$ rpki-client -vvf rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft File: YBqj_Udwv8aa8kBvLoDtCOfca0M.mft (raw, json) Hash identifier: ouH9TdSTCjYcLwLfOVTK0g0q9tzbnWJUGmuEwOrrOHc= Subject key identifier: B6:FC:71:FB:41:EE:79:C7:E7:37:5F:C0:ED:71:11:63:37:63:65:E2 Authority key identifier: 60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43 Certificate issuer: /CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft Manifest number: 4D Signing time: Sat 23 Nov 2024 05:13:39 +0000 Manifest this update: Sat 23 Nov 2024 05:13:39 +0000 Manifest next update: Sat 30 Nov 2024 05:13:39 +0000 Files and hashes: 1: YBqj_Udwv8aa8kBvLoDtCOfca0M.crl (hash: NEDJap0d48vE42Y9AYiwIF0cwngD/0R8LpnhpSASLho=) 2: CC8E710C347011EF9F04CE66C4F9AE02.roa (hash: urtUAIwb+zR0u7Kbr6u1BvZ02jJcyaKAix72zb6Od6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43 Validity Not Before: Nov 23 05:13:39 2024 GMT Not After : Nov 30 05:13:39 2024 GMT Subject: CN=67416483-e56c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ed:5d:35:5c:26:97:b0:e3:bc:44:5c:e1:cb: 5e:e3:76:c5:7e:37:43:f4:a4:f3:e8:c1:73:c3:9a: cb:82:85:b5:90:dd:40:77:51:e8:05:97:42:83:71: 6c:af:aa:c1:e6:75:52:54:66:5a:be:ad:50:44:35: c6:94:6c:01:0e:01:4e:ec:f3:a6:02:93:e8:45:f0: 96:57:c8:86:38:14:bf:a8:f3:e9:1b:f6:1d:b8:05: cf:74:96:e7:b5:07:15:3d:53:25:4f:19:c8:91:53: a3:af:d7:8b:da:ab:93:d6:2b:a7:a9:66:69:b4:b8: 1d:9c:f0:57:ba:f6:ec:78:75:e9:cd:24:e5:b6:d1: 51:60:0b:87:c1:fc:9f:00:a1:3c:42:23:af:5b:85: d7:90:4e:b6:54:dd:23:1f:2e:f6:5f:58:5e:53:36: c3:fe:ea:ba:a8:81:43:e3:ed:27:ad:94:d3:c7:af: 86:16:49:79:bb:8f:aa:7f:01:b4:33:4e:fb:53:df: 65:23:07:de:31:35:64:60:75:d1:4d:63:88:7c:23: 0b:e9:2a:f8:c9:16:6c:31:ec:1f:32:65:5b:83:b9: 4a:e5:1f:b4:59:e5:4e:c4:54:86:1e:df:a4:42:39: a5:39:88:31:d0:db:06:24:d4:58:38:ae:ff:f4:28: 86:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:FC:71:FB:41:EE:79:C7:E7:37:5F:C0:ED:71:11:63:37:63:65:E2 X509v3 Authority Key Identifier: keyid:60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:64:8c:35:82:7e:01:58:3e:1d:56:d5:58:c1:c4:99:b3:1e: d0:14:20:8e:88:93:71:d6:58:24:e3:51:e8:00:10:38:71:df: 36:23:b9:39:4e:61:b0:ec:19:f5:73:18:8f:27:cc:2a:45:28: 2d:6b:9b:be:cf:ca:f8:f5:ea:84:53:45:79:a9:c9:5f:88:52: 75:6f:79:ca:63:1f:4c:a7:50:e5:64:88:1a:71:22:d7:2d:cb: f0:5b:03:47:89:2b:c8:3d:45:ac:79:dd:83:1a:8e:a1:09:97: c9:a3:4e:b9:08:42:3f:6a:d4:d3:cb:c8:02:c3:ca:95:ed:42: a5:5c:7f:6e:93:10:88:fb:07:f0:57:b6:df:6e:f5:5a:6c:61: 2f:d4:99:dc:39:c5:30:74:7a:a9:9a:5b:d8:da:b6:3c:98:66: 65:27:fe:c4:56:5d:23:58:f0:46:b3:ec:44:cc:12:56:24:89: d6:5c:82:29:6b:44:47:2e:79:46:ef:a5:e4:66:f0:78:56:b6: d6:5d:b9:5d:26:f7:ea:35:2f:d0:63:9c:4a:da:75:53:9f:ac: f7:66:73:e5:44:31:9e:fa:3a:97:e4:4f:aa:00:c6:e6:55:a6: 75:97:c9:bb:42:36:95:01:56:9d:aa:4c:56:fa:1a:b2:d7:56: 17:a7:39:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTRFMjExMC8GA1UEBRMoNjAxQUEzRkQ0NzcwQkZDNjlBRjI0MDZGMkU4MEVEMDhF N0RDNkI0MzAeFw0yNDExMjMwNTEzMzlaFw0yNDExMzAwNTEzMzlaMBgxFjAUBgNV BAMTDTY3NDE2NDgzLWU1NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDn7V01XCaXsOO8RFzhy17jdsV+N0P0pPPowXPDmsuChbWQ3UB3UegFl0KDcWyv qsHmdVJUZlq+rVBENcaUbAEOAU7s86YCk+hF8JZXyIY4FL+o8+kb9h24Bc90lue1 BxU9UyVPGciRU6Ov14vaq5PWK6epZmm0uB2c8Fe69ux4denNJOW20VFgC4fB/J8A oTxCI69bhdeQTrZU3SMfLvZfWF5TNsP+6rqogUPj7SetlNPHr4YWSXm7j6p/AbQz TvtT32UjB94xNWRgddFNY4h8IwvpKvjJFmwx7B8yZVuDuUrlH7RZ5U7EVIYe36RC OaU5iDHQ2wYk1Fg4rv/0KIa7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtvxx+0Hu ecfnN1/A7XERYzdjZeIwHwYDVR0jBBgwFoAUYBqj/Udwv8aa8kBvLoDtCOfca0Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1NEUyLzczRUJFNkEyMzQ2 RjExRUY5N0NBNzU0NkM0RjlBRTAyL1lCcWpfVWR3djhhYThrQnZMb0R0Q09mY2Ew TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWUJxal9VZHd2OGFhOGtCdkxvRHRDT2ZjYTBNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 NEUyLzczRUJFNkEyMzQ2RjExRUY5N0NBNzU0NkM0RjlBRTAyL1lCcWpfVWR3djhh YThrQnZMb0R0Q09mY2EwTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAxkjDWCfgFYPh1W1VjBxJmzHtAUII6Ik3HWWCTjUegAEDhx3zYjuTlO YbDsGfVzGI8nzCpFKC1rm77Pyvj16oRTRXmpyV+IUnVvecpjH0ynUOVkiBpxItct y/BbA0eJK8g9Rax53YMajqEJl8mjTrkIQj9q1NPLyALDypXtQqVcf26TEIj7B/BX tt9u9VpsYS/Umdw5xTB0eqmaW9jatjyYZmUn/sRWXSNY8Eaz7ETMElYkidZcgilr REcueUbvpeRm8HhWttZduV0m9+o1L9BjnEradVOfrPdmc+VEMZ76OpfkT6oAxuZV pnWXybtCNpUBVp2qTFb6GrLXVhenOWM= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:15 2024 by rpki-client on console-ams.rpki-client.org