$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: ZSozMSXKvEAgbqZb4PDW9yEPcCj4DLQbnWu+erTpRNg= Subject key identifier: 7B:BD:34:53:F7:96:74:DE:B8:56:A8:AE:3A:D8:4C:36:BA:F0:AE:BF Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 04F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 04EB Signing time: Sun 19 May 2024 01:17:05 +0000 Manifest this update: Sun 19 May 2024 01:17:04 +0000 Manifest next update: Sun 26 May 2024 01:17:04 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: bRsawPlzCI152+JCXorWHRfArV58erCwgrY0CYAwjH8=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: LlRmkz9YxwYm1C2j9p8xPkYv28PYadhTVXhJRGajwN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:17:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1264 (0x4f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: May 19 01:17:04 2024 GMT Not After : May 26 01:17:04 2024 GMT Subject: CN=66495311-4179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a0:0a:eb:b3:28:b8:4d:68:bd:1f:f9:58:21: 78:d3:cc:cb:93:ca:90:e6:01:63:94:e1:d6:45:31: 52:74:df:99:e7:77:a5:5a:39:de:1b:7a:df:d5:8c: ad:6c:ef:a7:05:45:00:bc:b4:0c:23:9e:ef:93:a8: eb:c9:9a:54:bb:26:67:e1:e6:55:82:ee:3b:ea:3a: 7e:d5:1a:22:7d:f3:ed:0d:2c:60:47:d7:a1:21:da: d7:e6:27:5b:5d:f3:57:5b:60:ba:96:2e:4e:db:8c: e9:35:63:eb:1a:0b:ce:52:60:d2:16:62:e5:d0:83: fc:d9:37:b0:64:21:ec:06:67:b3:d3:1c:68:1e:7b: ff:72:08:e3:82:4e:b1:57:1f:11:2b:0c:8f:a0:ad: 1c:e2:16:6b:e3:89:5c:95:08:57:12:ec:2f:f7:26: 0a:b2:a0:4c:33:13:ac:50:2e:83:03:9b:f1:c8:5e: a7:5e:26:09:9c:db:a3:a2:09:63:18:62:2c:ab:db: b3:11:7d:45:02:1a:c9:a3:e3:39:68:49:b4:b1:00: 87:c3:a9:4f:46:38:6f:ae:09:8a:48:2c:3a:bb:ec: b5:da:5c:b7:5a:74:29:e3:1e:bc:8d:28:f6:11:d0: ea:64:14:d8:51:f2:14:90:12:ec:41:da:18:ec:9c: 7c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BD:34:53:F7:96:74:DE:B8:56:A8:AE:3A:D8:4C:36:BA:F0:AE:BF X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:ce:a6:04:10:ee:74:dc:0e:00:43:a9:77:78:22:b7:92:cc: 50:0d:da:4a:11:3f:f3:1a:92:0c:6f:3a:5c:0f:cb:ab:9e:53: 14:8b:7d:73:99:a6:1c:6b:ab:3b:63:1f:4b:44:9e:de:9b:e4: bb:51:0e:8c:c3:0d:01:1e:96:e1:e8:b0:c3:dc:2f:4e:ca:3e: 74:35:de:ba:70:68:84:fb:c3:09:62:71:7e:88:7f:ea:8a:be: a1:1b:d3:a5:0c:17:ee:a1:d6:01:e7:ed:99:cb:cd:24:04:8c: bf:e6:dc:f0:92:e6:5e:ac:5c:0f:95:9e:36:16:ae:2a:8e:3f: d2:ed:72:91:dc:6e:97:0f:8c:73:ab:c1:d7:82:d5:e1:6a:88: 18:2a:86:a4:2b:d0:a0:7c:a6:62:0c:56:70:eb:ca:dd:2c:da: 95:e5:5c:b0:ef:ca:ea:32:0c:62:f5:cb:da:27:6b:52:4d:9d: b0:2f:fd:04:1e:6d:c7:56:ee:13:34:e9:5e:9c:58:88:84:bf: 80:04:68:a0:ad:25:0c:cf:5d:85:84:6f:42:20:36:3f:14:48: fa:44:43:c2:32:2c:d4:e3:2c:1e:29:9e:d1:4b:d0:45:f0:fd: 6d:e7:42:03:b6:39:2c:ee:75:13:3f:a3:98:85:4a:6a:aa:e5: 70:42:c2:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjQwNTE5MDExNzA0WhcNMjQwNTI2MDExNzA0WjAYMRYwFAYD VQQDEw02NjQ5NTMxMS00MTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqAK67MouE1ovR/5WCF408zLk8qQ5gFjlOHWRTFSdN+Z53elWjneG3rf1Yyt bO+nBUUAvLQMI57vk6jryZpUuyZn4eZVgu476jp+1RoiffPtDSxgR9ehIdrX5idb XfNXW2C6li5O24zpNWPrGgvOUmDSFmLl0IP82TewZCHsBmez0xxoHnv/cgjjgk6x Vx8RKwyPoK0c4hZr44lclQhXEuwv9yYKsqBMMxOsUC6DA5vxyF6nXiYJnNujoglj GGIsq9uzEX1FAhrJo+M5aEm0sQCHw6lPRjhvrgmKSCw6u+y12ly3WnQp4x68jSj2 EdDqZBTYUfIUkBLsQdoY7Jx83wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHu9NFP3 lnTeuFaorjrYTDa68K6/MB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzzqYEEO503A4AQ6l3eCK3ksxQDdpKET/zGpIMbzpcD8urnlMUi31z maYca6s7Yx9LRJ7em+S7UQ6Mww0BHpbh6LDD3C9Oyj50Nd66cGiE+8MJYnF+iH/q ir6hG9OlDBfuodYB5+2Zy80kBIy/5tzwkuZerFwPlZ42Fq4qjj/S7XKR3G6XD4xz q8HXgtXhaogYKoakK9CgfKZiDFZw68rdLNqV5Vyw78rqMgxi9cvaJ2tSTZ2wL/0E Hm3HVu4TNOlenFiIhL+ABGigrSUMz12FhG9CIDY/FEj6REPCMizU4yweKZ7RS9BF 8P1t50IDtjks7nUTP6OYhUpqquVwQsKA -----END CERTIFICATE-----Generated at Sun May 19 02:59:06 2024 by rpki-client on console-ams.rpki-client.org