$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft File: yod6eu8duwRWSH9h_uaZNjdUHl0.mft (raw, json) Hash identifier: D9EoRDtduvdljcFo4xqh2JsdjT76YKAbhKxG1WVeLQM= Subject key identifier: 60:6E:4A:AA:B4:9C:52:43:89:88:3A:57:40:01:6B:25:3A:FF:46:60 Authority key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D Certificate issuer: /CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft Manifest number: 43 Signing time: Wed 20 Nov 2024 21:39:24 +0000 Manifest this update: Wed 20 Nov 2024 21:39:24 +0000 Manifest next update: Wed 27 Nov 2024 21:39:24 +0000 Files and hashes: 1: yod6eu8duwRWSH9h_uaZNjdUHl0.crl (hash: C441WChZNMxwl8RKrwnwSacy2/q+fX1tvLquESB/sqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Validity Not Before: Nov 20 21:39:24 2024 GMT Not After : Nov 27 21:39:24 2024 GMT Subject: CN=673e570c-40e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:be:e2:86:fc:54:e7:ec:2d:c4:85:e4:c6:8c: b0:13:9f:4b:8d:73:00:91:8c:8f:f6:c7:7e:95:5e: 0a:13:a6:de:6a:00:48:10:83:7f:f1:01:5c:ae:ac: 81:5f:6e:5d:a6:5b:e6:c3:fc:db:a1:4b:7c:fc:15: 18:55:8f:1e:23:0a:bf:3a:1b:c4:9c:e9:36:9b:29: 52:4e:ab:2a:bc:ec:f0:eb:bd:01:bd:45:2e:26:7f: ac:a6:34:63:6d:d9:8d:0e:d9:8f:4e:dd:13:d9:00: 39:4b:40:1c:ae:9d:7c:be:fb:57:5a:5b:3d:30:c1: 18:61:06:9a:5c:d3:d6:9a:6a:5f:5d:45:d2:8b:83: 05:37:2f:40:d9:6d:d1:a5:86:bc:8c:ee:1f:41:27: b4:ae:30:0f:7d:64:cc:33:b3:b1:dc:07:49:8c:1d: fe:07:fa:5b:ce:5a:07:70:6a:0f:bd:d5:a2:62:c1: cc:94:7b:34:86:ab:9d:6c:9d:06:d8:1e:54:0d:b9: d8:9e:29:3f:ca:46:63:59:89:7f:a4:59:f2:a5:09: dd:77:55:f9:73:29:1c:3e:a1:e9:23:95:48:11:85: 79:59:c8:ad:95:4c:2e:c3:3b:4d:c7:1e:4e:1a:93: bf:fb:2d:84:37:6d:62:b1:cc:f2:b8:7a:93:23:04: c7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:6E:4A:AA:B4:9C:52:43:89:88:3A:57:40:01:6B:25:3A:FF:46:60 X509v3 Authority Key Identifier: keyid:CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:fb:ee:10:fd:b5:d7:f2:6b:3e:d4:de:78:c5:b4:0e:6a:2c: bf:a6:8a:5a:d4:da:a2:ef:a0:24:f7:5f:d9:21:d1:38:4f:74: 43:91:c1:84:53:ae:d8:3a:cc:1e:ad:f5:fc:6e:50:a2:df:c5: 3b:c6:b6:34:19:c3:04:5a:73:ac:cc:2e:7c:b2:d3:ed:fb:12: 8e:9d:32:86:4b:c5:61:13:c6:ae:05:5a:67:39:e0:d0:78:06: 2f:b9:13:86:57:86:e8:1e:c1:0e:d2:9f:27:01:07:bc:8e:a5: 81:d9:1c:0f:26:eb:ab:ed:62:ce:21:ef:50:18:b7:d2:fb:93: 3d:cf:45:ca:3e:32:ac:db:68:3e:81:94:b5:a5:84:56:f9:45: 53:f8:cf:95:9d:36:de:91:70:20:54:ed:93:eb:07:e6:bd:f4: b0:66:7c:9b:da:76:ca:3e:73:1d:b9:ff:03:e5:94:5c:e6:48: 6f:ab:51:dc:54:b2:0c:02:74:a6:91:4a:53:cd:17:4a:9c:9f: 72:c5:cc:8d:b7:0a:9a:36:e2:08:f1:1d:a6:dc:4d:6d:ab:5e: d7:4f:c6:87:ed:ee:87:81:ba:93:b0:80:2a:f7:25:f0:aa:c3: 11:f8:51:4a:0b:cd:59:8a:40:7b:03:74:af:39:47:25:e1:89: 4f:d6:b4:80 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QTA1MzExMC8GA1UEBRMoQ0E4NzdBN0FFRjFEQkIwNDU2NDg3RjYxRkVFNjk5MzYz NzU0MUU1RDAeFw0yNDExMjAyMTM5MjRaFw0yNDExMjcyMTM5MjRaMBgxFjAUBgNV BAMTDTY3M2U1NzBjLTQwZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDavuKG/FTn7C3EheTGjLATn0uNcwCRjI/2x36VXgoTpt5qAEgQg3/xAVyurIFf bl2mW+bD/NuhS3z8FRhVjx4jCr86G8Sc6TabKVJOqyq87PDrvQG9RS4mf6ymNGNt 2Y0O2Y9O3RPZADlLQByunXy++1daWz0wwRhhBppc09aaal9dRdKLgwU3L0DZbdGl hryM7h9BJ7SuMA99ZMwzs7HcB0mMHf4H+lvOWgdwag+91aJiwcyUezSGq51snQbY HlQNudieKT/KRmNZiX+kWfKlCd13VflzKRw+oekjlUgRhXlZyK2VTC7DO03HHk4a k7/7LYQ3bWKxzPK4epMjBMchAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYG5KqrSc UkOJiDpXQAFrJTr/RmAwHwYDVR0jBBgwFoAUyod6eu8duwRWSH9h/uaZNjdUHl0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBMDUzLzg3MjAzMDVFNDQ5 OTExRUZCQUM2NzE1M0M0RjlBRTAyL3lvZDZldThkdXdSV1NIOWhfdWFaTmpkVUhs MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveW9kNmV1OGR1d1JXU0g5aF91YVpOamRVSGwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB MDUzLzg3MjAzMDVFNDQ5OTExRUZCQUM2NzE1M0M0RjlBRTAyL3lvZDZldThkdXdS V1NIOWhfdWFaTmpkVUhsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHb77hD9tdfyaz7U3njFtA5qLL+milrU2qLvoCT3X9kh0ThPdEORwYRT rtg6zB6t9fxuUKLfxTvGtjQZwwRac6zMLnyy0+37Eo6dMoZLxWETxq4FWmc54NB4 Bi+5E4ZXhugewQ7SnycBB7yOpYHZHA8m66vtYs4h71AYt9L7kz3PRco+MqzbaD6B lLWlhFb5RVP4z5WdNt6RcCBU7ZPrB+a99LBmfJvadso+cx25/wPllFzmSG+rUdxU sgwCdKaRSlPNF0qcn3LFzI23Cpo24gjxHabcTW2rXtdPxoft7oeBupOwgCr3JfCq wxH4UUoLzVmKQHsDdK85RyXhiU/WtIA= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:49 2024 by rpki-client on console-ams.rpki-client.org