$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft File: Y7ooHVb6T-blNbEl4W34AdEvgJk.mft (raw, json) Hash identifier: Ot79UM6zJ/uYUuBGme41NhlcfsVfpWv0SITJTZNf1L8= Subject key identifier: B4:63:AC:98:35:9E:E1:03:AF:08:59:2A:C9:AF:5D:84:CF:43:6E:A7 Authority key identifier: 63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 Certificate issuer: /CN=A91ECBD9/serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft Manifest number: 2C Signing time: Sat 23 Nov 2024 05:38:01 +0000 Manifest this update: Sat 23 Nov 2024 05:38:00 +0000 Manifest next update: Sat 30 Nov 2024 05:38:00 +0000 Files and hashes: 1: Y7ooHVb6T-blNbEl4W34AdEvgJk.crl (hash: eM2N2dPmd+wvP3oNod2GkqIqzc39OW5pDgDjmkQasGc=) 2: 4E67247C681911EFA2640B43C4F9AE02.roa (hash: 9b5hcdjgNu1V+4hiXD0EH0CcG2L6sHhLvtxEI9xLyu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECBD9/serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Validity Not Before: Nov 23 05:38:00 2024 GMT Not After : Nov 30 05:38:00 2024 GMT Subject: CN=67416a39-3045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7f:b0:4c:86:63:94:5f:2e:0f:10:c0:1b:14: ca:72:78:f3:ec:cd:dd:e3:0c:46:bc:ef:93:99:cc: 1d:8f:e6:ea:c4:72:36:81:dd:98:44:da:18:00:9a: cc:91:2f:99:61:46:1e:8c:b7:9b:90:9e:5c:70:da: ee:78:13:69:86:72:ba:0b:8f:0a:84:d2:a5:08:d3: 8c:53:18:60:da:36:58:8a:24:31:d9:51:20:9f:f2: ce:c0:80:6f:ae:6e:b4:0d:52:57:09:54:8c:09:6c: 94:ab:8f:7a:dc:30:91:d9:88:0f:77:4e:68:89:b2: 11:54:93:c9:6c:6b:1f:59:f2:2b:f1:d8:ea:a5:c8: 8a:93:d1:a7:91:f4:79:ce:c6:30:69:e9:3d:c0:37: 7a:1d:73:12:ac:a2:b1:42:32:af:fe:91:66:18:59: 62:69:25:ef:a1:5b:5b:03:51:5f:4d:47:e8:bd:e5: a2:f0:6c:10:0a:ae:d3:97:18:5b:54:46:b9:d6:fb: 19:15:7d:7d:63:d8:e7:a7:16:5b:ba:df:19:ee:39: 75:fa:fb:99:3e:8a:2c:c2:cc:e7:24:f4:99:23:57: 66:02:93:ef:81:60:3c:a2:7e:90:dd:1e:b4:ab:35: d4:63:e1:c6:3e:6e:12:5f:53:2a:a3:21:36:68:95: 57:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:63:AC:98:35:9E:E1:03:AF:08:59:2A:C9:AF:5D:84:CF:43:6E:A7 X509v3 Authority Key Identifier: keyid:63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:89:62:db:ea:4f:2a:6a:2e:f9:6b:56:7a:db:1b:ba:8c:81: 14:f2:58:8a:02:c3:1b:45:53:df:c1:30:d7:0a:8a:3e:16:b3: 6c:fc:60:4d:0b:8b:1c:85:5f:6f:19:24:29:ca:bd:c2:65:df: de:de:47:a7:c7:04:06:b3:d7:48:21:6d:e1:bf:15:60:53:57: 06:1f:92:6b:88:96:7e:eb:b6:15:45:26:52:ee:17:67:e4:95: e3:82:ca:1a:2b:95:5a:10:d7:b6:5b:77:6d:e7:f7:60:84:3c: 65:15:70:0d:40:1e:63:d5:96:50:19:21:c2:9a:31:4c:e5:76: 1e:c6:86:54:43:70:2c:ed:76:f5:01:cc:f3:e5:4d:55:fa:db: 01:77:79:06:23:a3:da:68:9e:9c:03:93:f9:a5:cd:4f:8d:71: aa:c9:5e:38:37:01:e4:ce:d9:d2:6a:a5:9d:78:f9:a4:a7:2b: 4c:38:1a:2f:2a:9e:84:6f:c1:21:e7:47:60:c0:6c:1c:fb:01: fa:17:e3:06:a6:c2:45:f3:26:11:b6:ca:12:a0:66:3d:73:3d: 32:b5:76:49:e5:4f:cb:15:2e:b4:ab:74:17:0c:ba:95:9c:60: b1:df:31:ca:e0:13:d1:26:a8:5f:98:a8:fe:5a:c2:b7:4e:78: 1b:70:5a:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF Q0JEOTExMC8GA1UEBRMoNjNCQTI4MUQ1NkZBNEZFNkU1MzVCMTI1RTE2REY4MDFE MTJGODA5OTAeFw0yNDExMjMwNTM4MDBaFw0yNDExMzAwNTM4MDBaMBgxFjAUBgNV BAMTDTY3NDE2YTM5LTMwNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1f7BMhmOUXy4PEMAbFMpyePPszd3jDEa875OZzB2P5urEcjaB3ZhE2hgAmsyR L5lhRh6Mt5uQnlxw2u54E2mGcroLjwqE0qUI04xTGGDaNliKJDHZUSCf8s7AgG+u brQNUlcJVIwJbJSrj3rcMJHZiA93TmiJshFUk8lsax9Z8ivx2OqlyIqT0aeR9HnO xjBp6T3AN3odcxKsorFCMq/+kWYYWWJpJe+hW1sDUV9NR+i95aLwbBAKrtOXGFtU RrnW+xkVfX1j2OenFlu63xnuOXX6+5k+iizCzOck9JkjV2YCk++BYDyifpDdHrSr NdRj4cY+bhJfUyqjITZolVffAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtGOsmDWe 4QOvCFkqya9dhM9DbqcwHwYDVR0jBBgwFoAUY7ooHVb6T+blNbEl4W34AdEvgJkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVDQkQ5L0UwNDZCMEI2Njgx ODExRUY5QTUzRTkxOEM0RjlBRTAyL1k3b29IVmI2VC1ibE5iRWw0VzM0QWRFdmdK ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTdvb0hWYjZULWJsTmJFbDRXMzRBZEV2Z0prLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVD QkQ5L0UwNDZCMEI2NjgxODExRUY5QTUzRTkxOEM0RjlBRTAyL1k3b29IVmI2VC1i bE5iRWw0VzM0QWRFdmdKay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIuJYtvqTypqLvlrVnrbG7qMgRTyWIoCwxtFU9/BMNcKij4Ws2z8YE0L ixyFX28ZJCnKvcJl397eR6fHBAaz10ghbeG/FWBTVwYfkmuIln7rthVFJlLuF2fk leOCyhorlVoQ17Zbd23n92CEPGUVcA1AHmPVllAZIcKaMUzldh7GhlRDcCztdvUB zPPlTVX62wF3eQYjo9ponpwDk/mlzU+NcarJXjg3AeTO2dJqpZ14+aSnK0w4Gi8q noRvwSHnR2DAbBz7AfoX4wamwkXzJhG2yhKgZj1zPTK1dknlT8sVLrSrdBcMupWc YLHfMcrgE9EmqF+YqP5awrdOeBtwWqM= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org