$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: rdmbFvSvmxCVO8cBnOXcIHsdiG28wEc9sHROe8deZXw= Subject key identifier: 3B:24:1F:6E:6C:8E:E0:E0:E5:28:FA:02:54:E8:98:81:79:1B:E8:D2 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: 44 Signing time: Thu 21 Nov 2024 05:27:33 +0000 Manifest this update: Thu 21 Nov 2024 05:27:32 +0000 Manifest next update: Thu 28 Nov 2024 05:27:32 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: 6m1tL9ZhV0oKAK7DlUF+vORbFOee+jMACZJP1Y9DgfA=) 2: 1818952C8D5811EFAD3A5D3BC4F9AE02.roa (hash: tKSHJqdsSmpGgJzA0ThHFbJCNwhgg/q9aM0ZWxNfpP8=) 3: 30C3ECA444B811EF8C81962AC4F9AE02.roa (hash: YRkHlOrrGzxXTEGbxmwj8yAFxeMrCPHch9CuERcM2OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Nov 21 05:27:32 2024 GMT Not After : Nov 28 05:27:32 2024 GMT Subject: CN=673ec4c5-aa0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cb:c2:3b:86:d4:92:81:bc:23:63:d6:f1:f0: 77:7c:4d:a0:c3:3b:b1:67:99:96:ec:56:1d:23:e2: 84:5d:65:19:ac:14:e7:89:82:5e:9e:d9:d4:3c:0a: 09:5f:88:49:e4:a4:d2:b7:2d:98:57:23:b6:99:59: 92:60:c1:04:0e:be:5d:5a:e7:98:c7:d2:13:7f:67: e2:20:2b:4b:15:54:80:fb:da:61:4a:ee:af:80:fe: df:20:ef:7c:ab:dd:13:5b:88:c6:f0:49:6d:b1:6f: cb:23:f7:fb:7c:1f:cd:a1:9a:40:87:39:d6:19:c3: 06:b7:37:84:fd:bc:f4:ad:88:07:2d:6f:d2:cc:58: b8:95:f0:ce:76:59:fe:ff:c3:96:96:c4:ad:b3:c0: cf:33:ed:46:d3:8a:d5:70:95:e7:0b:3e:63:ff:32: f2:22:c6:4a:e7:d8:c8:09:64:d1:b5:b8:d9:69:9d: 99:6d:52:05:2e:df:38:f4:af:af:33:87:d1:47:d9: b5:a2:7b:8b:3f:21:92:a4:44:8c:1d:d9:54:c4:df: b4:b5:3f:48:37:54:63:f1:de:80:8e:19:66:93:c0: 1a:93:9f:89:ad:e6:71:fd:4a:34:55:0f:9f:c1:7f: 3b:a4:8a:e2:9c:6e:5c:50:dc:1b:d8:a4:2d:c6:36: f5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:24:1F:6E:6C:8E:E0:E0:E5:28:FA:02:54:E8:98:81:79:1B:E8:D2 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:5f:84:17:13:77:89:84:3b:d3:93:6d:b6:06:25:a5:86:0d: 0e:25:87:4f:6f:58:ca:0f:ab:b1:4d:d8:29:87:8b:86:49:d6: 81:ba:1e:d0:43:9d:d4:92:b2:6a:bd:44:7d:58:51:2b:6d:16: 81:d5:d0:7d:45:23:a4:4f:8b:5d:4d:53:20:cd:44:2b:36:7a: 30:6c:6f:96:78:05:e0:0e:76:8c:39:05:ca:d4:d6:9e:9b:ad: 9e:b6:53:44:d9:b6:c8:cf:a9:29:35:c0:62:39:c8:30:58:d4: 60:20:fb:e4:c8:e5:57:10:da:42:58:83:bd:d2:a9:2d:3e:4f: 40:31:b5:cc:4a:c7:2d:d1:aa:3b:9e:20:a0:6b:57:fb:af:59: cc:42:f7:1f:55:05:55:2e:ae:bd:22:63:37:0b:16:a2:0a:3e: ad:d3:80:b1:c0:d7:07:61:b1:71:74:69:b5:c4:f6:8a:5e:8c: 24:df:cf:7e:0b:82:a3:fa:02:e2:aa:6f:8d:e5:0a:6a:24:50: 71:52:c0:2e:6c:f8:2b:1c:1c:3c:3b:05:c5:cf:44:8c:1b:36: 32:67:f1:7a:55:0f:d3:3a:23:70:e8:07:43:2e:4f:a3:98:c7: dd:fb:70:df:f6:47:94:29:e7:1d:59:41:ba:40:5b:ab:b7:be: 5f:91:9e:45 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MDg1NTExMC8GA1UEBRMoRDMyQTVBREMwNTQyQzJFODE3QzIwMkJFNkI3MjgxRTg2 OUQxNzg5NzAeFw0yNDExMjEwNTI3MzJaFw0yNDExMjgwNTI3MzJaMBgxFjAUBgNV BAMTDTY3M2VjNGM1LWFhMGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDy8I7htSSgbwjY9bx8Hd8TaDDO7FnmZbsVh0j4oRdZRmsFOeJgl6e2dQ8Cglf iEnkpNK3LZhXI7aZWZJgwQQOvl1a55jH0hN/Z+IgK0sVVID72mFK7q+A/t8g73yr 3RNbiMbwSW2xb8sj9/t8H82hmkCHOdYZwwa3N4T9vPStiActb9LMWLiV8M52Wf7/ w5aWxK2zwM8z7UbTitVwlecLPmP/MvIixkrn2MgJZNG1uNlpnZltUgUu3zj0r68z h9FH2bWie4s/IZKkRIwd2VTE37S1P0g3VGPx3oCOGWaTwBqTn4mt5nH9SjRVD5/B fzukiuKcblxQ3BvYpC3GNvV9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOyQfbmyO 4ODlKPoCVOiYgXkb6NIwHwYDVR0jBBgwFoAU0ypa3AVCwugXwgK+a3KB6GnReJcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwODU1LzUwNENGRkUyNDQ5 NjExRUY4RTg0RTYzREM0RjlBRTAyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVK Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMHlwYTNBVkN3dWdYd2dLLWEzS0I2R25SZUpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUw ODU1LzUwNENGRkUyNDQ5NjExRUY4RTg0RTYzREM0RjlBRTAyLzB5cGEzQVZDd3Vn WHdnSy1hM0tCNkduUmVKYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIxfhBcTd4mEO9OTbbYGJaWGDQ4lh09vWMoPq7FN2CmHi4ZJ1oG6HtBD ndSSsmq9RH1YUSttFoHV0H1FI6RPi11NUyDNRCs2ejBsb5Z4BeAOdow5BcrU1p6b rZ62U0TZtsjPqSk1wGI5yDBY1GAg++TI5VcQ2kJYg73SqS0+T0AxtcxKxy3Rqjue IKBrV/uvWcxC9x9VBVUurr0iYzcLFqIKPq3TgLHA1wdhsXF0abXE9opejCTfz34L gqP6AuKqb43lCmokUHFSwC5s+CscHDw7BcXPRIwbNjJn8XpVD9M6I3DoB0MuT6OY x937cN/2R5Qp5x1ZQbpAW6u3vl+RnkU= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:51 2024 by rpki-client on console-fra.rpki-client.org