$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft File: 3YoriGVMM2b_5_z2VWqXhgAqpls.mft (raw, json) Hash identifier: Z3xFhhAUHtGyJH4tQachD1jhRjt7kk5oO6W4nDmax0M= Subject key identifier: 01:B5:45:D8:5A:8F:F7:70:0C:BD:45:BD:B6:23:D1:53:72:91:51:40 Authority key identifier: DD:8A:2B:88:65:4C:33:66:FF:E7:FC:F6:55:6A:97:86:00:2A:A6:5B Certificate issuer: /CN=A91CFAB9/serialNumber=DD8A2B88654C3366FFE7FCF6556A9786002AA65B Certificate serial: 033E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft Manifest number: 0337 Signing time: Thu 21 Nov 2024 00:39:50 +0000 Manifest this update: Thu 21 Nov 2024 00:39:49 +0000 Manifest next update: Thu 28 Nov 2024 00:39:49 +0000 Files and hashes: 1: 3YoriGVMM2b_5_z2VWqXhgAqpls.crl (hash: XPqbNxFHNq1v5tsruQtrAWPvB2Ysd+tRU9sLylcope0=) 2: 596CCC4E9F1911EC8FDFEA7DC4F9AE02.roa (hash: ninl9qaRwReMJ+VyWpCOBcznoKGFRI4XnhBOBj8GIYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 830 (0x33e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9/serialNumber=DD8A2B88654C3366FFE7FCF6556A9786002AA65B Validity Not Before: Nov 21 00:39:49 2024 GMT Not After : Nov 28 00:39:49 2024 GMT Subject: CN=673e8155-fe50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:88:78:fb:d4:f4:2d:fc:42:4a:91:96:10:b6: 2f:42:57:64:6a:85:c0:c9:3f:e7:10:f4:31:93:b2: 60:99:f9:70:53:fd:5e:50:f3:79:49:d2:47:78:92: 00:cd:46:fe:ba:2d:b7:8f:0f:a8:99:68:fb:bd:c0: 52:9e:da:fc:8f:64:83:1b:47:b9:5b:f9:44:c4:42: 66:e4:21:fc:fc:f7:38:14:cd:70:96:31:a9:4b:df: cb:55:f7:d4:5c:c1:7a:0b:a7:d5:64:3e:25:ea:00: 53:39:b2:c4:e9:fa:2a:3a:e4:4e:c6:62:41:cf:dc: e5:22:df:1d:b7:a8:bf:b2:3a:50:22:e2:8d:d5:ab: e8:f7:1b:d9:f4:4c:17:35:e9:21:76:3d:49:2b:74: bc:ee:41:ac:6f:c4:db:cf:22:01:b3:06:1d:01:eb: e6:38:33:69:8d:6b:85:40:e4:b5:34:a8:ea:83:ba: 59:06:58:f5:ad:90:ec:33:55:91:1e:d9:22:88:0a: 69:67:74:4e:d1:45:e6:77:1c:47:ad:3a:01:a6:b8: 5b:d1:63:f0:db:4d:15:7b:c8:1e:64:97:09:79:8c: a0:19:2b:27:7f:d3:40:26:49:fb:b1:53:b9:fa:03: 4c:f9:9c:7e:53:55:41:ee:43:97:54:01:d3:e0:87: 9c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B5:45:D8:5A:8F:F7:70:0C:BD:45:BD:B6:23:D1:53:72:91:51:40 X509v3 Authority Key Identifier: keyid:DD:8A:2B:88:65:4C:33:66:FF:E7:FC:F6:55:6A:97:86:00:2A:A6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:d1:6b:66:b9:8b:5f:2d:7b:b7:b9:5a:10:d3:f2:89:fc:37: bb:fc:00:ec:51:d1:a8:c4:a9:0a:9c:8e:f3:d2:4e:f6:c8:c3: c8:c6:f4:a4:a7:86:be:95:75:bd:dc:e7:ca:f1:32:f0:32:b8: 6b:dd:c1:74:15:79:37:42:4f:cf:38:bb:42:b3:b1:81:c6:43: f4:cd:94:28:3a:8f:31:05:3d:3d:08:de:fa:b3:be:e2:84:55: 06:80:3f:52:62:bd:f7:01:7b:53:5f:08:7f:53:1a:29:78:10: 0a:7b:30:02:85:03:07:95:ea:cc:eb:4c:c0:e2:74:d4:36:a7: d8:5e:ca:1e:07:e0:c4:da:29:7a:c3:1b:92:61:7e:00:12:8b: 9b:32:c3:e2:53:8e:15:85:93:d1:8f:d3:b0:61:e1:1e:63:00: 08:d8:23:03:85:5f:5d:1e:2f:90:5c:23:48:c0:ef:7b:bd:ce: 91:88:97:26:9e:0b:08:31:40:fd:07:6d:26:7f:af:56:75:76: 9d:5d:20:b7:1f:18:cd:4c:d1:cd:98:80:69:5d:85:15:83:7d: 92:a1:7d:5c:e3:64:2c:f7:57:62:7a:94:b4:60:57:30:dc:d8: e0:39:ad:bf:ac:df:ae:dd:c3:78:92:5f:9e:4a:6c:ee:2c:80: 2e:86:f9:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKEREOEEyQjg4NjU0QzMzNjZGRkU3RkNGNjU1NkE5Nzg2 MDAyQUE2NUIwHhcNMjQxMTIxMDAzOTQ5WhcNMjQxMTI4MDAzOTQ5WjAYMRYwFAYD VQQDEw02NzNlODE1NS1mZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4h4+9T0LfxCSpGWELYvQldkaoXAyT/nEPQxk7JgmflwU/1eUPN5SdJHeJIA zUb+ui23jw+omWj7vcBSntr8j2SDG0e5W/lExEJm5CH8/Pc4FM1wljGpS9/LVffU XMF6C6fVZD4l6gBTObLE6foqOuROxmJBz9zlIt8dt6i/sjpQIuKN1avo9xvZ9EwX Nekhdj1JK3S87kGsb8TbzyIBswYdAevmODNpjWuFQOS1NKjqg7pZBlj1rZDsM1WR HtkiiAppZ3RO0UXmdxxHrToBprhb0WPw200Ve8geZJcJeYygGSsnf9NAJkn7sVO5 +gNM+Zx+U1VB7kOXVAHT4IecowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAG1Rdha j/dwDL1FvbYj0VNykVFAMB8GA1UdIwQYMBaAFN2KK4hlTDNm/+f89lVql4YAKqZb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS9FODUzMzgyQzlG MTMxMUVDOUU0NUQ1NzJDNEY5QUUwMi8zWW9yaUdWTU0yYl81X3oyVldxWGhnQXFw bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZb3JpR1ZNTTJiXzVfejJWV3FYaGdBcXBscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS9FODUzMzgyQzlGMTMxMUVDOUU0NUQ1NzJDNEY5QUUwMi8zWW9yaUdWTU0y Yl81X3oyVldxWGhnQXFwbHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf0WtmuYtfLXu3uVoQ0/KJ/De7/ADsUdGoxKkKnI7z0k72yMPIxvSk p4a+lXW93OfK8TLwMrhr3cF0FXk3Qk/POLtCs7GBxkP0zZQoOo8xBT09CN76s77i hFUGgD9SYr33AXtTXwh/UxopeBAKezAChQMHlerM60zA4nTUNqfYXsoeB+DE2il6 wxuSYX4AEoubMsPiU44VhZPRj9OwYeEeYwAI2CMDhV9dHi+QXCNIwO97vc6RiJcm ngsIMUD9B20mf69WdXadXSC3HxjNTNHNmIBpXYUVg32SoX1c42Qs91diepS0YFcw 3NjgOa2/rN+u3cN4kl+eSmzuLIAuhvmt -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:05 2024 by rpki-client on console-ams.rpki-client.org