$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: QmFMfOx8LqleNMbIdFtRrBqDe5hYGGSiKAeq3GUy4AI= Subject key identifier: BF:65:D9:5A:92:C6:01:E4:A4:79:9A:B3:2C:DB:20:58:3E:A1:4B:75 Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 022F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 0226 Signing time: Sat 23 Nov 2024 01:28:57 +0000 Manifest this update: Sat 23 Nov 2024 01:28:57 +0000 Manifest next update: Sat 30 Nov 2024 01:28:57 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: wZ4jBVRnkv83yXzSerZWSsHvXzNtDdc2w4/GaYqqn5U=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: yZy+TqtowAyp3q8j4FvJTBd3TEpqHb7gUX+ZaoqGeKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Nov 23 01:28:57 2024 GMT Not After : Nov 30 01:28:57 2024 GMT Subject: CN=67412fd9-7db7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:23:a7:b0:16:f0:c1:16:d0:9b:ea:02:03:a5: 1a:be:cf:cb:a2:15:ca:5c:fb:6b:1c:84:89:42:28: 77:9e:6b:0f:2c:a8:5d:d8:f8:41:2e:59:48:5f:dd: 1a:3a:79:17:d5:f2:bb:33:48:60:07:32:c2:7e:44: cd:ed:e6:de:2e:83:aa:d4:5f:e3:bd:c5:f0:3c:76: 31:8f:57:48:34:19:1a:31:d6:f1:84:4f:3c:17:5f: fc:06:f8:d3:c7:a2:74:9a:28:06:d1:78:53:3c:dd: 4b:37:54:a5:aa:5f:a7:f5:c3:9c:ce:13:15:65:1c: 01:16:f1:ca:fc:31:81:97:1e:ad:11:96:e7:5d:80: 48:26:ff:ce:14:4c:3f:cd:91:01:d4:8f:52:e5:c4: 71:f0:be:9a:b4:43:a1:4d:23:8f:24:ed:cf:bd:94: 53:d9:0c:45:ae:ed:db:c3:00:a6:1d:a4:27:a7:14: a3:4a:39:18:20:eb:fd:70:f9:16:e8:4e:1b:c8:65: a3:dc:cb:fb:d7:00:13:7e:bb:d1:be:dd:74:f6:43: 43:0d:c0:6c:0b:73:8b:ea:d7:ba:a2:15:15:ee:71: 6e:bf:4d:17:d9:4a:c6:d5:22:80:b7:e9:02:d3:1e: b4:81:04:06:80:7a:1b:b3:57:82:6a:af:81:ca:b1: 2b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:65:D9:5A:92:C6:01:E4:A4:79:9A:B3:2C:DB:20:58:3E:A1:4B:75 X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:5e:3e:12:3c:f5:d6:85:67:02:02:50:31:0d:49:ca:9c:21: 4c:3b:2c:fa:a5:48:28:ff:1e:34:7a:60:ad:cd:d1:6c:78:29: 4d:29:97:2d:01:e1:56:c6:af:fa:39:36:c8:ff:4a:26:c9:57: 03:8e:b1:8c:ca:12:41:fa:25:00:76:8b:45:3d:05:da:d4:46: de:7b:a6:99:ad:74:fe:1c:33:b4:b2:ab:43:8f:7e:c7:84:6c: 09:28:13:88:2d:f4:2a:74:4c:f9:39:e1:47:97:d7:6c:f8:85: 6f:3f:25:6b:98:22:09:a6:54:4f:75:1a:f7:d0:4f:b4:14:ca: cb:64:f3:63:e2:bc:1e:2e:7a:74:7d:db:02:be:80:00:fa:4c: 5e:ea:49:59:4b:64:ac:2b:51:ef:7e:88:33:79:40:5d:bb:2b: 82:83:37:5d:51:41:2f:f6:56:7e:c5:00:4c:df:39:c7:81:71: e0:f0:a2:85:2b:0d:24:af:4b:e9:ad:ee:18:f7:ad:88:a9:0a: 7d:47:12:8b:df:d3:83:0a:e9:cb:09:60:c0:e1:43:2e:de:1e: 4a:8b:6f:8f:10:70:8d:88:be:da:29:3d:90:da:99:ce:e6:47: 35:c6:a8:d1:1b:4e:ce:71:4e:07:1d:7e:96:e2:2b:bd:b9:1e: 48:28:10:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjQxMTIzMDEyODU3WhcNMjQxMTMwMDEyODU3WjAYMRYwFAYD VQQDEw02NzQxMmZkOS03ZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSOnsBbwwRbQm+oCA6Uavs/LohXKXPtrHISJQih3nmsPLKhd2PhBLllIX90a OnkX1fK7M0hgBzLCfkTN7ebeLoOq1F/jvcXwPHYxj1dINBkaMdbxhE88F1/8BvjT x6J0migG0XhTPN1LN1Slql+n9cOczhMVZRwBFvHK/DGBlx6tEZbnXYBIJv/OFEw/ zZEB1I9S5cRx8L6atEOhTSOPJO3PvZRT2QxFru3bwwCmHaQnpxSjSjkYIOv9cPkW 6E4byGWj3Mv71wATfrvRvt109kNDDcBsC3OL6te6ohUV7nFuv00X2UrG1SKAt+kC 0x60gQQGgHobs1eCaq+ByrEr1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9l2VqS xgHkpHmasyzbIFg+oUt1MB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcXj4SPPXWhWcCAlAxDUnKnCFMOyz6pUgo/x40emCtzdFseClNKZct AeFWxq/6OTbI/0omyVcDjrGMyhJB+iUAdotFPQXa1Ebee6aZrXT+HDO0sqtDj37H hGwJKBOILfQqdEz5OeFHl9ds+IVvPyVrmCIJplRPdRr30E+0FMrLZPNj4rweLnp0 fdsCvoAA+kxe6klZS2SsK1HvfogzeUBduyuCgzddUUEv9lZ+xQBM3znHgXHg8KKF Kw0kr0vpre4Y962IqQp9RxKL39ODCunLCWDA4UMu3h5Ki2+PEHCNiL7aKT2Q2pnO 5kc1xqjRG07OcU4HHX6W4iu9uR5IKBBZ -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:51 2024 by rpki-client on console-ams.rpki-client.org