$ rpki-client -vvf rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft File: P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft (raw, json) Hash identifier: zz7s1kemtAXIwSGkul4jIo1gLO2fIWf2X66+yN9+6sI= Subject key identifier: 7C:23:66:5F:F0:2E:E8:24:A1:E0:97:05:72:0D:BE:AE:E8:38:A6:07 Authority key identifier: 3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 Certificate issuer: /CN=A914988F/serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Certificate serial: 06F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft Manifest number: 06F2 Signing time: Sat 18 May 2024 22:46:01 +0000 Manifest this update: Sat 18 May 2024 22:46:00 +0000 Manifest next update: Sat 25 May 2024 22:46:00 +0000 Files and hashes: 1: P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl (hash: vwqrfrBJycpTwqr6eb6kMqw9IIWRG7GCKTnSmOvRcLQ=) 2: 4ED5A00CFE2611EAA4F3424DC4F9AE02.roa (hash: VIgSvY7k14Jp04yXf8Mc1S+JFtvPqLWek996rtIVIv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1782 (0x6f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914988F/serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Validity Not Before: May 18 22:46:00 2024 GMT Not After : May 25 22:46:00 2024 GMT Subject: CN=66492fa8-c54d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:22:00:a6:65:04:01:44:ef:e2:ab:97:72:cf: fd:a0:58:de:e1:c2:62:86:5f:2c:a0:69:ee:b7:b7: 8b:86:0a:61:b4:c9:7e:40:48:2a:71:21:c4:d3:25: c5:4d:4a:86:3e:30:d5:85:14:07:c7:8b:2c:37:bd: 18:1e:eb:ee:1b:fe:f9:2e:c9:9f:4c:d9:21:89:2a: bc:0d:ac:c3:32:81:66:e5:08:a9:ad:4f:50:38:1e: 4e:d0:1a:17:5a:21:82:fd:68:ea:6c:68:8a:63:e1: 64:59:58:75:01:a5:58:54:98:1c:fa:ee:22:bd:8b: 6d:fa:4c:c8:7c:54:25:29:e1:c4:e9:d9:2c:f9:6e: 62:78:c0:a6:32:17:05:d2:cb:89:f6:99:1e:cc:61: d4:25:1b:75:e9:28:95:fd:2e:2a:9d:38:85:b6:1a: 25:65:63:26:47:e5:27:82:87:01:b0:0a:ad:f3:b7: 09:ca:25:8a:48:7d:82:3d:80:16:c0:5f:bd:31:24: 17:21:b1:58:cf:cf:01:6d:0b:29:c2:a7:64:d0:f7: 4e:f1:4a:82:35:e9:c2:ec:c3:be:57:58:7f:53:d2: 24:0f:20:3a:19:d7:6d:30:5f:cd:71:d0:1c:33:92: 07:c4:b0:b9:c3:7f:4c:ff:ea:b1:9e:58:2e:ee:c3: df:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:23:66:5F:F0:2E:E8:24:A1:E0:97:05:72:0D:BE:AE:E8:38:A6:07 X509v3 Authority Key Identifier: keyid:3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:e6:dc:c4:44:91:98:a3:05:00:b4:17:8f:56:cb:c0:15:84: 2e:2e:2c:11:2d:a6:76:7d:88:b2:43:61:d7:e2:11:2a:81:a6: 3a:4d:17:21:5f:fe:59:5c:af:96:c1:ce:20:af:93:71:63:77: 2b:42:d5:e4:23:5d:3c:f9:eb:25:13:08:39:1d:b5:16:8a:43: 2d:5b:cf:7a:b0:c6:17:c3:7d:17:05:9f:e7:10:c8:06:6f:03: f7:b5:1f:fd:90:06:68:0d:88:01:28:99:23:2b:6c:65:cc:e0: fc:6b:56:52:83:ec:fb:ff:2a:91:48:f2:8b:fe:5d:24:c0:93: fb:3d:37:dc:fa:34:6e:2b:75:a5:55:13:42:7e:78:7f:90:60: 39:1f:bb:8c:1a:62:2f:09:b1:9d:1e:29:cc:63:36:6a:72:27: 48:51:14:65:33:e3:e8:63:8b:dc:86:db:b8:c3:6e:1a:ab:18: cf:b8:0d:c0:5d:3e:24:66:e9:62:2d:18:82:6b:79:8c:8a:88: 16:8c:38:0f:8c:3d:0e:52:fe:19:1c:bd:9d:0d:67:f1:4b:2e: f8:bc:eb:00:3e:6b:58:00:0a:5c:e0:8f:e0:d4:0f:06:50:3e: 64:5d:12:f3:36:5e:e9:a6:45:49:87:6d:b5:1d:a3:64:2e:df: e0:92:9f:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4OEYxMTAvBgNVBAUTKDNGRTYwMzFGMjU1NjdBNDU0N0NERTE3MzFBMkQ4MTRE Qjg2RTIwOTQwHhcNMjQwNTE4MjI0NjAwWhcNMjQwNTI1MjI0NjAwWjAYMRYwFAYD VQQDEw02NjQ5MmZhOC1jNTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviIApmUEAUTv4quXcs/9oFje4cJihl8soGnut7eLhgphtMl+QEgqcSHE0yXF TUqGPjDVhRQHx4ssN70YHuvuG/75LsmfTNkhiSq8DazDMoFm5QiprU9QOB5O0BoX WiGC/WjqbGiKY+FkWVh1AaVYVJgc+u4ivYtt+kzIfFQlKeHE6dks+W5ieMCmMhcF 0suJ9pkezGHUJRt16SiV/S4qnTiFtholZWMmR+UngocBsAqt87cJyiWKSH2CPYAW wF+9MSQXIbFYz88BbQspwqdk0PdO8UqCNenC7MO+V1h/U9IkDyA6GddtMF/NcdAc M5IHxLC5w39M/+qxnlgu7sPfOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwjZl/w LugkoeCXBXINvq7oOKYHMB8GA1UdIwQYMBaAFD/mAx8lVnpFR83hcxotgU24biCU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTg4Ri8xOTI0N0ZCQUZF MjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2VrVkh6ZUZ6R2kyQlRiaHVJ SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtWURIeVZXZWtWSHplRnpHaTJCVGJodUlKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTg4Ri8xOTI0N0ZCQUZFMjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2Vr Vkh6ZUZ6R2kyQlRiaHVJSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ5tzERJGYowUAtBePVsvAFYQuLiwRLaZ2fYiyQ2HX4hEqgaY6TRch X/5ZXK+Wwc4gr5NxY3crQtXkI108+eslEwg5HbUWikMtW896sMYXw30XBZ/nEMgG bwP3tR/9kAZoDYgBKJkjK2xlzOD8a1ZSg+z7/yqRSPKL/l0kwJP7PTfc+jRuK3Wl VRNCfnh/kGA5H7uMGmIvCbGdHinMYzZqcidIURRlM+PoY4vchtu4w24aqxjPuA3A XT4kZuliLRiCa3mMiogWjDgPjD0OUv4ZHL2dDWfxSy74vOsAPmtYAApc4I/g1A8G UD5kXRLzNl7ppkVJh221HaNkLt/gkp+J -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org