$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: JNzIJuYgit6fuhKBY6qi8BxKAjIVeo8zmx+mDheunIE= Subject key identifier: 8B:C6:01:DD:93:95:66:16:86:3D:1A:7F:3F:15:FB:CE:95:BB:99:54 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: 35 Signing time: Wed 23 Oct 2024 06:13:59 +0000 Manifest this update: Wed 23 Oct 2024 06:13:58 +0000 Manifest next update: Wed 30 Oct 2024 06:13:58 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: y8Jc6ieaZIeLXgBP8wqyCovaqG0Dvab4X/ezjTjDW44=) 2: 1818952C8D5811EFAD3A5D3BC4F9AE02.roa (hash: tKSHJqdsSmpGgJzA0ThHFbJCNwhgg/q9aM0ZWxNfpP8=) 3: 30C3ECA444B811EF8C81962AC4F9AE02.roa (hash: YRkHlOrrGzxXTEGbxmwj8yAFxeMrCPHch9CuERcM2OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Oct 23 06:13:58 2024 GMT Not After : Oct 30 06:13:58 2024 GMT Subject: CN=67189427-9204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e8:83:c4:2a:96:b7:7d:a7:fb:12:33:0d:23: 48:c6:73:67:31:81:88:93:e7:30:9d:3b:2a:10:46: b1:7d:6f:ff:0f:14:95:a3:b9:6f:f3:74:c1:05:ca: 75:3d:37:ad:8b:90:b4:d8:2a:9e:a3:51:f3:04:85: 50:f5:af:59:f4:6f:ba:d9:26:ac:57:c0:2e:38:49: 08:0a:8b:3f:8a:2f:db:1c:34:a4:86:7f:fa:08:db: 6e:b1:e7:58:cd:59:95:68:2d:dd:eb:14:37:87:f5: 24:06:ee:e8:3f:c4:68:6a:43:78:75:d0:99:47:3c: c1:a8:77:9e:b4:d8:55:8c:76:df:54:67:22:6c:ce: 2c:b4:57:3e:86:f8:e3:14:e6:83:a4:af:e6:74:05: 30:54:5b:61:ff:59:1f:63:f5:93:8b:50:30:df:3a: c7:51:38:f0:58:f4:6e:3a:ec:13:55:bb:2d:c6:af: 3a:e9:fa:04:1a:e4:b2:7c:77:33:c7:b8:c8:41:fb: 06:17:b3:2b:8c:2a:8c:a3:b3:ce:a3:ef:d0:4c:8b: f3:62:5b:f1:58:cd:1c:ee:d7:14:d8:f1:3c:a5:6c: 26:25:bc:e5:ad:88:7a:d7:3b:35:ed:a5:fa:9e:83: 11:44:76:ce:d5:66:ea:d9:1b:f4:7c:b7:c0:48:70: 70:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C6:01:DD:93:95:66:16:86:3D:1A:7F:3F:15:FB:CE:95:BB:99:54 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:1b:10:c5:6e:21:0e:05:c3:2a:3b:db:13:28:14:9c:45:97: d0:5e:10:3f:aa:b3:09:e7:f6:32:76:3c:10:39:8a:81:5a:59: cf:b5:92:e8:94:53:52:b2:23:b9:21:cb:1b:b7:d9:78:07:29: 9f:a0:12:3b:2f:0e:5f:67:1e:28:b5:11:06:d6:26:b3:6e:88: c4:4a:4d:cb:00:8c:81:9c:30:4a:f6:13:2c:d6:4f:c7:44:c1: cc:e3:21:35:8d:05:8d:c9:ab:7d:56:e5:a5:d2:bb:41:2c:c9: 54:f3:a2:16:e4:40:7d:cc:74:d2:ea:46:68:44:e9:48:4d:94: af:03:45:51:47:8e:8c:05:c7:b3:b6:6b:b4:d1:34:14:66:b6: 63:dc:6d:fe:71:db:68:12:e8:cf:79:11:54:cb:95:56:e0:3f: 94:04:78:86:d0:6f:1d:7d:15:e0:03:72:54:17:35:db:ac:e8: 69:a5:19:53:aa:8f:a6:35:02:18:7e:be:2d:35:eb:46:f9:52: 56:ff:e2:2f:96:c0:5d:bb:88:0e:ec:9b:ae:68:2c:e2:1c:1d: 66:33:34:71:37:27:2c:5e:8c:8e:da:b3:73:cd:bc:4e:2a:de: df:92:a5:d6:f0:80:13:12:79:e1:5e:1a:ca:c8:f2:a2:a1:87: d2:41:1f:f9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MDg1NTExMC8GA1UEBRMoRDMyQTVBREMwNTQyQzJFODE3QzIwMkJFNkI3MjgxRTg2 OUQxNzg5NzAeFw0yNDEwMjMwNjEzNThaFw0yNDEwMzAwNjEzNThaMBgxFjAUBgNV BAMTDTY3MTg5NDI3LTkyMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDA6IPEKpa3faf7EjMNI0jGc2cxgYiT5zCdOyoQRrF9b/8PFJWjuW/zdMEFynU9 N62LkLTYKp6jUfMEhVD1r1n0b7rZJqxXwC44SQgKiz+KL9scNKSGf/oI226x51jN WZVoLd3rFDeH9SQG7ug/xGhqQ3h10JlHPMGod5602FWMdt9UZyJsziy0Vz6G+OMU 5oOkr+Z0BTBUW2H/WR9j9ZOLUDDfOsdROPBY9G467BNVuy3Grzrp+gQa5LJ8dzPH uMhB+wYXsyuMKoyjs86j79BMi/NiW/FYzRzu1xTY8TylbCYlvOWtiHrXOzXtpfqe gxFEds7VZurZG/R8t8BIcHAZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi8YB3ZOV ZhaGPRp/PxX7zpW7mVQwHwYDVR0jBBgwFoAU0ypa3AVCwugXwgK+a3KB6GnReJcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwODU1LzUwNENGRkUyNDQ5 NjExRUY4RTg0RTYzREM0RjlBRTAyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVK Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMHlwYTNBVkN3dWdYd2dLLWEzS0I2R25SZUpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUw ODU1LzUwNENGRkUyNDQ5NjExRUY4RTg0RTYzREM0RjlBRTAyLzB5cGEzQVZDd3Vn WHdnSy1hM0tCNkduUmVKYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGobEMVuIQ4Fwyo72xMoFJxFl9BeED+qswnn9jJ2PBA5ioFaWc+1kuiU U1KyI7khyxu32XgHKZ+gEjsvDl9nHii1EQbWJrNuiMRKTcsAjIGcMEr2EyzWT8dE wczjITWNBY3Jq31W5aXSu0EsyVTzohbkQH3MdNLqRmhE6UhNlK8DRVFHjowFx7O2 a7TRNBRmtmPcbf5x22gS6M95EVTLlVbgP5QEeIbQbx19FeADclQXNdus6GmlGVOq j6Y1Ahh+vi0160b5Ulb/4i+WwF27iA7sm65oLOIcHWYzNHE3JyxejI7as3PNvE4q 3t+SpdbwgBMSeeFeGsrI8qKhh9JBH/k= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:03 2024 by rpki-client on console-ams.rpki-client.org