$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft File: yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft (raw, json) Hash identifier: vzUi3vCzNu4nLUCY2qzT3oc2vC3feyyBGzBa8okwOUg= Subject key identifier: 89:70:4C:74:B1:D3:28:36:94:D1:B9:38:1D:2E:5C:7B:76:0E:60:47 Authority key identifier: C8:7F:CA:E9:07:BD:20:5A:08:E5:4C:67:A6:33:56:D9:21:C5:91:3B Certificate issuer: /CN=A91CC8B1/serialNumber=C87FCAE907BD205A08E54C67A63356D921C5913B Certificate serial: 0BC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft Manifest number: 0BC2 Signing time: Fri 22 Nov 2024 18:34:44 +0000 Manifest this update: Fri 22 Nov 2024 18:34:44 +0000 Manifest next update: Fri 29 Nov 2024 18:34:44 +0000 Files and hashes: 1: yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl (hash: WyexoILvoGuy/SQjFNsQeERHYZWaZrXOGMiEFS1IZWs=) 2: 69308C200A9611EABF034172C4F9AE02.roa (hash: 7tTtY2UG5+baXyuNQBfwIK8ila3VnuaOeuIjzJ0fpoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3017 (0xbc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC8B1/serialNumber=C87FCAE907BD205A08E54C67A63356D921C5913B Validity Not Before: Nov 22 18:34:44 2024 GMT Not After : Nov 29 18:34:44 2024 GMT Subject: CN=6740cec4-7544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:29:58:07:2c:97:17:8d:40:a5:90:60:2d:f0: 21:02:9b:cd:ff:6e:ca:40:0f:46:34:c7:02:dc:83: 42:87:93:c7:25:67:27:bf:7f:02:61:61:b2:ce:82: bd:97:6a:57:45:7a:ab:6b:24:2b:57:ba:8e:b3:6d: aa:66:06:b7:95:c5:64:7f:68:f9:12:d0:58:80:38: 43:73:94:23:71:c4:c9:ab:24:2f:03:13:9f:5b:98: e9:7d:ea:c3:ed:ca:11:2e:5b:ce:b6:4a:f1:f5:c9: 30:62:6b:f2:4a:d8:67:a6:87:25:1e:24:1b:ac:19: 45:11:48:7f:0a:50:59:c3:b2:27:2a:fe:69:46:86: 4c:17:c3:29:64:c6:e8:39:9b:c7:18:22:51:81:61: 50:b0:33:93:89:4c:89:b4:ee:70:5e:36:55:b0:1c: 21:04:89:2c:db:5b:fd:db:99:3c:ce:39:8e:0e:a9: 7e:65:4c:1b:a4:9b:6f:3b:8e:dc:8e:d3:d7:b9:a6: 9a:98:24:d2:61:7f:6e:d9:cf:c5:36:1d:50:f4:d5: 84:f6:10:25:db:09:0c:bd:1d:32:a8:73:87:1c:cc: 43:20:2f:41:97:9a:4f:32:78:6f:e4:e1:26:2d:38: af:44:fb:d7:05:6e:1a:f9:7d:8b:8e:54:b3:72:3c: 37:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:70:4C:74:B1:D3:28:36:94:D1:B9:38:1D:2E:5C:7B:76:0E:60:47 X509v3 Authority Key Identifier: keyid:C8:7F:CA:E9:07:BD:20:5A:08:E5:4C:67:A6:33:56:D9:21:C5:91:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:84:e5:8a:48:54:d9:c9:f9:0c:1c:d4:fb:84:f8:0e:df:ba: ea:42:fc:93:f7:42:71:7c:fc:54:03:d8:d3:47:24:fe:e6:80: a6:00:39:8d:56:b4:a8:8b:5d:4e:e1:4b:01:e1:90:b3:3e:bc: f3:a8:59:6f:ef:eb:51:13:71:7d:80:64:bd:6b:21:0c:50:1a: 51:2d:4f:66:4d:42:11:12:e0:c5:96:fe:c1:ef:50:78:72:92: ac:eb:99:af:7f:b6:09:31:7e:c8:a8:23:e4:c2:ca:14:09:56: b2:e7:a8:f8:e6:19:7c:f1:69:5b:01:c9:15:ca:80:b9:6f:ec: b3:0c:3f:e1:a7:6f:79:95:2c:05:4c:f4:93:1a:f9:62:c4:ff: b8:cb:88:2a:58:ea:ca:a0:d7:88:2f:bf:43:34:33:7d:2b:42: a2:a6:b9:6a:4e:76:03:d6:d8:df:22:c3:9b:8c:5e:a5:6d:0a: 45:69:4b:0f:f6:7f:96:32:62:a5:51:bb:78:a0:81:5c:fb:50: 1e:62:35:4b:57:51:d3:ce:85:b8:ef:02:18:fe:1c:dc:65:6b: b2:9d:ba:de:a2:98:ed:82:ff:84:c2:ec:f5:6e:6a:d8:e4:3d: 3f:17:b7:51:5a:16:24:8c:fb:3f:4d:7e:20:d6:b7:bd:df:41: 67:db:23:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M4QjExMTAvBgNVBAUTKEM4N0ZDQUU5MDdCRDIwNUEwOEU1NEM2N0E2MzM1NkQ5 MjFDNTkxM0IwHhcNMjQxMTIyMTgzNDQ0WhcNMjQxMTI5MTgzNDQ0WjAYMRYwFAYD VQQDEw02NzQwY2VjNC03NTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSlYByyXF41ApZBgLfAhApvN/27KQA9GNMcC3INCh5PHJWcnv38CYWGyzoK9 l2pXRXqrayQrV7qOs22qZga3lcVkf2j5EtBYgDhDc5QjccTJqyQvAxOfW5jpferD 7coRLlvOtkrx9ckwYmvySthnpoclHiQbrBlFEUh/ClBZw7InKv5pRoZMF8MpZMbo OZvHGCJRgWFQsDOTiUyJtO5wXjZVsBwhBIks21v925k8zjmODql+ZUwbpJtvO47c jtPXuaaamCTSYX9u2c/FNh1Q9NWE9hAl2wkMvR0yqHOHHMxDIC9Bl5pPMnhv5OEm LTivRPvXBW4a+X2LjlSzcjw3jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlwTHSx 0yg2lNG5OB0uXHt2DmBHMB8GA1UdIwQYMBaAFMh/yukHvSBaCOVMZ6YzVtkhxZE7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzhCMS9DRTg1MUE1NjBB OTUxMUVBODVGRkFBNzFDNEY5QUUwMi95SF9LNlFlOUlGb0k1VXhucGpOVzJTSEZr VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX0s2UWU5SUZvSTVVeG5wak5XMlNIRmtUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzhCMS9DRTg1MUE1NjBBOTUxMUVBODVGRkFBNzFDNEY5QUUwMi95SF9LNlFlOUlG b0k1VXhucGpOVzJTSEZrVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjhOWKSFTZyfkMHNT7hPgO37rqQvyT90JxfPxUA9jTRyT+5oCmADmN VrSoi11O4UsB4ZCzPrzzqFlv7+tRE3F9gGS9ayEMUBpRLU9mTUIREuDFlv7B71B4 cpKs65mvf7YJMX7IqCPkwsoUCVay56j45hl88WlbAckVyoC5b+yzDD/hp295lSwF TPSTGvlixP+4y4gqWOrKoNeIL79DNDN9K0KiprlqTnYD1tjfIsObjF6lbQpFaUsP 9n+WMmKlUbt4oIFc+1AeYjVLV1HTzoW47wIY/hzcZWuynbreopjtgv+Ewuz1bmrY 5D0/F7dRWhYkjPs/TX4g1re930Fn2yOn -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org