$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: CYxja4fCaiuwI8N3bS0JEzZoa/ydD8ewrrOhwKsyOmk= Subject key identifier: A1:02:81:1A:4A:EA:92:23:22:DC:F2:B4:6C:D3:F8:0D:EC:93:7F:9A Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0BDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0BD5 Signing time: Sat 18 May 2024 19:04:30 +0000 Manifest this update: Sat 18 May 2024 19:04:29 +0000 Manifest next update: Sat 25 May 2024 19:04:29 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: iCm7DPuYBOLRO4ViktS0OnHF9ByA3DgDDcW1AID78CA=) 2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: NN13dJGfAKtwtyUVuhDFqYYscQjD5po/R51ePDMGXII=) 3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: dvW5i8N2INXx7QZmuWSeJFM3NElLJpDFetMG6KPtyVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3039 (0xbdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: May 18 19:04:29 2024 GMT Not After : May 25 19:04:29 2024 GMT Subject: CN=6648fbbe-5da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f3:73:f8:26:05:5f:1a:04:37:75:2b:60:40: c3:25:5a:15:4a:83:f2:60:e2:9f:0f:77:ab:20:03: eb:31:4d:c2:b6:00:e9:c0:9e:e8:3b:8b:1f:72:3f: 7f:55:b8:c4:a4:2b:bb:98:fb:2f:9d:0f:e2:21:d8: 26:f6:7c:a0:f5:70:8e:2d:02:4e:6f:ea:08:72:94: c1:e5:a6:d9:e4:9c:a9:ca:78:10:45:90:b7:ca:32: 4d:fb:b4:d4:71:ff:da:d8:a2:e7:ce:d5:5c:c3:39: b4:67:91:57:1c:01:d1:f6:5f:04:43:11:69:64:7c: 72:8c:6f:a4:15:94:38:77:d7:a7:8f:4e:b5:1e:21: ce:ee:e7:57:6e:81:af:0a:1c:81:2c:a3:c2:3d:f0: df:24:cb:fb:c2:b7:2f:1a:14:24:54:9f:08:d2:86: 90:38:17:9b:b4:6a:7a:d2:20:e7:71:46:c7:45:ad: 1e:15:50:e2:42:c9:60:13:18:f5:68:ae:ea:06:08: 03:fe:2a:f4:ae:f5:69:bf:87:d4:0d:86:50:02:7d: 53:1d:51:26:2c:d9:98:11:5a:47:5a:37:33:f6:6d: 16:9e:8a:34:05:6a:60:5a:0b:7a:e4:94:40:55:28: 0c:39:ec:15:5d:ea:47:60:68:81:c4:95:58:8f:32: 52:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:02:81:1A:4A:EA:92:23:22:DC:F2:B4:6C:D3:F8:0D:EC:93:7F:9A X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:71:9f:89:23:13:09:0a:dd:c3:c1:13:6e:57:b6:80:18:f6: 98:dc:d5:e1:9c:1c:2d:0d:6c:af:c2:df:f3:8a:01:28:a5:13: f9:2c:16:29:d9:b3:c9:ff:6a:5c:dd:8e:65:09:92:63:f9:90: f0:75:dc:e7:34:e2:d7:e2:de:5f:b1:eb:70:7b:0f:6f:6c:bf: 95:a7:64:e4:49:b2:43:f9:9b:b7:83:d9:a4:c7:71:2d:e6:1f: a1:44:5a:2f:86:10:cb:32:26:79:d5:5f:a5:a5:db:a2:76:e6: 60:be:8a:4b:cc:c4:88:ff:06:dc:5a:03:e4:8a:c2:07:db:69: 6a:2c:56:69:68:c6:0e:4b:b8:a2:1c:43:79:ad:18:12:b2:a0: a0:ff:ad:79:06:bc:fb:08:53:0a:22:96:33:eb:7e:24:c0:50: 8d:e1:65:89:66:29:2c:dd:60:26:79:79:30:af:c0:34:eb:90: ef:4b:75:01:11:51:19:02:ef:ab:c4:2b:c7:ba:8b:1e:2f:6b: 1a:a4:a5:9a:10:d5:52:3f:35:c0:34:a9:8c:70:5e:2e:75:4b: 19:86:b8:e7:13:bf:68:2e:d6:f4:d2:c7:3c:d1:9c:ae:21:d2: e7:ca:26:c9:c1:f8:c0:82:93:95:3f:f8:b7:f9:39:c6:63:56: ba:b9:5f:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjQwNTE4MTkwNDI5WhcNMjQwNTI1MTkwNDI5WjAYMRYwFAYD VQQDEw02NjQ4ZmJiZS01ZGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvNz+CYFXxoEN3UrYEDDJVoVSoPyYOKfD3erIAPrMU3CtgDpwJ7oO4sfcj9/ VbjEpCu7mPsvnQ/iIdgm9nyg9XCOLQJOb+oIcpTB5abZ5JypyngQRZC3yjJN+7TU cf/a2KLnztVcwzm0Z5FXHAHR9l8EQxFpZHxyjG+kFZQ4d9enj061HiHO7udXboGv ChyBLKPCPfDfJMv7wrcvGhQkVJ8I0oaQOBebtGp60iDncUbHRa0eFVDiQslgExj1 aK7qBggD/ir0rvVpv4fUDYZQAn1THVEmLNmYEVpHWjcz9m0Wnoo0BWpgWgt65JRA VSgMOewVXepHYGiBxJVYjzJSnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKECgRpK 6pIjItzytGzT+A3sk3+aMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLcZ+JIxMJCt3DwRNuV7aAGPaY3NXhnBwtDWyvwt/zigEopRP5LBYp 2bPJ/2pc3Y5lCZJj+ZDwddznNOLX4t5fsetwew9vbL+Vp2TkSbJD+Zu3g9mkx3Et 5h+hRFovhhDLMiZ51V+lpduiduZgvopLzMSI/wbcWgPkisIH22lqLFZpaMYOS7ii HEN5rRgSsqCg/615Brz7CFMKIpYz634kwFCN4WWJZiks3WAmeXkwr8A065DvS3UB EVEZAu+rxCvHuoseL2sapKWaENVSPzXANKmMcF4udUsZhrjnE79oLtb00sc80Zyu IdLnyibJwfjAgpOVP/i3+TnGY1a6uV8T -----END CERTIFICATE-----Generated at Sat May 18 20:16:00 2024 by rpki-client on console-ams.rpki-client.org