$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft File: ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft (raw, json) Hash identifier: PUXpUStCQSSBqpsrW62UTgBhRlRn4GPJOl5sJiTnaMQ= Subject key identifier: DB:BA:3A:DF:F8:FB:03:28:33:57:D2:1F:35:E3:EE:F8:68:AB:47:93 Authority key identifier: C9:27:7F:02:9C:15:B3:37:95:36:66:F7:4B:9C:7E:6C:B3:90:7F:44 Certificate issuer: /CN=A91F0DAC/serialNumber=C9277F029C15B337953666F74B9C7E6CB3907F44 Certificate serial: 0FB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft Manifest number: 0F97 Signing time: Fri 22 Nov 2024 17:30:50 +0000 Manifest this update: Fri 22 Nov 2024 17:30:49 +0000 Manifest next update: Fri 29 Nov 2024 17:30:49 +0000 Files and hashes: 1: ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl (hash: fXN0qRmXv1amsrn7w1Y7aEtZQzPA4HXxk9AwG71R26M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4018 (0xfb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0DAC/serialNumber=C9277F029C15B337953666F74B9C7E6CB3907F44 Validity Not Before: Nov 22 17:30:49 2024 GMT Not After : Nov 29 17:30:49 2024 GMT Subject: CN=6740bfc9-903a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:40:1f:1f:cc:7b:e1:86:60:fe:e8:8c:6c:6b: 04:4e:cf:8d:ab:63:ab:cf:6a:e2:16:af:89:17:c0: 3f:f3:2c:a1:88:a6:ad:bd:8a:ae:d8:42:09:42:93: 90:6c:e1:35:ff:e0:eb:d3:64:1d:7c:4b:f0:dc:8b: 07:d8:72:9f:c3:b3:30:7e:fa:c6:62:b4:ea:c1:9a: 48:e8:33:17:4a:cd:0d:15:36:05:94:3a:7c:82:ed: b7:13:32:78:ef:28:61:9f:f2:42:55:a0:cd:c8:b2: 29:4f:e2:38:17:cd:20:21:d8:07:3a:84:11:d2:92: 7b:e0:ec:c3:3e:48:22:ec:ee:24:cf:6c:b6:ec:90: a9:af:c3:8c:9a:b4:02:a8:ca:b9:72:0e:0a:c3:50: 8d:e2:3b:31:80:cc:d8:20:00:5a:db:f6:01:ae:6b: 64:28:bf:9f:f9:06:09:23:90:ee:c8:29:6b:bf:6a: 18:6d:f3:70:a0:20:0c:5f:75:02:be:91:97:2d:1e: 0a:31:a1:d4:da:30:a6:f0:ba:dc:99:0b:41:5e:02: e4:94:5d:41:83:f6:ee:66:ae:65:1e:db:f7:2f:4f: d8:54:a0:d3:af:24:fe:18:d0:ed:cb:16:73:c4:86: e7:b5:34:9a:33:d1:c1:c1:28:69:9e:e7:6a:b7:ad: de:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:BA:3A:DF:F8:FB:03:28:33:57:D2:1F:35:E3:EE:F8:68:AB:47:93 X509v3 Authority Key Identifier: keyid:C9:27:7F:02:9C:15:B3:37:95:36:66:F7:4B:9C:7E:6C:B3:90:7F:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:9e:02:38:61:04:4d:bd:0b:d8:71:ab:34:d7:e9:85:f4:77: 4a:9f:a0:a9:0f:f0:6f:cc:ac:32:19:76:c0:4a:97:1e:d8:7a: 77:b1:e5:d0:57:31:6b:23:ff:83:c3:3e:a6:51:b0:7f:a7:e5: 77:df:95:53:28:d1:3a:22:6c:0a:6f:8f:c7:35:49:90:1e:21: 98:05:94:5f:f8:8d:a3:53:f9:45:dc:ca:86:31:30:ed:3d:25: e6:06:74:57:1c:f5:96:52:9a:0a:a7:2f:53:eb:64:59:30:d6: 53:8d:b8:4a:a6:86:13:4b:ed:10:7f:80:dd:0e:52:fa:85:1c: 73:de:fe:ed:cb:90:3f:32:8a:0c:fc:a9:eb:b5:db:61:74:6c: 58:b2:c6:1d:9d:6f:9e:9a:50:75:6d:5f:42:68:8a:2c:69:6c: b9:52:ce:9b:fd:9f:86:d3:b3:3e:47:f1:38:63:ab:01:0a:55: 61:4b:ec:02:0e:ea:05:6e:bc:c5:c0:a8:35:00:dd:91:4b:9b: a2:c2:dc:5a:0d:c0:14:09:71:0a:c4:c0:65:28:18:e4:0f:69: b4:e8:f0:c9:ea:eb:44:12:95:c1:64:1a:45:2d:87:84:4a:22: 98:e0:a9:b9:03:2c:7c:b2:09:64:e0:8c:92:4d:0a:9d:f0:b5: ee:f4:06:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEQUMxMTAvBgNVBAUTKEM5Mjc3RjAyOUMxNUIzMzc5NTM2NjZGNzRCOUM3RTZD QjM5MDdGNDQwHhcNMjQxMTIyMTczMDQ5WhcNMjQxMTI5MTczMDQ5WjAYMRYwFAYD VQQDEw02NzQwYmZjOS05MDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4UAfH8x74YZg/uiMbGsETs+Nq2Orz2riFq+JF8A/8yyhiKatvYqu2EIJQpOQ bOE1/+Dr02QdfEvw3IsH2HKfw7MwfvrGYrTqwZpI6DMXSs0NFTYFlDp8gu23EzJ4 7yhhn/JCVaDNyLIpT+I4F80gIdgHOoQR0pJ74OzDPkgi7O4kz2y27JCpr8OMmrQC qMq5cg4Kw1CN4jsxgMzYIABa2/YBrmtkKL+f+QYJI5DuyClrv2oYbfNwoCAMX3UC vpGXLR4KMaHU2jCm8LrcmQtBXgLklF1Bg/buZq5lHtv3L0/YVKDTryT+GNDtyxZz xIbntTSaM9HBwShpnudqt63ezwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNu6Ot/4 +wMoM1fSHzXj7vhoq0eTMB8GA1UdIwQYMBaAFMknfwKcFbM3lTZm90ucfmyzkH9E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMERBQy8wQ0UxOTY0RTRG Q0ExMUU5QjM4QkEyMkJDNEY5QUUwMi95U2RfQXB3VnN6ZVZObWIzUzV4LWJMT1Fm MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTZF9BcHdWc3plVk5tYjNTNXgtYkxPUWYwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MERBQy8wQ0UxOTY0RTRGQ0ExMUU5QjM4QkEyMkJDNEY5QUUwMi95U2RfQXB3VnN6 ZVZObWIzUzV4LWJMT1FmMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0ngI4YQRNvQvYcas01+mF9HdKn6CpD/BvzKwyGXbASpce2Hp3seXQ VzFrI/+Dwz6mUbB/p+V335VTKNE6ImwKb4/HNUmQHiGYBZRf+I2jU/lF3MqGMTDt PSXmBnRXHPWWUpoKpy9T62RZMNZTjbhKpoYTS+0Qf4DdDlL6hRxz3v7ty5A/MooM /KnrtdthdGxYssYdnW+emlB1bV9CaIosaWy5Us6b/Z+G07M+R/E4Y6sBClVhS+wC DuoFbrzFwKg1AN2RS5uiwtxaDcAUCXEKxMBlKBjkD2m06PDJ6utEEpXBZBpFLYeE SiKY4Km5Ayx8sglk4IySTQqd8LXu9AaT -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org