$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: G82Ti9zvP9aU7QnE7U+Jn1mwPIxoRCf/sUxD9Xc/ZR8= Subject key identifier: 19:E6:07:30:4E:BA:80:A5:B9:E8:0A:39:92:DA:68:8F:3F:13:DF:E7 Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 1013 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 1006 Signing time: Thu 30 May 2024 18:21:08 +0000 Manifest this update: Thu 30 May 2024 18:21:08 +0000 Manifest next update: Thu 06 Jun 2024 18:21:08 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: uHgjjb4XmI2PDYejFsFPCT3SlyGTMYc/8BIJnfe64AM=) 2: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: T/B/35CfwwdqXePoF3h1HVhAJX4x/EEmRiwOM5XJuNE=) 3: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: l1VKJZ1xyO5pP88882DZ3CpkZe16EkwbV1eYRWz6QEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 18:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4115 (0x1013) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: May 30 18:21:08 2024 GMT Not After : Jun 6 18:21:08 2024 GMT Subject: CN=6658c394-8bd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d9:10:be:6d:df:ac:0d:c0:f8:5f:8b:6f:7c: f5:b6:ed:27:e3:71:59:1c:a1:5f:56:fd:7e:c7:ba: f3:bd:a4:d6:fc:4e:48:41:05:5b:7e:78:9c:da:29: e9:5b:a1:68:8c:42:da:9a:99:24:85:d5:9c:29:0f: 74:bb:ea:53:f1:35:b0:b0:6d:50:78:16:a1:56:bd: 86:ed:7b:39:12:c0:ef:76:82:79:bb:0f:39:7b:27: f6:00:8c:3e:04:c8:51:82:47:62:9a:eb:a7:fa:45: 4a:0c:93:67:5a:cc:0d:aa:88:ff:d7:38:59:41:6b: 44:91:f1:1a:ae:62:81:8b:cb:41:83:91:10:8c:32: 9d:7c:aa:20:94:15:1d:29:3b:3f:c7:08:08:ad:e6: db:75:76:24:07:b5:ec:c5:21:7c:8c:7d:07:a2:8e: f4:ee:33:67:db:b2:09:d1:a1:3b:3b:d5:da:9a:05: cf:4d:65:07:cb:e9:88:87:92:c0:fd:5c:20:11:de: 2a:e7:d9:f3:ac:30:ff:a8:2c:88:f9:3a:f0:6e:df: e8:20:b7:38:74:9f:ac:45:aa:91:74:bc:d3:77:b6: c9:d3:1e:4f:07:23:08:a9:12:a9:67:6c:57:65:37: 4c:c6:aa:48:de:bf:75:6a:9c:2d:ba:48:f3:5e:ca: c4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:E6:07:30:4E:BA:80:A5:B9:E8:0A:39:92:DA:68:8F:3F:13:DF:E7 X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:2e:56:bf:59:31:e4:fa:b2:6c:69:d7:4e:29:bd:91:b2:e7: cd:e5:05:71:0b:27:e7:64:fc:a1:ae:11:b3:46:ef:29:bf:30: db:eb:e7:6f:02:2a:7e:73:25:5b:8e:db:f2:5c:43:92:97:9d: 23:3a:7e:cb:f2:7d:23:68:ca:87:98:23:5d:89:ce:da:85:35: 23:0a:dd:5c:27:30:60:e1:b3:8b:57:15:2a:37:e7:28:d5:11: 19:93:62:ca:8f:35:d5:90:36:00:76:14:16:4c:12:1b:a5:66: 1b:2f:2a:85:cb:c0:4c:4f:f3:d4:7c:77:c5:a7:c5:89:dd:38: 09:9e:a0:0c:c1:e8:e7:3e:4d:fb:02:7a:c3:5b:4e:92:fd:b7: c8:e4:bb:2f:6b:0c:09:f6:35:45:a5:fe:9d:f5:38:71:e4:46: de:d2:22:da:5b:5a:3d:31:16:9c:dd:2e:f4:5b:c4:3c:d6:ea: 2a:ab:b2:a0:bd:bd:f0:26:80:df:62:f2:73:03:e7:8c:a1:99: c2:f1:98:79:18:69:ce:8c:85:24:66:06:95:1f:07:27:5b:1e: f5:d6:d8:78:d8:71:8b:0e:c8:ed:d3:e6:dd:53:07:99:c3:7a: 90:d3:87:03:05:31:d1:b7:de:22:1f:c0:16:6f:63:0e:8b:75: da:03:12:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjQwNTMwMTgyMTA4WhcNMjQwNjA2MTgyMTA4WjAYMRYwFAYD VQQDEw02NjU4YzM5NC04YmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3NkQvm3frA3A+F+Lb3z1tu0n43FZHKFfVv1+x7rzvaTW/E5IQQVbfnic2inp W6FojELampkkhdWcKQ90u+pT8TWwsG1QeBahVr2G7Xs5EsDvdoJ5uw85eyf2AIw+ BMhRgkdimuun+kVKDJNnWswNqoj/1zhZQWtEkfEarmKBi8tBg5EQjDKdfKoglBUd KTs/xwgIrebbdXYkB7XsxSF8jH0Hoo707jNn27IJ0aE7O9XamgXPTWUHy+mIh5LA /VwgEd4q59nzrDD/qCyI+Trwbt/oILc4dJ+sRaqRdLzTd7bJ0x5PByMIqRKpZ2xX ZTdMxqpI3r91apwtukjzXsrEXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBnmBzBO uoCluegKOZLaaI8/E9/nMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4Lla/WTHk+rJsaddOKb2RsufN5QVxCyfnZPyhrhGzRu8pvzDb6+dv Aip+cyVbjtvyXEOSl50jOn7L8n0jaMqHmCNdic7ahTUjCt1cJzBg4bOLVxUqN+co 1REZk2LKjzXVkDYAdhQWTBIbpWYbLyqFy8BMT/PUfHfFp8WJ3TgJnqAMwejnPk37 AnrDW06S/bfI5LsvawwJ9jVFpf6d9Thx5Ebe0iLaW1o9MRac3S70W8Q81uoqq7Kg vb3wJoDfYvJzA+eMoZnC8Zh5GGnOjIUkZgaVHwcnWx711th42HGLDsjt0+bdUweZ w3qQ04cDBTHRt94iH8AWb2MOi3XaAxKs -----END CERTIFICATE-----Generated at Thu May 30 20:35:31 2024 by rpki-client on console-fra.rpki-client.org