$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: A9wIdDpqa6IVGSO/8x0/zt0JWhDdTTF/3poDA4Y5ckU= Subject key identifier: D9:76:1E:72:F4:B0:6A:0D:D1:B5:3B:29:B6:BA:4E:57:BD:84:B8:F6 Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 01B6 Signing time: Sun 19 May 2024 04:31:39 +0000 Manifest this update: Sun 19 May 2024 04:31:39 +0000 Manifest next update: Sun 26 May 2024 04:31:39 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: ApViwfVMGiHFLqakKT2GcsPk6hJeAvTUcn4DJMf/ExY=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: y52XF3U47WNwjbx8YzVm3FRR0fkIy77/ah2D47JMlXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: May 19 04:31:39 2024 GMT Not After : May 26 04:31:39 2024 GMT Subject: CN=664980ab-07a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:25:07:8c:d5:ab:92:95:d4:b4:a4:12:09:6b: f2:8a:10:c1:4f:54:96:fd:e4:c0:76:ec:a0:5c:08: 1f:57:0d:c1:60:08:15:2a:58:a1:0a:d5:9e:85:c9: 92:98:9e:cc:eb:f3:a6:43:c5:33:8d:90:c9:cf:b6: 4b:a9:27:00:4a:be:57:16:4f:93:da:56:6a:4f:c8: 85:14:2f:b4:4e:4f:83:d6:17:d8:b2:a9:5a:95:9d: 34:9c:db:76:c4:9f:2a:cc:f5:a3:55:d9:a6:a1:10: 5a:e6:7e:50:5e:ed:d1:8d:8d:98:3b:8f:66:4a:34: 06:98:27:06:46:e0:d2:a4:94:8e:f1:9f:ff:bd:83: 2d:ea:25:09:3e:ac:c2:16:48:c3:f0:5d:7c:6c:10: bc:5a:a4:8f:9a:d6:a2:02:59:a4:99:ab:fd:9b:b9: e2:1f:54:7a:3f:7a:b8:96:71:6f:d3:60:61:8e:a9: 32:43:e7:59:10:59:00:a5:6c:70:eb:42:1d:f4:3d: d7:36:a7:31:16:9c:be:4f:67:cc:b4:eb:e3:3d:4d: 7e:3b:e0:1c:05:47:65:e6:65:af:3d:4f:37:b3:a7: fd:8d:a9:cf:1a:51:ba:eb:11:21:8d:8a:b8:d7:09: f8:f2:81:66:8c:fa:a9:10:be:72:a2:ed:97:24:c1: 19:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:76:1E:72:F4:B0:6A:0D:D1:B5:3B:29:B6:BA:4E:57:BD:84:B8:F6 X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:c4:f6:fc:1b:82:3b:d3:4a:1c:84:ba:ec:b6:cc:ad:ec:96: 97:cd:7c:02:6d:4b:3a:05:51:1a:fe:e9:d5:32:10:ce:0e:5c: f3:73:9b:bc:89:22:01:96:58:18:0b:70:0a:5d:64:d5:07:8f: 64:a4:98:fe:c5:2f:61:f9:ab:1f:c5:d9:2b:aa:06:fd:29:b9: 7a:d8:bb:5f:96:55:12:fb:fb:a2:50:52:88:cf:6e:2c:94:bc: ba:94:db:12:7c:2c:c9:c8:19:38:c3:7a:b0:7e:7e:e8:44:cf: 07:e6:1f:c7:f7:5a:38:51:13:ba:6d:41:28:1d:b8:9e:b1:c6: 9b:61:ed:df:b0:5f:cf:b7:67:44:6e:1d:bc:5e:9d:72:29:63: e5:d1:04:37:da:8a:c2:8c:36:93:6c:fe:d0:82:4e:29:e4:0e: 61:a2:8d:d6:9b:f2:d6:6a:c2:28:2e:70:ec:4b:47:6f:90:99: 26:23:77:d3:29:49:e9:fe:50:69:d6:42:d9:09:65:60:08:1d: 85:4d:38:6d:ff:80:ba:0c:99:fd:bd:32:ec:27:77:2f:86:75: 0e:a1:55:d7:91:5f:6f:59:21:48:02:2e:e0:67:37:a9:28:f4: 92:31:79:7a:30:49:ba:ad:b4:86:1e:14:4e:0a:89:43:01:34: b7:66:fb:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjQwNTE5MDQzMTM5WhcNMjQwNTI2MDQzMTM5WjAYMRYwFAYD VQQDEw02NjQ5ODBhYi0wN2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiUHjNWrkpXUtKQSCWvyihDBT1SW/eTAduygXAgfVw3BYAgVKlihCtWehcmS mJ7M6/OmQ8UzjZDJz7ZLqScASr5XFk+T2lZqT8iFFC+0Tk+D1hfYsqlalZ00nNt2 xJ8qzPWjVdmmoRBa5n5QXu3RjY2YO49mSjQGmCcGRuDSpJSO8Z//vYMt6iUJPqzC FkjD8F18bBC8WqSPmtaiAlmkmav9m7niH1R6P3q4lnFv02BhjqkyQ+dZEFkApWxw 60Id9D3XNqcxFpy+T2fMtOvjPU1+O+AcBUdl5mWvPU83s6f9janPGlG66xEhjYq4 1wn48oFmjPqpEL5you2XJMEZ8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNl2HnL0 sGoN0bU7Kba6Tle9hLj2MB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpxPb8G4I700ochLrstsyt7JaXzXwCbUs6BVEa/unVMhDODlzzc5u8 iSIBllgYC3AKXWTVB49kpJj+xS9h+asfxdkrqgb9Kbl62LtfllUS+/uiUFKIz24s lLy6lNsSfCzJyBk4w3qwfn7oRM8H5h/H91o4URO6bUEoHbiescabYe3fsF/Pt2dE bh28Xp1yKWPl0QQ32orCjDaTbP7Qgk4p5A5hoo3Wm/LWasIoLnDsS0dvkJkmI3fT KUnp/lBp1kLZCWVgCB2FTTht/4C6DJn9vTLsJ3cvhnUOoVXXkV9vWSFIAi7gZzep KPSSMXl6MEm6rbSGHhROColDATS3Zvvv -----END CERTIFICATE-----Generated at Sun May 19 05:08:04 2024 by rpki-client on console-ams.rpki-client.org