$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft File: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft (raw, json) Hash identifier: yKgp/NyzqIi7UlKayIBVonqBkK402UpR7fD5K9JXGls= Subject key identifier: E1:B7:A1:91:88:EF:75:3F:EA:B9:2C:95:A6:E2:55:C4:CD:9C:F0:11 Authority key identifier: D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 Certificate issuer: /CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft Manifest number: 0AB6 Signing time: Sat 18 May 2024 20:39:42 +0000 Manifest this update: Sat 18 May 2024 20:39:42 +0000 Manifest next update: Sat 25 May 2024 20:39:42 +0000 Files and hashes: 1: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl (hash: xRnwGSgUmJ/7j0HywgiEjZia3wBXWEWBGVW8MkK7qKQ=) 2: 542FFB900AF511EEA1DD143EC4F9AE02.roa (hash: v8b5gIDYMr/mxUmoE1WG6bs8RGPx8egxgRGtaO/YZ90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Validity Not Before: May 18 20:39:42 2024 GMT Not After : May 25 20:39:42 2024 GMT Subject: CN=6649120e-51f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:36:5d:1b:4e:4a:aa:96:1f:a5:1f:66:12:0c: 61:2a:f2:2b:32:d9:05:83:11:c2:52:78:67:55:0a: e6:33:2d:e2:51:09:2c:4f:43:87:ea:4f:2e:a9:f3: dd:00:cb:43:07:1a:fe:21:ae:0d:41:cd:5c:3d:da: c7:91:0e:8c:34:e7:31:cb:8c:7f:d7:2a:dd:ec:b0: b0:5a:92:87:36:57:de:6a:a3:5b:5a:f3:b0:8a:71: 5e:28:88:9b:91:1a:34:c8:2e:e2:73:7f:5e:35:7c: cd:4f:d9:41:ea:4a:16:26:a7:59:bc:f2:e9:b9:e9: 14:18:af:97:09:d2:f9:98:e3:21:6b:1d:1a:d4:10: 0f:40:35:23:4d:1d:7c:ef:68:02:33:3f:0b:c5:33: f3:4e:32:51:14:bb:c6:66:2a:f9:ca:cf:28:ac:74: 36:ba:96:3c:56:e3:81:db:df:64:d3:4d:27:86:ba: 97:77:f2:c1:b3:ec:24:a1:cf:d4:6c:a5:84:74:ef: 44:b5:6d:a4:f8:fa:86:29:60:c0:28:f5:7e:da:d5: d5:4a:45:1e:5d:fa:dc:5d:6b:63:26:bd:ae:db:98: 72:64:9a:48:83:8c:05:bf:fe:e9:f0:47:6b:ae:3d: c4:70:b7:91:82:69:11:15:31:7b:90:f3:af:8a:42: 6b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B7:A1:91:88:EF:75:3F:EA:B9:2C:95:A6:E2:55:C4:CD:9C:F0:11 X509v3 Authority Key Identifier: keyid:D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:7d:28:e5:20:05:d3:26:65:65:e4:da:cc:0c:76:59:1e:5b: 29:e9:f2:ac:25:f7:c9:aa:d3:4d:b4:9a:59:91:10:0b:18:64: 37:b8:28:f0:a6:74:99:25:4f:fe:16:6f:10:4d:ee:7b:6d:2e: 2d:b2:fc:0f:aa:ed:0d:41:18:14:c1:89:c8:53:8c:ba:8c:5e: 9a:ac:2b:e2:fc:4e:c3:5a:4c:14:20:b5:ea:78:f9:cd:76:05: 52:ec:55:27:5f:18:d5:03:98:3b:3c:b1:19:b8:46:6d:68:87: 4c:f5:bb:ad:75:aa:69:af:f3:68:19:6d:9e:ea:c1:9a:1f:51: bc:2e:23:75:a9:4e:04:c4:2b:3e:88:ee:73:e3:e3:ea:02:fb: 09:22:4b:6f:33:d4:c9:d2:c6:e5:36:90:df:c9:4d:32:1d:78: 54:9d:b8:9e:10:96:d2:77:36:ea:81:d6:15:e7:be:3d:e5:8f: 8b:8c:f7:80:e3:27:63:08:bd:f2:73:5e:ea:25:96:ae:42:f8: ba:f4:1f:6c:27:ef:6a:e5:da:02:e4:02:c0:87:c2:3e:89:d1: 46:43:3b:45:b8:d6:c4:33:db:b9:26:cc:dd:29:60:22:d3:de: 94:a6:70:58:d2:10:39:6d:71:b2:de:a2:37:6e:8a:f8:7d:68: e5:6e:18:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1QjcxMTAvBgNVBAUTKEQ3MkU5MjQzNUNFN0RCQjc3ODlCMjQzOEE0OEYyMTFD NDMxQzU4MDIwHhcNMjQwNTE4MjAzOTQyWhcNMjQwNTI1MjAzOTQyWjAYMRYwFAYD VQQDEw02NjQ5MTIwZS01MWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjZdG05KqpYfpR9mEgxhKvIrMtkFgxHCUnhnVQrmMy3iUQksT0OH6k8uqfPd AMtDBxr+Ia4NQc1cPdrHkQ6MNOcxy4x/1yrd7LCwWpKHNlfeaqNbWvOwinFeKIib kRo0yC7ic39eNXzNT9lB6koWJqdZvPLpuekUGK+XCdL5mOMhax0a1BAPQDUjTR18 72gCMz8LxTPzTjJRFLvGZir5ys8orHQ2upY8VuOB299k000nhrqXd/LBs+wkoc/U bKWEdO9EtW2k+PqGKWDAKPV+2tXVSkUeXfrcXWtjJr2u25hyZJpIg4wFv/7p8Edr rj3EcLeRgmkRFTF7kPOvikJrxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOG3oZGI 73U/6rkslabiVcTNnPARMB8GA1UdIwQYMBaAFNcukkNc59u3eJskOKSPIRxDHFgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVCNy83MUU3QTIyMjUx OTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3ZDRteVE0cEk4aEhFTWNX QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF5NlNRMXpuMjdkNG15UTRwSThoSEVNY1dBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjVCNy83MUU3QTIyMjUxOTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3 ZDRteVE0cEk4aEhFTWNXQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnfSjlIAXTJmVl5NrMDHZZHlsp6fKsJffJqtNNtJpZkRALGGQ3uCjw pnSZJU/+Fm8QTe57bS4tsvwPqu0NQRgUwYnIU4y6jF6arCvi/E7DWkwUILXqePnN dgVS7FUnXxjVA5g7PLEZuEZtaIdM9butdappr/NoGW2e6sGaH1G8LiN1qU4ExCs+ iO5z4+PqAvsJIktvM9TJ0sblNpDfyU0yHXhUnbieEJbSdzbqgdYV57495Y+LjPeA 4ydjCL3yc17qJZauQvi69B9sJ+9q5doC5ALAh8I+idFGQztFuNbEM9u5JszdKWAi 096UpnBY0hA5bXGy3qI3bor4fWjlbhjj -----END CERTIFICATE-----Generated at Sat May 18 21:24:20 2024 by rpki-client on console-fra.rpki-client.org