$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft File: ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft (raw, json) Hash identifier: 6kOClEw1spWlhbNy1NPc0J5NJXfqI1bBV6vBGdU8qfE= Subject key identifier: 0D:C2:25:A7:CC:0C:5E:3F:CD:F0:8C:31:05:1A:97:BE:25:C5:5E:C5 Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0E26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft Manifest number: 0E16 Signing time: Sun 24 Nov 2024 17:35:36 +0000 Manifest this update: Sun 24 Nov 2024 17:35:36 +0000 Manifest next update: Sun 01 Dec 2024 17:35:36 +0000 Files and hashes: 1: ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl (hash: Lio/1rdH/e9UN9NFISiqOg6mdjE/E1FfD53G07NxDQ8=) 2: 5C154406988911E991B10838C4F9AE02.roa (hash: E68+HsJGCOP2CrbeVqGVn23zDN97LBirmeW+EzG4LF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3622 (0xe26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: Nov 24 17:35:36 2024 GMT Not After : Dec 1 17:35:36 2024 GMT Subject: CN=674363e8-d814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6b:a5:08:4a:a0:f2:ea:4e:8e:32:22:e0:b8: f3:c0:7e:39:d9:79:c1:f0:7e:4a:e0:a0:be:1d:ac: b1:fd:62:42:d2:de:bc:85:e9:79:01:2b:b4:50:c0: 65:20:c6:60:de:3b:88:e4:9c:e7:39:77:af:ff:69: 69:15:f3:bc:ad:a3:18:a3:d8:68:3a:c1:61:1e:4d: a1:27:c5:be:0f:cf:6c:93:e1:f2:7a:cb:26:5c:87: b0:a3:bf:c8:73:59:b0:da:b4:30:08:d7:e0:6c:e3: 7e:49:11:84:34:8f:16:ef:2c:b9:e0:03:17:7d:5c: c7:db:6d:da:24:bd:f7:40:4d:14:50:39:95:5a:c2: d2:b9:ad:73:1c:5c:f7:88:84:77:03:fe:c7:05:62: cf:9f:91:be:e3:19:63:b9:90:96:6a:34:c9:56:c7: 89:ff:8c:a5:34:f0:99:24:df:95:a4:ba:6d:90:c4: b8:4f:82:4d:a4:e2:b2:af:ac:9f:57:aa:38:04:59: 47:16:b5:05:57:b9:c9:c3:33:8c:1b:f2:26:f6:61: a5:76:70:c5:6d:e5:d0:9b:9b:e6:8d:06:2f:f3:72: 3d:16:d0:94:70:77:8c:a6:58:69:55:89:74:99:7f: 74:03:a3:f3:1d:38:97:ae:4e:bb:98:b8:2f:c9:13: 85:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C2:25:A7:CC:0C:5E:3F:CD:F0:8C:31:05:1A:97:BE:25:C5:5E:C5 X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:ee:b7:c4:3b:30:a9:d9:e6:27:6a:d2:33:47:3b:57:e9:1a: 56:8a:79:51:bd:2c:45:66:79:03:87:cf:f2:6a:9a:3b:13:cc: cb:97:f1:da:0d:f3:60:17:73:8c:41:30:53:6a:25:77:44:49: b7:e3:1b:49:ac:f6:8d:8a:dc:3d:7c:d3:72:bc:b3:df:66:10: 71:1f:59:a1:4f:b9:61:64:2a:85:ba:d1:51:ec:6e:2b:61:58: 6a:21:70:3b:c1:28:86:ab:32:ac:97:96:c5:e4:2c:fc:88:6c: 34:9a:c0:1c:03:0b:3e:f0:b8:48:55:54:b4:a8:ec:e2:3c:d2: de:38:e9:18:16:7b:9b:76:fb:e7:b5:e3:66:9b:4c:c5:89:0d: a2:1d:ca:0f:7a:5b:a9:52:5e:0d:75:17:93:54:41:25:58:9b: 69:ba:76:03:b6:58:29:19:d8:39:56:6a:80:13:ff:0a:39:ea: 38:78:57:86:fb:42:4b:b6:30:ba:e0:34:53:c3:bf:9b:cf:0c: 0c:19:79:6a:71:f1:fc:e6:e4:c2:56:f0:3f:b1:a3:c6:8e:2e: f0:4f:60:11:30:78:22:49:7e:c1:a8:14:d4:e6:5d:22:cf:51: cf:d3:82:98:82:1e:23:1d:3a:f9:ad:b2:bf:44:c2:a7:7a:5e: 13:4d:16:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjQxMTI0MTczNTM2WhcNMjQxMjAxMTczNTM2WjAYMRYwFAYD VQQDEw02NzQzNjNlOC1kODE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGulCEqg8upOjjIi4LjzwH452XnB8H5K4KC+Hayx/WJC0t68hel5ASu0UMBl IMZg3juI5JznOXev/2lpFfO8raMYo9hoOsFhHk2hJ8W+D89sk+HyessmXIewo7/I c1mw2rQwCNfgbON+SRGENI8W7yy54AMXfVzH223aJL33QE0UUDmVWsLSua1zHFz3 iIR3A/7HBWLPn5G+4xljuZCWajTJVseJ/4ylNPCZJN+VpLptkMS4T4JNpOKyr6yf V6o4BFlHFrUFV7nJwzOMG/Im9mGldnDFbeXQm5vmjQYv83I9FtCUcHeMplhpVYl0 mX90A6PzHTiXrk67mLgvyROFMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3CJafM DF4/zfCMMQUal74lxV7FMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUYzRS9DQjc0Q0Y2RTk4N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2 YkhzRHhCVUNEdDRuS3FvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ7rfEOzCp2eYnatIzRztX6RpWinlRvSxFZnkDh8/yapo7E8zLl/Ha DfNgF3OMQTBTaiV3REm34xtJrPaNitw9fNNyvLPfZhBxH1mhT7lhZCqFutFR7G4r YVhqIXA7wSiGqzKsl5bF5Cz8iGw0msAcAws+8LhIVVS0qOziPNLeOOkYFnubdvvn teNmm0zFiQ2iHcoPelupUl4NdReTVEElWJtpunYDtlgpGdg5VmqAE/8KOeo4eFeG +0JLtjC64DRTw7+bzwwMGXlqcfH85uTCVvA/saPGji7wT2ARMHgiSX7BqBTU5l0i z1HP04KYgh4jHTr5rbK/RMKnel4TTRaD -----END CERTIFICATE-----Generated at Sun Nov 24 20:09:55 2024 by rpki-client on console-ams.rpki-client.org