$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: 70JgheEsJxdLKsmfZ27KhB+tzyMhGunZPBsVPd6j6eM= Subject key identifier: AB:07:B4:05:6B:3D:3F:B6:E1:AF:05:77:AA:E9:9C:ED:22:78:4D:A4 Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 0175 Signing time: Sat 23 Nov 2024 02:10:08 +0000 Manifest this update: Sat 23 Nov 2024 02:10:08 +0000 Manifest next update: Sat 30 Nov 2024 02:10:08 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: NqHlOj/Me20H530U/6F9YrW1jTRxX1M+UxN0jbKPlkQ=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: kCv4bHKTur2lJoL7asgYL11dC+z1ZsHw44gWQxYmfaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: Nov 23 02:10:08 2024 GMT Not After : Nov 30 02:10:08 2024 GMT Subject: CN=67413980-a545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:60:6d:3f:c6:b5:b0:e7:30:70:fa:11:b6:23: af:cf:34:04:6a:cc:06:0b:5d:58:2e:d2:f5:2d:b4: 7e:62:32:72:7a:fc:f3:ec:2e:9e:29:d1:b7:92:ea: af:9a:b5:42:4d:8d:0b:7c:f6:4e:8f:c6:e3:7a:85: 49:94:9d:ef:d7:6f:ff:a7:cc:0e:c4:2a:ec:73:24: ae:cf:a4:e2:32:df:20:9d:9c:e1:d7:b8:af:33:1d: 0f:f1:5f:46:f4:9c:54:ca:e2:28:d4:86:ec:2c:41: 60:0c:2a:09:78:d9:b3:ef:77:17:7e:32:31:47:27: 4c:be:95:20:22:48:05:2e:08:e4:2f:38:91:d3:fa: 39:f3:f7:a5:ac:89:1f:d9:7a:ce:0f:a8:49:bb:73: 66:0d:86:f5:4c:8d:16:80:4f:7f:c7:f1:3f:2a:db: 81:b3:0a:af:3e:89:a3:5c:6f:34:f4:39:2b:35:e6: ad:b2:3b:03:79:1b:5b:9a:ea:bd:57:1e:60:62:87: f3:c9:58:e5:28:c6:87:3e:ce:eb:73:98:8d:0d:9a: 79:7a:4f:9c:04:08:fe:a9:a0:76:cb:ff:7b:fe:23: 3a:d9:01:75:0c:d0:1a:bd:08:db:85:31:27:d2:25: 23:97:e6:68:4c:75:55:47:2c:9b:2b:cc:c7:d8:0b: ba:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:07:B4:05:6B:3D:3F:B6:E1:AF:05:77:AA:E9:9C:ED:22:78:4D:A4 X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:cc:23:94:b0:a0:74:1b:37:52:ad:5b:39:e9:28:6f:18:fb: d2:a6:e7:bd:ca:3c:83:0a:cb:49:81:31:8e:1c:34:cb:a6:f1: ba:15:7d:5e:93:5d:6d:7a:69:aa:d0:e3:26:3e:31:fe:99:c8: f8:17:1a:07:0d:f0:7b:88:d0:b9:5f:95:6c:a6:a1:bc:f5:06: 4f:ae:ff:87:b4:bc:6c:7e:5c:23:14:37:8b:72:1f:9c:94:9e: 26:ff:08:1e:e5:55:97:ec:cf:6b:90:44:6b:3a:3e:36:1b:35: b3:40:a9:6b:2b:5e:12:9c:65:f5:ca:de:23:b5:00:73:f7:1e: c8:f8:e6:de:ee:87:f6:be:ad:5d:e3:ff:39:eb:51:b6:dc:8a: 85:c4:bb:7f:a2:f9:23:0f:1d:3a:87:85:e3:d3:4d:ea:65:e2: 64:0a:f7:c9:21:86:63:34:99:33:0e:e6:89:f0:bc:2c:79:47: 86:7a:c3:19:77:39:46:22:af:32:af:4f:30:01:ef:cb:7d:28: bf:10:6b:f0:75:5e:a4:95:71:67:49:24:13:88:b9:9c:a9:a2: 04:19:12:ed:56:c8:2f:a1:6b:45:e1:28:db:ba:1a:49:79:42: 30:d6:66:b6:91:c4:a4:70:25:e8:59:6b:99:59:e4:49:ce:1c: 1b:d8:eb:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjQxMTIzMDIxMDA4WhcNMjQxMTMwMDIxMDA4WjAYMRYwFAYD VQQDEw02NzQxMzk4MC1hNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGBtP8a1sOcwcPoRtiOvzzQEaswGC11YLtL1LbR+YjJyevzz7C6eKdG3kuqv mrVCTY0LfPZOj8bjeoVJlJ3v12//p8wOxCrscySuz6TiMt8gnZzh17ivMx0P8V9G 9JxUyuIo1IbsLEFgDCoJeNmz73cXfjIxRydMvpUgIkgFLgjkLziR0/o58/elrIkf 2XrOD6hJu3NmDYb1TI0WgE9/x/E/KtuBswqvPomjXG809DkrNeatsjsDeRtbmuq9 Vx5gYofzyVjlKMaHPs7rc5iNDZp5ek+cBAj+qaB2y/97/iM62QF1DNAavQjbhTEn 0iUjl+ZoTHVVRyybK8zH2Au6mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsHtAVr PT+24a8Fd6rpnO0ieE2kMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTzCOUsKB0GzdSrVs56ShvGPvSpue9yjyDCstJgTGOHDTLpvG6FX1e k11temmq0OMmPjH+mcj4FxoHDfB7iNC5X5VspqG89QZPrv+HtLxsflwjFDeLch+c lJ4m/wge5VWX7M9rkERrOj42GzWzQKlrK14SnGX1yt4jtQBz9x7I+Obe7of2vq1d 4/8561G23IqFxLt/ovkjDx06h4Xj003qZeJkCvfJIYZjNJkzDuaJ8LwseUeGesMZ dzlGIq8yr08wAe/LfSi/EGvwdV6klXFnSSQTiLmcqaIEGRLtVsgvoWtF4SjbuhpJ eUIw1ma2kcSkcCXoWWuZWeRJzhwb2OtV -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:44 2024 by rpki-client on console-ams.rpki-client.org