$ rpki-client -vvf rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft File: cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft (raw, json) Hash identifier: XOdqysKfc8N0CzigeUhZaontk4uYjZ/qGttNUWzURg0= Subject key identifier: 49:6F:38:D0:90:CD:7E:54:83:E8:79:43:C6:E6:B5:EB:A4:6D:B3:88 Authority key identifier: 71:80:73:09:8A:F0:39:6F:D8:E3:30:9A:1B:9F:B6:F3:EE:B1:7A:E7 Certificate issuer: /CN=A917174E/serialNumber=718073098AF0396FD8E3309A1B9FB6F3EEB17AE7 Certificate serial: 0D46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYBzCYrwOW_Y4zCaG5-28-6xeuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft Manifest number: 0D45 Signing time: Sat 18 May 2024 18:38:34 +0000 Manifest this update: Sat 18 May 2024 18:38:34 +0000 Manifest next update: Sat 25 May 2024 18:38:34 +0000 Files and hashes: 1: cYBzCYrwOW_Y4zCaG5-28-6xeuc.crl (hash: FabgW34C6binlWigWnn7frNUph8g47a7SJc1DAtStmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.crl rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYBzCYrwOW_Y4zCaG5-28-6xeuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3398 (0xd46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917174E/serialNumber=718073098AF0396FD8E3309A1B9FB6F3EEB17AE7 Validity Not Before: May 18 18:38:34 2024 GMT Not After : May 25 18:38:34 2024 GMT Subject: CN=6648f5aa-acf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ec:dd:0a:4c:d0:a9:74:46:0e:ce:cb:2e:8e: b6:fb:a6:db:f1:58:5d:7b:dd:fe:e5:d1:5e:15:9f: ba:5f:2b:7e:cc:cf:12:16:46:d1:69:22:23:e5:a6: 2e:ea:a9:59:20:ad:60:5b:16:84:fb:be:99:d8:27: bf:ee:c0:6c:35:60:5e:9c:e5:b9:ee:f6:27:54:36: c9:44:ce:bf:f0:ee:83:f8:af:c1:fe:e4:31:94:dd: 72:f2:34:31:2b:60:ae:cb:e1:18:94:53:8b:c1:69: 6e:b8:64:63:cd:f2:22:14:14:08:8f:94:e4:50:15: 1e:6d:c8:f3:72:a2:9a:fd:01:e6:ea:05:3c:63:2f: 6b:27:ef:2e:95:c3:44:fa:a9:c7:56:5f:67:b5:39: 05:a8:d8:83:a3:41:c6:c0:0b:e9:9b:0e:c2:e3:3e: dc:c2:7f:5d:de:ed:36:de:eb:24:0b:80:89:fc:d0: 61:9e:4b:8b:74:32:db:1b:9e:aa:e7:69:00:2f:97: 92:56:5f:cf:bb:87:d9:6a:ae:70:f4:ca:61:f7:95: f3:23:11:a4:9f:c9:de:df:01:ad:87:75:54:32:7d: 00:78:30:82:f5:97:2d:a0:65:56:16:e0:72:19:62: d1:8d:97:ae:a2:04:49:df:21:26:e3:c6:af:c6:ae: 4d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:6F:38:D0:90:CD:7E:54:83:E8:79:43:C6:E6:B5:EB:A4:6D:B3:88 X509v3 Authority Key Identifier: keyid:71:80:73:09:8A:F0:39:6F:D8:E3:30:9A:1B:9F:B6:F3:EE:B1:7A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYBzCYrwOW_Y4zCaG5-28-6xeuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:95:7f:38:28:0a:54:2e:d5:c1:70:aa:2d:ce:a9:cc:fb:7d: f9:e8:b4:70:d7:f1:a1:4b:7d:e4:6a:56:44:1d:c8:cf:2d:b1: 88:9e:ba:d6:b4:d4:dd:3a:2d:a1:10:0e:11:ae:ba:27:a3:62: 0b:37:7d:4b:94:39:d6:2f:e0:05:f5:3a:bd:22:eb:b4:1d:4b: 13:34:cd:19:aa:6b:f4:b6:41:ae:68:69:16:21:dd:e5:c7:a0: 59:e5:81:e9:c7:0e:1e:fe:ae:bb:6e:96:4a:7f:d1:c2:32:cd: 8e:c0:95:9f:8e:ce:8a:88:c1:7a:df:22:09:89:6a:5e:4c:52: 9e:73:0e:1a:08:06:67:05:81:19:29:2e:47:1a:7a:1a:f1:17: 2e:de:4e:cb:8b:4f:05:d2:48:38:63:fd:d4:41:c3:20:aa:0c: e6:80:d1:80:81:f9:c1:b7:67:b2:e6:de:ec:9e:ab:7b:a2:a1: e8:fc:3b:64:87:5d:49:b9:e8:ff:f5:3c:ce:b0:f6:d5:46:15: 90:de:33:a5:c7:a3:e3:9a:b5:41:ca:49:8f:76:39:a3:5a:bc: e3:9a:a4:09:8b:c5:dc:a8:87:ab:c8:9f:e8:d1:a2:2c:95:d2: 89:66:37:b0:bc:3a:68:a2:0f:42:09:32:a0:e1:f6:5e:a1:0c: 72:99:ab:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NEUxMTAvBgNVBAUTKDcxODA3MzA5OEFGMDM5NkZEOEUzMzA5QTFCOUZCNkYz RUVCMTdBRTcwHhcNMjQwNTE4MTgzODM0WhcNMjQwNTI1MTgzODM0WjAYMRYwFAYD VQQDEw02NjQ4ZjVhYS1hY2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOzdCkzQqXRGDs7LLo62+6bb8Vhde93+5dFeFZ+6Xyt+zM8SFkbRaSIj5aYu 6qlZIK1gWxaE+76Z2Ce/7sBsNWBenOW57vYnVDbJRM6/8O6D+K/B/uQxlN1y8jQx K2Cuy+EYlFOLwWluuGRjzfIiFBQIj5TkUBUebcjzcqKa/QHm6gU8Yy9rJ+8ulcNE +qnHVl9ntTkFqNiDo0HGwAvpmw7C4z7cwn9d3u023uskC4CJ/NBhnkuLdDLbG56q 52kAL5eSVl/Pu4fZaq5w9Mph95XzIxGkn8ne3wGth3VUMn0AeDCC9ZctoGVWFuBy GWLRjZeuogRJ3yEm48avxq5N1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElvONCQ zX5Ug+h5Q8bmteukbbOIMB8GA1UdIwQYMBaAFHGAcwmK8Dlv2OMwmhuftvPusXrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc0RS81NEFBMTQ5Q0FB RjYxMUU5OUM1RUUyNTlDNEY5QUUwMi9jWUJ6Q1lyd09XX1k0ekNhRzUtMjgtNnhl dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NZQnpDWXJ3T1dfWTR6Q2FHNS0yOC02eGV1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc0RS81NEFBMTQ5Q0FBRjYxMUU5OUM1RUUyNTlDNEY5QUUwMi9jWUJ6Q1lyd09X X1k0ekNhRzUtMjgtNnhldWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdlX84KApULtXBcKotzqnM+3356LRw1/GhS33kalZEHcjPLbGInrrW tNTdOi2hEA4Rrrono2ILN31LlDnWL+AF9Tq9Iuu0HUsTNM0Zqmv0tkGuaGkWId3l x6BZ5YHpxw4e/q67bpZKf9HCMs2OwJWfjs6KiMF63yIJiWpeTFKecw4aCAZnBYEZ KS5HGnoa8Rcu3k7Li08F0kg4Y/3UQcMgqgzmgNGAgfnBt2ey5t7snqt7oqHo/Dtk h11Juej/9TzOsPbVRhWQ3jOlx6PjmrVBykmPdjmjWrzjmqQJi8XcqIeryJ/o0aIs ldKJZjewvDpoog9CCTKg4fZeoQxymasX -----END CERTIFICATE-----Generated at Sat May 18 19:21:04 2024 by rpki-client on console-fra.rpki-client.org