$ rpki-client -vvf rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft File: YBqj_Udwv8aa8kBvLoDtCOfca0M.mft (raw, json) Hash identifier: udJUknSAlsRtf1Zzv7rJcE9R2Mq8l+1MV0NnUTixEdg= Subject key identifier: C4:8E:66:36:D8:29:C1:D4:F8:DF:EF:35:97:79:98:73:04:41:64:5F Authority key identifier: 60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43 Certificate issuer: /CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43 Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft Manifest number: 43 Signing time: Sun 03 Nov 2024 05:16:56 +0000 Manifest this update: Sun 03 Nov 2024 05:16:56 +0000 Manifest next update: Sun 10 Nov 2024 05:16:56 +0000 Files and hashes: 1: YBqj_Udwv8aa8kBvLoDtCOfca0M.crl (hash: uwfrN1GwaS6mfNqD/cpq60khd4muBQXpz5a2KgeTYo4=) 2: CC8E710C347011EF9F04CE66C4F9AE02.roa (hash: urtUAIwb+zR0u7Kbr6u1BvZ02jJcyaKAix72zb6Od6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43 Validity Not Before: Nov 3 05:16:56 2024 GMT Not After : Nov 10 05:16:56 2024 GMT Subject: CN=67270748-dbf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d6:35:04:c8:39:1a:0a:4c:c7:39:57:3c:e7: 8f:88:53:ec:29:51:ae:72:5e:d8:aa:91:32:c7:87: 20:7f:2c:8b:af:b5:ee:71:4f:3f:fc:b5:43:cd:20: 57:94:c8:37:63:bc:9e:38:17:f5:4a:30:df:85:10: 4c:05:e3:e4:23:c3:be:d5:fc:64:43:5d:5f:b8:7d: d9:9b:60:26:3f:fd:0d:68:bf:42:97:a7:75:0a:56: 92:db:bb:c4:0b:68:d4:a1:a7:2d:64:fe:ba:9f:9b: eb:3e:7c:99:9d:28:91:43:0a:71:47:0a:52:55:bb: 14:ea:86:12:7b:da:fc:aa:07:44:43:f5:53:5d:1b: 81:08:1f:74:7d:5f:e1:8c:57:83:2a:11:62:38:7d: db:7d:cf:9d:ce:a1:1c:0e:da:87:37:1d:b1:27:02: 5b:d1:82:9d:2f:ed:46:f6:45:68:fc:76:73:68:5b: 4c:4d:e4:b1:84:61:f7:18:2c:7a:5d:a5:6f:7e:71: 57:67:c8:fb:6d:28:ea:6c:c0:28:c4:72:9a:13:eb: ff:08:a2:93:82:18:49:00:17:1d:2f:39:2c:b3:6e: 52:4f:7e:82:e9:b4:3b:12:38:fe:6a:d0:71:88:c8: af:70:ef:a7:56:2f:05:56:54:8b:1e:fd:85:b1:7e: 8c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:8E:66:36:D8:29:C1:D4:F8:DF:EF:35:97:79:98:73:04:41:64:5F X509v3 Authority Key Identifier: keyid:60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:aa:07:6c:f8:b5:05:29:31:22:ee:05:10:6a:a5:dc:d0:6b: 6d:dc:a1:63:1e:d1:21:60:01:64:01:6c:b9:36:cf:af:eb:01: f9:9c:dc:71:e9:41:71:69:6a:20:91:57:b2:d7:d4:94:b0:9f: 71:95:45:68:80:e4:a8:78:97:0e:d9:60:c7:41:2f:62:42:ed: 41:b6:e8:3a:eb:31:77:d9:eb:fe:81:0b:57:4a:a6:b3:46:ca: 49:32:34:3b:76:b8:fc:01:09:3b:20:73:9c:93:db:73:ad:f1: 0f:55:04:a9:90:a6:fc:c3:7d:f4:b5:db:11:96:0c:1a:0e:63: 15:87:a6:3b:4b:dd:71:5b:5b:ae:8d:32:d2:8b:21:b0:46:02: c6:86:7c:65:47:71:23:fc:f0:9e:bb:be:55:e7:3f:ea:52:79: bb:2e:bb:84:7a:c1:6e:72:97:e9:fe:be:45:ee:9e:dd:9f:07: 8e:3a:e5:d1:2e:4e:3a:a2:a6:a9:f5:c4:82:1e:9c:6b:ba:4d: 7d:78:a1:57:34:c7:8e:69:b7:00:2d:4c:dd:4a:07:5b:e3:48: 5a:3a:85:83:36:95:59:49:33:c6:6d:36:8c:c7:4f:a6:58:db: cf:cb:26:1a:4f:3e:43:c6:af:e8:40:78:99:24:49:1e:3f:74: 9a:04:aa:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTRFMjExMC8GA1UEBRMoNjAxQUEzRkQ0NzcwQkZDNjlBRjI0MDZGMkU4MEVEMDhF N0RDNkI0MzAeFw0yNDExMDMwNTE2NTZaFw0yNDExMTAwNTE2NTZaMBgxFjAUBgNV BAMTDTY3MjcwNzQ4LWRiZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC1jUEyDkaCkzHOVc854+IU+wpUa5yXtiqkTLHhyB/LIuvte5xTz/8tUPNIFeU yDdjvJ44F/VKMN+FEEwF4+Qjw77V/GRDXV+4fdmbYCY//Q1ov0KXp3UKVpLbu8QL aNShpy1k/rqfm+s+fJmdKJFDCnFHClJVuxTqhhJ72vyqB0RD9VNdG4EIH3R9X+GM V4MqEWI4fdt9z53OoRwO2oc3HbEnAlvRgp0v7Ub2RWj8dnNoW0xN5LGEYfcYLHpd pW9+cVdnyPttKOpswCjEcpoT6/8IopOCGEkAFx0vOSyzblJPfoLptDsSOP5q0HGI yK9w76dWLwVWVIse/YWxfoyhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxI5mNtgp wdT43+81l3mYcwRBZF8wHwYDVR0jBBgwFoAUYBqj/Udwv8aa8kBvLoDtCOfca0Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1NEUyLzczRUJFNkEyMzQ2 RjExRUY5N0NBNzU0NkM0RjlBRTAyL1lCcWpfVWR3djhhYThrQnZMb0R0Q09mY2Ew TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWUJxal9VZHd2OGFhOGtCdkxvRHRDT2ZjYTBNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 NEUyLzczRUJFNkEyMzQ2RjExRUY5N0NBNzU0NkM0RjlBRTAyL1lCcWpfVWR3djhh YThrQnZMb0R0Q09mY2EwTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJeqB2z4tQUpMSLuBRBqpdzQa23coWMe0SFgAWQBbLk2z6/rAfmc3HHp QXFpaiCRV7LX1JSwn3GVRWiA5Kh4lw7ZYMdBL2JC7UG26DrrMXfZ6/6BC1dKprNG ykkyNDt2uPwBCTsgc5yT23Ot8Q9VBKmQpvzDffS12xGWDBoOYxWHpjtL3XFbW66N MtKLIbBGAsaGfGVHcSP88J67vlXnP+pSebsuu4R6wW5yl+n+vkXunt2fB4465dEu Tjqipqn1xIIenGu6TX14oVc0x45ptwAtTN1KB1vjSFo6hYM2lVlJM8ZtNozHT6ZY 28/LJhpPPkPGr+hAeJkkSR4/dJoEqhg= -----END CERTIFICATE-----Generated at Sun Nov 3 06:07:42 2024 by rpki-client on console-fra.rpki-client.org