$ rpki-client -vvf rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft File: ybbzh3rMoIEu_42KP1wESgwwvIA.mft (raw, json) Hash identifier: GZG031i4deDcNZDwAWTIoiVIESQbdq05RkZk2TNPo1U= Subject key identifier: 6C:A8:8F:A8:0E:97:42:0A:A9:80:63:4C:70:81:15:86:8E:F2:92:19 Authority key identifier: C9:B6:F3:87:7A:CC:A0:81:2E:FF:8D:8A:3F:5C:04:4A:0C:30:BC:80 Certificate issuer: /CN=A91A77C2/serialNumber=C9B6F3877ACCA0812EFF8D8A3F5C044A0C30BC80 Certificate serial: 055C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybbzh3rMoIEu_42KP1wESgwwvIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft Manifest number: 0557 Signing time: Fri 22 Nov 2024 22:57:58 +0000 Manifest this update: Fri 22 Nov 2024 22:57:57 +0000 Manifest next update: Fri 29 Nov 2024 22:57:57 +0000 Files and hashes: 1: ybbzh3rMoIEu_42KP1wESgwwvIA.crl (hash: 04M2mGgP+PcuVThFtlBeTGdET8d2aD8gJqP8qE2gE7g=) 2: E5692882C63411EB9E5F5F30C4F9AE02.roa (hash: f4gRh38ZrvS7ONxmLsMLRwFey6PLic9m7nSCkN6WMeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.crl rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybbzh3rMoIEu_42KP1wESgwwvIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1372 (0x55c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A77C2/serialNumber=C9B6F3877ACCA0812EFF8D8A3F5C044A0C30BC80 Validity Not Before: Nov 22 22:57:57 2024 GMT Not After : Nov 29 22:57:57 2024 GMT Subject: CN=67410c76-c59f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0b:38:a5:3a:93:84:50:3f:fc:07:5d:90:47: a7:ac:2d:6a:92:be:43:dc:b3:8f:f5:70:26:56:27: 48:64:09:f4:d3:9e:e3:e0:dc:43:ec:d6:70:da:9f: 3c:3f:91:d7:52:69:0c:84:4d:27:f7:b4:88:cb:1b: f3:47:68:a5:e8:fd:5d:65:bd:dc:51:f3:0e:fc:f4: 10:8c:1e:13:00:b8:66:ba:6f:4b:45:d6:88:fe:03: 3a:b1:13:6c:52:1b:7e:e0:53:e3:ee:80:aa:cb:dc: 75:34:ff:28:bb:92:e0:ab:85:e0:c6:cc:8e:b1:dd: f7:70:95:6a:4f:6f:95:e1:97:84:13:be:0b:1c:d5: 48:50:01:85:21:cd:d9:96:b3:f2:cd:57:ba:6a:a9: 7b:33:7a:f6:73:72:64:93:6f:09:ea:70:cc:f2:3e: d3:30:79:a1:30:ef:1d:28:6c:24:f8:ac:5a:b1:29: d4:16:2f:1e:8c:d1:bd:ae:41:3c:91:d4:bf:18:07: bc:53:01:a8:11:c8:94:92:8d:83:0f:75:6c:0c:e8: 42:71:e7:5c:c7:7d:a5:22:10:71:8d:e2:d1:c0:41: ac:9e:99:b8:84:e2:12:4e:de:98:a9:29:9a:3e:e5: 4a:97:a7:1f:ab:17:01:28:4a:e1:78:20:41:a7:26: fe:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:A8:8F:A8:0E:97:42:0A:A9:80:63:4C:70:81:15:86:8E:F2:92:19 X509v3 Authority Key Identifier: keyid:C9:B6:F3:87:7A:CC:A0:81:2E:FF:8D:8A:3F:5C:04:4A:0C:30:BC:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybbzh3rMoIEu_42KP1wESgwwvIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:d7:ff:4b:81:d7:ef:e5:5e:a5:68:b0:b8:a5:f1:40:9c:cb: ac:b2:21:5c:45:d3:dd:7e:c1:b0:17:0a:6f:d6:f0:5c:e3:16: 29:85:2f:1c:f9:69:c2:1c:97:75:dd:24:c2:da:63:e3:74:f0: b4:a9:18:62:62:46:25:c1:a0:84:dc:e0:9f:f3:17:71:fd:da: 74:03:87:8b:e8:5a:35:83:07:de:09:83:bc:8f:3c:36:8e:52: 14:ac:5e:cf:07:1d:ae:ae:93:c8:cd:6c:48:32:e2:09:55:c3: 58:fb:1c:d5:49:e7:e2:77:16:39:87:c4:f8:a4:2b:bb:74:a9: d4:70:30:1f:98:76:6d:12:e2:2a:e4:f9:66:02:cb:b9:8d:f7: da:8e:f5:0c:d1:60:7a:10:4f:c8:37:1c:14:8f:f6:1b:5d:4a: 9e:73:b6:77:f9:65:b1:69:b1:0d:be:c7:f6:3c:69:75:9f:ad: f2:de:6c:62:77:b6:09:9c:48:74:69:52:07:86:cc:45:52:7e: 41:31:6b:0e:fd:2e:f6:d9:86:25:a2:5a:61:4a:dd:0c:30:bf: 93:60:6b:03:59:c4:51:09:c1:e5:a7:f1:0d:56:bc:f7:cd:bc: 0a:1d:5a:57:13:cf:3e:17:d1:06:e7:56:91:69:60:fe:78:78: 00:59:05:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc3QzIxMTAvBgNVBAUTKEM5QjZGMzg3N0FDQ0EwODEyRUZGOEQ4QTNGNUMwNDRB MEMzMEJDODAwHhcNMjQxMTIyMjI1NzU3WhcNMjQxMTI5MjI1NzU3WjAYMRYwFAYD VQQDEw02NzQxMGM3Ni1jNTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAs4pTqThFA//AddkEenrC1qkr5D3LOP9XAmVidIZAn0057j4NxD7NZw2p88 P5HXUmkMhE0n97SIyxvzR2il6P1dZb3cUfMO/PQQjB4TALhmum9LRdaI/gM6sRNs Uht+4FPj7oCqy9x1NP8ou5Lgq4XgxsyOsd33cJVqT2+V4ZeEE74LHNVIUAGFIc3Z lrPyzVe6aql7M3r2c3Jkk28J6nDM8j7TMHmhMO8dKGwk+KxasSnUFi8ejNG9rkE8 kdS/GAe8UwGoEciUko2DD3VsDOhCcedcx32lIhBxjeLRwEGsnpm4hOISTt6YqSma PuVKl6cfqxcBKErheCBBpyb+gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyoj6gO l0IKqYBjTHCBFYaO8pIZMB8GA1UdIwQYMBaAFMm284d6zKCBLv+Nij9cBEoMMLyA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzdDMi8zRURBRDEwQ0M2 MzIxMUVCQUFENzRBMkVDNEY5QUUwMi95YmJ6aDNyTW9JRXVfNDJLUDF3RVNnd3d2 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3liYnpoM3JNb0lFdV80MktQMXdFU2d3d3ZJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzdDMi8zRURBRDEwQ0M2MzIxMUVCQUFENzRBMkVDNEY5QUUwMi95YmJ6aDNyTW9J RXVfNDJLUDF3RVNnd3d2SUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn1/9Lgdfv5V6laLC4pfFAnMussiFcRdPdfsGwFwpv1vBc4xYphS8c +WnCHJd13STC2mPjdPC0qRhiYkYlwaCE3OCf8xdx/dp0A4eL6Fo1gwfeCYO8jzw2 jlIUrF7PBx2urpPIzWxIMuIJVcNY+xzVSefidxY5h8T4pCu7dKnUcDAfmHZtEuIq 5PlmAsu5jffajvUM0WB6EE/INxwUj/YbXUqec7Z3+WWxabENvsf2PGl1n63y3mxi d7YJnEh0aVIHhsxFUn5BMWsO/S722YYlolphSt0MML+TYGsDWcRRCcHlp/ENVrz3 zbwKHVpXE88+F9EG51aRaWD+eHgAWQWc -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:47 2024 by rpki-client on console-ams.rpki-client.org