$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: aJ7atoR++THL5JzaZSEOHqmxiMyYrCtx+33pCLRjlaM= Subject key identifier: 79:23:67:A2:43:AE:38:C3:CC:8A:B1:C6:7B:27:3E:D1:92:B3:12:4E Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 0157 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 0155 Signing time: Thu 21 Nov 2024 02:28:18 +0000 Manifest this update: Thu 21 Nov 2024 02:28:17 +0000 Manifest next update: Thu 28 Nov 2024 02:28:17 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: 6naSNghl4cX3WA6oTmtBAU2rezbP6F5xPLSBFNUj1So=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: YbwTtGWJeYjG6oJrdkEQP9KA0MKZtNBoCHNM8wViENY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Nov 21 02:28:17 2024 GMT Not After : Nov 28 02:28:17 2024 GMT Subject: CN=673e9ac2-a390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b5:13:e6:0d:9f:69:2e:4a:ee:15:6c:a2:d1: 61:ee:b0:dc:70:cb:ce:30:c1:70:0d:40:b5:5d:4d: 96:7d:1c:9b:19:d3:10:7b:2d:72:1f:81:f2:9a:3e: 4b:34:a3:9f:d7:b4:33:65:3c:89:47:19:1d:14:9f: 87:44:6a:ef:b7:b1:89:91:ca:2e:23:d4:01:82:45: 68:85:ee:ca:97:55:08:4b:f2:f4:1a:74:25:f9:d0: 02:93:bd:3e:e1:fc:1a:05:34:6e:f3:cc:3b:e7:ce: f6:aa:4d:33:b4:fd:01:5b:db:5c:7e:a1:96:92:de: 96:ad:29:f8:fd:08:4d:f1:8b:28:10:4c:86:33:54: f2:04:9a:c1:0a:97:12:58:b2:86:80:98:43:2e:6e: 86:4d:46:32:5e:24:b5:af:78:b5:8b:0b:ef:8d:b1: 4e:31:c2:5f:67:78:2e:ca:bd:6f:2e:ba:e1:8c:34: ab:db:28:e9:8c:86:eb:0e:81:d0:fa:dc:80:60:c0: d8:bc:16:7d:9f:8d:1f:1d:94:67:61:51:03:58:9e: 47:c6:b6:a6:5d:76:fa:7e:98:66:ba:38:59:eb:f0: 0f:23:2b:48:b7:e1:5a:a3:f3:49:74:63:86:42:7a: f9:51:a2:4d:b4:c7:fe:e3:b5:a7:a5:e2:3f:09:a0: b2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:23:67:A2:43:AE:38:C3:CC:8A:B1:C6:7B:27:3E:D1:92:B3:12:4E X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:23:93:33:14:a8:e7:60:04:0c:e5:5c:ef:e6:80:7f:a5:3b: 6e:81:c6:ce:0b:68:f6:a3:e3:90:27:6b:aa:a6:52:45:63:c1: 53:c7:7e:5b:1c:06:3b:46:5c:4f:92:87:b4:df:59:30:5b:c6: 45:9b:b0:73:21:42:8e:18:f6:5d:55:b6:fc:97:2e:6d:0c:24: 06:16:07:d9:fb:0d:5d:5b:fe:28:1b:c3:4c:6d:99:cb:01:8b: a8:94:7b:e0:49:c3:7b:73:f6:07:df:89:45:03:58:40:47:28: eb:51:96:0e:98:64:1f:78:87:82:06:3d:49:40:07:21:9c:86: 44:24:ab:56:b1:21:ac:fe:66:5a:42:aa:e6:07:56:73:aa:e3: 8b:92:84:72:41:69:92:96:cd:d3:18:41:81:ce:05:2a:11:f7: cd:04:b5:99:d6:67:b9:9d:8b:71:83:97:82:0f:9e:8e:e3:ae: 36:0d:49:3a:7c:77:f7:19:c4:a4:ee:fb:8f:32:ac:ff:83:ef: 19:d4:57:1e:03:55:a8:a6:65:08:cc:a9:6b:87:59:09:28:b3: 38:68:1b:bc:c1:e8:45:5d:6d:57:06:7f:11:ea:d7:57:b6:d1: 51:d5:70:e6:3e:f3:29:c4:33:c8:0e:d2:0d:d6:ab:8b:63:52: bd:60:e3:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjQxMTIxMDIyODE3WhcNMjQxMTI4MDIyODE3WjAYMRYwFAYD VQQDEw02NzNlOWFjMi1hMzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLUT5g2faS5K7hVsotFh7rDccMvOMMFwDUC1XU2WfRybGdMQey1yH4Hymj5L NKOf17QzZTyJRxkdFJ+HRGrvt7GJkcouI9QBgkVohe7Kl1UIS/L0GnQl+dACk70+ 4fwaBTRu88w75872qk0ztP0BW9tcfqGWkt6WrSn4/QhN8YsoEEyGM1TyBJrBCpcS WLKGgJhDLm6GTUYyXiS1r3i1iwvvjbFOMcJfZ3guyr1vLrrhjDSr2yjpjIbrDoHQ +tyAYMDYvBZ9n40fHZRnYVEDWJ5HxramXXb6fphmujhZ6/APIytIt+Fao/NJdGOG Qnr5UaJNtMf+47WnpeI/CaCyYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkjZ6JD rjjDzIqxxnsnPtGSsxJOMB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxI5MzFKjnYAQM5Vzv5oB/pTtugcbOC2j2o+OQJ2uqplJFY8FTx35b HAY7RlxPkoe031kwW8ZFm7BzIUKOGPZdVbb8ly5tDCQGFgfZ+w1dW/4oG8NMbZnL AYuolHvgScN7c/YH34lFA1hARyjrUZYOmGQfeIeCBj1JQAchnIZEJKtWsSGs/mZa QqrmB1ZzquOLkoRyQWmSls3TGEGBzgUqEffNBLWZ1me5nYtxg5eCD56O4642DUk6 fHf3GcSk7vuPMqz/g+8Z1FceA1WopmUIzKlrh1kJKLM4aBu8wehFXW1XBn8R6tdX ttFR1XDmPvMpxDPIDtIN1quLY1K9YONS -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:49 2024 by rpki-client on console-ams.rpki-client.org