$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft File: yod6eu8duwRWSH9h_uaZNjdUHl0.mft (raw, json) Hash identifier: Gg/IoiRVtl2MO7ALfW+VY08UypUse0BEbrwuMiuy5cE= Subject key identifier: 49:8A:3F:5E:96:E1:98:1A:B4:DB:0D:C8:AE:E0:65:7A:40:11:78:68 Authority key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D Certificate issuer: /CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft Manifest number: 34 Signing time: Tue 22 Oct 2024 21:57:51 +0000 Manifest this update: Tue 22 Oct 2024 21:57:51 +0000 Manifest next update: Tue 29 Oct 2024 21:57:51 +0000 Files and hashes: 1: yod6eu8duwRWSH9h_uaZNjdUHl0.crl (hash: ELhTHLhdBUbbr5CKOIU+b/gin5xPHJdeJRQMcNdtOAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 20:45:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Validity Not Before: Oct 22 21:57:51 2024 GMT Not After : Oct 29 21:57:51 2024 GMT Subject: CN=67181fdf-8720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1e:1f:3d:64:b0:91:ce:ef:e9:f1:f4:d3:16: 38:d0:e1:4b:97:51:f8:ea:c4:a0:56:04:4b:41:39: 13:36:53:d4:84:94:03:90:6d:eb:77:0c:7e:f2:77: 0c:ed:88:38:36:49:8b:14:5c:76:e6:7b:80:24:b3: ce:e0:19:a2:f7:08:65:c5:e3:ab:3c:82:bc:e5:23: 4a:13:8d:09:47:1c:6f:b6:42:5a:88:bb:96:15:8d: e6:20:b7:8c:0e:05:fa:7f:89:0d:ab:e7:8a:85:15: 28:2a:2a:43:6e:82:7c:f5:29:53:b2:d0:7c:76:06: 61:2f:e1:f1:d0:89:d7:77:08:f3:af:07:8c:41:be: bd:87:17:95:87:a9:20:fc:e8:bb:87:f8:a6:e3:09: f4:60:c2:2f:78:34:a1:e8:3f:3c:ce:42:d4:43:31: 60:1b:65:63:24:e9:17:92:9e:e4:fd:e6:de:08:11: a0:10:bf:60:d9:0f:2d:60:8f:cb:cd:e0:3f:50:31: 1f:83:17:70:0e:12:a4:99:00:d9:48:d9:61:3b:fb: 70:6b:66:8c:f1:07:c6:73:4b:11:0c:5a:7f:6a:e8: ba:74:04:ff:59:9b:e1:5d:27:f6:ac:4d:44:d2:a6: 19:3d:03:66:37:01:cd:85:f9:f8:97:5c:fd:7d:e3: e6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:8A:3F:5E:96:E1:98:1A:B4:DB:0D:C8:AE:E0:65:7A:40:11:78:68 X509v3 Authority Key Identifier: keyid:CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:68:01:19:97:3e:6c:04:f8:c6:6e:da:fd:21:ac:24:97:60: b3:51:f7:64:e6:11:db:d9:3b:d8:8e:2d:ff:6c:fc:57:60:d7: 8e:00:c9:e2:60:2a:a2:75:57:9c:fc:9d:7e:2e:45:32:ff:06: 35:8b:97:08:d8:65:ec:63:e2:46:c3:a1:a5:b2:b0:2d:c7:28: f9:12:56:09:16:0b:27:f7:32:ca:f5:cd:a5:d0:d6:10:c0:ef: 07:0a:31:d1:12:73:dd:58:8e:55:3e:52:fe:df:0c:ca:24:40: 6a:e0:fc:8a:fe:f5:06:55:b1:64:79:cc:e0:3a:af:b7:9c:83: 8a:3f:12:56:e9:f7:3c:96:46:0f:44:4a:d4:1f:a5:75:c1:40: 45:90:0e:fe:10:49:02:91:18:97:4e:1a:5a:e5:85:8e:98:4c: 36:31:af:c3:39:63:20:98:ac:da:e2:73:f8:96:35:0b:9b:1a: 7c:f1:f7:79:16:9d:e1:c9:cb:da:f7:23:cf:3a:41:fc:98:86: 5d:cd:93:af:df:88:b8:65:72:48:3a:a8:c9:d3:19:53:71:41: 52:bb:2b:7b:ca:4b:93:03:44:84:92:48:24:bb:0c:dc:7b:6b: fa:bf:e9:37:31:25:d2:38:6d:f5:21:44:fc:ec:31:e3:68:86: 2b:c3:56:8a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QTA1MzExMC8GA1UEBRMoQ0E4NzdBN0FFRjFEQkIwNDU2NDg3RjYxRkVFNjk5MzYz NzU0MUU1RDAeFw0yNDEwMjIyMTU3NTFaFw0yNDEwMjkyMTU3NTFaMBgxFjAUBgNV BAMTDTY3MTgxZmRmLTg3MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOHh89ZLCRzu/p8fTTFjjQ4UuXUfjqxKBWBEtBORM2U9SElAOQbet3DH7ydwzt iDg2SYsUXHbme4Aks87gGaL3CGXF46s8grzlI0oTjQlHHG+2QlqIu5YVjeYgt4wO Bfp/iQ2r54qFFSgqKkNugnz1KVOy0Hx2BmEv4fHQidd3CPOvB4xBvr2HF5WHqSD8 6LuH+KbjCfRgwi94NKHoPzzOQtRDMWAbZWMk6ReSnuT95t4IEaAQv2DZDy1gj8vN 4D9QMR+DF3AOEqSZANlI2WE7+3BrZozxB8ZzSxEMWn9q6Lp0BP9Zm+FdJ/asTUTS phk9A2Y3Ac2F+fiXXP194+ZjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSYo/Xpbh mBq02w3IruBlekAReGgwHwYDVR0jBBgwFoAUyod6eu8duwRWSH9h/uaZNjdUHl0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBMDUzLzg3MjAzMDVFNDQ5 OTExRUZCQUM2NzE1M0M0RjlBRTAyL3lvZDZldThkdXdSV1NIOWhfdWFaTmpkVUhs MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveW9kNmV1OGR1d1JXU0g5aF91YVpOamRVSGwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB MDUzLzg3MjAzMDVFNDQ5OTExRUZCQUM2NzE1M0M0RjlBRTAyL3lvZDZldThkdXdS V1NIOWhfdWFaTmpkVUhsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGJoARmXPmwE+MZu2v0hrCSXYLNR92TmEdvZO9iOLf9s/Fdg144AyeJg KqJ1V5z8nX4uRTL/BjWLlwjYZexj4kbDoaWysC3HKPkSVgkWCyf3Msr1zaXQ1hDA 7wcKMdESc91YjlU+Uv7fDMokQGrg/Ir+9QZVsWR5zOA6r7ecg4o/Elbp9zyWRg9E StQfpXXBQEWQDv4QSQKRGJdOGlrlhY6YTDYxr8M5YyCYrNric/iWNQubGnzx93kW neHJy9r3I886QfyYhl3Nk6/fiLhlckg6qMnTGVNxQVK7K3vKS5MDRISSSCS7DNx7 a/q/6TcxJdI4bfUhRPzsMeNohivDVoo= -----END CERTIFICATE-----Generated at Tue Oct 22 22:43:52 2024 by rpki-client on console-ams.rpki-client.org