$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: /AxknhlMvpIaqm4867T5GrhlR31uRF2qBlW0m1P18hk= Subject key identifier: D4:D1:C8:E1:CD:DE:58:85:FD:80:47:AF:E0:B4:4B:EC:92:C3:6B:DC Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: 1F Signing time: Thu 21 Nov 2024 05:55:08 +0000 Manifest this update: Thu 21 Nov 2024 05:55:07 +0000 Manifest next update: Thu 28 Nov 2024 05:55:07 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: u1CN2PM9dbhUC2JZpP7m8jhMYueBpN12Kk7w6CLqLUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Nov 21 05:55:07 2024 GMT Not After : Nov 28 05:55:07 2024 GMT Subject: CN=673ecb3c-6feb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:cc:8d:eb:f4:ee:65:86:a3:86:1f:ca:0d:88: a5:76:50:86:74:37:62:78:e2:62:9f:08:11:ce:68: 84:3d:ab:85:34:4a:c5:fb:58:ee:2b:48:c9:8d:71: 2f:bc:44:28:9a:81:e4:45:55:90:f5:31:f4:f6:49: fd:fd:0e:36:47:18:c1:bd:0e:10:b5:01:6a:88:3d: 8a:99:f3:b1:95:80:eb:d9:73:c7:8b:4e:ac:89:23: fa:28:8c:ca:e4:71:4e:a9:56:4e:16:6c:c4:59:95: 8e:02:ee:4c:b4:28:6f:12:a3:e5:73:a4:c8:61:79: 0c:49:d4:61:34:63:09:0e:e0:a5:17:77:28:e9:ac: 56:15:9f:34:27:26:22:fa:c0:82:7a:a2:04:f2:f2: 16:9f:6c:6d:06:62:c7:89:3f:15:a8:4b:6e:33:05: 03:50:fa:f1:16:cc:4c:fa:23:51:25:1e:22:bb:af: b2:57:01:24:f3:7d:f4:fd:de:bb:ec:f0:91:02:31: 58:22:8a:9f:0f:55:ea:47:fd:00:bf:89:23:00:62: 93:15:81:ac:48:06:b5:66:70:28:fc:77:9f:a3:2f: 59:e1:08:39:17:98:8d:7e:7d:18:c5:94:c0:f3:a3: 2c:e5:21:f5:4b:10:79:39:4b:83:d6:c7:97:c3:87: 42:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:D1:C8:E1:CD:DE:58:85:FD:80:47:AF:E0:B4:4B:EC:92:C3:6B:DC X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:d5:b7:8e:74:1c:63:38:3d:72:18:4b:a9:70:3f:ad:18:3f: d3:0b:a0:64:43:f4:ae:9d:35:ac:3e:bb:fe:4e:b5:04:c9:7f: dc:48:73:ec:7e:3b:f7:8d:64:7d:01:f2:cb:b7:dc:73:24:44: 1e:2f:d1:1f:20:ac:8b:b5:cb:92:13:37:c5:e3:af:f5:3c:87: b0:b1:21:1f:c5:38:20:dd:89:5a:69:d9:aa:93:45:66:88:d8: 67:f4:32:a2:4f:cd:60:ed:74:63:94:a8:05:a7:14:31:10:7a: d0:fe:7d:75:f5:6d:8b:a7:91:67:fb:df:d9:5e:9f:cd:6d:e0: 53:f3:73:da:13:fe:6e:16:53:ad:22:f1:3f:d7:d6:3f:ee:02: b8:55:96:43:c4:bb:c1:51:34:ea:86:b0:13:fd:08:af:25:e7: c5:34:09:9a:1d:47:7c:e3:9b:9d:a3:8e:74:b8:4c:d1:7f:0e: da:2a:8c:5f:8c:da:d6:9b:c9:ed:33:8d:46:9c:c6:c4:b3:99: e5:93:89:4e:0e:48:1c:05:20:32:a8:5a:33:5c:2f:e5:02:fa: 87:54:96:b6:40:22:74:65:8c:70:77:b9:28:55:90:50:d6:68: e5:93:55:75:1b:40:35:d7:cc:89:5c:29:9f:a7:13:c0:77:e3: ef:1e:69:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RkU0RTExMC8GA1UEBRMoNjAxRUY1QUQyN0MzREMwRDREOTgyREI2QkI0NzZDMDZD QkM3MDBBMDAeFw0yNDExMjEwNTU1MDdaFw0yNDExMjgwNTU1MDdaMBgxFjAUBgNV BAMTDTY3M2VjYjNjLTZmZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkzI3r9O5lhqOGH8oNiKV2UIZ0N2J44mKfCBHOaIQ9q4U0SsX7WO4rSMmNcS+8 RCiageRFVZD1MfT2Sf39DjZHGMG9DhC1AWqIPYqZ87GVgOvZc8eLTqyJI/oojMrk cU6pVk4WbMRZlY4C7ky0KG8So+VzpMhheQxJ1GE0YwkO4KUXdyjprFYVnzQnJiL6 wIJ6ogTy8hafbG0GYseJPxWoS24zBQNQ+vEWzEz6I1ElHiK7r7JXASTzffT93rvs 8JECMVgiip8PVepH/QC/iSMAYpMVgaxIBrVmcCj8d5+jL1nhCDkXmI1+fRjFlMDz oyzlIfVLEHk5S4PWx5fDh0IDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1NHI4c3e WIX9gEev4LRL7JLDa9wwHwYDVR0jBBgwFoAUYB71rSfD3A1NmC22u0dsBsvHAKAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGRTRFL0RBM0Q3MUE4N0JF MzExRUY4OEQ5Qzc1M0M0RjlBRTAyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFL QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWUI3MXJTZkQzQTFObUMyMnUwZHNCc3ZIQUtBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJG RTRFL0RBM0Q3MUE4N0JFMzExRUY4OEQ5Qzc1M0M0RjlBRTAyL1lCNzFyU2ZEM0Ex Tm1DMjJ1MGRzQnN2SEFLQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALPVt450HGM4PXIYS6lwP60YP9MLoGRD9K6dNaw+u/5OtQTJf9xIc+x+ O/eNZH0B8su33HMkRB4v0R8grIu1y5ITN8Xjr/U8h7CxIR/FOCDdiVpp2aqTRWaI 2Gf0MqJPzWDtdGOUqAWnFDEQetD+fXX1bYunkWf739len81t4FPzc9oT/m4WU60i 8T/X1j/uArhVlkPEu8FRNOqGsBP9CK8l58U0CZodR3zjm52jjnS4TNF/DtoqjF+M 2tabye0zjUacxsSzmeWTiU4OSBwFIDKoWjNcL+UC+odUlrZAInRljHB3uShVkFDW aOWTVXUbQDXXzIlcKZ+nE8B34+8eaTY= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:49 2024 by rpki-client on console-fra.rpki-client.org