$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft File: yOujNL19pukuZ8QIvQN4e66uDK0.mft (raw, json) Hash identifier: uSEgwQx/SUsnOljlDZ3TZGbjj6QWQ5gRGMMue8PM2JE= Subject key identifier: 55:2F:C2:97:30:04:CD:46:FC:88:B9:97:45:79:6F:90:B3:F7:F9:F0 Authority key identifier: C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD Certificate issuer: /CN=A91CFE07/serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Certificate serial: 0D01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft Manifest number: 0CEF Signing time: Fri 22 Nov 2024 18:00:51 +0000 Manifest this update: Fri 22 Nov 2024 18:00:50 +0000 Manifest next update: Fri 29 Nov 2024 18:00:50 +0000 Files and hashes: 1: yOujNL19pukuZ8QIvQN4e66uDK0.crl (hash: 7ZeSFMswoQKHE0TVBgJpLLIw0HvJyoZq4qTw3y9Mfy0=) 2: A95EC0B2C9FA11EBB7F2E749C4F9AE02.roa (hash: OnFCf8eAnEgvVp62T6YJKDeJaAnBLzi/6x3jgrk0jAY=) 3: A82C70A4C9FA11EBB7F2E749C4F9AE02.roa (hash: 2IL0VUXtbh4m28fX/DagcqnHyL8duadfYRBEM0Zd8j8=) 4: 226B7BC2AAC611EE9F22785DC4F9AE02.roa (hash: DWpmw7E9f8wB56ox5ZKO+BfCAC2t1e6DSbrfkrwOp6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3329 (0xd01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFE07/serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Validity Not Before: Nov 22 18:00:50 2024 GMT Not After : Nov 29 18:00:50 2024 GMT Subject: CN=6740c6d2-986b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:03:c7:aa:a3:5d:05:6d:5d:73:c5:5f:37:d8: e0:ae:1f:9e:53:64:b9:47:0f:b9:0e:a9:79:e2:63: 3a:7d:07:ca:2f:e3:4f:ee:a3:a8:8f:49:c9:36:61: c5:45:1a:f7:54:d0:27:ca:9c:aa:2a:40:cc:29:17: 32:08:d4:b0:56:49:b5:37:e5:81:b9:20:01:e8:59: ff:bd:32:69:bb:58:1f:35:08:92:bd:3f:6c:57:db: 5c:e9:71:e7:a2:f2:f9:e8:2a:84:a1:a0:6f:28:e2: a2:54:ce:b2:07:61:65:c0:81:08:1f:bb:91:6e:0b: df:cf:8e:f7:1b:77:a8:39:32:c2:df:4c:19:37:3e: 76:26:69:02:f5:5e:5d:58:a6:a2:44:03:52:5a:f8: 11:0a:8d:6a:a8:85:2f:1b:7c:6f:7d:b8:2d:00:a2: 16:11:0c:76:df:ea:d6:75:cf:bb:aa:ad:44:a9:2b: 5d:fa:66:d9:83:37:a9:95:f1:81:22:49:60:39:33: e2:79:03:5a:73:61:5a:4c:a6:7a:ba:d7:b5:06:3b: 6b:88:4b:71:39:9e:25:18:25:fc:4d:ac:8d:b9:8d: 31:c7:73:80:d6:89:30:1e:d9:c9:eb:79:48:ca:7e: 17:ff:fe:c7:13:7f:57:24:57:67:1b:86:4d:08:83: b0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:2F:C2:97:30:04:CD:46:FC:88:B9:97:45:79:6F:90:B3:F7:F9:F0 X509v3 Authority Key Identifier: keyid:C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:1d:82:13:c5:96:4e:08:e8:54:a2:a4:26:29:df:9c:6d:b1: 92:c0:7a:24:65:f1:27:ec:61:e7:da:c1:70:91:89:26:c8:ba: ca:4b:7d:31:74:2f:f1:dd:87:76:3b:77:22:4c:d0:be:a9:3a: 61:cf:46:f9:af:d1:7a:fe:2a:84:86:a4:f3:64:ca:c1:a3:aa: 0b:da:d4:28:62:ed:e2:6a:f4:58:eb:ca:25:83:d0:d8:07:d4: 92:2f:49:63:d2:1e:02:cc:8b:b5:58:18:b7:70:3b:18:a6:ac: 93:ad:28:b7:ce:6c:f2:e5:31:31:81:b4:c1:f3:1e:74:ee:21: 8c:97:fe:37:08:40:64:11:55:ef:21:41:db:9f:f0:fd:05:a9: 33:90:f4:38:93:83:dc:57:e5:55:8e:84:5d:b2:55:13:63:95: 94:ca:6a:37:c2:ef:7a:e8:d0:7b:60:8b:bb:51:86:80:fc:18: bf:aa:c0:8e:03:6e:ab:86:a1:c5:3e:a9:7a:77:18:9a:11:b7: 04:dd:fc:1d:cb:43:35:45:43:f5:75:fc:8d:b7:30:93:d6:d6: d9:26:ae:25:53:69:9c:c5:78:5e:a9:9f:27:1f:f5:d9:53:0d: e4:5c:a9:5e:e9:cd:a2:fd:14:a5:64:0f:b5:f2:e8:63:7c:fe: 0f:13:ee:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZFMDcxMTAvBgNVBAUTKEM4RUJBMzM0QkQ3REE2RTkyRTY3QzQwOEJEMDM3ODdC QUVBRTBDQUQwHhcNMjQxMTIyMTgwMDUwWhcNMjQxMTI5MTgwMDUwWjAYMRYwFAYD VQQDEw02NzQwYzZkMi05ODZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQPHqqNdBW1dc8VfN9jgrh+eU2S5Rw+5Dql54mM6fQfKL+NP7qOoj0nJNmHF RRr3VNAnypyqKkDMKRcyCNSwVkm1N+WBuSAB6Fn/vTJpu1gfNQiSvT9sV9tc6XHn ovL56CqEoaBvKOKiVM6yB2FlwIEIH7uRbgvfz473G3eoOTLC30wZNz52JmkC9V5d WKaiRANSWvgRCo1qqIUvG3xvfbgtAKIWEQx23+rWdc+7qq1EqStd+mbZgzeplfGB IklgOTPieQNac2FaTKZ6ute1BjtriEtxOZ4lGCX8TayNuY0xx3OA1okwHtnJ63lI yn4X//7HE39XJFdnG4ZNCIOwmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUvwpcw BM1G/Ii5l0V5b5Cz9/nwMB8GA1UdIwQYMBaAFMjrozS9fabpLmfECL0DeHuurgyt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkUwNy85NjJDNEI3RUQy QkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1a3VaOFFJdlFONGU2NnVE SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPdWpOTDE5cHVrdVo4UUl2UU40ZTY2dURLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkUwNy85NjJDNEI3RUQyQkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1 a3VaOFFJdlFONGU2NnVESzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvHYITxZZOCOhUoqQmKd+cbbGSwHokZfEn7GHn2sFwkYkmyLrKS30x dC/x3Yd2O3ciTNC+qTphz0b5r9F6/iqEhqTzZMrBo6oL2tQoYu3iavRY68olg9DY B9SSL0lj0h4CzIu1WBi3cDsYpqyTrSi3zmzy5TExgbTB8x507iGMl/43CEBkEVXv IUHbn/D9BakzkPQ4k4PcV+VVjoRdslUTY5WUymo3wu966NB7YIu7UYaA/Bi/qsCO A26rhqHFPql6dxiaEbcE3fwdy0M1RUP1dfyNtzCT1tbZJq4lU2mcxXheqZ8nH/XZ Uw3kXKle6c2i/RSlZA+18uhjfP4PE+6o -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org