$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft File: LYC7UpVYC-No2mj7jQPqtI16xss.mft (raw, json) Hash identifier: nMK9FejVTaQ3Bhfn5bvIMiBubmL7HXU3AxLgu01hRiU= Subject key identifier: 0F:93:CB:D8:E2:66:37:55:99:2B:3C:33:8F:D7:E3:19:D3:93:29:99 Authority key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB Certificate issuer: /CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft Manifest number: 2A Signing time: Thu 19 Sep 2024 05:59:15 +0000 Manifest this update: Thu 19 Sep 2024 05:59:14 +0000 Manifest next update: Thu 26 Sep 2024 05:59:14 +0000 Files and hashes: 1: LYC7UpVYC-No2mj7jQPqtI16xss.crl (hash: Jat53wOlOTT2IWrcp0+iprydx9iMZP+Fy4vlo3NY1bw=) 2: 70ED9D2837D111EF99A8011CC4F9AE02.roa (hash: XcL7vfDB7+jSL63SdSHmjhv1kS+M1yfgUS1Jg2qNUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:59:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Validity Not Before: Sep 19 05:59:14 2024 GMT Not After : Sep 26 05:59:14 2024 GMT Subject: CN=66ebbdb2-b346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:74:b9:b2:61:b3:de:5d:f1:4e:d0:f7:a0:34: 6a:16:84:a7:af:1d:cc:5e:08:1c:69:b4:58:fc:22: 8f:89:e6:f0:f1:a8:bd:5d:e4:c3:5b:e1:0d:2a:84: e5:52:b9:6f:27:5c:9b:07:c6:51:0a:d4:08:3e:16: 51:f2:bb:90:8a:4e:1a:f4:ca:51:bd:4b:fd:c2:92: ed:38:d0:2a:05:86:26:f8:12:a2:8b:14:c3:ad:5a: db:85:24:02:b9:fd:fb:63:ca:5a:02:80:6f:a1:7c: 41:74:3e:8a:f8:63:ae:78:33:44:8b:26:d7:b8:c5: 5c:14:02:37:6f:95:e7:36:41:8d:91:e1:f5:ad:ad: f4:11:8c:64:7d:06:e6:45:f6:f4:c8:b5:94:5d:a0: 16:97:5f:92:83:17:1b:bf:b6:65:e9:de:46:49:f7: 46:28:62:08:a2:85:bd:7f:35:5c:47:87:f2:d1:2f: d5:5f:8a:8e:03:63:1b:de:ca:e1:d1:60:31:2e:5f: 2d:7a:6a:66:ca:7e:75:5f:b7:3c:c9:e0:17:71:d3: d7:70:04:b3:7d:66:1a:2b:78:cb:ef:0c:d5:1a:32: a6:ca:6f:f8:5e:c1:6e:e0:6c:42:35:63:a0:29:b2: d2:4c:2e:29:51:15:81:8c:6f:ef:1d:14:a8:63:39: 4b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:93:CB:D8:E2:66:37:55:99:2B:3C:33:8F:D7:E3:19:D3:93:29:99 X509v3 Authority Key Identifier: keyid:2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:70:8f:40:48:fb:ff:19:35:b9:3b:ad:7b:85:d2:c6:46:32: 97:b9:b5:73:fd:7d:43:9b:67:fe:8b:82:b9:13:9a:c3:93:c9: 0a:b8:aa:fa:cc:14:58:94:34:04:39:b2:97:c8:f1:e3:76:04: 21:6c:23:f8:ac:07:81:2d:ab:21:46:05:2a:ab:ed:12:a9:0f: 97:28:47:ac:aa:83:ae:46:22:ca:d7:fe:02:90:44:c2:9d:ad: bf:5f:00:84:b3:3f:2f:25:5e:fe:24:75:b3:40:57:47:3b:d8: fb:a0:9f:ad:81:21:7a:8b:77:38:fc:22:bc:23:69:3e:39:e3: 3a:f4:b4:64:53:d6:da:cb:40:25:7a:9a:51:e7:73:96:4a:f4: 20:1c:28:45:e0:a7:d2:0f:8d:44:0c:3b:60:bf:eb:d8:a4:01: 8a:af:59:3b:44:ba:18:78:f7:8d:11:d7:74:f8:76:c1:b1:21: bf:e9:64:ed:79:14:66:33:26:cb:66:08:c6:51:7f:8e:33:b4: 3e:05:3f:60:9f:9d:ce:53:7d:ca:4a:e3:0a:7a:16:89:9d:78: 70:95:f1:66:27:21:bf:ab:04:96:67:04:00:a9:01:b0:0e:b1: c6:13:79:12:8e:2b:e8:17:eb:f2:95:31:1b:c3:e7:eb:7c:6b: f0:a8:d4:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Nzk0ODExMC8GA1UEBRMoMkQ4MEJCNTI5NTU4MEJFMzY4REE2OEZCOEQwM0VBQjQ4 RDdBQzZDQjAeFw0yNDA5MTkwNTU5MTRaFw0yNDA5MjYwNTU5MTRaMBgxFjAUBgNV BAMTDTY2ZWJiZGIyLWIzNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCydLmyYbPeXfFO0PegNGoWhKevHcxeCBxptFj8Io+J5vDxqL1d5MNb4Q0qhOVS uW8nXJsHxlEK1Ag+FlHyu5CKThr0ylG9S/3Cku040CoFhib4EqKLFMOtWtuFJAK5 /ftjyloCgG+hfEF0Por4Y654M0SLJte4xVwUAjdvlec2QY2R4fWtrfQRjGR9BuZF 9vTItZRdoBaXX5KDFxu/tmXp3kZJ90YoYgiihb1/NVxHh/LRL9Vfio4DYxveyuHR YDEuXy16ambKfnVftzzJ4Bdx09dwBLN9ZhoreMvvDNUaMqbKb/hewW7gbEI1Y6Ap stJMLilRFYGMb+8dFKhjOUsdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUD5PL2OJm N1WZKzwzj9fjGdOTKZkwHwYDVR0jBBgwFoAULYC7UpVYC+No2mj7jQPqtI16xssw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3OTQ4LzQ2REM2QjBBMzdE MDExRUY4OTQ1NDcxQUM0RjlBRTAyL0xZQzdVcFZZQy1ObzJtajdqUVBxdEkxNnhz cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTFlDN1VwVllDLU5vMm1qN2pRUHF0STE2eHNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 OTQ4LzQ2REM2QjBBMzdEMDExRUY4OTQ1NDcxQUM0RjlBRTAyL0xZQzdVcFZZQy1O bzJtajdqUVBxdEkxNnhzcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAChwj0BI+/8ZNbk7rXuF0sZGMpe5tXP9fUObZ/6LgrkTmsOTyQq4qvrM FFiUNAQ5spfI8eN2BCFsI/isB4EtqyFGBSqr7RKpD5coR6yqg65GIsrX/gKQRMKd rb9fAISzPy8lXv4kdbNAV0c72Pugn62BIXqLdzj8IrwjaT454zr0tGRT1trLQCV6 mlHnc5ZK9CAcKEXgp9IPjUQMO2C/69ikAYqvWTtEuhh4940R13T4dsGxIb/pZO15 FGYzJstmCMZRf44ztD4FP2Cfnc5TfcpK4wp6FomdeHCV8WYnIb+rBJZnBACpAbAO scYTeRKOK+gX6/KVMRvD5+t8a/Co1MI= -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:21 2024 by rpki-client on console-fra.rpki-client.org