$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft File: YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft (raw, json) Hash identifier: NPv4/SwFMt86fMzwU9kK94TdidQoPe3Ce3YhZ3oLMNk= Subject key identifier: E4:B4:E6:FD:60:69:A1:40:8D:B2:10:C7:01:45:39:50:48:F7:07:F9 Authority key identifier: 62:CA:9C:12:6E:14:FF:BB:BC:3D:64:07:10:5E:BE:15:1B:99:60:5B Certificate issuer: /CN=A91DD1F9/serialNumber=62CA9C126E14FFBBBC3D6407105EBE151B99605B Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsqcEm4U_7u8PWQHEF6-FRuZYFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft Manifest number: 1C Signing time: Sun 15 Sep 2024 10:25:01 +0000 Manifest this update: Sun 15 Sep 2024 10:25:00 +0000 Manifest next update: Sun 22 Sep 2024 10:25:00 +0000 Files and hashes: 1: YsqcEm4U_7u8PWQHEF6-FRuZYFs.crl (hash: Ndgdab4H9wYQpXmOZhmWqCn1AJLh3TQEsEyugVb4s9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.crl rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsqcEm4U_7u8PWQHEF6-FRuZYFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD1F9/serialNumber=62CA9C126E14FFBBBC3D6407105EBE151B99605B Validity Not Before: Sep 15 10:25:00 2024 GMT Not After : Sep 22 10:25:00 2024 GMT Subject: CN=66e6b5fc-d081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0b:99:78:82:81:60:3d:ed:61:3d:e9:0e:90: d6:89:92:2e:a1:c4:29:0e:c9:53:81:63:c1:a7:11: b4:8d:9b:02:dc:20:6e:e5:02:9f:4f:fa:13:7a:cc: 69:83:c8:f9:73:5c:b7:56:fd:bb:a2:6b:9b:41:21: ef:0a:96:5d:47:6e:2d:44:03:cb:aa:56:a9:1c:8e: 60:01:dc:92:1e:33:af:27:7c:d0:05:aa:b4:cb:48: 25:be:ce:fc:7e:5d:50:21:1c:f1:7a:d2:ff:72:8c: de:8c:a3:4f:f8:9d:c9:6d:8c:90:d7:69:34:c7:9a: 7a:76:df:f1:52:54:d8:6a:75:89:be:82:c6:33:34: 19:bc:e4:29:15:cc:c1:52:41:68:eb:f8:46:b4:d6: 18:aa:8d:30:e0:b0:2a:8d:da:3f:ac:b4:db:c8:0d: a9:71:5a:6f:d2:2e:0e:b2:46:d8:20:20:9f:8b:05: b2:da:6c:6a:8b:07:5e:0c:f9:a4:47:67:d2:73:ae: 71:01:44:bd:be:0c:f9:b5:33:a8:fe:47:c4:53:38: 75:03:74:98:e5:d5:29:b4:57:19:7a:df:b3:dc:22: aa:65:e4:9c:02:c9:06:fa:27:73:0f:f8:01:52:33: 3d:5a:3d:90:b2:c4:21:89:2b:f4:b1:9b:78:32:67: e4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B4:E6:FD:60:69:A1:40:8D:B2:10:C7:01:45:39:50:48:F7:07:F9 X509v3 Authority Key Identifier: keyid:62:CA:9C:12:6E:14:FF:BB:BC:3D:64:07:10:5E:BE:15:1B:99:60:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsqcEm4U_7u8PWQHEF6-FRuZYFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:73:df:01:3f:a4:14:f3:03:b8:ba:e8:ae:55:e2:4a:89:b3: f9:04:0d:de:d2:2b:f0:59:c7:57:20:be:17:9b:da:ee:f8:e6: 28:9b:73:12:c2:9b:b5:9f:24:b5:e4:6a:b4:c8:1a:b5:8b:72: 34:b8:e9:24:25:ec:8c:70:be:08:af:d4:85:26:13:22:42:88: 17:ec:b8:25:65:90:7f:a8:f2:a5:9d:2e:f1:a4:0a:c5:f6:fb: de:bb:89:5c:96:7a:b6:66:45:23:d8:56:6e:27:b0:c2:ab:f2: 80:bf:c5:0c:df:6e:8a:17:74:81:16:7a:b8:6f:fb:a4:ad:2f: e0:8e:f2:ba:18:54:b4:08:b8:ca:94:90:48:8e:5c:b0:b1:c3: 9d:a0:88:2c:4a:84:af:7f:64:33:f6:bc:1c:97:c7:44:84:6f: b9:88:8b:ea:f4:10:64:ef:59:b0:35:41:43:9e:24:28:c8:89: 52:7d:61:d6:08:3e:30:32:b1:93:61:2e:00:87:29:46:17:6f: 71:0b:87:fa:d7:dd:da:2f:86:93:4a:c6:84:14:d1:38:48:90: 1f:93:2e:23:ce:24:f2:6b:38:0e:96:03:63:c0:3a:f4:1f:75: 99:ee:f1:51:f4:34:1e:b3:02:28:b1:7b:14:b7:85:3e:eb:93: 45:01:7e:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDFGOTExMC8GA1UEBRMoNjJDQTlDMTI2RTE0RkZCQkJDM0Q2NDA3MTA1RUJFMTUx Qjk5NjA1QjAeFw0yNDA5MTUxMDI1MDBaFw0yNDA5MjIxMDI1MDBaMBgxFjAUBgNV BAMTDTY2ZTZiNWZjLWQwODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8C5l4goFgPe1hPekOkNaJki6hxCkOyVOBY8GnEbSNmwLcIG7lAp9P+hN6zGmD yPlzXLdW/buia5tBIe8Kll1Hbi1EA8uqVqkcjmAB3JIeM68nfNAFqrTLSCW+zvx+ XVAhHPF60v9yjN6Mo0/4ncltjJDXaTTHmnp23/FSVNhqdYm+gsYzNBm85CkVzMFS QWjr+Ea01hiqjTDgsCqN2j+stNvIDalxWm/SLg6yRtggIJ+LBbLabGqLB14M+aRH Z9JzrnEBRL2+DPm1M6j+R8RTOHUDdJjl1Sm0Vxl637PcIqpl5JwCyQb6J3MP+AFS Mz1aPZCyxCGJK/Sxm3gyZ+SbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5LTm/WBp oUCNshDHAUU5UEj3B/kwHwYDVR0jBBgwFoAUYsqcEm4U/7u8PWQHEF6+FRuZYFsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREMUY5LzQ4NEYyNkU2NEFD RjExRUZCODIxOEUxNUM0RjlBRTAyL1lzcWNFbTRVXzd1OFBXUUhFRjYtRlJ1WllG cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWXNxY0VtNFVfN3U4UFdRSEVGNi1GUnVaWUZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE MUY5LzQ4NEYyNkU2NEFDRjExRUZCODIxOEUxNUM0RjlBRTAyL1lzcWNFbTRVXzd1 OFBXUUhFRjYtRlJ1WllGcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK9z3wE/pBTzA7i66K5V4kqJs/kEDd7SK/BZx1cgvheb2u745iibcxLC m7WfJLXkarTIGrWLcjS46SQl7Ixwvgiv1IUmEyJCiBfsuCVlkH+o8qWdLvGkCsX2 +967iVyWerZmRSPYVm4nsMKr8oC/xQzfbooXdIEWerhv+6StL+CO8roYVLQIuMqU kEiOXLCxw52giCxKhK9/ZDP2vByXx0SEb7mIi+r0EGTvWbA1QUOeJCjIiVJ9YdYI PjAysZNhLgCHKUYXb3ELh/rX3dovhpNKxoQU0ThIkB+TLiPOJPJrOA6WA2PAOvQf dZnu8VH0NB6zAiixexS3hT7rk0UBftc= -----END CERTIFICATE-----Generated at Sun Sep 15 12:30:37 2024 by rpki-client on console-ams.rpki-client.org