$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft File: YhuBwQnlqnjYKfMKV9o1MwglT2k.mft (raw, json) Hash identifier: ou1ThZSaKKz0mJ3PwUMTr49JaKnuwgL2kNQAUeI2KWE= Subject key identifier: F2:D7:CC:5F:54:C0:D8:44:07:82:53:06:34:27:2B:4D:B9:5F:50:38 Authority key identifier: 62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 Certificate issuer: /CN=A9138D62/serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Certificate serial: 0379 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft Manifest number: 0374 Signing time: Sun 19 May 2024 02:48:18 +0000 Manifest this update: Sun 19 May 2024 02:48:18 +0000 Manifest next update: Sun 26 May 2024 02:48:18 +0000 Files and hashes: 1: YhuBwQnlqnjYKfMKV9o1MwglT2k.crl (hash: Y5x934BOiPB5MxE+U2sKMIsZm2r23G3V2hqfJDDr1M4=) 2: 31E51BB65FD311EC9AA5DA4EC4F9AE02.roa (hash: l+4YXlafyERRz3jwdmudxnN7uZRqNAlC4AoM2V8Pjf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 889 (0x379) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D62/serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Validity Not Before: May 19 02:48:18 2024 GMT Not After : May 26 02:48:18 2024 GMT Subject: CN=66496872-266f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:84:28:b1:44:ac:6f:9a:d9:49:c0:cf:63:0b: c3:48:b4:13:32:4e:fe:73:c4:18:9b:cd:52:04:a6: d3:29:8f:0e:b1:0e:9b:c7:db:11:30:dd:e6:b0:cb: c7:38:d0:39:31:7c:55:a7:ac:95:d9:c4:1b:e3:3b: 54:07:f7:5a:bd:10:36:d6:4b:de:eb:99:c8:27:d3: 16:30:a7:77:40:aa:a5:16:8c:db:11:a4:fd:d9:85: dc:be:18:17:2c:e1:22:e8:e1:da:e7:b0:1e:c6:f0: 2a:59:0a:58:e0:a9:1d:d6:64:9e:fa:2d:9a:a0:3d: e4:0c:07:f3:55:62:a3:0e:20:6c:90:5e:88:9e:22: 30:a6:70:d4:4a:ce:6e:cd:26:49:06:da:f7:5e:e2: 06:11:03:fd:67:08:18:2a:e9:b2:17:93:ca:7a:2e: 17:3a:12:b1:02:8a:6f:10:61:f8:75:2e:3a:db:b3: 6b:c8:7d:64:9f:de:6f:37:82:b3:d0:03:fb:37:de: 38:ce:f3:47:19:ab:ae:49:12:a9:72:d1:2b:fe:49: 89:25:2f:3d:6a:86:0b:fe:89:64:48:52:60:82:a8: 98:fd:8c:12:f0:b7:38:a7:99:37:5f:3e:81:e5:93: 1e:26:d7:3d:6d:46:77:fb:e3:93:03:b1:c9:15:ba: 64:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:D7:CC:5F:54:C0:D8:44:07:82:53:06:34:27:2B:4D:B9:5F:50:38 X509v3 Authority Key Identifier: keyid:62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:b1:17:57:01:8a:3b:14:20:d8:71:df:c2:63:b6:f2:4b:e3: 6a:c5:fa:ff:f6:25:b3:4e:70:e3:28:0a:02:b3:37:15:5f:be: 64:52:26:75:75:d1:d9:51:24:73:64:7f:a5:32:f1:16:72:b1: b8:42:ee:02:6e:f5:9a:73:53:a1:c6:64:f3:60:10:1f:d9:eb: 1d:ac:4a:1d:c1:c5:18:40:cd:57:65:0b:18:4e:8d:cf:48:7a: 57:ff:3b:b2:76:fd:a2:bf:e2:06:54:44:ee:63:4e:69:cf:76: e3:f2:55:d6:49:ce:3a:7c:0a:a6:a0:be:58:50:04:81:c6:e2: 67:14:df:e7:56:52:b0:42:a7:0d:fe:5d:86:71:94:5f:2a:c9: 41:32:f6:96:ad:b5:c4:73:95:4d:7b:22:17:1c:79:e3:c7:0e: d6:74:13:58:24:c2:04:b4:58:8a:1a:20:38:d2:34:8d:62:36: 95:a0:24:76:24:f7:b7:2e:7a:28:05:a0:d0:fd:cb:ba:59:8f: 28:2f:6a:0e:de:31:01:3d:24:bf:91:09:5e:b6:33:14:21:dd: 47:93:63:56:eb:3e:e1:b0:71:d6:d0:27:a3:3e:cb:61:e0:6a: cc:e4:82:65:ad:8d:74:7f:89:6a:cd:46:6a:e6:6c:a0:1c:88: 2d:99:cb:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhENjIxMTAvBgNVBAUTKDYyMUI4MUMxMDlFNUFBNzhEODI5RjMwQTU3REEzNTMz MDgyNTRGNjkwHhcNMjQwNTE5MDI0ODE4WhcNMjQwNTI2MDI0ODE4WjAYMRYwFAYD VQQDEw02NjQ5Njg3Mi0yNjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYQosUSsb5rZScDPYwvDSLQTMk7+c8QYm81SBKbTKY8OsQ6bx9sRMN3msMvH ONA5MXxVp6yV2cQb4ztUB/davRA21kve65nIJ9MWMKd3QKqlFozbEaT92YXcvhgX LOEi6OHa57AexvAqWQpY4Kkd1mSe+i2aoD3kDAfzVWKjDiBskF6IniIwpnDUSs5u zSZJBtr3XuIGEQP9ZwgYKumyF5PKei4XOhKxAopvEGH4dS4627NryH1kn95vN4Kz 0AP7N944zvNHGauuSRKpctEr/kmJJS89aoYL/olkSFJggqiY/YwS8Lc4p5k3Xz6B 5ZMeJtc9bUZ3++OTA7HJFbpkrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLXzF9U wNhEB4JTBjQnK025X1A4MB8GA1UdIwQYMBaAFGIbgcEJ5ap42CnzClfaNTMIJU9p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQ2Mi9CQ0I0MEE1ODVG Q0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFuallLZk1LVjlvMU13Z2xU MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lodUJ3UW5scW5qWUtmTUtWOW8xTXdnbFQyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQ2Mi9CQ0I0MEE1ODVGQ0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFu allLZk1LVjlvMU13Z2xUMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBesRdXAYo7FCDYcd/CY7byS+Nqxfr/9iWzTnDjKAoCszcVX75kUiZ1 ddHZUSRzZH+lMvEWcrG4Qu4CbvWac1OhxmTzYBAf2esdrEodwcUYQM1XZQsYTo3P SHpX/zuydv2iv+IGVETuY05pz3bj8lXWSc46fAqmoL5YUASBxuJnFN/nVlKwQqcN /l2GcZRfKslBMvaWrbXEc5VNeyIXHHnjxw7WdBNYJMIEtFiKGiA40jSNYjaVoCR2 JPe3LnooBaDQ/cu6WY8oL2oO3jEBPSS/kQletjMUId1Hk2NW6z7hsHHW0CejPsth 4GrM5IJlrY10f4lqzUZq5mygHIgtmctN -----END CERTIFICATE-----Generated at Sun May 19 03:38:13 2024 by rpki-client on console-ams.rpki-client.org