$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft File: RYBbVYDVFRl9GmFa1myLnUhU9eo.mft (raw, json) Hash identifier: mslsQDk/BrfwxMOazl65oDYKG1LfPzFhN7fmKpHpywI= Subject key identifier: 3A:62:19:8C:EC:9E:79:B9:69:B2:81:53:4D:1D:DD:D9:7B:CE:F7:CF Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA Certificate issuer: /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Certificate serial: 1722 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft Manifest number: 171A Signing time: Sat 18 May 2024 17:04:26 +0000 Manifest this update: Sat 18 May 2024 17:04:26 +0000 Manifest next update: Sat 25 May 2024 17:04:26 +0000 Files and hashes: 1: RYBbVYDVFRl9GmFa1myLnUhU9eo.crl (hash: 5VH4dbplG3xoJIBP69nRUf51YGfIR2j1glzPOBrx1Yw=) 2: 94A1F97A369711EA866E381CC4F9AE02.roa (hash: VW98jNO4dH4/21q6/2uer54gWI4ZklqT1nPB4rk3Ngk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5922 (0x1722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Validity Not Before: May 18 17:04:26 2024 GMT Not After : May 25 17:04:26 2024 GMT Subject: CN=6648df9a-d30b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5d:e2:b8:71:dc:3c:85:bd:0d:87:86:87:da: 6e:d7:55:50:4c:d9:9b:9e:6d:fe:4b:40:e1:b9:b0: 2d:fb:43:62:91:b8:33:fe:a2:14:85:d8:ad:d7:0a: dd:ab:4c:d0:d7:09:2e:01:d0:c8:a5:ac:09:cf:0a: eb:b8:0b:be:c8:df:08:b2:f9:d0:17:de:a9:22:cf: 41:f0:dc:e2:d8:3d:45:d4:3b:80:36:fd:00:bf:81: db:fd:a9:9a:d4:85:d1:fb:0d:9a:f2:d6:95:05:e0: 24:27:85:75:bf:c8:4f:8f:b1:27:98:fb:45:ac:bd: 94:eb:5b:e7:b9:4a:6d:a7:95:c5:70:90:f6:a6:16: 5a:be:60:6f:2a:fb:19:04:2b:7e:9e:22:be:c3:64: 97:2d:be:2e:55:44:88:53:4c:2f:0f:9e:c3:64:01: 43:a8:37:59:29:09:0b:c6:03:67:72:5e:c9:88:e8: fa:bf:c7:a0:a0:97:44:d9:5f:30:3d:88:dd:a5:b9: f5:08:8a:4e:63:42:9a:dd:33:10:52:06:80:49:b1: 0d:6f:40:a4:52:b4:34:3c:60:a5:f6:bc:46:e3:28: 93:5f:d6:91:61:2f:bb:ef:ab:5d:5d:de:cf:3c:81: f1:c6:55:8a:dc:5f:81:f9:92:a5:b1:18:a5:34:56: e9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:62:19:8C:EC:9E:79:B9:69:B2:81:53:4D:1D:DD:D9:7B:CE:F7:CF X509v3 Authority Key Identifier: keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:85:1d:a3:2a:7b:5a:cc:2b:c2:9f:de:4e:66:64:74:e9:ae: bb:40:8e:ac:80:7b:f0:c3:eb:50:b2:e0:c9:07:a9:42:91:41: 96:cd:7d:39:d6:9f:22:6d:65:e4:9a:0d:b1:90:7c:40:07:67: 08:79:85:1c:d6:09:11:e7:bd:4e:4d:f1:5a:a1:d7:a7:37:19: cc:6d:78:ce:82:2c:b5:d0:0c:80:36:04:28:4b:56:1c:a5:be: 28:39:1a:1b:9a:d2:34:1f:3d:85:68:e1:59:16:36:f3:75:2a: 55:f0:eb:e8:53:02:4b:49:37:be:bb:7d:fc:52:05:97:a1:20: d9:a7:d6:33:1d:ac:31:e1:c1:77:a6:b6:4f:be:7f:4e:ee:b1: 6f:39:54:44:f3:66:73:b3:b5:31:ac:db:51:d1:86:bf:de:a9: e0:3c:84:1e:de:aa:21:50:fc:cc:11:14:e1:04:70:f7:8a:00: 85:b4:1d:69:ea:5e:81:aa:bb:df:db:97:c0:db:22:33:ee:67: 53:3a:6a:83:3f:5f:a1:f5:66:45:da:0b:d0:70:52:16:07:ce: 3e:e9:ce:1a:e0:89:19:51:52:4d:02:7e:9d:61:d2:97:2e:c1: 0c:15:0f:7e:39:37:72:cb:e1:0f:ce:3d:58:b2:da:66:0c:d1: de:3a:46:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5RTcxMTAvBgNVBAUTKDQ1ODA1QjU1ODBENTE1MTk3RDFBNjE1QUQ2NkM4QjlE NDg1NEY1RUEwHhcNMjQwNTE4MTcwNDI2WhcNMjQwNTI1MTcwNDI2WjAYMRYwFAYD VQQDEw02NjQ4ZGY5YS1kMzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwF3iuHHcPIW9DYeGh9pu11VQTNmbnm3+S0DhubAt+0Nikbgz/qIUhdit1wrd q0zQ1wkuAdDIpawJzwrruAu+yN8IsvnQF96pIs9B8Nzi2D1F1DuANv0Av4Hb/ama 1IXR+w2a8taVBeAkJ4V1v8hPj7EnmPtFrL2U61vnuUptp5XFcJD2phZavmBvKvsZ BCt+niK+w2SXLb4uVUSIU0wvD57DZAFDqDdZKQkLxgNncl7JiOj6v8egoJdE2V8w PYjdpbn1CIpOY0Ka3TMQUgaASbENb0CkUrQ0PGCl9rxG4yiTX9aRYS+776tdXd7P PIHxxlWK3F+B+ZKlsRilNFbpbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpiGYzs nnm5abKBU00d3dl7zvfPMB8GA1UdIwQYMBaAFEWAW1WA1RUZfRphWtZsi51IVPXq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODlFNy9GOEZGMTUyMkJE RkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZSbDlHbUZhMW15TG5VaFU5 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZQmJWWURWRlJsOUdtRmExbXlMblVoVTllby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODlFNy9GOEZGMTUyMkJERkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZS bDlHbUZhMW15TG5VaFU5ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8hR2jKntazCvCn95OZmR06a67QI6sgHvww+tQsuDJB6lCkUGWzX05 1p8ibWXkmg2xkHxAB2cIeYUc1gkR571OTfFaodenNxnMbXjOgiy10AyANgQoS1Yc pb4oORobmtI0Hz2FaOFZFjbzdSpV8OvoUwJLSTe+u338UgWXoSDZp9YzHawx4cF3 prZPvn9O7rFvOVRE82Zzs7UxrNtR0Ya/3qngPIQe3qohUPzMERThBHD3igCFtB1p 6l6Bqrvf25fA2yIz7mdTOmqDP1+h9WZF2gvQcFIWB84+6c4a4IkZUVJNAn6dYdKX LsEMFQ9+OTdyy+EPzj1YstpmDNHeOkag -----END CERTIFICATE-----Generated at Sat May 18 17:37:32 2024 by rpki-client on console-fra.rpki-client.org