$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft File: y1IFTj13aOoWtrColMdzon3qkho.mft (raw, json) Hash identifier: eyYIRu8NO4XVeFmxY4ntc2vK7vkBc3z084FPQay9weg= Subject key identifier: E1:EC:E5:7D:ED:55:6C:33:72:D4:36:C0:E8:7F:AE:FD:11:D6:E4:4A Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A Certificate issuer: /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Certificate serial: 0B93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft Manifest number: 0B8C Signing time: Fri 22 Nov 2024 18:45:44 +0000 Manifest this update: Fri 22 Nov 2024 18:45:43 +0000 Manifest next update: Fri 29 Nov 2024 18:45:43 +0000 Files and hashes: 1: y1IFTj13aOoWtrColMdzon3qkho.crl (hash: 56Bk43HWc8tCMx1FaJdW125gazBDz5Ui2vEkc47zahI=) 2: 65866C4815D111EABE986319C4F9AE02.roa (hash: bE3U6nrCmV5LZYyjfhqmrx0+q5PYDYCOOXB/IfjAEuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2963 (0xb93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Validity Not Before: Nov 22 18:45:43 2024 GMT Not After : Nov 29 18:45:43 2024 GMT Subject: CN=6740d158-8039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:94:a0:af:59:46:90:f4:8c:5a:7c:f8:88:94: bb:49:fe:d1:8c:48:cd:50:d1:2e:97:e2:0d:76:da: 17:ed:c3:d8:96:ae:09:b7:d3:d3:2c:42:1d:a8:61: 7d:6d:73:81:76:45:c4:a0:af:e9:88:4c:5c:44:cf: db:c6:58:27:4a:9d:ee:5e:18:fe:c3:70:13:bd:4d: bc:e4:a7:7e:f0:22:94:27:87:47:ab:ab:6c:a7:39: f5:dd:6d:a7:63:83:00:dc:a7:6d:a4:8b:f2:e9:4b: ad:03:b0:d9:87:ec:b6:82:53:8f:dc:24:ea:14:50: 47:de:e9:c2:38:34:98:c7:ff:3e:08:1a:82:2f:1d: 61:dc:86:48:7b:da:81:25:ab:78:df:17:2d:9f:ce: 8f:e8:4b:49:3e:b0:d5:bb:06:f7:df:95:b5:91:32: 27:9d:87:37:fd:b7:31:46:84:25:ce:1a:9e:b2:b8: af:f5:14:23:84:37:a8:08:91:a5:21:03:21:b9:5b: f2:67:49:3c:27:49:78:d8:36:4d:8e:53:05:b3:46: fd:2a:fc:87:86:d8:cb:10:1e:b8:f6:dd:8d:b2:64: 1d:8f:54:08:5b:1b:55:89:f8:21:ab:b6:43:ee:e6: 96:ee:c9:9c:5e:fa:7c:a1:7a:8c:e9:ae:7e:74:f9: d7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:EC:E5:7D:ED:55:6C:33:72:D4:36:C0:E8:7F:AE:FD:11:D6:E4:4A X509v3 Authority Key Identifier: keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:e5:23:d8:9c:0c:c7:0d:6d:fa:b3:da:2a:5e:49:40:fa:ee: 8c:32:8d:5b:32:78:8c:d3:02:39:a0:b7:51:38:12:ae:3f:a6: db:f5:a3:0a:15:ca:5f:3c:f0:2b:24:c0:d3:d9:64:f3:23:60: 1c:18:62:4f:0f:bc:78:0f:13:08:81:71:28:00:f6:96:e4:b9: 62:34:3a:56:cb:35:39:05:a7:02:90:ef:7c:8a:c9:76:dc:0c: 58:3b:9e:25:0a:27:ca:58:ae:fc:b3:53:83:0f:fd:68:0e:c3: 48:4f:b8:d7:5b:c4:06:dc:4b:88:6f:c6:69:1e:c5:bc:6a:26: eb:1b:f0:2b:a2:52:14:29:da:f4:87:15:56:ad:01:42:de:e1: 41:8e:28:fa:81:b6:96:6f:77:9c:a2:45:1e:82:5d:83:2a:79: 1e:a2:1b:ed:89:b0:78:2c:c4:07:e8:a2:5b:ec:07:2c:dc:16: 9a:03:c4:aa:c3:78:99:24:4a:88:ab:99:2d:8e:39:06:a2:dd: 82:d4:fb:9d:3f:32:ac:aa:1c:a0:c4:c9:e5:60:2e:f1:e4:1b: 87:2d:07:4e:6b:45:01:ed:58:44:c4:28:3e:30:3f:9e:9f:e7: 82:c9:b0:b0:0b:4d:3e:a9:77:9d:fe:a6:e6:28:86:bc:42:65: 3c:ec:fa:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI2QUMxMTAvBgNVBAUTKENCNTIwNTRFM0Q3NzY4RUExNkI2QjBBODk0Qzc3M0Ey N0RFQTkyMUEwHhcNMjQxMTIyMTg0NTQzWhcNMjQxMTI5MTg0NTQzWjAYMRYwFAYD VQQDEw02NzQwZDE1OC04MDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJSgr1lGkPSMWnz4iJS7Sf7RjEjNUNEul+INdtoX7cPYlq4Jt9PTLEIdqGF9 bXOBdkXEoK/piExcRM/bxlgnSp3uXhj+w3ATvU285Kd+8CKUJ4dHq6tspzn13W2n Y4MA3KdtpIvy6UutA7DZh+y2glOP3CTqFFBH3unCODSYx/8+CBqCLx1h3IZIe9qB Jat43xctn86P6EtJPrDVuwb335W1kTInnYc3/bcxRoQlzhqesriv9RQjhDeoCJGl IQMhuVvyZ0k8J0l42DZNjlMFs0b9KvyHhtjLEB649t2NsmQdj1QIWxtVifghq7ZD 7uaW7smcXvp8oXqM6a5+dPnXzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHs5X3t VWwzctQ2wOh/rv0R1uRKMB8GA1UdIwQYMBaAFMtSBU49d2jqFrawqJTHc6J96pIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjZBQy9EN0U5OEE2RTE1 RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FPb1d0ckNvbE1kem9uM3Fr aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxSUZUajEzYU9vV3RyQ29sTWR6b24zcWtoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjZBQy9EN0U5OEE2RTE1RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FP b1d0ckNvbE1kem9uM3FraG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS5SPYnAzHDW36s9oqXklA+u6MMo1bMniM0wI5oLdROBKuP6bb9aMK FcpfPPArJMDT2WTzI2AcGGJPD7x4DxMIgXEoAPaW5LliNDpWyzU5BacCkO98isl2 3AxYO54lCifKWK78s1ODD/1oDsNIT7jXW8QG3EuIb8ZpHsW8aibrG/ArolIUKdr0 hxVWrQFC3uFBjij6gbaWb3ecokUegl2DKnkeohvtibB4LMQH6KJb7Acs3BaaA8Sq w3iZJEqIq5ktjjkGot2C1PudPzKsqhygxMnlYC7x5BuHLQdOa0UB7VhExCg+MD+e n+eCybCwC00+qXed/qbmKIa8QmU87Poc -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org