$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: 7lRhJs8gPi7OjV5l+zMdxzSBQMTTsyby04sCFRVDEoo= Subject key identifier: 26:D4:EB:90:1D:FE:9F:F7:85:5F:6F:31:6B:6F:22:DC:06:A6:5A:21 Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 0433 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 0431 Signing time: Fri 22 Nov 2024 23:51:15 +0000 Manifest this update: Fri 22 Nov 2024 23:51:14 +0000 Manifest next update: Fri 29 Nov 2024 23:51:14 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: PlFt+oKQtjjCTXMGdZ3y7KUtQV0S1Hpu9DX3la3pfrg=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: kkkJWZ9fDn1htzEtE1zpX7lAAG0cOZUfH1foPNvS114=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1075 (0x433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Nov 22 23:51:14 2024 GMT Not After : Nov 29 23:51:14 2024 GMT Subject: CN=674118f3-ca9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:71:f4:71:62:51:0a:28:9c:0f:c8:81:f6:5d: f6:58:62:aa:45:c5:f5:4c:59:81:08:23:8f:77:64: 8f:ec:d5:9f:09:ad:3d:45:58:74:b6:44:97:24:ab: e1:f9:35:c4:d1:0f:65:ba:5d:b7:57:60:b5:cd:ea: 17:4b:7e:bb:a1:4b:31:71:fd:a1:3d:fb:22:57:06: 78:e3:9e:ec:6f:7e:73:e0:c2:e3:b1:b6:80:9a:ef: 37:49:b4:55:86:ad:ad:e2:a2:a3:c1:36:26:6d:6d: e7:bd:16:02:66:44:cc:f8:0b:94:66:70:a7:41:f1: 34:45:10:24:b0:cd:3d:82:77:05:09:90:5a:9e:41: 7c:59:0d:51:0d:0a:2f:7b:48:9b:8c:95:9a:01:02: b3:2d:fc:dd:8d:af:a7:20:0e:70:0f:a5:17:5f:c5: 53:c5:12:3c:8c:01:cf:25:50:e8:c0:c1:b9:da:0a: 45:0a:55:91:aa:58:b7:e4:7a:75:5e:82:3f:cc:b7: a3:80:e9:53:85:72:37:7d:ab:a2:c8:c4:35:4b:68: 61:1c:74:34:28:0e:ef:ae:ed:52:7c:c5:82:cd:c7: e1:66:0c:4f:9d:ce:f6:3d:2b:2d:5a:85:e7:78:34: 4c:0b:3d:b3:49:b7:96:e3:34:39:9c:62:9c:8a:1a: 9f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:D4:EB:90:1D:FE:9F:F7:85:5F:6F:31:6B:6F:22:DC:06:A6:5A:21 X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:7c:d0:5f:20:4d:a2:b3:b4:71:06:e0:fc:48:d4:44:13:9e: 8d:04:40:a7:2f:b1:0c:7d:87:70:99:01:0a:a8:82:72:5f:1a: c2:2f:2c:42:e9:34:b2:b4:3f:71:61:12:26:f5:ef:0b:c4:35: b2:95:60:98:03:6b:d3:24:84:49:c7:b9:36:93:5f:45:fc:8b: 76:1d:f2:dd:f0:06:71:6d:07:05:ad:10:83:74:5a:99:3e:68: 59:fa:c4:05:ee:72:57:03:44:b0:64:4e:ed:1e:6e:2c:ad:cd: c1:42:07:a4:e3:72:61:f3:c6:9b:95:14:73:f0:d4:a6:a0:70: a2:4e:ed:e4:41:26:e4:64:03:a1:e0:b9:45:47:b5:ed:bb:fa: 35:27:32:64:1e:76:88:6e:92:29:27:aa:41:02:f0:3f:ea:be: a0:30:96:48:e7:bd:5a:f0:55:45:0c:a0:11:97:de:ee:21:fd: 68:17:0b:a2:90:cb:02:80:01:40:13:c8:7f:be:36:fd:44:3b: e2:d8:d6:8c:93:96:af:35:43:09:f1:a3:78:77:a4:2d:bd:21: b7:41:63:cf:ca:39:17:4f:71:aa:a3:67:f6:68:67:8f:97:da: f0:28:6a:16:0c:17:f9:71:de:6e:26:07:05:cb:71:b7:28:ab: 71:e5:30:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjQxMTIyMjM1MTE0WhcNMjQxMTI5MjM1MTE0WjAYMRYwFAYD VQQDEw02NzQxMThmMy1jYTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3H0cWJRCiicD8iB9l32WGKqRcX1TFmBCCOPd2SP7NWfCa09RVh0tkSXJKvh +TXE0Q9lul23V2C1zeoXS367oUsxcf2hPfsiVwZ4457sb35z4MLjsbaAmu83SbRV hq2t4qKjwTYmbW3nvRYCZkTM+AuUZnCnQfE0RRAksM09gncFCZBankF8WQ1RDQov e0ibjJWaAQKzLfzdja+nIA5wD6UXX8VTxRI8jAHPJVDowMG52gpFClWRqli35Hp1 XoI/zLejgOlThXI3fauiyMQ1S2hhHHQ0KA7vru1SfMWCzcfhZgxPnc72PSstWoXn eDRMCz2zSbeW4zQ5nGKcihqfdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbU65Ad /p/3hV9vMWtvItwGplohMB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxfNBfIE2is7RxBuD8SNREE56NBECnL7EMfYdwmQEKqIJyXxrCLyxC 6TSytD9xYRIm9e8LxDWylWCYA2vTJIRJx7k2k19F/It2HfLd8AZxbQcFrRCDdFqZ PmhZ+sQF7nJXA0SwZE7tHm4src3BQgek43Jh88ablRRz8NSmoHCiTu3kQSbkZAOh 4LlFR7Xtu/o1JzJkHnaIbpIpJ6pBAvA/6r6gMJZI571a8FVFDKARl97uIf1oFwui kMsCgAFAE8h/vjb9RDvi2NaMk5avNUMJ8aN4d6QtvSG3QWPPyjkXT3Gqo2f2aGeP l9rwKGoWDBf5cd5uJgcFy3G3KKtx5TAB -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:36 2024 by rpki-client on console-fra.rpki-client.org