$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft File: -Y6-IGkPLysjShVIfdCVIfPUdTw.mft (raw, json) Hash identifier: xXk7sA1/xzrckZKC/piFGVIcGTEdBkSbsLwe/EH7Hn4= Subject key identifier: 26:A7:00:68:29:03:FB:D8:6D:0F:DA:0E:2A:2D:AC:60:2F:04:BC:2B Authority key identifier: F9:8E:BE:20:69:0F:2F:2B:23:4A:15:48:7D:D0:95:21:F3:D4:75:3C Certificate issuer: /CN=A91BCC44/serialNumber=F98EBE20690F2F2B234A15487DD09521F3D4753C Certificate serial: 0A8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft Manifest number: 0A86 Signing time: Fri 22 Nov 2024 19:21:30 +0000 Manifest this update: Fri 22 Nov 2024 19:21:30 +0000 Manifest next update: Fri 29 Nov 2024 19:21:30 +0000 Files and hashes: 1: -Y6-IGkPLysjShVIfdCVIfPUdTw.crl (hash: gwLC+871OWJRhkYWGWmhtZGCZ+d0m45t+Hxaqf3w+08=) 2: B69F45F6480C11EAA7171874C4F9AE02.roa (hash: sHAaO7xcMRnAefggiAO9NIlqTNGd1VBO4+XdHoCcPBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.crl rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2700 (0xa8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCC44/serialNumber=F98EBE20690F2F2B234A15487DD09521F3D4753C Validity Not Before: Nov 22 19:21:30 2024 GMT Not After : Nov 29 19:21:30 2024 GMT Subject: CN=6740d9ba-e922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d2:f3:16:fa:15:58:06:ae:3e:8f:4c:e2:ad: d5:f2:52:7d:25:14:0c:bc:29:51:47:c2:1e:84:91: 56:c0:7a:6b:51:0f:22:ea:7a:5b:13:6b:0d:32:94: f2:f9:38:ad:81:41:d7:e9:5d:a2:da:14:09:24:fd: 55:3e:db:67:7b:71:94:a9:ff:19:05:9b:a8:8b:c3: 9c:73:07:56:b2:02:18:52:e5:ea:76:b1:fa:25:aa: 66:c9:e8:74:4b:d2:ed:d5:13:4c:c8:ca:58:cd:6b: cb:13:a7:97:fd:5b:d5:98:56:e7:a9:44:07:ca:0b: 04:a0:2f:f5:7d:d5:1d:e8:69:4a:2b:7a:ca:e1:ba: 8d:2d:ac:48:2b:0a:f4:35:3d:72:5f:06:77:f5:67: 8b:da:7c:d7:ac:ff:47:fa:c3:00:1f:b4:2f:c5:48: d0:ed:81:21:17:5e:1b:f3:15:19:2f:6c:cb:5a:74: 3d:4b:b7:c9:d7:e4:86:7a:7d:d3:3a:fd:90:4f:35: 33:20:2a:00:ff:cc:13:f1:b1:1c:5d:70:91:37:b0: bd:0a:04:90:e9:de:a4:77:5c:90:f1:55:51:94:68: c5:38:cb:d3:35:02:59:f7:c7:e0:14:3b:74:ad:44: 86:35:09:24:ab:00:78:fe:1a:a9:7f:1a:74:3a:d9: ca:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:A7:00:68:29:03:FB:D8:6D:0F:DA:0E:2A:2D:AC:60:2F:04:BC:2B X509v3 Authority Key Identifier: keyid:F9:8E:BE:20:69:0F:2F:2B:23:4A:15:48:7D:D0:95:21:F3:D4:75:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:18:52:6e:87:aa:ac:aa:52:60:90:29:fd:4a:3d:57:36:ce: 9e:61:40:c7:8a:24:e6:f2:66:94:be:80:2e:62:cb:1a:82:1f: 27:a8:93:8b:af:84:50:c2:51:9c:60:18:c8:85:7e:87:cb:bd: 61:ca:29:d8:99:08:0c:3b:60:f3:d9:0d:7a:ee:ef:56:51:b2: 27:10:8f:4f:88:48:f7:fb:5b:83:69:c9:b8:d7:33:7b:af:cf: 97:99:c1:49:74:5b:d6:d4:a0:db:ad:c2:c2:c0:0d:06:8b:31: cf:0d:a3:8e:d2:e6:9b:64:8c:bd:11:9f:21:26:94:ee:02:af: f2:15:fd:d3:90:55:c5:41:1b:a3:a1:8c:14:80:35:5b:32:8b: cb:16:3f:c9:e1:6b:b7:cd:bd:2c:77:9e:8e:6b:eb:83:81:4d: 5a:9c:ad:a8:e2:2c:36:65:9d:5d:c1:a0:89:7f:77:cc:d1:bf: 63:27:23:2f:67:05:b9:f0:94:59:2f:40:b4:45:3f:b3:a5:e2: a9:7f:01:35:68:d2:52:e4:f3:ec:97:c3:23:a1:4b:57:5a:75: b1:aa:68:31:fb:98:85:b5:96:9b:c4:d3:00:a2:ba:54:bb:b3: bd:dc:07:e5:65:00:84:56:b2:d0:64:2a:27:b1:38:7a:a7:9e: 12:fc:4d:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNDNDQxMTAvBgNVBAUTKEY5OEVCRTIwNjkwRjJGMkIyMzRBMTU0ODdERDA5NTIx RjNENDc1M0MwHhcNMjQxMTIyMTkyMTMwWhcNMjQxMTI5MTkyMTMwWjAYMRYwFAYD VQQDEw02NzQwZDliYS1lOTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NLzFvoVWAauPo9M4q3V8lJ9JRQMvClRR8IehJFWwHprUQ8i6npbE2sNMpTy +TitgUHX6V2i2hQJJP1VPttne3GUqf8ZBZuoi8OccwdWsgIYUuXqdrH6Japmyeh0 S9Lt1RNMyMpYzWvLE6eX/VvVmFbnqUQHygsEoC/1fdUd6GlKK3rK4bqNLaxIKwr0 NT1yXwZ39WeL2nzXrP9H+sMAH7QvxUjQ7YEhF14b8xUZL2zLWnQ9S7fJ1+SGen3T Ov2QTzUzICoA/8wT8bEcXXCRN7C9CgSQ6d6kd1yQ8VVRlGjFOMvTNQJZ98fgFDt0 rUSGNQkkqwB4/hqpfxp0OtnKGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCanAGgp A/vYbQ/aDiotrGAvBLwrMB8GA1UdIwQYMBaAFPmOviBpDy8rI0oVSH3QlSHz1HU8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0M0NC9DMTYwRkNBQzQ4 MEExMUVBOTgxMTkwNkRDNEY5QUUwMi8tWTYtSUdrUEx5c2pTaFZJZmRDVklmUFVk VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ZNi1JR2tQTHlzalNoVklmZENWSWZQVWRUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0M0NC9DMTYwRkNBQzQ4MEExMUVBOTgxMTkwNkRDNEY5QUUwMi8tWTYtSUdrUEx5 c2pTaFZJZmRDVklmUFVkVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBGFJuh6qsqlJgkCn9Sj1XNs6eYUDHiiTm8maUvoAuYssagh8nqJOL r4RQwlGcYBjIhX6Hy71hyinYmQgMO2Dz2Q167u9WUbInEI9PiEj3+1uDacm41zN7 r8+XmcFJdFvW1KDbrcLCwA0GizHPDaOO0uabZIy9EZ8hJpTuAq/yFf3TkFXFQRuj oYwUgDVbMovLFj/J4Wu3zb0sd56Oa+uDgU1anK2o4iw2ZZ1dwaCJf3fM0b9jJyMv ZwW58JRZL0C0RT+zpeKpfwE1aNJS5PPsl8MjoUtXWnWxqmgx+5iFtZabxNMAorpU u7O93AflZQCEVrLQZConsTh6p54S/E3h -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:39 2024 by rpki-client on console-ams.rpki-client.org