$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: 4UkuqLNpReuTU5R+kFRQ+1lf1JRbqHzfi/FtNcu99yY= Subject key identifier: FB:8A:65:68:0E:8C:13:3F:DA:E6:D4:99:08:76:6B:EF:53:9C:C2:24 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: 21 Signing time: Thu 19 Sep 2024 06:07:33 +0000 Manifest this update: Thu 19 Sep 2024 06:07:32 +0000 Manifest next update: Thu 26 Sep 2024 06:07:32 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: Pd/mcENhVYGSnglmE2tE5VvSLDiCeaBUP9eEq5xHGTo=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: 39fzunF22gk0jBRxG5Uxab3F1EcOlffH5iC8bLOkYdw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Sep 19 06:07:32 2024 GMT Not After : Sep 26 06:07:32 2024 GMT Subject: CN=66ebbfa4-383d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:35:b7:5b:6d:4c:e9:36:29:e2:cb:eb:71:7b: 9f:7f:8b:0f:6a:41:89:2a:cd:c3:7f:b9:a9:9b:d1: 35:ac:ac:52:fb:e7:f7:b3:1d:5a:f4:87:c0:ad:10: 9d:0b:cd:ed:85:71:31:24:19:4a:ca:6c:6e:3a:ff: e6:98:0e:d5:6d:1e:b9:7a:e6:22:f1:06:47:dc:98: 5d:56:d0:d9:78:87:4f:36:a3:59:7a:b0:30:42:cf: 47:71:d2:cd:0c:30:94:65:25:33:17:22:04:ea:ab: b8:e8:6d:7b:00:d4:dc:c5:4c:31:90:e1:36:f7:a5: bd:58:a3:ff:7c:c5:df:52:3d:4f:83:96:de:59:c9: 12:fd:74:55:fd:e5:4e:c6:76:2b:1b:a9:1e:ba:fe: 91:08:f4:5d:a8:1d:fd:1b:f4:8f:96:11:42:b9:85: c8:08:0f:67:19:aa:5d:49:95:97:ab:9b:8c:9f:28: 06:48:74:e8:a6:f2:d8:77:77:2c:44:3c:84:54:a8: c7:db:4b:29:df:7e:73:4f:9b:51:71:57:41:49:b7: b1:e5:7c:7d:6d:b8:40:ef:fc:95:9d:fa:04:30:42: 57:b0:d8:ce:d2:b5:5d:6b:c1:14:17:d4:b8:c9:88: 88:34:1d:d3:16:0d:b6:1d:90:09:78:bc:dd:70:7d: 05:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:8A:65:68:0E:8C:13:3F:DA:E6:D4:99:08:76:6B:EF:53:9C:C2:24 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:53:06:db:5d:86:2e:7c:29:c4:b9:a9:10:88:5f:9d:92:0c: 3c:8e:ad:fc:e3:75:3b:8f:a0:5b:e8:64:c6:b5:36:de:0d:3e: 36:5a:e1:89:3d:11:28:c7:67:a7:61:13:67:35:a9:ea:c3:d6: 23:5f:ea:c0:6e:8b:67:53:16:d4:73:21:cd:e6:b0:a7:b3:66: d9:23:f6:21:9c:35:36:87:e3:f6:62:6a:f1:66:7e:99:83:fa: 8b:40:28:13:73:8b:be:48:02:e1:ce:e3:7f:78:b3:db:10:11: 9e:e8:8e:e0:75:2b:c3:ea:1e:39:a0:4f:47:3f:d7:5c:d7:44: 9e:4f:62:a5:70:42:8f:89:05:2b:0a:db:d2:69:47:7d:f4:1d: 8b:14:40:21:2d:85:0b:bf:39:bd:9f:38:26:5e:b0:3f:0c:cb: 4c:a6:39:0d:2a:fc:75:53:91:84:4a:b3:ef:76:7f:d3:d8:a3: 91:d8:15:21:74:75:12:67:87:54:4a:94:cb:13:cc:c2:f3:3a: d3:c2:73:e4:7e:09:87:29:a3:d4:91:29:ed:34:af:81:7d:43: 22:02:cb:34:29:01:7c:80:71:d2:56:f9:79:ea:fb:85:aa:3a: 2e:0d:a0:00:ab:07:19:93:f9:d2:6c:3b:d6:b8:4b:fa:a2:ba: 63:7c:da:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjYyOTExMC8GA1UEBRMoNjMwRUZDOEJDODI0N0Y5OUEwMTI4MDc0MUU0QTFBMERC N0YxNDdCMDAeFw0yNDA5MTkwNjA3MzJaFw0yNDA5MjYwNjA3MzJaMBgxFjAUBgNV BAMTDTY2ZWJiZmE0LTM4M2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZNbdbbUzpNiniy+txe59/iw9qQYkqzcN/uamb0TWsrFL75/ezHVr0h8CtEJ0L ze2FcTEkGUrKbG46/+aYDtVtHrl65iLxBkfcmF1W0Nl4h082o1l6sDBCz0dx0s0M MJRlJTMXIgTqq7jobXsA1NzFTDGQ4Tb3pb1Yo/98xd9SPU+Dlt5ZyRL9dFX95U7G disbqR66/pEI9F2oHf0b9I+WEUK5hcgID2cZql1JlZerm4yfKAZIdOim8th3dyxE PIRUqMfbSynffnNPm1FxV0FJt7HlfH1tuEDv/JWd+gQwQlew2M7StV1rwRQX1LjJ iIg0HdMWDbYdkAl4vN1wfQU3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+4plaA6M Ez/a5tSZCHZr71OcwiQwHwYDVR0jBBgwFoAUYw78i8gkf5mgEoB0HkoaDbfxR7Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCNjI5L0UyQ0Y5NDBBNDVC NDExRUY4RkRCNzQxREM0RjlBRTAyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWXc3OGk4Z2tmNW1nRW9CMEhrb2FEYmZ4UjdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC NjI5L0UyQ0Y5NDBBNDVCNDExRUY4RkRCNzQxREM0RjlBRTAyL1l3NzhpOGdrZjVt Z0VvQjBIa29hRGJmeFI3QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALBTBttdhi58KcS5qRCIX52SDDyOrfzjdTuPoFvoZMa1Nt4NPjZa4Yk9 ESjHZ6dhE2c1qerD1iNf6sBui2dTFtRzIc3msKezZtkj9iGcNTaH4/ZiavFmfpmD +otAKBNzi75IAuHO4394s9sQEZ7ojuB1K8PqHjmgT0c/11zXRJ5PYqVwQo+JBSsK 29JpR330HYsUQCEthQu/Ob2fOCZesD8My0ymOQ0q/HVTkYRKs+92f9PYo5HYFSF0 dRJnh1RKlMsTzMLzOtPCc+R+CYcpo9SRKe00r4F9QyICyzQpAXyAcdJW+Xnq+4Wq Oi4NoACrBxmT+dJsO9a4S/qiumN82ms= -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:22 2024 by rpki-client on console-fra.rpki-client.org