$ rpki-client -vvf rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft File: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft (raw, json) Hash identifier: IG+vmOjIYUvowxETt/fc1KOGsSgQ45AbvOcjCyo4kvQ= Subject key identifier: 72:72:2C:25:33:9D:BE:B2:35:5F:37:57:CF:63:A7:6F:23:60:7B:60 Authority key identifier: C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 Certificate issuer: /CN=A912B2EE/serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Certificate serial: 0EB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft Manifest number: 0E9F Signing time: Sat 18 May 2024 18:21:03 +0000 Manifest this update: Sat 18 May 2024 18:21:03 +0000 Manifest next update: Sat 25 May 2024 18:21:03 +0000 Files and hashes: 1: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl (hash: VOEhQuz0NIAuSa27eYV1nIk0IKCeWiYd4J8Ec/cSOWM=) 2: 05449490E17B11EC93AB7473C4F9AE02.roa (hash: /e9qZX6ygiwoFmGtAKPx2xx27LV2yYLJGCQ3CsB/C4Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3761 (0xeb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B2EE/serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Validity Not Before: May 18 18:21:03 2024 GMT Not After : May 25 18:21:03 2024 GMT Subject: CN=6648f18f-fc9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a2:e3:8c:ea:4f:50:95:bb:05:2f:56:53:e6: 5d:20:7f:ab:22:73:f3:98:c1:4c:a9:c3:85:fc:8d: 74:9c:1c:d7:e3:5a:ff:6f:3c:c5:33:4c:c4:b6:2a: 23:99:6b:5c:f2:32:43:1d:3e:a7:f5:1b:c4:81:f8: 24:83:9f:08:65:c9:e3:e5:2c:44:31:cc:93:3f:a8: 85:61:5c:69:b9:16:0b:fe:57:88:11:df:1c:31:3e: ef:a3:9e:1e:bb:dd:84:44:d4:ed:ca:9b:df:1a:69: 08:8d:4a:b5:7e:93:88:9b:f0:b7:91:bb:4d:41:ed: 96:b2:b8:76:2c:51:e9:8d:f6:d4:e6:e8:f4:13:cd: 18:e1:39:c5:2a:c0:40:a9:a5:12:97:67:c7:98:4a: 83:6a:59:dc:d1:de:29:67:48:e9:4c:13:b7:ae:60: d1:95:0f:16:16:32:9b:b8:b1:28:d9:fd:bf:82:43: e5:90:cd:53:04:df:d7:2e:b4:05:8c:0e:56:e3:39: fb:19:67:75:9c:d4:e2:3c:43:aa:3d:08:5d:c3:b0: 2d:34:2b:f9:61:c5:72:39:01:5e:12:3a:ab:77:60: e6:7a:55:e8:b0:4b:d4:fb:36:67:e6:ce:32:d4:0e: 20:e1:ca:c5:b1:53:ab:49:b5:37:63:8a:a8:3f:c9: bd:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:72:2C:25:33:9D:BE:B2:35:5F:37:57:CF:63:A7:6F:23:60:7B:60 X509v3 Authority Key Identifier: keyid:C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:59:66:ff:5e:b5:bd:31:c4:a3:fc:40:e3:69:94:f3:3e:a1: ae:7c:ad:60:91:42:ff:5c:17:14:16:6f:6b:82:d4:bb:75:94: 73:c4:8d:cf:a6:f0:22:c4:90:e7:b3:f7:97:a9:6a:b1:97:13: 17:2a:74:c4:ea:dd:6d:25:04:3b:bb:76:d0:e1:2a:19:d4:6a: ac:cc:96:f1:0f:1d:66:47:49:66:34:05:65:53:40:f0:01:56: ce:6c:f8:1d:48:e7:43:39:76:cf:80:63:9a:02:24:83:3e:75: 17:e7:66:32:18:f1:4d:17:a1:80:e9:ec:a1:5e:87:45:50:b1: a8:c6:bb:15:7b:3c:94:ad:b9:09:89:4b:99:a9:f4:16:06:7e: 64:6c:ed:89:9e:23:d5:bf:5d:25:a7:e9:af:49:5d:3e:20:65: 39:72:6c:61:e6:b8:c2:6b:0c:cd:be:c8:7f:dc:2f:33:a3:a3: a9:03:c7:9c:08:33:cf:9e:da:ab:55:ec:f3:d2:9b:2d:fc:b3: 87:3d:59:10:c9:6a:b3:ea:66:d8:e4:5b:49:b4:85:29:64:71: dd:08:cd:70:77:85:69:2d:06:ea:ab:aa:1a:ef:0e:b5:4b:8c: d3:95:4e:e6:77:48:65:db:b5:54:99:3f:0d:62:86:76:2e:6f: 8a:08:91:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyRUUxMTAvBgNVBAUTKEM4MjQzNDc0MjVCQUM4QUY1OUI0RTE5NjZCQzEwREJG QThCREFCODIwHhcNMjQwNTE4MTgyMTAzWhcNMjQwNTI1MTgyMTAzWjAYMRYwFAYD VQQDEw02NjQ4ZjE4Zi1mYzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaLjjOpPUJW7BS9WU+ZdIH+rInPzmMFMqcOF/I10nBzX41r/bzzFM0zEtioj mWtc8jJDHT6n9RvEgfgkg58IZcnj5SxEMcyTP6iFYVxpuRYL/leIEd8cMT7vo54e u92ERNTtypvfGmkIjUq1fpOIm/C3kbtNQe2Wsrh2LFHpjfbU5uj0E80Y4TnFKsBA qaUSl2fHmEqDalnc0d4pZ0jpTBO3rmDRlQ8WFjKbuLEo2f2/gkPlkM1TBN/XLrQF jA5W4zn7GWd1nNTiPEOqPQhdw7AtNCv5YcVyOQFeEjqrd2DmelXosEvU+zZn5s4y 1A4g4crFsVOrSbU3Y4qoP8m9aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJyLCUz nb6yNV83V89jp28jYHtgMB8GA1UdIwQYMBaAFMgkNHQlusivWbThlmvBDb+ovauC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjJFRS8xRjQxMUY1ODZD MjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlLOVp0T0dXYThFTnY2aTlx NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDUTBkQ1c2eUs5WnRPR1dhOEVOdjZpOXE0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjJFRS8xRjQxMUY1ODZDMjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlL OVp0T0dXYThFTnY2aTlxNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgWWb/XrW9McSj/EDjaZTzPqGufK1gkUL/XBcUFm9rgtS7dZRzxI3P pvAixJDns/eXqWqxlxMXKnTE6t1tJQQ7u3bQ4SoZ1GqszJbxDx1mR0lmNAVlU0Dw AVbObPgdSOdDOXbPgGOaAiSDPnUX52YyGPFNF6GA6eyhXodFULGoxrsVezyUrbkJ iUuZqfQWBn5kbO2JniPVv10lp+mvSV0+IGU5cmxh5rjCawzNvsh/3C8zo6OpA8ec CDPPntqrVezz0pst/LOHPVkQyWqz6mbY5FtJtIUpZHHdCM1wd4VpLQbqq6oa7w61 S4zTlU7md0hl27VUmT8NYoZ2Lm+KCJF1 -----END CERTIFICATE-----Generated at Sat May 18 18:46:45 2024 by rpki-client on console-fra.rpki-client.org