$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft File: Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json) Hash identifier: uCOclz03ACIFRzcxK9qh7R6cinvLW5hKN8lLpLLYa4Q= Subject key identifier: 58:C5:89:D2:56:B9:21:E4:88:C1:B3:5C:6C:95:7E:4F:51:CF:87:1B Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft Manifest number: D8 Signing time: Thu 21 Nov 2024 03:42:34 +0000 Manifest this update: Thu 21 Nov 2024 03:42:34 +0000 Manifest next update: Thu 28 Nov 2024 03:42:34 +0000 Files and hashes: 1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: 0R5PtFQAYz73tl+fktdBbFwfGFAWr1JdKfpwKLat2HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Nov 21 03:42:34 2024 GMT Not After : Nov 28 03:42:34 2024 GMT Subject: CN=673eac2a-2661 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8a:75:ba:ec:52:7d:8b:08:bd:c9:99:51:60: 92:f2:bc:6c:99:7c:f6:17:d5:0d:9c:58:69:d4:16: 84:2c:c7:5d:a2:07:78:f4:39:25:97:1a:32:e0:ee: e4:56:56:53:4a:00:b0:2e:b8:ae:b3:68:1f:83:2c: 06:4c:31:cb:ec:a8:c5:2d:8d:4d:07:6f:41:31:f7: cc:f7:1e:b7:25:74:63:91:3b:72:64:0e:4b:1b:51: da:a2:49:31:32:5e:5c:b2:05:4b:e8:01:90:87:79: 46:19:17:96:bf:b5:9e:a7:cf:ae:07:6e:e0:50:9c: ca:8f:b4:49:9a:9e:a2:95:46:0b:71:9a:56:91:3c: 10:f9:25:6d:53:a6:1b:10:a6:a7:f2:33:9b:14:1c: b6:b8:be:8c:01:f2:33:34:51:70:86:40:ef:4f:65: ec:81:8f:15:30:7b:ae:a1:11:3c:d9:6d:ed:9b:1f: 2c:c5:82:e8:7c:1e:32:21:bf:a4:41:44:12:50:bd: 50:6d:81:23:2a:55:39:68:c3:95:c0:c0:2f:8c:61: 74:aa:fb:5a:4f:b0:e9:4e:b7:f4:88:85:35:72:1b: 30:ba:25:97:41:16:06:0c:57:bc:9f:a0:68:f6:aa: e7:44:57:4a:6a:26:1e:54:3b:af:05:ab:12:82:a2: e4:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C5:89:D2:56:B9:21:E4:88:C1:B3:5C:6C:95:7E:4F:51:CF:87:1B X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:dd:12:1d:0b:b8:d5:ca:b1:d2:8a:d1:49:d5:77:eb:05:f3: 0d:ad:99:8e:84:5b:45:e5:8d:ea:42:80:31:a9:08:d0:4c:a0: 5f:09:ad:1c:73:e6:43:35:b3:9e:3d:cf:fb:15:1c:98:c9:ea: d2:c4:45:2b:59:46:b1:1a:9c:41:0f:1d:fb:6c:d3:ef:3b:e7: 05:5a:62:5a:d8:d9:cd:f7:81:5a:f4:61:8c:6e:db:52:21:0f: e6:8f:52:bd:af:46:bb:ab:6c:48:b8:17:3f:0d:2f:fd:19:af: 12:8e:b8:f3:dd:7a:e4:b6:cb:50:8e:76:e0:76:1f:2c:7e:27: 1b:c7:82:72:c6:cc:1d:55:15:77:d5:bc:7c:cd:76:99:1f:ab: 0c:b8:71:9f:d7:72:bf:3c:af:93:fb:58:aa:35:c7:f1:b4:4b: e6:5b:4c:f2:f1:37:d9:d6:b3:e1:04:23:9b:81:cb:68:e9:fa: a2:6a:6d:b6:3b:7f:2f:6d:c0:f8:91:a9:3d:9a:00:e6:d0:c6: c5:ed:f1:23:d4:4e:84:7b:5c:60:46:9b:5e:b3:54:a1:ef:9a: 04:a4:bc:dc:5d:29:43:b6:58:94:83:23:b8:e8:6b:71:a0:89: e2:6a:df:a3:2b:cf:15:bb:4c:8b:de:9f:ba:68:17:b4:3b:9e: e6:a9:49:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjQxMTIxMDM0MjM0WhcNMjQxMTI4MDM0MjM0WjAYMRYwFAYD VQQDEw02NzNlYWMyYS0yNjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Yp1uuxSfYsIvcmZUWCS8rxsmXz2F9UNnFhp1BaELMddogd49Dkllxoy4O7k VlZTSgCwLrius2gfgywGTDHL7KjFLY1NB29BMffM9x63JXRjkTtyZA5LG1Haokkx Ml5csgVL6AGQh3lGGReWv7Wep8+uB27gUJzKj7RJmp6ilUYLcZpWkTwQ+SVtU6Yb EKan8jObFBy2uL6MAfIzNFFwhkDvT2XsgY8VMHuuoRE82W3tmx8sxYLofB4yIb+k QUQSUL1QbYEjKlU5aMOVwMAvjGF0qvtaT7DpTrf0iIU1chswuiWXQRYGDFe8n6Bo 9qrnRFdKaiYeVDuvBasSgqLkUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFjFidJW uSHkiMGzXGyVfk9Rz4cbMB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9BQUIzM0U0QzVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBp Q2VzQTZxTm5HRVhhcHM4b1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX3RIdC7jVyrHSitFJ1XfrBfMNrZmOhFtF5Y3qQoAxqQjQTKBfCa0c c+ZDNbOePc/7FRyYyerSxEUrWUaxGpxBDx37bNPvO+cFWmJa2NnN94Fa9GGMbttS IQ/mj1K9r0a7q2xIuBc/DS/9Ga8Sjrjz3XrktstQjnbgdh8sficbx4JyxswdVRV3 1bx8zXaZH6sMuHGf13K/PK+T+1iqNcfxtEvmW0zy8TfZ1rPhBCObgcto6fqiam22 O38vbcD4kak9mgDm0MbF7fEj1E6Ee1xgRptes1Sh75oEpLzcXSlDtliUgyO46Gtx oIniat+jK88Vu0yL3p+6aBe0O57mqUkq -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:05 2024 by rpki-client on console-fra.rpki-client.org