$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft File: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft (raw, json) Hash identifier: vGiNUmoofE4Zfyk2qLxVcXcgu+K240RCAkHWcXk2wKU= Subject key identifier: BB:5A:BF:96:2F:E7:5C:64:60:4F:3B:ED:82:48:D4:6E:66:7A:C0:74 Authority key identifier: 62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE Certificate issuer: /CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Certificate serial: 0C12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft Manifest number: 0C04 Signing time: Wed 20 Nov 2024 18:17:16 +0000 Manifest this update: Wed 20 Nov 2024 18:17:15 +0000 Manifest next update: Wed 27 Nov 2024 18:17:15 +0000 Files and hashes: 1: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl (hash: Gs1AD70h4f0wizuZYQlYapcIrtYtqT0Kbs4eJmrAcp4=) 2: BE8369D6053711EA9A24E761C4F9AE02.roa (hash: VMJPLLhedlHAk4tQ5HhxEAJ5POLeqMTVPXSXcNzn0f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3090 (0xc12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Validity Not Before: Nov 20 18:17:15 2024 GMT Not After : Nov 27 18:17:15 2024 GMT Subject: CN=673e27ab-2a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:be:80:bd:eb:47:a1:71:f4:3c:ca:a4:98:ed: d7:ce:42:4f:d2:8f:33:4f:fe:30:5d:95:9c:7a:43: 9f:fc:49:31:97:16:da:28:f7:94:d8:f7:cf:b4:88: 76:15:8b:df:24:0a:27:c5:18:b2:10:e5:3d:ab:4c: 1c:9e:21:1f:df:f9:ae:56:0c:6a:73:aa:2d:b5:ea: 94:f9:c3:49:69:7b:ec:62:c6:c0:ce:4f:1f:39:55: be:c7:39:48:9b:78:93:1a:23:56:2c:72:f1:32:0f: 85:6b:ad:74:0d:4a:56:df:bc:1f:db:c3:5a:80:07: 04:f8:99:66:c0:16:a6:fc:c0:3d:63:1b:f5:14:5c: 29:ad:31:55:d8:49:b2:46:0b:04:c4:97:d9:64:89: 4c:ac:4e:f1:4c:12:d4:3d:1d:77:71:11:40:56:0f: 0a:17:47:1a:ed:f9:e8:5d:5a:c3:ea:a0:7d:33:39: dd:02:d1:56:a0:da:f7:f3:97:5b:b5:d0:7c:dd:a9: a0:f1:b1:a9:78:4d:76:48:0d:08:8c:59:c3:e9:75: 30:d9:46:aa:79:ea:56:92:e4:b2:82:84:80:91:ce: 30:53:2e:40:f5:1a:3f:58:78:25:39:f6:70:3d:0f: cc:d5:2a:f9:7d:03:6d:10:a4:58:17:13:3c:85:c5: 1a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:5A:BF:96:2F:E7:5C:64:60:4F:3B:ED:82:48:D4:6E:66:7A:C0:74 X509v3 Authority Key Identifier: keyid:62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:8a:ba:d6:87:38:f2:02:27:76:c2:2a:0c:04:a1:02:fb:03: 23:95:d9:9a:f0:cd:1c:e2:aa:00:ca:c3:c4:07:54:d9:8b:c9: cd:97:4c:c3:1b:c6:a6:a5:8d:dd:4b:90:bf:cd:a7:23:6e:22: 1d:2d:9a:ba:95:d2:59:9b:1c:3f:f4:48:df:8f:70:65:32:24: 5a:e3:2d:8a:95:db:79:1b:f5:a4:1b:c2:a7:80:5c:e6:f2:ca: 51:b8:86:37:51:f6:d5:8a:9c:ed:60:49:72:31:8f:fd:94:61: 46:0a:08:72:43:90:3d:83:a6:2f:c1:d1:e4:19:41:88:50:71: 91:76:ef:e5:ad:41:45:db:13:2b:8c:88:d3:25:8a:54:5d:cb: 23:93:d5:ca:15:50:37:96:1e:4e:1f:5a:8d:81:61:69:de:f7: 73:6c:d2:08:e0:1a:9b:04:99:f1:32:c3:33:e1:bb:7c:38:ea: f5:2d:5b:b4:e7:21:bd:d5:be:ad:03:eb:3b:e8:52:e2:7d:a5: 47:51:b5:c2:26:09:db:b4:78:3d:62:1f:50:12:ad:79:00:3c: 5b:df:41:45:82:9c:0a:3e:99:0a:fd:2e:92:83:9a:57:89:be: 33:3a:21:9c:40:66:c9:c5:11:44:32:3a:3d:b3:a7:c7:a0:3a: b5:6f:dd:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0NkIxMTAvBgNVBAUTKDYyMkVFNzU0MzZENkYyRjM5RkIyM0QyQ0VCMjIzMzcx ODQ1NzNERkUwHhcNMjQxMTIwMTgxNzE1WhcNMjQxMTI3MTgxNzE1WjAYMRYwFAYD VQQDEw02NzNlMjdhYi0yYTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAur6AvetHoXH0PMqkmO3XzkJP0o8zT/4wXZWcekOf/EkxlxbaKPeU2PfPtIh2 FYvfJAonxRiyEOU9q0wcniEf3/muVgxqc6otteqU+cNJaXvsYsbAzk8fOVW+xzlI m3iTGiNWLHLxMg+Fa610DUpW37wf28NagAcE+JlmwBam/MA9Yxv1FFwprTFV2Emy RgsExJfZZIlMrE7xTBLUPR13cRFAVg8KF0ca7fnoXVrD6qB9MzndAtFWoNr385db tdB83amg8bGpeE12SA0IjFnD6XUw2UaqeepWkuSygoSAkc4wUy5A9Ro/WHglOfZw PQ/M1Sr5fQNtEKRYFxM8hcUavQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtav5Yv 51xkYE877YJI1G5mesB0MB8GA1UdIwQYMBaAFGIu51Q21vLzn7I9LOsiM3GEVz3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjQ2Qi80OTMxRUU0NjAw N0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2T2ZzajBzNnlJemNZUlhQ ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpN25WRGJXOHZPZnNqMHM2eUl6Y1lSWFBmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjQ2Qi80OTMxRUU0NjAwN0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2 T2ZzajBzNnlJemNZUlhQZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgirrWhzjyAid2wioMBKEC+wMjldma8M0c4qoAysPEB1TZi8nNl0zD G8ampY3dS5C/zacjbiIdLZq6ldJZmxw/9Ejfj3BlMiRa4y2Kldt5G/WkG8KngFzm 8spRuIY3UfbVipztYElyMY/9lGFGCghyQ5A9g6YvwdHkGUGIUHGRdu/lrUFF2xMr jIjTJYpUXcsjk9XKFVA3lh5OH1qNgWFp3vdzbNII4BqbBJnxMsMz4bt8OOr1LVu0 5yG91b6tA+s76FLifaVHUbXCJgnbtHg9Yh9QEq15ADxb30FFgpwKPpkK/S6Sg5pX ib4zOiGcQGbJxRFEMjo9s6fHoDq1b906 -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:28 2024 by rpki-client on console-fra.rpki-client.org