$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: PI8Gz458yIvPffTwbhBXIW2IYyMFNrQWWPFfs+zDuIU= Subject key identifier: 91:E4:74:AC:12:AF:C2:F1:87:4A:0D:F2:8D:00:E2:AD:B6:08:FA:C2 Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 02B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 02B0 Signing time: Sat 23 Nov 2024 01:03:19 +0000 Manifest this update: Sat 23 Nov 2024 01:03:18 +0000 Manifest next update: Sat 30 Nov 2024 01:03:18 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: 5wErpS1361hGQHXJGntyNOD1+Q8SX/0SohkCK7IFkZ8=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: RCfV8bIqd1stwpdUL12hC5tiTbZoC58Zty/Kc7NRaGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: Nov 23 01:03:18 2024 GMT Not After : Nov 30 01:03:18 2024 GMT Subject: CN=674129d7-a73d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:37:c2:92:66:c5:5f:23:65:02:8b:d3:ea:a5: a0:3e:43:74:00:ee:3e:97:1c:69:03:77:0a:17:ec: 5a:39:35:d5:02:9c:69:84:ae:fb:ad:22:58:3f:98: fa:bf:90:a7:d1:3d:65:30:f0:f3:fe:0f:bf:53:71: 18:01:47:c6:2c:48:d4:5f:55:e7:ea:9d:65:41:9b: 28:73:cb:34:07:3e:06:12:ce:a8:7a:90:29:0a:4f: fc:1f:1a:1b:c7:d0:25:8b:d4:0e:69:d7:ae:73:a2: bf:b2:bf:43:5f:fe:eb:37:54:19:fc:31:1f:e4:61: 66:ed:5c:db:2c:9d:68:77:5b:82:ff:ee:fd:1c:20: 06:67:4b:5f:d0:33:ad:d3:fc:bc:fc:91:4c:d6:7e: b0:36:6a:22:f6:74:9d:ba:cd:e5:2f:57:9c:b5:9f: 7e:7f:fb:6c:1c:e2:1c:4a:85:d9:9e:cb:ae:b2:d7: cd:0d:34:5b:d5:c4:de:1b:f2:74:7a:b2:cc:2a:36: 26:b4:62:1b:a5:22:1e:44:a6:d3:31:c7:4b:9e:d8: b6:af:fa:a3:f0:ea:ec:4f:69:97:8f:db:d1:6a:6a: e2:e6:6e:48:05:42:03:7f:e3:cc:8a:c3:6d:ad:7d: b7:3b:5a:16:35:00:27:2f:42:cf:7d:33:3a:86:e9: 2e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E4:74:AC:12:AF:C2:F1:87:4A:0D:F2:8D:00:E2:AD:B6:08:FA:C2 X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:e8:f3:f3:a0:67:1e:95:0f:54:da:0f:82:87:a1:b5:a8:2a: ef:16:fa:5f:36:93:ce:50:65:9e:1d:2c:29:0d:55:c7:a2:e7: 37:20:d2:66:69:81:08:86:84:d4:4c:94:63:a3:4d:b1:af:7f: 40:49:3f:81:a4:9e:71:13:90:3c:16:60:95:5b:2a:83:38:bb: cf:93:5a:41:3f:eb:ba:2e:63:34:6d:cf:b9:0d:e1:a5:96:29: 5e:78:aa:89:97:a4:db:be:58:92:e7:96:0f:54:39:1d:4f:f3: 8d:27:81:f9:82:4f:b7:3f:0e:fd:97:dd:51:be:2a:e1:7c:47: d0:9e:c5:cf:06:e0:dd:aa:dc:3e:ac:4c:1c:de:f0:de:fc:2d: a9:9c:da:fa:5b:ac:cc:98:5e:64:e7:d3:ce:eb:70:c9:c7:0f: 4f:95:f7:5a:e9:5a:15:20:1c:e6:17:fb:02:47:f2:f5:49:bc: 75:5c:b9:94:30:08:d0:b6:a7:00:54:82:aa:69:1b:ce:36:27: 24:24:20:8f:21:69:00:fe:14:8f:93:94:c7:ef:21:35:07:3a: 8a:36:4d:e2:dd:03:32:1a:d7:bf:6a:e9:79:5a:c2:99:46:7d: 31:e0:a6:ab:72:c5:4f:03:33:26:28:6a:74:c2:de:8c:28:c5: c3:5f:87:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjQxMTIzMDEwMzE4WhcNMjQxMTMwMDEwMzE4WjAYMRYwFAYD VQQDEw02NzQxMjlkNy1hNzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjfCkmbFXyNlAovT6qWgPkN0AO4+lxxpA3cKF+xaOTXVApxphK77rSJYP5j6 v5Cn0T1lMPDz/g+/U3EYAUfGLEjUX1Xn6p1lQZsoc8s0Bz4GEs6oepApCk/8Hxob x9Ali9QOadeuc6K/sr9DX/7rN1QZ/DEf5GFm7VzbLJ1od1uC/+79HCAGZ0tf0DOt 0/y8/JFM1n6wNmoi9nSdus3lL1ectZ9+f/tsHOIcSoXZnsuustfNDTRb1cTeG/J0 erLMKjYmtGIbpSIeRKbTMcdLnti2r/qj8OrsT2mXj9vRamri5m5IBUIDf+PMisNt rX23O1oWNQAnL0LPfTM6hukuFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHkdKwS r8Lxh0oN8o0A4q22CPrCMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm6PPzoGcelQ9U2g+Ch6G1qCrvFvpfNpPOUGWeHSwpDVXHouc3INJm aYEIhoTUTJRjo02xr39AST+BpJ5xE5A8FmCVWyqDOLvPk1pBP+u6LmM0bc+5DeGl lileeKqJl6TbvliS55YPVDkdT/ONJ4H5gk+3Pw79l91RvirhfEfQnsXPBuDdqtw+ rEwc3vDe/C2pnNr6W6zMmF5k59PO63DJxw9Plfda6VoVIBzmF/sCR/L1Sbx1XLmU MAjQtqcAVIKqaRvONickJCCPIWkA/hSPk5TH7yE1BzqKNk3i3QMyGte/aul5WsKZ Rn0x4KarcsVPAzMmKGp0wt6MKMXDX4ee -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:52 2024 by rpki-client on console-fra.rpki-client.org