$ rpki-client -vvf rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft File: yyTPMxKhYnFYzDraiI5bywxnzqE.mft (raw, json) Hash identifier: qjZ8TBpGkSqEPG3YC48LBvE2rVolB9hVmnNN6qxpgr4= Subject key identifier: 2F:70:6A:5A:68:6A:E9:81:7C:9A:A6:1F:BD:30:E9:00:F0:15:C8:F2 Authority key identifier: CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 Certificate issuer: /CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Certificate serial: 08C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft Manifest number: 08C0 Signing time: Sat 18 May 2024 21:26:35 +0000 Manifest this update: Sat 18 May 2024 21:26:34 +0000 Manifest next update: Sat 25 May 2024 21:26:34 +0000 Files and hashes: 1: yyTPMxKhYnFYzDraiI5bywxnzqE.crl (hash: AKIKpA59DYRHbG59JtKwBFdIkV9//LCVFEpUMhboSVg=) 2: 4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa (hash: r1SfnOsVtZNnvFGakgXIapWsdBjJIouRhsrzhT3iNeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2246 (0x8c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Validity Not Before: May 18 21:26:34 2024 GMT Not After : May 25 21:26:34 2024 GMT Subject: CN=66491d0a-a38c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a9:65:c8:a5:5f:a1:e9:28:bc:54:52:ae:fb: c0:68:38:81:10:22:22:1a:8d:21:8f:0d:f1:74:a3: ce:f5:19:a1:41:6e:fb:87:61:6f:bb:85:92:6b:01: 12:d8:eb:4b:ec:db:fd:72:40:dd:21:9d:a4:b1:b5: 83:6c:6a:8f:9a:41:a8:a6:ff:c8:c5:fa:29:46:9e: d7:3e:46:cd:5e:e7:38:07:f2:d3:ad:d7:35:a5:b3: bf:42:81:9b:80:4e:d9:16:ce:bb:bc:d2:ba:04:51: c4:88:22:93:3d:a0:47:09:b4:63:00:dd:44:78:65: 7d:c0:38:7a:ce:db:11:89:81:18:2c:88:5a:42:55: ca:4e:f9:67:95:40:9a:b5:10:94:98:48:42:73:47: fe:7e:b5:50:73:95:26:2f:56:4b:08:58:ef:2a:d9: 9d:de:44:09:d5:b0:7a:10:16:87:7a:f9:b5:d3:a2: 10:72:d8:2f:8e:d7:3f:04:98:ec:87:bf:01:30:a7: 91:64:3b:71:c4:07:f5:75:26:23:80:27:6e:d1:1c: 2f:7a:b7:9c:cc:08:da:1a:7e:98:5d:2d:40:0e:73: bd:05:85:de:da:51:ac:e1:a8:94:69:d7:cf:4a:4d: bb:51:bb:99:db:e2:d2:05:a8:cc:f8:a9:15:52:6e: ed:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:70:6A:5A:68:6A:E9:81:7C:9A:A6:1F:BD:30:E9:00:F0:15:C8:F2 X509v3 Authority Key Identifier: keyid:CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:97:a5:de:77:57:98:b9:19:2d:e3:a1:ef:f8:a3:dc:23:e3: 8e:60:01:4c:7b:ab:3a:41:4e:e7:7d:56:da:d7:0d:a7:82:e6: ed:a4:c2:03:91:a7:55:ab:47:1a:08:20:5d:b3:64:dc:c3:04: cc:3d:bd:03:36:b9:8b:4e:46:40:7d:be:38:66:7b:83:f4:8f: 4f:27:e3:06:a4:a1:60:8f:5c:70:1b:0c:c9:d7:e5:f8:20:60: e5:56:41:92:09:5d:d6:b5:a5:cd:9d:eb:19:a0:eb:7e:c1:d5: fa:88:10:b5:84:0d:cb:95:3e:1a:91:86:9b:d7:23:02:1e:b3: 0e:00:4b:7c:39:2f:b3:2d:3e:4b:b1:93:a1:c0:72:5a:c2:d6: 09:ab:2a:5b:30:fa:7d:1d:12:7c:39:06:29:11:7e:9d:6f:ef: 9c:8d:d5:74:e3:73:ed:c6:81:4b:ca:92:e3:f3:77:fb:63:c9: 54:ed:c7:3a:9d:19:19:e0:69:a9:62:46:1c:cd:1b:e4:30:c3: 48:2b:6f:ec:25:87:a4:8d:6a:bc:ca:e7:08:2e:da:1a:99:20: 9c:a6:10:15:a2:35:42:fb:18:c0:9a:3f:a6:0e:2c:81:19:e0: d7:4b:1a:33:5e:ff:15:e6:d3:a9:94:07:91:c4:75:e9:a5:4d: d9:6e:13:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIzNDIxMTAvBgNVBAUTKENCMjRDRjMzMTJBMTYyNzE1OENDM0FEQTg4OEU1QkNC MEM2N0NFQTEwHhcNMjQwNTE4MjEyNjM0WhcNMjQwNTI1MjEyNjM0WjAYMRYwFAYD VQQDEw02NjQ5MWQwYS1hMzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qllyKVfoekovFRSrvvAaDiBECIiGo0hjw3xdKPO9RmhQW77h2Fvu4WSawES 2OtL7Nv9ckDdIZ2ksbWDbGqPmkGopv/IxfopRp7XPkbNXuc4B/LTrdc1pbO/QoGb gE7ZFs67vNK6BFHEiCKTPaBHCbRjAN1EeGV9wDh6ztsRiYEYLIhaQlXKTvlnlUCa tRCUmEhCc0f+frVQc5UmL1ZLCFjvKtmd3kQJ1bB6EBaHevm106IQctgvjtc/BJjs h78BMKeRZDtxxAf1dSYjgCdu0RwvereczAjaGn6YXS1ADnO9BYXe2lGs4aiUadfP Sk27UbuZ2+LSBajM+KkVUm7tFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9walpo aumBfJqmH70w6QDwFcjyMB8GA1UdIwQYMBaAFMskzzMSoWJxWMw62oiOW8sMZ86h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM0Mi8wQjQxMDBDMDhF OEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFluRll6RHJhaUk1Ynl3eG56 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l5VFBNeEtoWW5GWXpEcmFpSTVieXd4bnpxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjM0Mi8wQjQxMDBDMDhFOEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFlu Rll6RHJhaUk1Ynl3eG56cUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAl6Xed1eYuRkt46Hv+KPcI+OOYAFMe6s6QU7nfVba1w2ngubtpMID kadVq0caCCBds2TcwwTMPb0DNrmLTkZAfb44ZnuD9I9PJ+MGpKFgj1xwGwzJ1+X4 IGDlVkGSCV3WtaXNnesZoOt+wdX6iBC1hA3LlT4akYab1yMCHrMOAEt8OS+zLT5L sZOhwHJawtYJqypbMPp9HRJ8OQYpEX6db++cjdV043PtxoFLypLj83f7Y8lU7cc6 nRkZ4GmpYkYczRvkMMNIK2/sJYekjWq8yucILtoamSCcphAVojVC+xjAmj+mDiyB GeDXSxozXv8V5tOplAeRxHXppU3ZbhOE -----END CERTIFICATE-----Generated at Sat May 18 22:14:02 2024 by rpki-client on console-fra.rpki-client.org