$ rpki-client -vvf rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft File: YmEJu-zJi6UufzmbgJYtOv5astQ.mft (raw, json) Hash identifier: kl5k0K8BLdgWwcgpdN2pkfVxDh4m1K2Eaj+mWY7tw+c= Subject key identifier: 9D:17:84:C4:F7:03:5B:92:D8:2F:9A:47:40:F8:5E:5F:1E:26:C5:59 Authority key identifier: 62:61:09:BB:EC:C9:8B:A5:2E:7F:39:9B:80:96:2D:3A:FE:5A:B2:D4 Certificate issuer: /CN=A91D50A2/serialNumber=626109BBECC98BA52E7F399B80962D3AFE5AB2D4 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft Manifest number: 8F Signing time: Thu 21 Nov 2024 04:38:28 +0000 Manifest this update: Thu 21 Nov 2024 04:38:28 +0000 Manifest next update: Thu 28 Nov 2024 04:38:28 +0000 Files and hashes: 1: YmEJu-zJi6UufzmbgJYtOv5astQ.crl (hash: l0/onBDQw4Dlal6mZ4KV6ybDQln8AJB69JQ8Mx7SQw4=) 2: 7447BEF0928411EFB854A522C4F9AE02.roa (hash: FahO57/kleWU7XXU2TFFnm9z6kb0GxU9AkbmiTKJzXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.crl rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D50A2/serialNumber=626109BBECC98BA52E7F399B80962D3AFE5AB2D4 Validity Not Before: Nov 21 04:38:28 2024 GMT Not After : Nov 28 04:38:28 2024 GMT Subject: CN=673eb944-ed8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7f:66:6e:27:d0:e1:0a:db:6c:88:ef:76:4f: fe:00:0d:24:a4:62:20:61:55:9c:7c:7a:25:f0:ec: 5b:68:6e:6e:b8:e6:88:22:07:2e:1b:db:1d:e1:5e: 15:c5:72:e4:cf:5b:59:b8:68:13:20:fe:6d:17:07: fd:5c:32:e3:db:44:3c:81:8a:47:18:3a:bb:4e:c3: 3d:81:40:bb:e4:3e:a7:60:44:bf:68:5a:5b:b1:79: 95:a3:e0:72:92:95:19:c4:a3:13:6e:59:3a:89:92: 08:bd:41:6d:44:17:b4:e6:3e:12:b6:6f:fd:77:b8: 86:ac:80:c6:53:90:b5:cc:36:54:05:d5:fa:da:48: c2:19:42:78:ca:fe:91:4e:7a:65:21:e7:b3:45:e5: 5e:d9:5c:ff:34:90:ef:c6:bf:27:fd:d2:15:8d:38: c0:87:dc:34:63:a3:f4:b6:c2:93:56:1d:06:99:7b: 81:a7:08:49:6c:a4:5e:d3:d9:6f:a9:b6:a7:2f:c2: 87:f3:a3:0e:c8:35:05:bb:c7:b3:78:72:0e:1a:42: 89:16:50:c3:e1:20:ad:8a:f1:8f:01:fa:9e:5c:99: 2c:b7:7f:ab:96:70:d1:43:15:09:ba:53:af:fa:c4: c6:a9:57:54:c2:42:c7:b7:f7:f9:8d:a5:84:82:55: de:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:17:84:C4:F7:03:5B:92:D8:2F:9A:47:40:F8:5E:5F:1E:26:C5:59 X509v3 Authority Key Identifier: keyid:62:61:09:BB:EC:C9:8B:A5:2E:7F:39:9B:80:96:2D:3A:FE:5A:B2:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:90:1d:81:3c:2e:ec:c3:cc:f3:ae:d3:75:ed:4e:75:3d:fc: 88:80:e2:97:5c:53:d2:a1:3b:f7:c6:e4:a2:30:48:d8:88:a8: 57:29:d6:b4:b7:71:22:0c:6c:78:6d:59:31:8e:1f:f4:7f:01: 44:d9:63:84:c5:22:a1:e0:3e:99:d2:9e:52:ad:45:f4:1b:3c: 23:35:51:61:91:b6:eb:8e:03:d9:f3:84:7c:1b:3b:a0:62:83: 75:4e:82:eb:11:19:f7:7f:98:b5:07:33:6b:56:f5:71:e6:61: fc:5c:45:81:04:e7:68:7a:38:ec:52:8d:72:f4:31:36:cc:32: d8:f8:7a:87:44:97:7e:35:fa:1a:8c:f2:82:4c:89:26:34:02: 92:91:b8:c0:8e:ec:3b:fc:f2:8a:f3:90:4f:af:c3:0a:87:2a: 00:69:b8:8d:bd:f1:8c:d9:54:0b:64:e5:16:a1:c0:e7:28:cb: 29:a6:c0:30:b5:a3:0f:62:d7:98:bf:9b:65:58:11:c2:f4:af: ce:ef:fc:3c:78:d5:f0:db:79:c6:4c:4e:4f:56:f7:f1:2f:af: 54:cf:06:49:98:0f:8a:ef:20:53:81:98:ed:b6:e9:4a:2a:10: 05:45:87:85:60:02:d2:63:c2:e1:e1:65:21:fd:4d:90:4a:6b: a2:48:93:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwQTIxMTAvBgNVBAUTKDYyNjEwOUJCRUNDOThCQTUyRTdGMzk5QjgwOTYyRDNB RkU1QUIyRDQwHhcNMjQxMTIxMDQzODI4WhcNMjQxMTI4MDQzODI4WjAYMRYwFAYD VQQDEw02NzNlYjk0NC1lZDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqH9mbifQ4QrbbIjvdk/+AA0kpGIgYVWcfHol8OxbaG5uuOaIIgcuG9sd4V4V xXLkz1tZuGgTIP5tFwf9XDLj20Q8gYpHGDq7TsM9gUC75D6nYES/aFpbsXmVo+By kpUZxKMTblk6iZIIvUFtRBe05j4Stm/9d7iGrIDGU5C1zDZUBdX62kjCGUJ4yv6R TnplIeezReVe2Vz/NJDvxr8n/dIVjTjAh9w0Y6P0tsKTVh0GmXuBpwhJbKRe09lv qbanL8KH86MOyDUFu8ezeHIOGkKJFlDD4SCtivGPAfqeXJkst3+rlnDRQxUJulOv +sTGqVdUwkLHt/f5jaWEglXefQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0XhMT3 A1uS2C+aR0D4Xl8eJsVZMB8GA1UdIwQYMBaAFGJhCbvsyYulLn85m4CWLTr+WrLU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTBBMi9FRTMxRDg3NEQw MjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9ZbUVKdS16Smk2VXVmem1iZ0pZdE92NWFz dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltRUp1LXpKaTZVdWZ6bWJnSll0T3Y1YXN0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTBBMi9FRTMxRDg3NEQwMjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9ZbUVKdS16Smk2 VXVmem1iZ0pZdE92NWFzdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZkB2BPC7sw8zzrtN17U51PfyIgOKXXFPSoTv3xuSiMEjYiKhXKda0 t3EiDGx4bVkxjh/0fwFE2WOExSKh4D6Z0p5SrUX0GzwjNVFhkbbrjgPZ84R8Gzug YoN1ToLrERn3f5i1BzNrVvVx5mH8XEWBBOdoejjsUo1y9DE2zDLY+HqHRJd+Nfoa jPKCTIkmNAKSkbjAjuw7/PKK85BPr8MKhyoAabiNvfGM2VQLZOUWocDnKMsppsAw taMPYteYv5tlWBHC9K/O7/w8eNXw23nGTE5PVvfxL69UzwZJmA+K7yBTgZjttulK KhAFRYeFYALSY8Lh4WUh/U2QSmuiSJNG -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:17 2024 by rpki-client on console-ams.rpki-client.org