$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft File: YBC8xly5zPAs9-0p7HXk1iK98_A.mft (raw, json) Hash identifier: iLKjOA1gojUvSgjXjCffNr4C303F64CQvG6EIoyh1Jk= Subject key identifier: 8E:51:14:4F:9C:5C:04:8D:D9:F4:6A:D6:70:C0:2D:66:F6:D6:B2:D2 Authority key identifier: 60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 Certificate issuer: /CN=A9144F45/serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Certificate serial: 03D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft Manifest number: 03D4 Signing time: Sun 19 May 2024 02:22:06 +0000 Manifest this update: Sun 19 May 2024 02:22:05 +0000 Manifest next update: Sun 26 May 2024 02:22:05 +0000 Files and hashes: 1: YBC8xly5zPAs9-0p7HXk1iK98_A.crl (hash: tKkW37n36M0xfFsR+ba718sbMI4uMN2vYOEtgKmElEk=) 2: E225E68E397411EC8120D135C4F9AE02.roa (hash: B176wN8cc3STWVRBMXNyfJfGKm4gsudlF7DiviBh7SQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 983 (0x3d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F45/serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Validity Not Before: May 19 02:22:05 2024 GMT Not After : May 26 02:22:05 2024 GMT Subject: CN=6649624d-d85f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:37:be:6e:dc:e1:2c:56:cd:51:0d:d0:d3:26: 64:e9:0e:3d:2b:3e:49:f9:58:f8:73:15:4a:d6:e3: e2:17:4b:30:8f:4c:95:2b:95:94:41:35:a4:a1:da: 84:0e:1a:6b:40:26:3f:87:a0:07:48:3c:24:42:04: b1:7d:8f:11:de:40:8f:92:c7:8c:79:8e:57:e2:8b: e0:d1:16:2d:26:09:56:17:db:27:70:b3:63:eb:7f: 0e:fa:6a:4b:42:03:d2:f7:b3:82:60:13:a3:27:fa: bc:2a:9d:1b:c8:dc:9c:7e:3e:ad:ef:b7:53:12:0d: d7:ce:3e:41:ec:31:6b:90:ac:e4:c7:03:69:19:07: 08:7b:21:50:4c:6d:3c:cd:0e:b3:5d:56:f6:26:f7: 48:73:96:34:16:8c:af:ca:70:ae:cd:ef:0a:18:9a: d0:bf:0a:b1:52:06:26:bd:f4:e8:90:5b:b4:20:b5: fc:1d:56:48:b8:51:01:71:01:f5:13:ad:82:92:89: 4b:48:5f:1b:62:1f:9e:17:06:89:ac:68:e8:94:8f: 4e:b1:d4:2d:38:8a:a5:f0:52:50:2f:1a:97:ba:f9: 6f:cd:fb:44:4b:fc:1f:d5:64:e0:b3:05:e8:2c:a0: 56:ff:1f:b8:fd:d1:3a:6b:ec:a4:59:96:2a:d1:b2: 1b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:51:14:4F:9C:5C:04:8D:D9:F4:6A:D6:70:C0:2D:66:F6:D6:B2:D2 X509v3 Authority Key Identifier: keyid:60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:15:9c:cd:57:13:ee:7a:a8:15:00:e0:5d:1a:bb:a5:52:c8: d6:44:db:d9:8a:47:75:02:eb:83:0d:a2:d2:43:a1:e8:65:d7: b7:23:f3:77:1f:32:f7:23:99:db:ca:6b:65:0f:b7:93:fd:c8: 3a:ea:02:0b:99:04:ea:b3:e8:9b:83:bc:ad:5c:ed:b9:47:c9: c9:c1:53:b5:7e:c7:37:75:2c:2f:ad:a3:8d:3e:c7:ff:2e:3d: af:76:f2:26:0c:f7:29:23:7d:3a:9b:34:d7:cd:8c:5b:27:3d: 18:a6:2b:d1:11:6a:ee:2a:ff:e9:c6:3e:9f:59:bf:d6:18:02: bf:75:66:ea:a9:4b:1c:00:80:29:cc:55:f4:e2:2c:4d:93:bc: 8a:c8:74:81:67:8b:92:cf:1d:6d:fd:51:6e:83:91:15:35:fe: e6:67:23:bb:40:96:e5:4b:05:ef:0f:3f:31:65:d4:4c:ff:9a: 16:eb:85:b4:42:7a:f5:22:83:4a:d1:58:9d:72:da:8b:10:74: 52:ad:47:6e:20:3d:ac:bb:27:85:01:ed:38:f9:92:76:59:ba: d6:c0:7c:ee:59:33:7e:0e:d5:4f:52:ee:5a:ae:c6:d1:7f:4d: 5a:4d:b6:2b:dc:5e:1e:2a:6c:6b:33:fd:69:c3:1b:b7:af:cc: c3:b7:41:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNDUxMTAvBgNVBAUTKDYwMTBCQ0M2NUNCOUNDRjAyQ0Y3RUQyOUVDNzVFNEQ2 MjJCREYzRjAwHhcNMjQwNTE5MDIyMjA1WhcNMjQwNTI2MDIyMjA1WjAYMRYwFAYD VQQDEw02NjQ5NjI0ZC1kODVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtze+btzhLFbNUQ3Q0yZk6Q49Kz5J+Vj4cxVK1uPiF0swj0yVK5WUQTWkodqE DhprQCY/h6AHSDwkQgSxfY8R3kCPkseMeY5X4ovg0RYtJglWF9sncLNj638O+mpL QgPS97OCYBOjJ/q8Kp0byNycfj6t77dTEg3Xzj5B7DFrkKzkxwNpGQcIeyFQTG08 zQ6zXVb2JvdIc5Y0FoyvynCuze8KGJrQvwqxUgYmvfTokFu0ILX8HVZIuFEBcQH1 E62CkolLSF8bYh+eFwaJrGjolI9OsdQtOIql8FJQLxqXuvlvzftES/wf1WTgswXo LKBW/x+4/dE6a+ykWZYq0bIbFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5RFE+c XASN2fRq1nDALWb21rLSMB8GA1UdIwQYMBaAFGAQvMZcuczwLPftKex15NYivfPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY0NS9ENzZGRjA0NDM5 NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQQXM5LTBwN0hYazFpSzk4 X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCQzh4bHk1elBBczktMHA3SFhrMWlLOThfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY0NS9ENzZGRjA0NDM5NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQ QXM5LTBwN0hYazFpSzk4X0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPFZzNVxPueqgVAOBdGrulUsjWRNvZikd1AuuDDaLSQ6HoZde3I/N3 HzL3I5nbymtlD7eT/cg66gILmQTqs+ibg7ytXO25R8nJwVO1fsc3dSwvraONPsf/ Lj2vdvImDPcpI306mzTXzYxbJz0YpivREWruKv/pxj6fWb/WGAK/dWbqqUscAIAp zFX04ixNk7yKyHSBZ4uSzx1t/VFug5EVNf7mZyO7QJblSwXvDz8xZdRM/5oW64W0 Qnr1IoNK0VidctqLEHRSrUduID2suyeFAe04+ZJ2WbrWwHzuWTN+DtVPUu5arsbR f01aTbYr3F4eKmxrM/1pwxu3r8zDt0FE -----END CERTIFICATE-----Generated at Sun May 19 02:59:06 2024 by rpki-client on console-ams.rpki-client.org