$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft File: YN1l7H9y62x9qLk3BuLTug8GW_w.mft (raw, json) Hash identifier: B2YS+/s1zCyDNKpwG/ZIZtoafxP/jicEEwC8ZvLxG6E= Subject key identifier: EF:29:EF:5D:BF:F4:53:8A:31:F5:39:D5:04:31:18:E0:10:43:42:FC Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 1A03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft Manifest number: 19F6 Signing time: Fri 22 Nov 2024 16:22:41 +0000 Manifest this update: Fri 22 Nov 2024 16:22:40 +0000 Manifest next update: Fri 29 Nov 2024 16:22:40 +0000 Files and hashes: 1: YN1l7H9y62x9qLk3BuLTug8GW_w.crl (hash: lTfPfUxKjGh8Z4+7DDAdKBhocpbUk85KKFECC1oyakM=) 2: D75BE71A410511E7970A2A5FC4F9AE02.roa (hash: bo/SZs4FQGVCgHbfJ/qOcN+amQtsXWeV9LBgPktlbik=) 3: 91CB97905BD211EBA9178181C4F9AE02.roa (hash: XfRW9hpvnBY9LTBMASrvKe5ewyj8spWmKtOVyqPmD0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6659 (0x1a03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: Nov 22 16:22:40 2024 GMT Not After : Nov 29 16:22:40 2024 GMT Subject: CN=6740afd1-4b8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:42:31:8c:1f:6a:86:ef:d7:ee:c6:60:57:6d: 6a:42:80:76:26:cd:63:1f:20:7b:98:f6:71:7e:8c: a2:fd:b7:06:0c:3f:0c:bd:74:09:ec:53:22:7a:d0: d1:72:76:09:7b:ab:81:55:a1:7c:4f:f8:9f:cd:5a: 26:b5:4d:ed:e9:17:0d:eb:0e:b4:c3:00:38:a1:e9: cd:23:ad:a6:a1:78:a1:65:56:22:65:df:7c:b0:15: 09:10:d6:88:a3:84:84:3c:ec:43:e3:ea:3c:a3:f2: 94:18:fc:90:52:8c:45:bd:c4:a2:93:cb:6d:73:06: da:57:ff:07:ee:d8:79:54:db:79:28:9b:4f:85:b1: ec:f2:50:5c:ac:e4:5c:5f:55:7d:3f:c4:02:24:24: 2e:af:73:f2:21:8d:c9:5c:6d:f7:32:b7:80:c8:4a: a1:9d:4f:98:38:69:b2:a2:2c:3e:43:69:2c:c2:ae: fb:77:ba:b3:af:7a:b2:7c:63:e8:0c:d3:fb:cd:a9: d3:91:af:a9:9b:56:82:36:08:ee:e5:91:a9:05:bd: 8f:99:4f:a1:8e:a0:0d:88:b6:3b:88:63:70:3f:33: 1b:20:b7:fb:9e:f9:21:8d:74:72:62:7a:69:3a:1d: bf:cc:22:57:99:ea:39:11:76:14:bb:be:0e:d2:5f: 67:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:29:EF:5D:BF:F4:53:8A:31:F5:39:D5:04:31:18:E0:10:43:42:FC X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:31:97:fb:6c:66:b7:9a:d0:a4:1e:ad:7a:d9:0f:a9:95:b4: 88:b9:9b:bc:33:42:13:67:81:ec:33:d6:70:60:73:54:5b:9f: 48:70:6b:8f:0e:5d:29:d1:11:70:b3:4e:46:40:3d:f9:72:11: d4:92:c3:d0:9a:47:0b:5b:ba:fd:69:c6:7c:a4:f7:b4:15:d5: 03:b6:d5:9c:0c:09:4a:fc:91:4d:93:9a:fd:00:9f:92:e8:8c: 3b:f7:f7:6f:94:26:ab:fb:30:a3:e4:87:30:f2:0d:84:4a:89: 58:c0:de:2d:e0:c9:83:5c:7d:6b:92:da:c7:7b:25:01:e2:37: 07:7e:45:a2:a3:ab:41:55:97:8f:d2:d9:03:a9:62:a1:1c:a6: 4d:83:42:2d:13:a0:85:17:48:09:24:f8:be:a5:0d:80:fd:ed: 90:83:21:7d:9b:00:02:90:cc:67:55:29:4c:12:7b:6b:e1:6e: fc:e0:b9:4b:45:e0:f1:b9:81:91:e2:20:cb:14:ed:72:bf:6c: 64:88:1f:e3:06:6d:0e:0a:ff:61:46:68:74:1c:51:91:18:82: 68:09:0e:c2:99:54:00:d0:7c:61:81:d9:a6:2f:50:d0:eb:20: 94:a3:f8:e4:32:05:5f:e9:14:3e:95:56:9e:a4:1f:69:ef:85: 43:29:fe:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjQxMTIyMTYyMjQwWhcNMjQxMTI5MTYyMjQwWjAYMRYwFAYD VQQDEw02NzQwYWZkMS00YjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUIxjB9qhu/X7sZgV21qQoB2Js1jHyB7mPZxfoyi/bcGDD8MvXQJ7FMietDR cnYJe6uBVaF8T/ifzVomtU3t6RcN6w60wwA4oenNI62moXihZVYiZd98sBUJENaI o4SEPOxD4+o8o/KUGPyQUoxFvcSik8ttcwbaV/8H7th5VNt5KJtPhbHs8lBcrORc X1V9P8QCJCQur3PyIY3JXG33MreAyEqhnU+YOGmyoiw+Q2kswq77d7qzr3qyfGPo DNP7zanTka+pm1aCNgju5ZGpBb2PmU+hjqANiLY7iGNwPzMbILf7nvkhjXRyYnpp Oh2/zCJXmeo5EXYUu74O0l9n+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8p712/ 9FOKMfU51QQxGOAQQ0L8MB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI2NC9DNThENkZGQTQxMDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYy eDlxTGszQnVMVHVnOEdXX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgMZf7bGa3mtCkHq162Q+plbSIuZu8M0ITZ4HsM9ZwYHNUW59IcGuP Dl0p0RFws05GQD35chHUksPQmkcLW7r9acZ8pPe0FdUDttWcDAlK/JFNk5r9AJ+S 6Iw79/dvlCar+zCj5Icw8g2ESolYwN4t4MmDXH1rktrHeyUB4jcHfkWio6tBVZeP 0tkDqWKhHKZNg0ItE6CFF0gJJPi+pQ2A/e2QgyF9mwACkMxnVSlMEntr4W784LlL ReDxuYGR4iDLFO1yv2xkiB/jBm0OCv9hRmh0HFGRGIJoCQ7CmVQA0HxhgdmmL1DQ 6yCUo/jkMgVf6RQ+lVaepB9p74VDKf4/ -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org