$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: YexTBA3H1CfcMvJ5jQKgTlp0AIEpZq6IXHClj55N01Y= Subject key identifier: 72:2D:3A:31:0E:C1:2D:DF:16:12:73:8C:08:F4:8F:F5:FB:38:83:7D Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0EC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0EB8 Signing time: Fri 22 Nov 2024 17:39:57 +0000 Manifest this update: Fri 22 Nov 2024 17:39:56 +0000 Manifest next update: Fri 29 Nov 2024 17:39:56 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: tew2L9LpGIqDLUlIdVvOSlbcz/C2FBoQt+c+ozA69hY=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: Ce9BbpW+u6Lf3eiA8gD0/jqkNi4bCrcEPxDFa4yC7Go=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3776 (0xec0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Nov 22 17:39:56 2024 GMT Not After : Nov 29 17:39:56 2024 GMT Subject: CN=6740c1ec-5b35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1c:b5:48:88:82:6f:b4:16:0d:63:84:a8:a6: ab:43:51:ff:c3:bd:83:66:3d:2e:27:f9:e3:63:a8: 65:7f:71:c1:73:26:8d:f3:48:fa:47:96:86:83:8c: d7:6d:f4:ff:67:dd:25:09:1d:73:56:a9:39:72:79: c4:8c:00:89:84:2f:8c:f5:86:55:3e:8a:1e:a3:53: e6:b7:9d:dc:3b:f1:f8:f4:fd:d7:ac:1d:b7:c0:c5: fc:91:a9:6e:34:fd:ab:fc:61:3f:f5:f4:a4:44:da: f2:76:a3:1b:68:45:73:d1:24:8b:60:99:2e:51:e6: a4:c3:cd:60:04:87:f8:05:0d:ea:5b:2e:fc:e8:d2: 6d:2f:99:0c:0f:1f:71:2b:b6:74:6a:2f:a7:39:ee: f7:5c:ae:8d:85:6f:ff:5d:4b:5d:74:c8:ba:6f:07: 90:b1:a7:c1:8d:83:f2:47:01:de:48:d2:41:a7:5b: 1a:18:4f:6c:67:95:53:0b:15:16:fc:ec:00:54:53: 2b:bf:f7:e9:e5:bf:6d:53:bd:46:b8:a1:fc:f3:a7: fa:b7:6d:fa:4e:20:6b:ef:98:c0:ca:f3:c3:65:74: 2a:66:71:e4:41:1e:1d:24:53:e2:be:91:a0:d3:d7: 38:c9:d6:11:44:8c:a4:9a:7c:d1:70:9c:eb:3c:5b: 43:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2D:3A:31:0E:C1:2D:DF:16:12:73:8C:08:F4:8F:F5:FB:38:83:7D X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:5a:61:9e:ed:af:ed:88:b7:14:9d:61:7c:5b:31:64:54:8a: c8:7b:22:b9:fe:e9:78:2b:17:e6:2f:ae:eb:f1:7d:63:11:c3: f2:96:38:8c:60:84:cb:cd:cf:84:36:f2:8d:0b:80:8e:30:02: 9a:1d:47:aa:f5:0c:63:84:34:c0:a5:7e:02:d0:bc:7b:7e:29: ce:8f:a4:8c:e4:13:90:05:81:f9:f8:7f:74:41:44:d1:d3:bd: e5:2c:9b:8b:d1:ae:bb:95:c9:e9:17:23:20:71:27:93:ac:5b: a5:a6:47:55:06:70:f8:63:0f:22:b4:06:81:51:3e:84:58:87: 10:0a:72:b5:27:f0:67:6f:8d:fc:d3:62:fc:aa:9f:2c:45:1f: df:34:5b:99:03:4f:f8:f5:ab:0c:4a:44:31:a1:bc:b2:48:fa: 56:f2:ec:b0:38:00:5d:5e:c9:7b:5b:e2:2a:df:42:fb:46:f9: af:68:ad:54:ac:30:b2:6b:1b:1b:16:f1:b3:ca:78:46:2d:71: 4e:86:18:f4:9f:21:f9:3f:80:6b:00:69:01:1c:a5:fb:6e:79: d9:d7:50:5f:44:49:76:05:90:63:86:0a:59:09:cd:61:1e:d2: 0e:31:62:a9:f8:3e:fc:66:8b:a8:75:ca:15:f6:07:e0:cb:86: 05:08:ab:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjQxMTIyMTczOTU2WhcNMjQxMTI5MTczOTU2WjAYMRYwFAYD VQQDEw02NzQwYzFlYy01YjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBy1SIiCb7QWDWOEqKarQ1H/w72DZj0uJ/njY6hlf3HBcyaN80j6R5aGg4zX bfT/Z90lCR1zVqk5cnnEjACJhC+M9YZVPooeo1Pmt53cO/H49P3XrB23wMX8kalu NP2r/GE/9fSkRNrydqMbaEVz0SSLYJkuUeakw81gBIf4BQ3qWy786NJtL5kMDx9x K7Z0ai+nOe73XK6NhW//XUtddMi6bweQsafBjYPyRwHeSNJBp1saGE9sZ5VTCxUW /OwAVFMrv/fp5b9tU71GuKH886f6t236TiBr75jAyvPDZXQqZnHkQR4dJFPivpGg 09c4ydYRRIykmnzRcJzrPFtDbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHItOjEO wS3fFhJzjAj0j/X7OIN9MB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpWmGe7a/tiLcUnWF8WzFkVIrIeyK5/ul4KxfmL67r8X1jEcPyljiM YITLzc+ENvKNC4COMAKaHUeq9QxjhDTApX4C0Lx7finOj6SM5BOQBYH5+H90QUTR 073lLJuL0a67lcnpFyMgcSeTrFulpkdVBnD4Yw8itAaBUT6EWIcQCnK1J/Bnb438 02L8qp8sRR/fNFuZA0/49asMSkQxobyySPpW8uywOABdXsl7W+Iq30L7RvmvaK1U rDCyaxsbFvGzynhGLXFOhhj0nyH5P4BrAGkBHKX7bnnZ11BfREl2BZBjhgpZCc1h HtIOMWKp+D78ZouodcoV9gfgy4YFCKvf -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org