$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: nTPJ/j4OO5kASmyIMOh5BZxhKtAHPXY07C3uNtzNjuQ= Subject key identifier: 9B:95:11:8C:5D:DE:0E:00:00:F9:68:2E:7E:A3:C1:84:16:93:2B:F2 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 09B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 09AC Signing time: Fri 22 Nov 2024 19:46:36 +0000 Manifest this update: Fri 22 Nov 2024 19:46:36 +0000 Manifest next update: Fri 29 Nov 2024 19:46:36 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: 154fNlkfoj/ljqvoLEDKKIQv+VArvytok1Myl48uxF0=) 2: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: egvdAkYLzu5gxxKonGYdt5g+UPStKzivhdsfzC6knl8=) 3: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: vR/hsH9Zhb8FIZHjA0oIM8YiJ7UXh8ADZ/D+wU+8mAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2488 (0x9b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Nov 22 19:46:36 2024 GMT Not After : Nov 29 19:46:36 2024 GMT Subject: CN=6740df9c-0012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:05:ba:18:3e:74:d5:fc:6a:af:d6:9d:2f:6f: 68:99:89:4e:96:fd:9c:52:cb:15:b9:4d:3f:4b:26: 27:59:58:f5:81:cc:3d:c3:6a:7c:a6:36:16:f1:85: a5:d5:32:cc:ad:93:89:dc:d3:83:12:8a:02:4b:ba: ae:fa:d4:e3:8e:36:8f:f8:43:93:16:4a:ea:53:06: c0:75:45:5c:5b:bb:d4:cd:3c:b3:bc:6e:35:72:0b: 9d:20:18:d1:8e:75:00:e9:5d:a3:a2:21:c8:04:f0: b3:ee:25:ef:d2:3c:22:7e:93:6a:73:26:83:5a:47: ab:da:36:7c:56:f5:34:74:0d:c3:23:fb:41:c9:27: 26:78:a3:ca:90:74:0e:8f:d4:c1:e6:5d:89:93:3c: 93:c1:e2:70:23:f5:ac:84:a1:df:85:dc:02:d4:e8: 0a:56:5b:37:c5:c7:be:21:88:0e:91:64:d2:02:92: 72:3d:8a:46:c1:a9:96:fc:88:c3:f9:b2:61:ac:51: b9:8b:59:2f:ec:e2:c0:52:0e:20:8f:67:42:e5:e2: 58:36:ae:48:4d:c0:2d:56:a8:43:73:ae:f5:11:81: 72:56:2d:4b:97:f5:75:73:e5:b0:47:7d:23:ed:52: 83:a5:75:f1:f1:12:94:68:79:fe:05:ab:86:b5:13: b2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:95:11:8C:5D:DE:0E:00:00:F9:68:2E:7E:A3:C1:84:16:93:2B:F2 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:17:4d:e7:c1:d5:23:48:20:46:b6:fb:1a:a1:7b:a2:ff:55: e3:79:a4:04:1d:3c:86:04:74:d3:80:8e:12:69:61:29:6d:b5: 7f:8b:26:90:a7:4e:cf:7f:b8:69:f8:1c:46:72:96:3a:df:57: 63:ea:40:f8:c0:1a:ef:62:e7:30:bd:ef:c5:5f:c8:46:f3:95: a7:29:24:60:ac:28:87:1e:bd:e4:96:0d:52:39:44:b6:bb:8c: 5f:e6:39:a6:c4:69:07:bf:3d:25:27:48:47:34:36:37:7d:62: 11:9a:63:6e:86:9d:91:3c:4b:9f:98:f1:13:64:d6:4c:8e:f7: 37:e9:88:29:e8:70:a8:91:74:51:1c:41:91:ef:23:f1:19:52: 95:f3:ab:05:0b:93:05:be:59:17:c3:16:97:fa:6b:e3:3f:bd: c9:ed:e1:f0:48:de:4e:de:02:9c:c8:3b:c4:54:89:06:05:b1: cd:63:b7:2a:71:fb:72:c6:7b:fc:b2:18:30:21:5c:1b:82:68: 58:a9:ec:39:af:99:21:cc:07:75:8a:3f:9e:f6:11:8c:ce:b7: ce:52:5d:8b:04:c1:44:0d:0d:16:e7:ba:98:c4:39:d6:a5:66: 4a:71:0d:ff:56:bd:12:5c:39:c7:58:f0:bc:e4:9a:d5:45:0b: a5:83:e0:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjQxMTIyMTk0NjM2WhcNMjQxMTI5MTk0NjM2WjAYMRYwFAYD VQQDEw02NzQwZGY5Yy0wMDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtAW6GD501fxqr9adL29omYlOlv2cUssVuU0/SyYnWVj1gcw9w2p8pjYW8YWl 1TLMrZOJ3NODEooCS7qu+tTjjjaP+EOTFkrqUwbAdUVcW7vUzTyzvG41cgudIBjR jnUA6V2joiHIBPCz7iXv0jwifpNqcyaDWker2jZ8VvU0dA3DI/tByScmeKPKkHQO j9TB5l2JkzyTweJwI/WshKHfhdwC1OgKVls3xce+IYgOkWTSApJyPYpGwamW/IjD +bJhrFG5i1kv7OLAUg4gj2dC5eJYNq5ITcAtVqhDc671EYFyVi1Ll/V1c+WwR30j 7VKDpXXx8RKUaHn+BauGtROyKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuVEYxd 3g4AAPloLn6jwYQWkyvyMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgF03nwdUjSCBGtvsaoXui/1XjeaQEHTyGBHTTgI4SaWEpbbV/iyaQ p07Pf7hp+BxGcpY631dj6kD4wBrvYucwve/FX8hG85WnKSRgrCiHHr3klg1SOUS2 u4xf5jmmxGkHvz0lJ0hHNDY3fWIRmmNuhp2RPEufmPETZNZMjvc36Ygp6HCokXRR HEGR7yPxGVKV86sFC5MFvlkXwxaX+mvjP73J7eHwSN5O3gKcyDvEVIkGBbHNY7cq cftyxnv8shgwIVwbgmhYqew5r5khzAd1ij+e9hGMzrfOUl2LBMFEDQ0W57qYxDnW pWZKcQ3/Vr0SXDnHWPC85JrVRQulg+BY -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org