$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft File: YDUU_FCDUUDwM--oQ87pOWOWol0.mft (raw, json) Hash identifier: g4BN2tMiPP4syPew/fFGTetaDbsOEQeErrfOtIv5R4s= Subject key identifier: 58:07:2C:D6:4B:18:8A:9A:9A:2C:23:0F:A4:CF:C2:75:3A:B9:87:30 Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 0A51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft Manifest number: 0A4C Signing time: Sat 18 May 2024 20:23:17 +0000 Manifest this update: Sat 18 May 2024 20:23:17 +0000 Manifest next update: Sat 25 May 2024 20:23:17 +0000 Files and hashes: 1: YDUU_FCDUUDwM--oQ87pOWOWol0.crl (hash: 5q4aSeoz30vNi/MOcGfPbLngS01BPSQ+ykhamkXa+Zc=) 2: 42EE36A240EC11EA875BC545C4F9AE02.roa (hash: I/qPuyUkKtwnXgFp3BLtqWc/cf44Yyk2LIv/V8g+A9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2641 (0xa51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Validity Not Before: May 18 20:23:17 2024 GMT Not After : May 25 20:23:17 2024 GMT Subject: CN=66490e35-17c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:82:e7:98:0a:47:ad:d1:3f:3e:f8:50:d1:ee: fa:37:42:61:c9:6e:e9:27:66:34:8f:11:ee:f7:39: 70:26:e8:93:82:a0:84:ac:2e:33:6f:27:ae:0b:49: 03:6d:4e:20:15:e2:ea:27:51:02:7f:25:0d:1b:3c: 99:65:6d:60:08:4f:16:d8:90:5f:38:6a:6d:25:07: 2d:86:46:ea:dd:07:0a:82:f9:6b:34:2a:f5:eb:7e: 93:59:68:90:2e:ab:60:32:56:bb:00:b6:f3:de:89: 1d:bf:99:69:91:bb:e1:d1:95:32:67:9a:99:f2:f0: 06:a1:3f:bf:ee:41:5b:8c:d0:d1:ad:ff:7e:05:8c: 46:4c:e2:be:1b:56:01:e5:02:4d:61:26:fc:4b:05: 6f:3d:86:3f:76:a5:9c:63:bd:2c:e6:c5:61:4b:a9: da:e7:bd:f1:12:02:7e:22:f1:5c:b5:7b:4b:9a:43: f9:eb:33:44:e0:cb:be:08:10:57:81:9e:35:b0:64: eb:27:c6:b1:a5:f1:4f:c8:7d:ae:5b:25:b4:7a:0f: fa:68:8d:eb:9c:cb:17:4f:34:55:1f:a3:1a:16:bd: 26:dd:25:d9:67:ef:20:22:02:84:92:46:ed:e5:0c: a9:7f:6e:06:f9:b7:29:cc:f4:42:27:16:09:2c:4e: 8a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:07:2C:D6:4B:18:8A:9A:9A:2C:23:0F:A4:CF:C2:75:3A:B9:87:30 X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:7a:b8:10:da:8c:01:95:11:90:66:94:42:6c:ab:98:b7:50: bc:09:2a:b7:4f:43:8a:d4:49:52:1e:f6:6e:3e:b9:cf:75:0b: 1d:df:7d:98:df:06:34:92:7c:9f:d4:4d:ad:48:2f:68:fa:49: 96:53:65:69:ad:a1:9b:75:5f:2a:01:d6:27:1e:53:48:9b:5c: f1:bd:95:cf:d5:47:12:cd:76:6a:73:52:05:22:a4:51:22:7b: be:c1:cf:81:2f:4c:3b:d9:29:89:95:ed:87:eb:bc:4d:d7:9d: 64:8c:55:30:f4:ba:1a:c1:18:4d:56:1a:20:b7:12:0f:27:19: 83:b4:df:84:72:6d:29:30:5c:2f:f5:09:d4:41:3a:72:26:d4: bf:24:00:42:5e:89:b4:a4:78:5e:a9:24:db:62:7a:e3:71:99: 33:50:c5:82:e4:52:4a:0b:e6:38:fd:13:a2:a3:3c:c1:d1:0f: fa:2d:7e:78:dc:fb:b6:07:52:67:2d:88:6f:4e:5d:15:4f:82: 40:4a:dc:78:e9:de:c8:9f:31:7c:12:fb:40:da:12:8c:c1:97: 4f:dc:98:31:ce:70:7e:0e:db:22:80:19:fb:d5:94:c0:e4:3c: 0e:7c:33:68:eb:91:61:54:99:bd:7d:dd:91:90:3a:02:b4:28: f3:c5:25:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjQwNTE4MjAyMzE3WhcNMjQwNTI1MjAyMzE3WjAYMRYwFAYD VQQDEw02NjQ5MGUzNS0xN2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04LnmApHrdE/PvhQ0e76N0JhyW7pJ2Y0jxHu9zlwJuiTgqCErC4zbyeuC0kD bU4gFeLqJ1ECfyUNGzyZZW1gCE8W2JBfOGptJQcthkbq3QcKgvlrNCr1636TWWiQ LqtgMla7ALbz3okdv5lpkbvh0ZUyZ5qZ8vAGoT+/7kFbjNDRrf9+BYxGTOK+G1YB 5QJNYSb8SwVvPYY/dqWcY70s5sVhS6na573xEgJ+IvFctXtLmkP56zNE4Mu+CBBX gZ41sGTrJ8axpfFPyH2uWyW0eg/6aI3rnMsXTzRVH6MaFr0m3SXZZ+8gIgKEkkbt 5Qypf24G+bcpzPRCJxYJLE6KxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgHLNZL GIqamiwjD6TPwnU6uYcwMB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MThGQS85ODQyNDQ5QzQwRUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVV RHdNLS1vUTg3cE9XT1dvbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoergQ2owBlRGQZpRCbKuYt1C8CSq3T0OK1ElSHvZuPrnPdQsd332Y 3wY0knyf1E2tSC9o+kmWU2VpraGbdV8qAdYnHlNIm1zxvZXP1UcSzXZqc1IFIqRR Inu+wc+BL0w72SmJle2H67xN151kjFUw9LoawRhNVhogtxIPJxmDtN+Ecm0pMFwv 9QnUQTpyJtS/JABCXom0pHheqSTbYnrjcZkzUMWC5FJKC+Y4/ROiozzB0Q/6LX54 3Pu2B1JnLYhvTl0VT4JAStx46d7InzF8EvtA2hKMwZdP3JgxznB+DtsigBn71ZTA 5DwOfDNo65FhVJm9fd2RkDoCtCjzxSWb -----END CERTIFICATE-----Generated at Sat May 18 20:48:17 2024 by rpki-client on console-fra.rpki-client.org