$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft File: YeT4YWtiQmYakffQErbNHkCTiQs.mft (raw, json) Hash identifier: b62YLVDD8AlJSYtqbwO0CVkOc04978xo86PQQwvZbc8= Subject key identifier: 63:79:BA:D0:52:ED:F7:82:AA:7C:64:08:B9:BD:62:60:71:6C:48:70 Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft Manifest number: 21 Signing time: Sun 19 May 2024 08:35:19 +0000 Manifest this update: Sun 19 May 2024 08:35:18 +0000 Manifest next update: Sun 26 May 2024 08:35:18 +0000 Files and hashes: 1: YeT4YWtiQmYakffQErbNHkCTiQs.crl (hash: qvkei6o7FHe6t1GXT9ou9z5IU3CHwVlvlv7cdWPiwUo=) 2: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (hash: a7kXfwNeuBzF/aeEMRcbCbD2kj3ZcaqnqO+KkH+rl/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Validity Not Before: May 19 08:35:18 2024 GMT Not After : May 26 08:35:18 2024 GMT Subject: CN=6649b9c7-236c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c9:12:6e:8a:5d:fd:c8:e8:29:5c:ca:10:2e: 29:aa:15:bf:d1:e7:cd:c0:96:d7:cd:3a:90:2e:77: c3:61:29:97:88:71:e8:b7:b8:a6:98:a9:a3:52:b2: d6:54:cc:e6:1f:dc:80:07:60:32:f0:b9:1b:6a:71: d5:10:f0:85:2a:0a:e8:4c:30:70:e6:9a:8b:45:22: 1a:a1:24:ee:a3:cb:06:ee:c1:30:ae:93:ee:f5:75: 17:27:d5:5f:e3:03:2b:8a:47:8a:05:ef:2f:6c:97: 4f:3c:12:97:08:4b:fc:59:e8:ff:57:f1:de:43:a2: 53:ba:e4:65:71:0b:f2:ec:6c:a9:f3:1e:b7:6b:31: 13:1a:04:ad:1f:4e:6b:b2:ff:e4:d5:59:ea:fa:8a: 74:3e:69:f4:4c:0c:2e:f5:29:00:89:50:d6:e9:0b: 81:25:88:0c:ee:b6:7d:1c:fe:aa:6f:ef:9b:a3:26: 9e:49:59:89:f3:a5:0a:a7:35:f2:7b:fc:2f:4d:85: 52:6d:35:2f:7e:a1:3c:05:32:ab:ab:8c:cb:50:9a: af:be:e2:9d:71:13:b2:7f:8f:c7:04:12:aa:3a:b3: 85:b3:d2:f4:fc:c3:7b:1a:95:8f:16:70:86:f9:f2: 78:de:ee:69:dc:dc:8d:8b:20:1a:2d:8f:e9:c9:1b: 5c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:79:BA:D0:52:ED:F7:82:AA:7C:64:08:B9:BD:62:60:71:6C:48:70 X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:92:90:ab:68:68:94:e7:e5:e5:01:eb:57:a6:9f:00:42:c3: 31:53:5e:4d:41:9b:dc:48:77:06:b1:5c:b9:8c:d3:45:74:e6: 50:f8:8f:4c:41:b1:19:74:63:8c:e2:15:ba:6b:83:55:98:57: 69:49:8b:12:7b:73:2c:d5:0e:75:76:0f:4d:db:88:8c:41:74: 22:79:42:01:76:b8:1a:de:61:24:fb:f7:e5:02:b9:8a:03:65: ee:62:7e:58:e7:4c:fa:9e:17:a6:73:32:eb:51:ec:6e:4c:f6: 99:1d:51:cd:d5:30:a0:38:bf:b4:fb:21:50:20:cf:c7:20:61: 6e:8b:67:b4:f4:8f:e4:78:5d:04:d8:71:2a:1e:06:61:60:dd: 06:06:d1:df:90:22:59:52:f9:cb:36:35:15:09:0e:c5:dd:12: db:20:de:eb:0f:34:c2:e0:f4:d7:3e:c0:41:08:8c:39:39:e0: 73:79:0f:bc:65:e4:aa:3e:2f:42:6d:fd:cc:fd:94:39:c0:56: d2:cb:2c:7d:68:29:07:2a:77:c7:6e:17:16:a5:7d:39:5b:79: c9:8c:49:f9:02:ed:2d:23:4c:77:a3:2b:38:35:b9:34:4e:65: f7:b2:7c:26:45:13:46:6d:17:74:a6:fb:f0:19:ea:5c:2d:5b: d6:f8:95:ae -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDVENzExMC8GA1UEBRMoNjFFNEY4NjE2QjYyNDI2NjFBOTFGN0QwMTJCNkNEMUU0 MDkzODkwQjAeFw0yNDA1MTkwODM1MThaFw0yNDA1MjYwODM1MThaMBgxFjAUBgNV BAMTDTY2NDliOWM3LTIzNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9yRJuil39yOgpXMoQLimqFb/R583AltfNOpAud8NhKZeIcei3uKaYqaNSstZU zOYf3IAHYDLwuRtqcdUQ8IUqCuhMMHDmmotFIhqhJO6jywbuwTCuk+71dRcn1V/j AyuKR4oF7y9sl088EpcIS/xZ6P9X8d5DolO65GVxC/LsbKnzHrdrMRMaBK0fTmuy /+TVWer6inQ+afRMDC71KQCJUNbpC4EliAzutn0c/qpv75ujJp5JWYnzpQqnNfJ7 /C9NhVJtNS9+oTwFMqurjMtQmq++4p1xE7J/j8cEEqo6s4Wz0vT8w3salY8WcIb5 8nje7mnc3I2LIBotj+nJG1wvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY3m60FLt 94KqfGQIub1iYHFsSHAwHwYDVR0jBBgwFoAUYeT4YWtiQmYakffQErbNHkCTiQsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwNUQ3LzNCNTBGMTMyRTU3 RjExRUVBRjFEMjkxQkM0RjlBRTAyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlR cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWWVUNFlXdGlRbVlha2ZmUUVyYk5Ia0NUaVFzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw NUQ3LzNCNTBGMTMyRTU3RjExRUVBRjFEMjkxQkM0RjlBRTAyL1llVDRZV3RpUW1Z YWtmZlFFcmJOSGtDVGlRcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA+SkKtoaJTn5eUB61emnwBCwzFTXk1Bm9xIdwaxXLmM00V05lD4j0xB sRl0Y4ziFbprg1WYV2lJixJ7cyzVDnV2D03biIxBdCJ5QgF2uBreYST79+UCuYoD Ze5ifljnTPqeF6ZzMutR7G5M9pkdUc3VMKA4v7T7IVAgz8cgYW6LZ7T0j+R4XQTY cSoeBmFg3QYG0d+QIllS+cs2NRUJDsXdEtsg3usPNMLg9Nc+wEEIjDk54HN5D7xl 5Ko+L0Jt/cz9lDnAVtLLLH1oKQcqd8duFxalfTlbecmMSfkC7S0jTHejKzg1uTRO ZfeyfCZFE0ZtF3Sm+/AZ6lwtW9b4la4= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org