$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft File: y2yF51LVad_PHekEycvnHkg-9fI.mft (raw, json) Hash identifier: OFh04KgcOSFMSlbea0upjJj8uVr3UQkasRY4ppRTL6k= Subject key identifier: 4C:25:75:B6:B2:B4:64:64:6B:37:A2:62:7A:5B:42:35:CA:87:9F:56 Authority key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 Certificate issuer: /CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Certificate serial: 0471 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft Manifest number: 046C Signing time: Fri 22 Nov 2024 23:40:18 +0000 Manifest this update: Fri 22 Nov 2024 23:40:18 +0000 Manifest next update: Fri 29 Nov 2024 23:40:18 +0000 Files and hashes: 1: y2yF51LVad_PHekEycvnHkg-9fI.crl (hash: qwSgjicnsC6FGZfPOCRy1N5PIGNcNalk1NNKHbO3dHk=) 2: B0A2E01225C411EC88466E59C4F9AE02.roa (hash: I+piLjYGGw6+AkIXPcBrTAOQrjo0ool2PDn7pB5uc1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1137 (0x471) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Validity Not Before: Nov 22 23:40:18 2024 GMT Not After : Nov 29 23:40:18 2024 GMT Subject: CN=67411662-22f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:53:95:f3:c0:fa:88:b8:fd:9f:70:f5:f7:29: 6e:72:17:7c:1c:94:15:2d:b1:4f:62:65:de:95:1a: 87:1f:10:e3:a9:e5:f2:10:fb:7b:ab:7d:b8:85:54: 80:c2:99:6f:69:fb:6c:5e:a5:1d:91:36:d7:26:8e: 95:42:4a:cb:11:d5:06:31:c9:fd:2f:57:50:dc:fb: 97:b3:c9:14:e4:1e:5a:72:92:94:1f:34:ca:55:4a: 1f:31:5a:e6:3b:c7:bb:b5:56:ab:f5:e2:14:54:62: 42:c3:fb:09:1a:ec:cd:5d:68:08:47:82:06:13:0f: 6a:fa:ff:87:cb:e5:50:a4:f7:48:f4:56:eb:42:ac: 3a:58:ee:97:b9:c8:52:29:20:5c:7e:64:d4:41:b0: f8:4a:09:21:5a:da:ca:aa:cc:d5:37:dc:37:31:aa: 94:68:96:f4:6d:92:00:89:f1:8b:32:b2:2f:f6:92: 95:aa:bb:9b:d0:ba:19:56:3a:69:5d:44:a5:7a:43: d0:1d:5f:3f:99:c5:e1:95:01:0d:4a:2e:94:b7:dc: 92:c8:5d:3c:7e:18:7f:5f:a5:06:96:e7:0c:f8:e7: f2:cb:f1:ea:57:24:1b:dd:31:5f:8f:c3:ea:6d:2e: 7e:cb:de:ce:6f:b4:fc:ea:fd:ce:c7:42:cb:dd:65: dc:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:25:75:B6:B2:B4:64:64:6B:37:A2:62:7A:5B:42:35:CA:87:9F:56 X509v3 Authority Key Identifier: keyid:CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:6a:3a:2b:b0:da:ea:cc:fe:5d:bc:cc:e1:bb:03:a1:f3:ad: c9:9c:3c:b1:bd:ad:75:9b:87:1d:c7:77:34:e8:6b:88:69:05: 02:40:a4:75:67:78:03:f9:fd:2d:47:f1:8a:a9:dc:8f:30:93: 1a:68:c2:2d:97:ba:a7:e1:b1:8b:20:20:f6:be:42:99:71:08: 1d:8a:9c:8c:c3:c0:73:d3:09:89:51:97:00:62:fd:27:3c:61: be:7e:cd:2b:a9:28:80:f9:c4:67:32:a0:e5:3f:ae:50:83:00: 2b:96:95:8b:16:ef:35:43:3c:2f:89:aa:89:1c:88:0e:90:9c: c9:7e:07:4d:a8:e1:01:d7:a0:79:b2:40:5a:7c:f1:68:d5:bd: 25:c0:8c:07:07:77:0d:4d:10:75:82:e7:85:3d:69:96:04:04: bd:1f:8e:fd:17:87:76:c9:19:b0:86:b0:92:f1:2e:e6:bf:4f: e2:db:fa:32:f2:d1:97:d7:0c:6c:d2:61:40:a1:cf:f2:34:7e: d1:36:14:ef:21:3e:67:43:b0:86:69:f4:7c:9e:e0:ff:0a:ec: ef:68:63:9b:a1:b8:02:d5:3b:3f:e5:36:01:60:31:56:f6:65: 77:99:31:65:08:c8:43:5c:cd:dc:b6:85:1b:e0:2c:e3:0c:3e: 7d:fa:40:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKENCNkM4NUU3NTJENTY5REZDRjFERTkwNEM5Q0JFNzFF NDgzRUY1RjIwHhcNMjQxMTIyMjM0MDE4WhcNMjQxMTI5MjM0MDE4WjAYMRYwFAYD VQQDEw02NzQxMTY2Mi0yMmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1OV88D6iLj9n3D19yluchd8HJQVLbFPYmXelRqHHxDjqeXyEPt7q324hVSA wplvaftsXqUdkTbXJo6VQkrLEdUGMcn9L1dQ3PuXs8kU5B5acpKUHzTKVUofMVrm O8e7tVar9eIUVGJCw/sJGuzNXWgIR4IGEw9q+v+Hy+VQpPdI9FbrQqw6WO6XuchS KSBcfmTUQbD4SgkhWtrKqszVN9w3MaqUaJb0bZIAifGLMrIv9pKVqrub0LoZVjpp XUSlekPQHV8/mcXhlQENSi6Ut9ySyF08fhh/X6UGlucM+Ofyy/HqVyQb3TFfj8Pq bS5+y97Ob7T86v3Ox0LL3WXctwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwldbay tGRkazeiYnpbQjXKh59WMB8GA1UdIwQYMBaAFMtshedS1Wnfzx3pBMnL5x5IPvXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS9CQjUzMjNFODI1 QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFkX1BIZWtFeWN2bkhrZy05 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyeUY1MUxWYWRfUEhla0V5Y3ZuSGtnLTlmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS9CQjUzMjNFODI1QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFk X1BIZWtFeWN2bkhrZy05ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqajorsNrqzP5dvMzhuwOh863JnDyxva11m4cdx3c06GuIaQUCQKR1 Z3gD+f0tR/GKqdyPMJMaaMItl7qn4bGLICD2vkKZcQgdipyMw8Bz0wmJUZcAYv0n PGG+fs0rqSiA+cRnMqDlP65QgwArlpWLFu81QzwviaqJHIgOkJzJfgdNqOEB16B5 skBafPFo1b0lwIwHB3cNTRB1gueFPWmWBAS9H479F4d2yRmwhrCS8S7mv0/i2/oy 8tGX1wxs0mFAoc/yNH7RNhTvIT5nQ7CGafR8nuD/CuzvaGObobgC1Ts/5TYBYDFW 9mV3mTFlCMhDXM3ctoUb4CzjDD59+kDp -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:27 2024 by rpki-client on console-ams.rpki-client.org