$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: dlN5+HOIwA632YeDi1wEvCpPMGyNUsBvmi1+/Ck6Epc= Subject key identifier: ED:3D:1F:CE:2C:CE:32:69:B7:F5:D1:19:ED:69:71:4E:F0:43:70:07 Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0B5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0B59 Signing time: Thu 30 May 2024 20:03:55 +0000 Manifest this update: Thu 30 May 2024 20:03:55 +0000 Manifest next update: Thu 06 Jun 2024 20:03:55 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: V+KB3zmq8KY4NPxwbsoybGWWJdy+qeHC7sUuq/gfUZA=) 2: 38416E960DE211EA999D9786C4F9AE02.roa (hash: MAWRaaMprm8tPei+3CtJOqEW3h2weTu0tf++qBi1g+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 19:43:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2911 (0xb5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: May 30 20:03:55 2024 GMT Not After : Jun 6 20:03:55 2024 GMT Subject: CN=6658dbab-f113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e3:c1:99:2d:73:be:8c:85:fb:c9:13:a4:3b: b2:a3:1d:03:f4:c3:67:6c:30:6c:d3:74:e4:19:b7: 24:27:0f:6d:ee:2e:a6:81:6d:ec:48:e5:67:49:7f: 13:af:04:47:ad:98:cd:67:f0:1d:41:e2:94:ef:eb: 28:c5:3c:17:51:6d:8c:6c:2b:48:0b:2e:a1:e7:c2: bb:c3:26:3b:1a:e6:11:38:6b:46:4c:81:33:a9:d9: f6:7d:63:a1:47:30:3f:c7:28:5b:1e:3c:8d:e6:73: 34:1f:af:42:c0:be:d3:e3:5e:1f:1c:85:90:aa:9d: 0c:d9:15:7f:9b:d0:78:29:c5:44:dd:42:dd:b1:83: 0a:91:01:b9:9d:63:4a:7b:24:42:59:c4:a0:fb:9e: 26:52:65:f5:6e:bf:59:fc:62:5d:fb:cf:3d:fa:b1: 66:02:02:74:23:e0:3c:db:68:28:40:0a:90:99:9b: 63:0a:53:fe:b4:e8:24:69:f5:f2:6a:86:1e:af:45: 6e:8f:e3:bf:1d:2a:9c:35:10:18:6f:88:3e:09:a2: 60:d1:3e:f9:43:dd:b0:f1:e3:ac:5b:63:f0:bd:11: 82:fe:14:b8:f6:a5:b2:8a:6f:8d:9f:0b:64:1a:91: e9:5a:30:39:96:fa:ef:92:3d:1e:c5:d2:38:2e:f7: 5a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:3D:1F:CE:2C:CE:32:69:B7:F5:D1:19:ED:69:71:4E:F0:43:70:07 X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:aa:f8:8e:11:5d:25:01:5d:e3:73:ff:07:f3:e7:90:47:e5: 57:83:cd:1c:e0:0c:dc:7d:0a:49:0f:74:28:f0:8d:0d:8f:a1: bd:6e:da:b2:dd:b2:ef:82:6b:92:86:6c:fa:d9:ed:d3:e1:9a: 51:93:1c:9b:5f:13:6e:8f:bf:5f:51:42:c5:4a:4b:87:78:27: d8:5d:e4:c7:91:44:0d:c2:9c:5c:ff:43:83:fb:d1:cb:a1:d9: 45:c6:16:a1:74:a9:ad:8a:17:26:f7:1d:fa:63:e7:15:38:d6: 0f:7f:eb:2b:1e:cc:07:8e:f0:0c:d2:a8:ac:bf:a3:c6:d7:44: 0d:89:b8:ad:5e:d8:8b:1f:43:9f:8e:69:49:c6:e0:0b:0a:cc: 55:72:ba:d7:bb:82:f0:05:4c:b0:87:27:cf:8d:76:71:67:fe: 19:3e:c0:0c:6e:75:80:cf:0f:a5:36:81:e7:fb:66:9d:d8:31: 5d:6f:19:67:4f:06:fe:f1:76:c6:b8:b3:f6:47:d0:ae:23:e0: f5:81:6b:39:21:af:fb:8f:50:56:0a:10:66:49:3c:26:63:5f: f4:f7:22:1e:de:55:a7:5a:03:dd:62:6c:3b:42:63:02:c9:44: 0d:ef:be:c3:9d:67:f6:7c:57:d4:34:13:bf:f3:57:ea:7b:1d: 6b:dc:1b:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjQwNTMwMjAwMzU1WhcNMjQwNjA2MjAwMzU1WjAYMRYwFAYD VQQDEw02NjU4ZGJhYi1mMTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOPBmS1zvoyF+8kTpDuyox0D9MNnbDBs03TkGbckJw9t7i6mgW3sSOVnSX8T rwRHrZjNZ/AdQeKU7+soxTwXUW2MbCtICy6h58K7wyY7GuYROGtGTIEzqdn2fWOh RzA/xyhbHjyN5nM0H69CwL7T414fHIWQqp0M2RV/m9B4KcVE3ULdsYMKkQG5nWNK eyRCWcSg+54mUmX1br9Z/GJd+889+rFmAgJ0I+A822goQAqQmZtjClP+tOgkafXy aoYer0Vuj+O/HSqcNRAYb4g+CaJg0T75Q92w8eOsW2PwvRGC/hS49qWyim+Nnwtk GpHpWjA5lvrvkj0exdI4LvdamQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO09H84s zjJpt/XRGe1pcU7wQ3AHMB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqqviOEV0lAV3jc/8H8+eQR+VXg80c4AzcfQpJD3Qo8I0Nj6G9btqy 3bLvgmuShmz62e3T4ZpRkxybXxNuj79fUULFSkuHeCfYXeTHkUQNwpxc/0OD+9HL odlFxhahdKmtihcm9x36Y+cVONYPf+srHswHjvAM0qisv6PG10QNibitXtiLH0Of jmlJxuALCsxVcrrXu4LwBUywhyfPjXZxZ/4ZPsAMbnWAzw+lNoHn+2ad2DFdbxln Twb+8XbGuLP2R9CuI+D1gWs5Ia/7j1BWChBmSTwmY1/09yIe3lWnWgPdYmw7QmMC yUQN777DnWf2fFfUNBO/81fqex1r3BvF -----END CERTIFICATE-----Generated at Thu May 30 20:35:33 2024 by rpki-client on console-fra.rpki-client.org