$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft File: YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft (raw, json) Hash identifier: yW1dxSAuVYEMpydNS5v9gVfEkci0IVKE/mOl1oDTfpQ= Subject key identifier: 5C:FB:2D:9C:31:7C:20:87:F0:73:88:37:FD:E9:BA:A1:D1:1D:5C:4E Authority key identifier: 62:CA:9C:12:6E:14:FF:BB:BC:3D:64:07:10:5E:BE:15:1B:99:60:5B Certificate issuer: /CN=A91DD1F9/serialNumber=62CA9C126E14FFBBBC3D6407105EBE151B99605B Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsqcEm4U_7u8PWQHEF6-FRuZYFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft Manifest number: 3E Signing time: Thu 21 Nov 2024 05:32:28 +0000 Manifest this update: Thu 21 Nov 2024 05:32:28 +0000 Manifest next update: Thu 28 Nov 2024 05:32:28 +0000 Files and hashes: 1: YsqcEm4U_7u8PWQHEF6-FRuZYFs.crl (hash: nSe9YqiIQat4x5NFrrXDgjvhfweM2ihAH2QD5zGYv5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.crl rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsqcEm4U_7u8PWQHEF6-FRuZYFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD1F9/serialNumber=62CA9C126E14FFBBBC3D6407105EBE151B99605B Validity Not Before: Nov 21 05:32:28 2024 GMT Not After : Nov 28 05:32:28 2024 GMT Subject: CN=673ec5ec-b6d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:10:a5:f7:01:cf:51:6a:d5:e6:f2:af:36:53: 80:f1:0d:85:50:ec:94:a2:7e:ff:74:21:7d:67:fb: d1:0b:46:2f:f6:d2:73:e3:32:38:02:3b:49:cb:c3: 35:d6:99:f4:8f:8c:d0:16:02:ce:4b:fe:fa:86:2c: f8:f3:7e:72:23:ee:d5:20:d7:6e:a0:51:04:7f:0e: 25:1f:aa:a6:46:1e:55:7e:a7:a9:88:b8:16:90:38: 41:9b:b7:9f:35:03:8e:bd:0a:aa:09:f7:36:3d:ca: 4e:9d:f7:3b:b8:9b:5a:2f:61:88:69:b4:65:f3:7f: 17:9a:50:8f:9e:9b:4e:19:b3:d5:6e:bc:3f:47:e3: 06:e6:0c:3c:e8:90:29:29:fb:3a:31:aa:d1:a5:e0: 8a:50:91:8b:3d:2f:33:9b:d6:e8:7f:57:ab:44:b2: 7c:14:2f:ca:2d:9c:99:9d:c8:9e:cd:4a:ca:d3:a3: c5:cb:19:69:7a:d3:d6:3f:5d:3c:e2:ef:6e:7c:80: c5:01:2a:05:35:33:14:0d:74:fa:44:98:c6:c4:96: 5f:c0:d0:88:e4:0b:d2:58:bd:6c:22:dd:42:c3:ea: 72:27:2f:65:33:90:a6:12:f0:b8:00:46:c3:17:04: 19:0e:6d:31:87:2c:cb:e1:34:df:62:2f:4e:2e:ea: d3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:FB:2D:9C:31:7C:20:87:F0:73:88:37:FD:E9:BA:A1:D1:1D:5C:4E X509v3 Authority Key Identifier: keyid:62:CA:9C:12:6E:14:FF:BB:BC:3D:64:07:10:5E:BE:15:1B:99:60:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsqcEm4U_7u8PWQHEF6-FRuZYFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:42:d8:25:12:a1:4d:fc:66:c4:39:55:60:45:53:06:6f:51: b6:62:bd:e7:b0:21:54:27:03:28:32:d6:bf:c8:da:a2:2e:1f: d7:d6:0a:5c:fe:71:09:9c:bb:b4:54:b0:43:c6:17:c1:ba:12: 89:60:8e:96:02:74:53:7c:18:d9:84:78:ec:03:76:63:b4:55: 87:fe:58:ff:9a:6c:44:1c:d9:c1:b3:0e:84:48:fd:48:3f:c8: 43:23:18:9c:63:d2:97:ed:77:78:bd:d8:9d:87:d0:91:f6:39: a8:6b:bf:4f:77:46:34:b3:dc:81:13:1b:18:15:03:9b:84:dc: 77:d6:5e:00:a2:46:e4:98:ce:b4:eb:e1:bb:68:3e:df:cd:e6: 76:a7:9c:5f:11:f5:a8:42:36:63:b3:4d:b3:1b:31:28:df:ee: 01:2a:04:45:35:28:f1:79:0f:92:88:4f:b2:35:a8:f0:ae:71: c2:f4:35:f2:5c:8f:13:19:a1:c3:b6:6f:d6:cc:33:72:a3:3d: 5d:8a:c4:51:56:91:7e:3c:a7:b5:6c:bf:6d:8c:8a:b0:1b:74: 81:77:f6:0d:0d:67:cf:51:35:3c:43:dd:9e:0c:81:a6:da:56: bc:86:07:64:35:63:6f:31:90:87:88:8d:80:ff:35:87:6c:06: 15:0f:2e:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDFGOTExMC8GA1UEBRMoNjJDQTlDMTI2RTE0RkZCQkJDM0Q2NDA3MTA1RUJFMTUx Qjk5NjA1QjAeFw0yNDExMjEwNTMyMjhaFw0yNDExMjgwNTMyMjhaMBgxFjAUBgNV BAMTDTY3M2VjNWVjLWI2ZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLEKX3Ac9RatXm8q82U4DxDYVQ7JSifv90IX1n+9ELRi/20nPjMjgCO0nLwzXW mfSPjNAWAs5L/vqGLPjzfnIj7tUg126gUQR/DiUfqqZGHlV+p6mIuBaQOEGbt581 A469CqoJ9zY9yk6d9zu4m1ovYYhptGXzfxeaUI+em04Zs9VuvD9H4wbmDDzokCkp +zoxqtGl4IpQkYs9LzOb1uh/V6tEsnwUL8otnJmdyJ7NSsrTo8XLGWl609Y/XTzi 7258gMUBKgU1MxQNdPpEmMbEll/A0IjkC9JYvWwi3ULD6nInL2UzkKYS8LgARsMX BBkObTGHLMvhNN9iL04u6tOdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXPstnDF8 IIfwc4g3/em6odEdXE4wHwYDVR0jBBgwFoAUYsqcEm4U/7u8PWQHEF6+FRuZYFsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREMUY5LzQ4NEYyNkU2NEFD RjExRUZCODIxOEUxNUM0RjlBRTAyL1lzcWNFbTRVXzd1OFBXUUhFRjYtRlJ1WllG cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWXNxY0VtNFVfN3U4UFdRSEVGNi1GUnVaWUZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE MUY5LzQ4NEYyNkU2NEFDRjExRUZCODIxOEUxNUM0RjlBRTAyL1lzcWNFbTRVXzd1 OFBXUUhFRjYtRlJ1WllGcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHtC2CUSoU38ZsQ5VWBFUwZvUbZiveewIVQnAygy1r/I2qIuH9fWClz+ cQmcu7RUsEPGF8G6EolgjpYCdFN8GNmEeOwDdmO0VYf+WP+abEQc2cGzDoRI/Ug/ yEMjGJxj0pftd3i92J2H0JH2Oahrv093RjSz3IETGxgVA5uE3HfWXgCiRuSYzrTr 4btoPt/N5nannF8R9ahCNmOzTbMbMSjf7gEqBEU1KPF5D5KIT7I1qPCuccL0NfJc jxMZocO2b9bMM3KjPV2KxFFWkX48p7Vsv22MirAbdIF39g0NZ89RNTxD3Z4Mgaba VryGB2Q1Y28xkIeIjYD/NYdsBhUPLlE= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:51 2024 by rpki-client on console-fra.rpki-client.org