$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft File: YLrcBCw3e4bA3J7riVEnJc4-IzY.mft (raw, json) Hash identifier: hsCqaFaN0kPVUb1ea8rSfO+jAOiRJJTFH7kSmhFIrT0= Subject key identifier: 7D:F3:10:27:A6:83:92:23:32:A9:3B:38:1A:FA:E9:55:7E:3E:31:64 Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft Manifest number: 0174 Signing time: Thu 21 Nov 2024 02:15:57 +0000 Manifest this update: Thu 21 Nov 2024 02:15:56 +0000 Manifest next update: Thu 28 Nov 2024 02:15:56 +0000 Files and hashes: 1: YLrcBCw3e4bA3J7riVEnJc4-IzY.crl (hash: 1ZwUT9Cq2HUvMPgbbOEpPAqjdGSm3P8MAWDtWhoD6BM=) 2: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (hash: KyJK9T3ePPU2nyDMiWpfHVl65dIpgfxV39oqdgnNreQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: Nov 21 02:15:56 2024 GMT Not After : Nov 28 02:15:56 2024 GMT Subject: CN=673e97dc-cd1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e3:b7:a5:f8:f1:3f:3a:1f:d8:80:66:ac:9a: 47:cd:ad:cd:68:10:09:7d:3a:83:c2:3e:4f:a4:6b: c0:90:57:2e:9f:3a:bc:a6:64:d5:a5:fc:b3:c7:39: b2:54:6e:58:f1:65:18:aa:ac:5f:ac:5d:7c:59:fd: 3f:3f:87:ba:3f:2e:ac:a9:20:41:dd:9e:2b:24:df: 60:a7:a3:28:2d:c8:c2:a9:81:8e:6d:2f:42:0e:18: 14:bd:f2:35:02:cb:7e:83:ce:13:3e:41:ea:c1:71: 40:1e:8e:5c:36:bf:68:94:3e:19:ca:5e:8a:5d:b4: 0c:d5:d1:d8:03:fe:eb:7b:6e:22:ae:93:7b:0b:ba: 5c:8b:45:8e:c1:dc:5a:79:61:bd:21:56:9a:84:cc: 79:20:6a:46:da:9b:19:c9:04:76:be:f0:5c:ea:ae: 21:32:cb:76:30:3f:0e:ed:80:d3:41:49:47:34:b7: cd:48:cc:fc:15:d8:ac:06:6f:af:b1:82:de:66:54: 02:63:70:d0:db:d4:61:85:2e:97:6f:42:2d:1a:f8: 9c:4b:60:1b:f9:91:3e:e5:9d:9f:c6:fa:dd:13:34: fa:73:ed:a6:99:7b:82:a5:92:a7:28:c8:28:56:d5: d0:14:d7:47:8f:a8:cc:1a:8d:23:2c:c3:49:ed:38: 33:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:F3:10:27:A6:83:92:23:32:A9:3B:38:1A:FA:E9:55:7E:3E:31:64 X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:84:49:4e:8e:70:e8:80:e4:58:45:7a:2f:76:33:7f:da:7e: 44:77:d3:37:bf:55:58:0a:85:98:20:2c:f3:57:7e:e6:cb:06: 61:63:bd:70:f3:4e:74:4a:28:5c:43:31:14:b6:5a:48:19:c9: bd:d1:93:76:6e:15:5d:57:a7:bf:3e:5b:56:ad:59:46:ea:af: 24:0c:00:ea:ab:3f:54:51:66:7b:b5:95:61:4d:4f:bf:eb:e0: 54:1d:a1:23:b8:52:52:29:bc:cf:ef:ca:75:3f:57:20:de:b5: 37:5a:ab:9b:af:48:dd:b2:4b:0e:4d:de:2d:98:55:88:ed:75: b6:2f:69:38:1d:84:5e:6b:f2:f4:15:f7:78:55:e5:27:e1:62: 75:5f:f8:49:10:15:cc:d2:60:d8:a7:ee:46:e7:6a:ca:84:e5: b7:8f:4d:1d:5a:ec:88:9b:5b:2c:99:1c:e1:b5:5f:05:b2:a2: ed:99:9a:83:23:26:36:02:8d:3e:6e:9f:ec:8e:32:32:20:97: 5a:31:75:35:b4:db:ad:7c:a6:d2:fd:4c:fd:3d:b8:d4:6c:44: f0:d0:d5:0f:ab:39:c2:ad:5a:4a:5e:95:bd:6e:47:83:e7:b8: 94:a8:ec:81:8f:be:46:a8:91:69:6c:f5:2f:38:2f:75:f2:b3: 6c:98:96:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjQxMTIxMDIxNTU2WhcNMjQxMTI4MDIxNTU2WjAYMRYwFAYD VQQDEw02NzNlOTdkYy1jZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApeO3pfjxPzof2IBmrJpHza3NaBAJfTqDwj5PpGvAkFcunzq8pmTVpfyzxzmy VG5Y8WUYqqxfrF18Wf0/P4e6Py6sqSBB3Z4rJN9gp6MoLcjCqYGObS9CDhgUvfI1 Ast+g84TPkHqwXFAHo5cNr9olD4Zyl6KXbQM1dHYA/7re24irpN7C7pci0WOwdxa eWG9IVaahMx5IGpG2psZyQR2vvBc6q4hMst2MD8O7YDTQUlHNLfNSMz8FdisBm+v sYLeZlQCY3DQ29RhhS6Xb0ItGvicS2Ab+ZE+5Z2fxvrdEzT6c+2mmXuCpZKnKMgo VtXQFNdHj6jMGo0jLMNJ7TgzIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3zECem g5IjMqk7OBr66VV+PjFkMB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8yQzc1RkVDODdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0 YkEzSjdyaVZFbkpjNC1JelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkhElOjnDogORYRXovdjN/2n5Ed9M3v1VYCoWYICzzV37mywZhY71w 8050SihcQzEUtlpIGcm90ZN2bhVdV6e/PltWrVlG6q8kDADqqz9UUWZ7tZVhTU+/ 6+BUHaEjuFJSKbzP78p1P1cg3rU3Wqubr0jdsksOTd4tmFWI7XW2L2k4HYRea/L0 Ffd4VeUn4WJ1X/hJEBXM0mDYp+5G52rKhOW3j00dWuyIm1ssmRzhtV8FsqLtmZqD IyY2Ao0+bp/sjjIyIJdaMXU1tNutfKbS/Uz9PbjUbETw0NUPqznCrVpKXpW9bkeD 57iUqOyBj75GqJFpbPUvOC918rNsmJb7 -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:00 2024 by rpki-client on console-fra.rpki-client.org