$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: V5U3HX/ifMNzBY7X0aUoSdPImTMefBdEUBAHiwROWPs= Subject key identifier: 6D:36:5B:B7:C4:12:44:BE:A2:C8:24:D8:E4:63:FA:58:51:E1:BC:7A Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 014E Signing time: Sat 23 Nov 2024 02:33:21 +0000 Manifest this update: Sat 23 Nov 2024 02:33:20 +0000 Manifest next update: Sat 30 Nov 2024 02:33:20 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: Iv+fhnIBhvjvQlhcAsEpes/RDhgXMsXIGOh75Thi3yM=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: VONiHwejXacpBeR7rVkbydMQIhwSgiZRwegZVDVvf5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Nov 23 02:33:20 2024 GMT Not After : Nov 30 02:33:20 2024 GMT Subject: CN=67413ef1-97eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a0:f4:8d:cc:c3:98:44:cf:62:77:b5:b0:0f: 0d:26:6a:2b:8a:50:aa:0c:4e:df:d6:61:0f:df:e7: 69:2e:49:59:0a:a7:99:b3:cd:08:45:a8:23:ce:a4: f7:47:3e:df:4f:26:a9:25:5b:5e:c2:80:eb:7a:79: 3e:c0:95:07:a4:57:a9:1a:f9:a2:ac:2f:31:8e:f0: 12:73:44:18:7a:ba:70:80:b8:0d:9e:bd:f4:e0:db: 8e:2e:fd:18:c3:6e:8d:9c:03:18:86:73:64:18:fe: 96:d3:53:31:ca:9a:72:6c:09:01:dc:af:8e:6f:37: 53:6d:c0:bc:a3:c4:b7:79:a2:dc:2c:72:74:04:f7: 7d:49:02:43:6e:3e:41:1d:79:e7:fe:06:ac:5d:03: 39:31:ae:99:70:8d:40:0c:7d:42:73:f4:ad:d3:d0: d8:94:05:a5:ed:68:c6:83:4b:49:49:38:8c:b1:e3: b9:f3:ad:19:4f:06:d5:f1:86:04:5c:7a:d8:6d:47: c6:cf:a2:80:0e:81:fb:9e:33:81:16:99:03:21:06: e6:c0:34:2b:b0:a3:e4:96:0a:ff:29:9c:95:dc:70: 76:96:bb:19:7f:37:bd:25:3a:aa:8a:2f:c3:c4:da: 6e:25:db:25:d1:31:5e:56:0d:4f:ac:5e:a3:b7:59: bc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:36:5B:B7:C4:12:44:BE:A2:C8:24:D8:E4:63:FA:58:51:E1:BC:7A X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:09:7d:5d:52:02:1c:c7:8f:a4:ea:bd:32:97:69:f0:2e:eb: fd:bc:48:6f:5b:19:4e:16:37:44:50:b4:79:43:fd:a9:0e:c0: 5e:b8:67:ec:9a:f2:a1:5d:76:9a:bf:23:44:47:60:9d:ec:9d: c8:1e:ea:9e:21:43:c6:73:27:2a:c3:7e:91:71:aa:86:58:8f: 3c:7b:87:f9:23:eb:7c:02:e1:66:3b:28:ae:d9:b1:dc:21:90: c5:f2:d2:55:0c:74:e9:69:11:7d:b8:ec:ed:29:1c:8e:82:bc: f6:d9:e7:cc:af:18:fa:a8:04:6a:12:d4:24:75:d4:2a:ad:31: 06:3b:fd:33:a0:ff:34:e0:86:de:f9:34:a2:94:6f:e1:42:c1: 5d:16:13:aa:c9:0a:b4:cb:63:58:4b:5a:11:5c:62:96:35:b2: 37:34:e1:7f:ba:84:79:5c:26:3d:c7:04:21:ae:7a:6c:55:43: 2f:19:a9:ef:db:db:cb:47:26:33:77:0a:66:3a:cc:08:cf:0f: 96:51:29:bf:e2:f1:3e:ff:dc:00:ab:43:01:3f:48:ec:13:b3: 7d:34:4b:77:4a:59:7b:fa:07:75:f7:ee:0f:cb:42:eb:89:b0: 9b:3b:2e:95:e8:a5:d2:01:00:fa:75:17:67:34:ac:46:0d:68: f0:81:b2:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjQxMTIzMDIzMzIwWhcNMjQxMTMwMDIzMzIwWjAYMRYwFAYD VQQDEw02NzQxM2VmMS05N2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaD0jczDmETPYne1sA8NJmorilCqDE7f1mEP3+dpLklZCqeZs80IRagjzqT3 Rz7fTyapJVtewoDrenk+wJUHpFepGvmirC8xjvASc0QYerpwgLgNnr304NuOLv0Y w26NnAMYhnNkGP6W01MxyppybAkB3K+ObzdTbcC8o8S3eaLcLHJ0BPd9SQJDbj5B HXnn/gasXQM5Ma6ZcI1ADH1Cc/St09DYlAWl7WjGg0tJSTiMseO5860ZTwbV8YYE XHrYbUfGz6KADoH7njOBFpkDIQbmwDQrsKPklgr/KZyV3HB2lrsZfze9JTqqii/D xNpuJdsl0TFeVg1PrF6jt1m8DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG02W7fE EkS+osgk2ORj+lhR4bx6MB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGCX1dUgIcx4+k6r0yl2nwLuv9vEhvWxlOFjdEULR5Q/2pDsBeuGfs mvKhXXaavyNER2Cd7J3IHuqeIUPGcycqw36RcaqGWI88e4f5I+t8AuFmOyiu2bHc IZDF8tJVDHTpaRF9uOztKRyOgrz22efMrxj6qARqEtQkddQqrTEGO/0zoP804Ibe +TSilG/hQsFdFhOqyQq0y2NYS1oRXGKWNbI3NOF/uoR5XCY9xwQhrnpsVUMvGanv 29vLRyYzdwpmOswIzw+WUSm/4vE+/9wAq0MBP0jsE7N9NEt3Sll7+gd19+4Py0Lr ibCbOy6V6KXSAQD6dRdnNKxGDWjwgbL8 -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:55 2024 by rpki-client on console-fra.rpki-client.org