$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft File: yq3LrMUbKkZS3XMHTygsM00BAnc.mft (raw, json) Hash identifier: anTXFFX2xf9LhvhOKRN5SMotUEq8Zn8k4VHpJGwN0h4= Subject key identifier: 1A:DF:2D:3A:98:07:5E:E9:77:8E:C5:A8:80:D9:36:71:46:93:17:37 Authority key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 Certificate issuer: /CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Certificate serial: 093C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft Manifest number: 0937 Signing time: Fri 22 Nov 2024 20:00:47 +0000 Manifest this update: Fri 22 Nov 2024 20:00:46 +0000 Manifest next update: Fri 29 Nov 2024 20:00:46 +0000 Files and hashes: 1: yq3LrMUbKkZS3XMHTygsM00BAnc.crl (hash: UrCaRuPz4cWORrtMavXYi4or8L2MTLcr33Q2XPzE3TU=) 2: 57EE11D0895D11EA81B43245C4F9AE02.roa (hash: LuM8gmLzaSTxQEZimYZff6zRAqrVPiLTeic+naOJw/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2364 (0x93c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Validity Not Before: Nov 22 20:00:46 2024 GMT Not After : Nov 29 20:00:46 2024 GMT Subject: CN=6740e2ee-4040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d1:69:09:2f:d7:1d:97:54:f3:af:89:7d:ff: 26:a9:0b:67:9a:50:c4:ea:61:0c:47:97:58:aa:a8: 8b:23:d1:36:2b:06:d0:1e:d3:5a:e1:b3:26:42:b5: a5:f3:26:27:aa:12:be:d2:b4:5e:09:ac:f0:ee:76: 30:9d:ec:ec:02:33:3e:46:85:ae:65:92:69:c1:8e: 61:3f:8e:0f:bc:3b:99:54:61:97:53:37:1e:80:cd: 49:c3:a0:07:77:7d:bd:65:b7:16:c9:19:75:75:ab: 55:d1:ee:07:2c:66:30:ac:55:50:d1:69:5e:2f:c2: 4d:a8:51:e5:d7:8c:fa:53:11:18:d1:03:8b:5a:de: 6c:c7:ef:0b:d0:2a:9d:2c:9f:bb:2e:e9:b9:c3:6b: 20:b5:7f:8d:29:a9:11:9f:ef:db:73:b9:ff:51:5c: 53:34:6e:4e:ac:21:5f:5c:b7:a4:c3:6e:2e:18:fd: ca:79:76:20:10:53:de:48:e3:54:af:cf:b5:51:33: 71:81:34:e2:09:a1:9f:d4:41:ea:85:53:ef:74:12: c8:44:f0:33:d5:a2:55:4b:22:00:1a:f6:f4:fe:55: 70:aa:5f:56:82:7b:d7:13:3f:d3:b7:3f:1f:6b:91: 13:b3:a8:b1:c9:a9:dc:8d:c3:b5:04:b3:fd:cb:e2: b1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:DF:2D:3A:98:07:5E:E9:77:8E:C5:A8:80:D9:36:71:46:93:17:37 X509v3 Authority Key Identifier: keyid:CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:4f:96:41:d4:e3:38:b1:3a:36:69:22:64:0d:f8:5c:df:5f: 65:f1:74:e7:2b:fa:12:2f:94:c1:ec:b4:b7:b2:24:82:21:3d: 90:c8:35:c9:9e:e6:da:55:36:d9:d2:25:69:3b:93:dc:06:2f: ff:e7:2a:c1:e4:71:89:a3:7c:b7:26:d5:1e:a3:23:02:e8:2a: 61:73:89:57:5c:8b:c7:fd:2e:27:3d:bb:69:e3:fd:bd:ec:f0: 46:55:e3:f2:9f:75:79:c5:03:22:e5:fa:73:b0:c0:79:ed:a1: 82:ac:b0:23:c0:81:22:27:28:8f:05:4e:69:3a:a8:3c:78:eb: 98:0b:34:75:d5:73:ff:e7:1b:5b:f6:e9:84:e2:db:8f:11:6d: c0:8f:49:6e:66:4d:9e:33:1e:43:ba:2a:b7:23:8c:f5:63:59: 05:24:d1:ba:38:6f:21:36:8e:9c:90:6f:a0:02:9b:a6:8b:d2: a7:7e:6f:f4:fa:60:a7:e0:b3:e1:61:97:21:97:2f:de:69:86: 75:c6:c4:3c:69:a3:d0:9d:0b:ed:93:08:e3:9b:5c:e4:be:37: 35:0d:c6:28:9a:0e:86:f2:c9:44:66:f8:19:d4:f9:c0:f3:a5: 3e:64:68:37:bc:8c:2e:36:f2:fb:f0:ac:53:38:6f:28:6b:85: f4:ff:a7:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENDQjMxMTAvBgNVBAUTKENBQURDQkFDQzUxQjJBNDY1MkRENzMwNzRGMjgyQzMz NEQwMTAyNzcwHhcNMjQxMTIyMjAwMDQ2WhcNMjQxMTI5MjAwMDQ2WjAYMRYwFAYD VQQDEw02NzQwZTJlZS00MDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdFpCS/XHZdU86+Jff8mqQtnmlDE6mEMR5dYqqiLI9E2KwbQHtNa4bMmQrWl 8yYnqhK+0rReCazw7nYwnezsAjM+RoWuZZJpwY5hP44PvDuZVGGXUzcegM1Jw6AH d329ZbcWyRl1datV0e4HLGYwrFVQ0WleL8JNqFHl14z6UxEY0QOLWt5sx+8L0Cqd LJ+7Lum5w2sgtX+NKakRn+/bc7n/UVxTNG5OrCFfXLekw24uGP3KeXYgEFPeSONU r8+1UTNxgTTiCaGf1EHqhVPvdBLIRPAz1aJVSyIAGvb0/lVwql9WgnvXEz/Ttz8f a5ETs6ixyancjcO1BLP9y+KxuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrfLTqY B17pd47FqIDZNnFGkxc3MB8GA1UdIwQYMBaAFMqty6zFGypGUt1zB08oLDNNAQJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0NCMy80MUZENjAxNjg5 NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktrWlMzWE1IVHlnc00wMEJB bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxM0xyTVViS2taUzNYTUhUeWdzTTAwQkFuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0NCMy80MUZENjAxNjg5NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktr WlMzWE1IVHlnc00wMEJBbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaT5ZB1OM4sTo2aSJkDfhc319l8XTnK/oSL5TB7LS3siSCIT2QyDXJ nubaVTbZ0iVpO5PcBi//5yrB5HGJo3y3JtUeoyMC6Cphc4lXXIvH/S4nPbtp4/29 7PBGVePyn3V5xQMi5fpzsMB57aGCrLAjwIEiJyiPBU5pOqg8eOuYCzR11XP/5xtb 9umE4tuPEW3Aj0luZk2eMx5Duiq3I4z1Y1kFJNG6OG8hNo6ckG+gApumi9Knfm/0 +mCn4LPhYZchly/eaYZ1xsQ8aaPQnQvtkwjjm1zkvjc1DcYomg6G8slEZvgZ1PnA 86U+ZGg3vIwuNvL78KxTOG8oa4X0/6fF -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org