfscZ+Xk2gadDclBPpQRNgWsP00DU= Subject key identifier: 07:00:6A:1E:1E:A1:56:90:82:4B:BC:CC:88:24:AF:BB:45:52:39:D5 Authority key identifier: 62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD Certificate issuer: /CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Certificate serial: 17C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft Manifest number: 17B8 Signing time: Fri 22 Nov 2024 16:33:53 +0000 Manifest this update: Fri 22 Nov 2024 16:33:53 +0000 Manifest next update: Fri 29 Nov 2024 16:33:53 +0000 Files and hashes: 1: Ys-2EOllD-PIACvGF7cFck0qAt0.crl (hash: bFFSnogsbaVu5q8rc7nbYyLYncbmQx0z75TMgvTwP5g=) 2: C1C12662CFC811EB9A5C5879C4F9AE02.roa (hash: YxR/IEAXYjhKk4qyNbFNVRXx2+Bty0U++VTURHi/7GY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6085 (0x17c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Validity Not Before: Nov 22 16:33:53 2024 GMT Not After : Nov 29 16:33:53 2024 GMT Subject: CN=6740b271-f8f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:77:80:e9:64:5c:ea:56:7b:59:da:c1:d6:0c: 6a:c5:93:ce:15:56:6d:22:d8:bf:26:9c:ae:c6:51: 82:fd:1d:b2:6d:fb:a8:dc:93:a3:aa:51:83:3f:9b: fa:89:16:7c:2e:42:b0:23:82:7d:9b:5d:3b:02:8a: fb:f1:a9:2a:8d:95:a8:49:49:a8:ee:15:82:c4:aa: 54:bb:d4:ff:fa:29:cb:25:8f:17:32:87:4e:86:91: 74:d1:eb:e6:60:3c:84:0f:48:81:e3:26:d1:c2:46: 81:10:4b:2d:ea:8d:c7:77:db:c2:4e:64:72:ec:d2: 29:cc:df:d0:b1:4c:f6:70:ed:2a:d5:c5:3f:46:14: 92:9d:8a:d8:f9:f3:21:e0:56:78:81:90:6b:d3:7e: 14:08:0a:92:2a:66:0b:8a:8c:fb:bb:49:a6:04:fa: 4b:30:4f:9b:f4:39:80:97:eb:8b:68:d9:53:bd:f7: c0:6e:15:c0:29:86:89:32:91:6a:7b:e9:89:cf:c7: e5:18:3b:32:ea:85:b2:af:d0:3c:5c:d6:55:c8:38: bf:58:ab:a1:a4:6c:0a:db:56:34:01:ad:0c:b3:39: dc:ea:42:32:c9:97:29:93:31:da:c5:2c:4d:6f:66: 87:46:e0:97:8d:a0:59:4d:d9:ba:18:b8:85:47:48: 47:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:00:6A:1E:1E:A1:56:90:82:4B:BC:CC:88:24:AF:BB:45:52:39:D5 X509v3 Authority Key Identifier: keyid:62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:b7:c4:99:f9:42:a3:a4:70:76:6c:1f:b8:b6:d7:08:ce:e0: 0d:49:56:ea:b1:a3:6d:4a:b9:5c:a0:5b:74:cb:9d:28:25:3c: c8:b0:34:9b:f7:b1:72:be:60:83:49:5f:90:b6:2e:56:51:6c: 3f:54:b1:a8:80:55:71:b1:d7:0c:34:e9:67:d5:a5:35:f8:1d: ec:16:56:40:f1:c7:2e:71:94:af:34:94:f5:91:a8:ab:59:89: 53:5b:7d:37:b0:47:43:27:d1:0f:08:bd:f2:63:76:88:12:bd: d6:01:5e:7b:5d:c3:4b:c8:0a:8b:46:d6:83:f0:2b:ca:e3:a8: aa:06:3c:4e:09:e9:e5:66:17:85:91:7f:12:d9:f1:4f:6d:19: ef:ac:d0:46:5f:d0:0d:37:e4:ac:9b:65:82:70:52:83:11:87: 45:ca:52:fe:ea:62:e6:f8:25:5a:5c:e7:cf:28:15:a6:bf:1f: 2c:06:2e:de:04:18:4c:14:41:df:b8:0c:20:f1:b3:1c:e8:8b: 27:2b:ab:12:f7:af:c4:c1:8f:99:35:74:5b:de:c6:83:18:16: 41:fb:1c:91:e7:6d:f0:db:46:4d:88:66:4d:30:32:68:59:d1: 5b:6a:61:67:0c:df:bd:a1:d1:47:43:d2:ae:ab:40:7d:af:06: f4:41:dc:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxQjExMTAvBgNVBAUTKDYyQ0ZCNjEwRTk2NTBGRTNDODAwMkJDNjE3QjcwNTcy NEQyQTAyREQwHhcNMjQxMTIyMTYzMzUzWhcNMjQxMTI5MTYzMzUzWjAYMRYwFAYD VQQDEw02NzQwYjI3MS1mOGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkXeA6WRc6lZ7WdrB1gxqxZPOFVZtIti/JpyuxlGC/R2ybfuo3JOjqlGDP5v6 iRZ8LkKwI4J9m107Aor78akqjZWoSUmo7hWCxKpUu9T/+inLJY8XModOhpF00evm YDyED0iB4ybRwkaBEEst6o3Hd9vCTmRy7NIpzN/QsUz2cO0q1cU/RhSSnYrY+fMh 4FZ4gZBr034UCAqSKmYLioz7u0mmBPpLME+b9DmAl+uLaNlTvffAbhXAKYaJMpFq e+mJz8flGDsy6oWyr9A8XNZVyDi/WKuhpGwK21Y0Aa0Msznc6kIyyZcpkzHaxSxN b2aHRuCXjaBZTdm6GLiFR0hH6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcAah4e oVaQgku8zIgkr7tFUjnVMB8GA1UdIwQYMBaAFGLPthDpZQ/jyAArxhe3BXJNKgLd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjFCMS9BMEYwQURGMEIy NTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQtUElBQ3ZHRjdjRmNrMHFB dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzLTJFT2xsRC1QSUFDdkdGN2NGY2swcUF0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjFCMS9BMEYwQURGMEIyNTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQt UElBQ3ZHRjdjRmNrMHFBdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5t8SZ+UKjpHB2bB+4ttcIzuANSVbqsaNtSrlcoFt0y50oJTzIsDSb 97FyvmCDSV+Qti5WUWw/VLGogFVxsdcMNOln1aU1+B3sFlZA8ccucZSvNJT1kair WYlTW303sEdDJ9EPCL3yY3aIEr3WAV57XcNLyAqLRtaD8CvK46iqBjxOCenlZheF kX8S2fFPbRnvrNBGX9ANN+Ssm2WCcFKDEYdFylL+6mLm+CVaXOfPKBWmvx8sBi7e BBhMFEHfuAwg8bMc6IsnK6sS96/EwY+ZNXRb3saDGBZB+xyR523w20ZNiGZNMDJo WdFbamFnDN+9odFHQ9Kuq0B9rwb0QdwQ -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:50 2024 by rpki-client on console-fra.rpki-client.org