$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft File: LYC7UpVYC-No2mj7jQPqtI16xss.mft (raw, json) Hash identifier: 8AgkTfzhOsLoYJ4AVNM3tlBE0cMVwgrNDWV3tvBc1e0= Subject key identifier: 78:36:13:DC:CE:E4:E2:D4:68:A3:85:85:A6:40:D2:44:98:5E:9E:60 Authority key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB Certificate issuer: /CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft Manifest number: 4A Signing time: Thu 21 Nov 2024 05:21:44 +0000 Manifest this update: Thu 21 Nov 2024 05:21:44 +0000 Manifest next update: Thu 28 Nov 2024 05:21:44 +0000 Files and hashes: 1: LYC7UpVYC-No2mj7jQPqtI16xss.crl (hash: l+wSJwt657OtS7vapwDC5JgSeMeubb19sha0QrhPMjw=) 2: 70ED9D2837D111EF99A8011CC4F9AE02.roa (hash: XcL7vfDB7+jSL63SdSHmjhv1kS+M1yfgUS1Jg2qNUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Validity Not Before: Nov 21 05:21:44 2024 GMT Not After : Nov 28 05:21:44 2024 GMT Subject: CN=673ec368-8ab8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:82:ce:3f:c6:0a:d6:61:0f:83:3b:21:69:73: b5:5a:5a:20:66:74:8f:eb:f2:77:ea:47:bf:02:78: 45:83:7e:29:71:c7:5b:26:e7:37:2f:9a:21:14:f8: 6b:cf:95:22:44:7a:da:4c:89:50:bc:28:cd:f2:2f: e2:13:86:6d:f3:01:30:15:9d:b8:0a:b5:8a:63:87: b0:e1:7b:5e:4a:e8:09:e6:4f:0e:dc:1c:16:f6:46: 72:a2:ce:9a:86:35:59:c7:a1:29:65:52:9f:d3:ad: bf:fa:dc:e4:7a:49:bc:aa:d4:31:64:c1:20:47:66: 94:a1:e0:66:02:70:d8:78:9b:35:d1:de:74:03:0c: 1a:22:4c:d7:a2:82:e4:4d:df:87:c5:47:c9:f9:2a: 31:4b:38:3f:a4:fc:65:05:61:df:e0:fb:29:92:b9: 02:59:c3:74:09:de:ba:d5:99:1f:0d:37:38:57:18: 76:25:b2:db:47:76:21:0f:68:a7:b0:8d:de:b7:60: de:4c:e5:f9:a3:fd:70:66:d3:fe:c6:3e:11:92:29: 6d:60:a9:0c:74:24:c6:a0:70:d4:13:77:dc:01:12: 40:c8:e4:19:7f:3e:1b:59:4e:fc:00:d8:19:f2:a3: ef:b1:ad:9c:d3:5a:ae:24:de:6a:82:29:c6:f6:29: cf:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:36:13:DC:CE:E4:E2:D4:68:A3:85:85:A6:40:D2:44:98:5E:9E:60 X509v3 Authority Key Identifier: keyid:2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:4c:f3:13:4d:33:95:85:46:e9:8c:c0:0b:5d:a7:d2:c9:eb: d2:57:0b:dd:4a:80:e7:c8:be:8d:e8:a4:b2:09:ee:a8:36:c7: b6:ae:f6:69:08:58:7d:a2:0c:94:f0:a9:85:4b:37:61:a1:56: d1:0b:b4:40:b8:32:26:6f:5c:a7:28:0f:a6:de:59:93:d2:92: 5e:1b:9b:88:e1:6b:0f:7c:3a:1b:8c:59:93:61:8d:eb:0a:18: 83:3a:c7:e3:ba:db:ff:b4:86:8a:13:d1:5a:8d:ae:39:39:de: 7e:70:b6:e7:e8:55:57:62:8f:ef:2a:88:53:d0:d3:69:19:70: fa:03:7e:d2:33:a7:a4:23:5b:16:67:b5:1c:23:7f:b7:47:9a: fd:cb:09:53:38:35:77:12:cf:c4:a5:64:a4:ee:99:d2:55:84: 66:09:f5:d6:86:ec:bc:ea:4c:91:99:e8:4d:a0:9f:5c:63:10: fc:50:5c:4e:b2:2e:19:82:8e:8f:be:41:17:ba:e6:9d:0b:b8: b7:cb:f2:8e:fe:f0:c0:75:32:2b:9f:92:5c:c0:ce:4b:b7:7c: cc:e6:89:1e:01:f2:8a:8c:3e:a6:36:c5:79:99:21:79:34:3b: 51:0b:4b:c1:cf:7d:08:dc:7e:b5:9b:12:3b:e7:67:a1:b6:ca: 1e:d2:55:8c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Nzk0ODExMC8GA1UEBRMoMkQ4MEJCNTI5NTU4MEJFMzY4REE2OEZCOEQwM0VBQjQ4 RDdBQzZDQjAeFw0yNDExMjEwNTIxNDRaFw0yNDExMjgwNTIxNDRaMBgxFjAUBgNV BAMTDTY3M2VjMzY4LThhYjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJgs4/xgrWYQ+DOyFpc7VaWiBmdI/r8nfqR78CeEWDfilxx1sm5zcvmiEU+GvP lSJEetpMiVC8KM3yL+IThm3zATAVnbgKtYpjh7Dhe15K6AnmTw7cHBb2RnKizpqG NVnHoSllUp/Trb/63OR6Sbyq1DFkwSBHZpSh4GYCcNh4mzXR3nQDDBoiTNeiguRN 34fFR8n5KjFLOD+k/GUFYd/g+ymSuQJZw3QJ3rrVmR8NNzhXGHYlsttHdiEPaKew jd63YN5M5fmj/XBm0/7GPhGSKW1gqQx0JMagcNQTd9wBEkDI5Bl/PhtZTvwA2Bny o++xrZzTWq4k3mqCKcb2Kc/1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeDYT3M7k 4tRoo4WFpkDSRJhenmAwHwYDVR0jBBgwFoAULYC7UpVYC+No2mj7jQPqtI16xssw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3OTQ4LzQ2REM2QjBBMzdE MDExRUY4OTQ1NDcxQUM0RjlBRTAyL0xZQzdVcFZZQy1ObzJtajdqUVBxdEkxNnhz cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTFlDN1VwVllDLU5vMm1qN2pRUHF0STE2eHNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 OTQ4LzQ2REM2QjBBMzdEMDExRUY4OTQ1NDcxQUM0RjlBRTAyL0xZQzdVcFZZQy1O bzJtajdqUVBxdEkxNnhzcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFVM8xNNM5WFRumMwAtdp9LJ69JXC91KgOfIvo3opLIJ7qg2x7au9mkI WH2iDJTwqYVLN2GhVtELtEC4MiZvXKcoD6beWZPSkl4bm4jhaw98OhuMWZNhjesK GIM6x+O62/+0hooT0VqNrjk53n5wtufoVVdij+8qiFPQ02kZcPoDftIzp6QjWxZn tRwjf7dHmv3LCVM4NXcSz8SlZKTumdJVhGYJ9daG7LzqTJGZ6E2gn1xjEPxQXE6y LhmCjo++QRe65p0LuLfL8o7+8MB1MiufklzAzku3fMzmiR4B8oqMPqY2xXmZIXk0 O1ELS8HPfQjcfrWbEjvnZ6G2yh7SVYw= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org