$ rpki-client -vvf rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft File: Y4g-TKLI593aw5h-SE_R1nLZOUk.mft (raw, json) Hash identifier: xIFADLprl/1sZqNYL+U/9GoxgTGzKElD1YrSLKdB3ys= Subject key identifier: 62:FC:2B:47:A9:B7:4B:A3:81:B6:14:B1:34:DE:93:11:3E:D0:07:3E Authority key identifier: 63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 Certificate issuer: /CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Certificate serial: 0B46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft Manifest number: 0B40 Signing time: Sat 18 May 2024 19:43:53 +0000 Manifest this update: Sat 18 May 2024 19:43:52 +0000 Manifest next update: Sat 25 May 2024 19:43:52 +0000 Files and hashes: 1: Y4g-TKLI593aw5h-SE_R1nLZOUk.crl (hash: EbooZghTHRBufNRFqQ9stTIdcbHwWYEu4YiHDfiTtm0=) 2: 9D9E8D0C11DC11EABC4FB55AC4F9AE02.roa (hash: Jeh3zOQgbNPMApItqeyCkWdXrJAzm9EwiIIngDfy7jQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:43:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2886 (0xb46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Validity Not Before: May 18 19:43:52 2024 GMT Not After : May 25 19:43:52 2024 GMT Subject: CN=664904f8-31bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6f:5e:9b:f8:f1:64:35:67:5a:71:10:a8:e5: 0d:76:12:d5:cd:47:17:eb:a7:84:73:7e:7d:22:2f: 99:06:5d:72:64:81:4f:ad:5a:16:59:45:49:eb:d9: 6f:02:99:9a:f5:6a:f4:67:f8:5a:6c:19:f5:35:b8: 33:fc:f6:96:0f:4e:c4:c8:4e:d5:eb:82:d1:97:77: 6c:5e:b2:8f:2c:d6:8b:5b:f5:e7:0f:db:9b:a0:68: 94:20:1f:7b:36:12:b0:9e:05:19:12:87:ab:e5:f0: 66:50:06:8f:46:b8:92:f2:42:24:10:53:47:8c:23: ec:6a:f7:b6:1c:a3:10:51:a6:ba:ad:ff:27:ac:e1: 73:95:e9:6e:96:af:a8:2a:7b:2d:08:59:44:8f:1d: 68:fe:a1:7c:b4:d9:5e:14:b5:ed:05:91:1e:9d:d6: cc:53:d3:ff:08:78:8f:42:9a:b0:31:f1:94:c7:f5: 44:ec:01:a0:92:29:2a:83:63:2e:6b:70:93:a1:53: 3f:72:fd:1f:ed:d2:71:e4:3f:17:86:fe:32:ef:86: d0:d6:7c:1c:ac:16:ff:1b:50:b2:62:bb:7f:1d:dd: 0b:b5:84:14:6e:b0:ce:f1:a9:d5:7e:6d:e4:fe:d6: 21:a6:0d:a6:2b:67:52:a4:46:d9:f1:3f:dd:e0:67: a0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:FC:2B:47:A9:B7:4B:A3:81:B6:14:B1:34:DE:93:11:3E:D0:07:3E X509v3 Authority Key Identifier: keyid:63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:2a:68:f0:c6:76:63:84:8f:1d:2f:fb:80:af:ad:a2:94:d7: 10:c4:b4:3f:28:8f:64:da:3b:ec:2e:a1:20:54:1b:34:63:fd: 7f:ed:22:0d:62:c6:4a:e8:f2:f8:46:2c:67:79:71:dd:34:96: 03:30:aa:05:63:e1:84:59:3d:91:c8:01:13:3a:a4:f2:93:bf: 56:93:b4:94:6d:03:3c:77:d3:cc:13:a5:ac:5d:94:80:03:aa: d2:7a:a8:7c:41:90:d5:22:af:36:25:2e:43:57:a7:70:61:de: f7:7c:f0:d9:f3:3a:b5:e8:d9:55:da:79:21:f4:eb:6c:81:a3: 89:3b:4d:87:e3:59:a5:b8:9c:98:fc:67:ea:52:ba:94:96:2a: 03:aa:92:65:80:af:06:cd:a1:49:ca:f5:33:c6:be:0f:77:21: 6f:1e:0f:8f:b3:dc:d2:80:e6:b1:0f:6f:63:ec:22:bb:64:45: 82:69:83:b0:f6:da:a2:1d:ad:83:b9:40:54:d2:67:c2:fe:73: 12:cf:f2:5a:78:f4:4c:1b:20:b3:e8:dd:c0:bc:72:24:d7:8e: 45:b4:1a:02:97:3b:00:94:50:cc:07:fd:17:c6:01:da:95:2a: 81:61:06:94:46:49:d6:9a:a2:42:34:95:60:47:c1:53:44:f5: 85:84:c6:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U0QUExMTAvBgNVBAUTKDYzODgzRTRDQTJDOEU3REREQUMzOTg3RTQ4NEZEMUQ2 NzJEOTM5NDkwHhcNMjQwNTE4MTk0MzUyWhcNMjQwNTI1MTk0MzUyWjAYMRYwFAYD VQQDEw02NjQ5MDRmOC0zMWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsG9em/jxZDVnWnEQqOUNdhLVzUcX66eEc359Ii+ZBl1yZIFPrVoWWUVJ69lv Apma9Wr0Z/habBn1Nbgz/PaWD07EyE7V64LRl3dsXrKPLNaLW/XnD9uboGiUIB97 NhKwngUZEoer5fBmUAaPRriS8kIkEFNHjCPsave2HKMQUaa6rf8nrOFzlelulq+o KnstCFlEjx1o/qF8tNleFLXtBZEendbMU9P/CHiPQpqwMfGUx/VE7AGgkikqg2Mu a3CToVM/cv0f7dJx5D8Xhv4y74bQ1nwcrBb/G1CyYrt/Hd0LtYQUbrDO8anVfm3k /tYhpg2mK2dSpEbZ8T/d4GegjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGL8K0ep t0ujgbYUsTTekxE+0Ac+MB8GA1UdIwQYMBaAFGOIPkyiyOfd2sOYfkhP0dZy2TlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTRBQS82NzRDQTI5RTEx REIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5M2F3NWgtU0VfUjFuTFpP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0Zy1US0xJNTkzYXc1aC1TRV9SMW5MWk9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTRBQS82NzRDQTI5RTExREIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5 M2F3NWgtU0VfUjFuTFpPVWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQKmjwxnZjhI8dL/uAr62ilNcQxLQ/KI9k2jvsLqEgVBs0Y/1/7SIN YsZK6PL4RixneXHdNJYDMKoFY+GEWT2RyAETOqTyk79Wk7SUbQM8d9PME6WsXZSA A6rSeqh8QZDVIq82JS5DV6dwYd73fPDZ8zq16NlV2nkh9OtsgaOJO02H41mluJyY /GfqUrqUlioDqpJlgK8GzaFJyvUzxr4PdyFvHg+Ps9zSgOaxD29j7CK7ZEWCaYOw 9tqiHa2DuUBU0mfC/nMSz/JaePRMGyCz6N3AvHIk145FtBoClzsAlFDMB/0XxgHa lSqBYQaURknWmqJCNJVgR8FTRPWFhMaT -----END CERTIFICATE-----Generated at Sat May 18 20:48:17 2024 by rpki-client on console-fra.rpki-client.org