$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft File: YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft (raw, json) Hash identifier: K+FvgcPCCZY6dFWjCnkd+kMyXZAAeU9jbpXJk+2vwQQ= Subject key identifier: 34:03:26:F9:19:13:D3:C9:7C:D8:5B:93:24:AC:37:86:1B:8F:D8:63 Authority key identifier: 60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04 Certificate issuer: /CN=A91BBED0/serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft Manifest number: CA Signing time: Sat 23 Nov 2024 03:52:42 +0000 Manifest this update: Sat 23 Nov 2024 03:52:42 +0000 Manifest next update: Sat 30 Nov 2024 03:52:42 +0000 Files and hashes: 1: YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl (hash: pwXYpOp6BYHuh6e72dTI7TyLPMX/yYVJNREqNDk2Yo0=) 2: E8E76DFA77E111EEAD38F454C4F9AE02.roa (hash: fU/RkpVL4z6Cr0cyCUfNUkgmOGc3QWQsXd03NlJ0kdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBED0/serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204 Validity Not Before: Nov 23 03:52:42 2024 GMT Not After : Nov 30 03:52:42 2024 GMT Subject: CN=6741518a-5067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:71:fc:c6:aa:e7:3e:b0:e0:7d:07:9a:bf:77: 5d:10:73:29:ff:35:0a:a5:d8:04:a6:1a:be:50:76: 29:ed:43:d8:59:af:e6:bd:95:ca:27:3b:ad:8b:58: 6a:e5:32:fa:57:1c:c3:67:cb:10:b0:f8:9d:2c:32: b2:05:de:a9:57:73:dc:7f:37:a3:cc:55:57:d4:93: de:62:be:d6:cc:64:77:79:34:21:5e:e8:6e:5b:d5: 59:d9:28:53:9c:c7:47:e5:22:d3:c1:99:83:60:0c: 7a:64:70:e6:33:bc:94:22:8e:8f:cc:85:c0:4e:a8: 45:91:a3:57:a7:e6:cd:48:81:c3:af:62:3b:4a:af: 97:de:78:f7:7e:93:11:ae:c3:37:5b:08:67:d6:68: ac:61:bc:26:2c:88:82:d4:85:9f:e7:e3:dd:33:38: 4e:e8:fe:3e:43:13:8e:79:8c:d8:ce:15:18:be:c6: 15:c5:c3:1f:55:f3:e8:5d:d3:29:56:ef:c4:c3:e7: 24:f7:41:1f:63:4d:e1:95:c9:db:bc:e0:28:79:96: 24:23:bf:3c:7a:56:cc:48:fa:33:47:82:72:4b:99: c1:12:02:ea:97:6f:f5:f6:61:fd:9c:57:3c:92:10: 26:54:2a:b9:19:b3:cd:4b:70:be:4e:d5:43:2c:4b: db:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:03:26:F9:19:13:D3:C9:7C:D8:5B:93:24:AC:37:86:1B:8F:D8:63 X509v3 Authority Key Identifier: keyid:60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:56:d5:a6:3a:d3:be:3e:46:dd:71:76:86:3f:a7:7c:c5:fb: 09:b6:9c:12:d4:97:f3:ee:57:9e:7a:b9:16:a7:19:4f:a0:1d: 49:8e:1a:03:1d:58:26:b9:70:a9:2a:7f:c6:9d:6b:a8:90:27: 49:81:2c:63:07:7e:f3:a4:cd:05:7e:62:52:6c:87:f1:fb:35: c7:56:6d:67:73:d3:83:46:0c:6b:72:32:97:8a:b8:48:13:eb: 8a:b4:e3:b5:69:30:f0:10:cc:8b:5d:32:6c:53:b7:af:95:0c: d9:31:6c:35:0e:23:35:e9:3b:01:5b:59:e6:3a:ba:37:99:17: d3:6b:85:84:4b:49:a8:37:11:58:2d:c8:f8:10:e7:09:03:6f: 73:e3:f6:22:34:4b:63:5e:b2:3b:71:d2:97:14:27:03:61:a7: 8a:c9:4a:dc:cd:2d:b4:65:41:93:d0:65:7f:4a:c5:05:e4:04: 5d:6e:c8:03:82:27:f1:5e:56:ba:da:1c:7c:ed:cd:a2:5a:8d: 39:07:aa:94:37:44:fd:29:77:1d:03:ef:06:3b:ae:2a:02:ce: 05:7c:9f:ca:4a:a4:67:e5:44:39:23:02:1d:96:3a:ba:d1:3e: bd:b8:a5:38:03:6d:7b:22:6b:85:3d:b5:bb:e0:1e:e3:57:ef: a3:ec:5f:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJFRDAxMTAvBgNVBAUTKDYwOUZFQzI1OTQzODBGQzc2Mzk2OTQxNzNDM0NGRTVG MkI1OTYyMDQwHhcNMjQxMTIzMDM1MjQyWhcNMjQxMTMwMDM1MjQyWjAYMRYwFAYD VQQDEw02NzQxNTE4YS01MDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+nH8xqrnPrDgfQeav3ddEHMp/zUKpdgEphq+UHYp7UPYWa/mvZXKJzuti1hq 5TL6VxzDZ8sQsPidLDKyBd6pV3PcfzejzFVX1JPeYr7WzGR3eTQhXuhuW9VZ2ShT nMdH5SLTwZmDYAx6ZHDmM7yUIo6PzIXATqhFkaNXp+bNSIHDr2I7Sq+X3nj3fpMR rsM3Wwhn1misYbwmLIiC1IWf5+PdMzhO6P4+QxOOeYzYzhUYvsYVxcMfVfPoXdMp Vu/Ew+ck90EfY03hlcnbvOAoeZYkI788elbMSPozR4JyS5nBEgLql2/19mH9nFc8 khAmVCq5GbPNS3C+TtVDLEvbWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQDJvkZ E9PJfNhbkySsN4Ybj9hjMB8GA1UdIwQYMBaAFGCf7CWUOA/HY5aUFzw8/l8rWWIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkVEMC80QzE3QTA0RTc3 RTExMUVFQUI0QUVGNTNDNEY5QUUwMi9ZSl9zSlpRNEQ4ZGpscFFYUER6LVh5dFpZ Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lKX3NKWlE0RDhkamxwUVhQRHotWHl0WllnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkVEMC80QzE3QTA0RTc3RTExMUVFQUI0QUVGNTNDNEY5QUUwMi9ZSl9zSlpRNEQ4 ZGpscFFYUER6LVh5dFpZZ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+VtWmOtO+PkbdcXaGP6d8xfsJtpwS1Jfz7leeerkWpxlPoB1JjhoD HVgmuXCpKn/GnWuokCdJgSxjB37zpM0FfmJSbIfx+zXHVm1nc9ODRgxrcjKXirhI E+uKtOO1aTDwEMyLXTJsU7evlQzZMWw1DiM16TsBW1nmOro3mRfTa4WES0moNxFY Lcj4EOcJA29z4/YiNEtjXrI7cdKXFCcDYaeKyUrczS20ZUGT0GV/SsUF5ARdbsgD gifxXla62hx87c2iWo05B6qUN0T9KXcdA+8GO64qAs4FfJ/KSqRn5UQ5IwIdljq6 0T69uKU4A217ImuFPbW74B7jV++j7F9n -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:56 2024 by rpki-client on console-fra.rpki-client.org