$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: HkCj7oknV1UoWYKJnNfLx8oPDudbS58M71EtlVSCozg= Subject key identifier: 59:59:76:B4:8A:C0:30:23:5C:1D:82:EA:CB:C3:3F:0C:3B:06:F9:06 Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 24DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 24C8 Signing time: Thu 30 May 2024 16:17:37 +0000 Manifest this update: Thu 30 May 2024 16:17:37 +0000 Manifest next update: Thu 06 Jun 2024 16:17:37 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: kTAVl/RaylEHEihlrBDfpqqxYnGFj+Gwlu7mEUPoYIs=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: r2l9PMUwUPmFlLD0bJPq2GaFt2hFCVBPd/q1VmL9CSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 16:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9434 (0x24da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: May 30 16:17:37 2024 GMT Not After : Jun 6 16:17:37 2024 GMT Subject: CN=6658a6a1-835f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:23:38:48:47:e9:05:8c:d6:1f:ed:1c:f4:fb: 86:68:77:b8:f1:8e:c6:36:98:20:c1:38:7f:2a:db: 64:ab:67:d3:bd:5e:b9:6e:9c:5c:16:bd:33:08:35: 32:dd:96:cd:2a:7d:9b:86:23:4c:2c:d8:ec:83:60: 50:3a:1c:1d:2b:01:8f:6a:66:2f:4e:00:b7:12:cf: bf:45:8c:58:01:f9:71:10:41:30:1e:24:81:d3:6e: e7:c9:3b:7b:42:18:3f:a4:95:f6:14:fe:c5:1d:dd: 80:10:4d:f5:f7:55:35:0a:11:d0:a4:c6:9e:02:e5: 49:f6:f9:cd:fa:39:fb:35:37:45:4a:5d:64:9c:3e: 73:17:7d:51:a7:59:c7:47:bf:4c:7d:57:22:76:8d: 8a:97:ff:c7:c1:34:37:a1:03:92:73:46:ad:68:4d: 73:d6:1a:ac:f2:f1:83:ff:ab:b5:67:4c:ae:3b:0d: db:dc:85:c1:00:ef:db:0c:b1:b2:4a:d3:98:78:aa: 38:88:d3:1b:8e:96:6c:92:71:37:26:69:b7:42:f6: 76:15:05:a0:64:da:d0:fd:80:d7:8d:36:42:0f:63: 2c:74:96:29:5f:bf:d3:60:6b:9d:fd:b1:86:62:0c: cf:41:7b:63:be:c0:d8:d5:06:78:e3:7d:9d:04:f2: 2c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:59:76:B4:8A:C0:30:23:5C:1D:82:EA:CB:C3:3F:0C:3B:06:F9:06 X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:b5:dc:f5:1f:3f:ff:87:05:ee:8d:d7:a6:02:27:45:24:cf: 16:76:8b:c0:f8:e5:b8:e8:c7:f4:2d:fc:c8:cc:4a:d4:4e:2f: 7e:5d:e0:7c:5e:c6:19:83:bd:0d:c2:6a:9a:73:49:12:71:fb: 03:c8:35:68:fa:86:f1:86:34:9c:5a:45:86:d6:ef:11:fd:63: 77:2c:c9:6a:0b:a0:fd:b8:1b:a9:22:38:de:c0:b4:3c:37:22: 8a:ff:d1:69:fd:71:38:0c:5a:a2:d9:8e:4d:37:a7:78:76:ba: 71:53:b2:57:6b:1a:a7:39:c5:71:a1:4d:29:80:9f:cc:02:84: 69:44:47:53:9f:d7:64:43:fa:a7:fe:76:9b:07:d5:2d:ee:54: 60:71:9b:fd:ac:55:1a:4a:0d:1d:73:2c:61:ef:3f:99:6b:96: 6a:56:33:dc:12:2d:da:ff:35:ba:af:99:f5:da:2f:8b:58:fe: e3:61:2d:52:f6:18:ee:4f:aa:d0:85:d6:47:17:ff:37:14:f4: 05:0e:bf:0c:9c:ff:c6:95:fd:15:6d:24:44:41:cf:25:d9:26: 2d:59:b4:93:04:de:b7:a6:1b:2b:40:d7:65:e3:b1:ec:27:61: d7:5e:b5:3f:3b:eb:81:88:d3:13:a4:b6:5e:dd:09:2e:8e:9a: c5:e2:5a:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjQwNTMwMTYxNzM3WhcNMjQwNjA2MTYxNzM3WjAYMRYwFAYD VQQDEw02NjU4YTZhMS04MzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CM4SEfpBYzWH+0c9PuGaHe48Y7GNpggwTh/Kttkq2fTvV65bpxcFr0zCDUy 3ZbNKn2bhiNMLNjsg2BQOhwdKwGPamYvTgC3Es+/RYxYAflxEEEwHiSB027nyTt7 Qhg/pJX2FP7FHd2AEE3191U1ChHQpMaeAuVJ9vnN+jn7NTdFSl1knD5zF31Rp1nH R79MfVcido2Kl//HwTQ3oQOSc0ataE1z1hqs8vGD/6u1Z0yuOw3b3IXBAO/bDLGy StOYeKo4iNMbjpZsknE3Jmm3QvZ2FQWgZNrQ/YDXjTZCD2MsdJYpX7/TYGud/bGG YgzPQXtjvsDY1QZ4432dBPIsRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlZdrSK wDAjXB2C6svDPww7BvkGMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRtdz1Hz//hwXujdemAidFJM8WdovA+OW46Mf0LfzIzErUTi9+XeB8 XsYZg70Nwmqac0kScfsDyDVo+obxhjScWkWG1u8R/WN3LMlqC6D9uBupIjjewLQ8 NyKK/9Fp/XE4DFqi2Y5NN6d4drpxU7JXaxqnOcVxoU0pgJ/MAoRpREdTn9dkQ/qn /nabB9Ut7lRgcZv9rFUaSg0dcyxh7z+Za5ZqVjPcEi3a/zW6r5n12i+LWP7jYS1S 9hjuT6rQhdZHF/83FPQFDr8MnP/Glf0VbSREQc8l2SYtWbSTBN63phsrQNdl47Hs J2HXXrU/O+uBiNMTpLZe3QkujprF4lqt -----END CERTIFICATE-----Generated at Thu May 30 18:45:55 2024 by rpki-client on console-ams.rpki-client.org