$ rpki-client -vvf rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft File: RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft (raw, json) Hash identifier: vk6b6kiexA/iehfXvoiV3HmpzKO3YLGOMu9rOj1ft1s= Subject key identifier: AE:63:5B:37:0A:DF:1A:C4:A3:32:AB:DE:52:07:B7:A0:DF:2C:A9:1D Authority key identifier: 45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 Certificate issuer: /CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft Manifest number: 84 Signing time: Sat 01 Jun 2024 08:39:22 +0000 Manifest this update: Sat 01 Jun 2024 08:39:21 +0000 Manifest next update: Sat 08 Jun 2024 08:39:21 +0000 Files and hashes: 1: RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl (hash: 7WHOblUFKn0E56VMVY7SeSYOH0Zb3/bj/wLzA/4+zt4=) 2: 5D4FB6AA9AB711EE86E1D058C4F9AE02.roa (hash: jGLgl+s+EXh85DiPzfOmONprvM0A0uRoqJDk3lKU0CI=) 3: A4554AD6A1C111EE96BE4110C4F9AE02.roa (hash: IV3AFx57AEI82GlUItOgpmo+qhlmSYNe7T4ACgV2Owo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Validity Not Before: Jun 1 08:39:21 2024 GMT Not After : Jun 8 08:39:21 2024 GMT Subject: CN=665ade39-e4ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9f:76:2d:2e:fb:26:5b:c8:d8:1e:12:e5:a1: 68:7e:f2:73:39:4d:3f:1c:7f:41:16:b7:64:39:9b: 1d:a4:c6:2d:b0:fa:99:26:61:20:0d:ce:f5:cb:93: 61:30:fc:75:8f:e6:87:63:34:a4:59:12:bf:87:ae: 6b:d4:e3:3c:7e:33:ed:ef:03:35:ba:ae:d9:69:2e: 75:17:2a:0b:03:f2:5c:8a:6f:c3:ac:8f:d5:ac:21: e7:2a:e0:29:05:f4:30:69:56:5f:58:45:e3:75:91: e5:53:4f:40:f8:5e:71:57:55:77:b2:2a:35:0b:aa: 9f:ec:ec:7b:db:6e:d3:5e:df:39:fb:92:53:86:c5: 2e:fd:e3:af:a1:18:ae:8a:9d:fe:da:e6:0a:51:e2: 5c:7b:b7:29:41:68:42:91:f5:b3:79:e2:88:87:93: d4:a4:50:70:62:d2:db:fe:2a:de:12:58:02:b9:ed: 43:87:3b:74:35:f7:5f:e8:17:4b:13:d4:cd:1b:af: 50:a6:30:fd:bd:0f:1e:fe:41:f6:e1:0f:fa:1d:4e: e9:ba:d2:26:80:a1:a4:ac:cb:9d:55:38:f8:be:5a: 6e:bb:d0:d2:5f:6d:63:28:c9:63:87:5f:f3:aa:36: 88:3c:02:62:ef:63:6b:1a:30:a8:0e:1c:b5:69:a0: fb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:63:5B:37:0A:DF:1A:C4:A3:32:AB:DE:52:07:B7:A0:DF:2C:A9:1D X509v3 Authority Key Identifier: keyid:45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:2f:bb:29:b0:d9:d0:ea:8c:06:1c:9a:43:06:c3:b1:fa:3e: 54:e0:2c:1b:c9:b6:57:17:88:07:7d:fe:55:db:29:71:cc:76: b8:fe:8e:a8:42:20:ab:cf:6f:dd:ad:92:fd:01:3b:4a:ef:5a: 7d:f3:3c:91:21:cd:d8:48:ad:14:6f:64:30:6c:93:7c:35:e9: 8e:37:85:f7:2d:22:e1:ea:03:90:bb:6f:eb:87:cf:5e:85:be: 26:dd:a3:05:0d:47:fc:83:93:01:83:a2:67:39:a8:2c:85:0a: d0:77:5c:d4:40:15:e4:07:b3:b5:1b:ca:a6:13:b5:56:2d:fb: 37:1a:cd:c3:3c:51:1f:4a:50:aa:18:e4:46:55:97:ce:a1:f9: 13:22:29:73:0c:8d:78:06:9d:aa:03:7e:c4:71:97:07:59:43: d7:7a:84:d7:4c:72:71:93:a7:b0:16:78:7b:01:71:d7:0b:3c: 35:81:7c:e0:cf:b4:05:6c:ae:20:cf:5b:13:5e:7f:e5:c8:98: 8e:bb:da:e4:00:89:35:6d:51:2a:0e:ad:9e:66:c2:54:d1:03: cc:a9:b2:ff:b5:b8:c8:e2:fa:f1:84:4f:ef:ea:ed:eb:d0:3a: aa:77:8a:b8:7e:5e:56:64:84:29:16:39:27:04:45:29:44:4f: f5:00:94:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ1ODkxMTAvBgNVBAUTKDQ1OENERENBM0U4RkI2NEM5RDFBMjM0OTI1MjhCQTc3 N0ZDREQyMzQwHhcNMjQwNjAxMDgzOTIxWhcNMjQwNjA4MDgzOTIxWjAYMRYwFAYD VQQDEw02NjVhZGUzOS1lNGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo592LS77JlvI2B4S5aFofvJzOU0/HH9BFrdkOZsdpMYtsPqZJmEgDc71y5Nh MPx1j+aHYzSkWRK/h65r1OM8fjPt7wM1uq7ZaS51FyoLA/Jcim/DrI/VrCHnKuAp BfQwaVZfWEXjdZHlU09A+F5xV1V3sio1C6qf7Ox7227TXt85+5JThsUu/eOvoRiu ip3+2uYKUeJce7cpQWhCkfWzeeKIh5PUpFBwYtLb/ireElgCue1Dhzt0Nfdf6BdL E9TNG69QpjD9vQ8e/kH24Q/6HU7putImgKGkrMudVTj4vlpuu9DSX21jKMljh1/z qjaIPAJi72NrGjCoDhy1aaD7owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5jWzcK 3xrEozKr3lIHt6DfLKkdMB8GA1UdIwQYMBaAFEWM3co+j7ZMnRojSSUound/zdI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDU4OS81RkM2MjdDNDYx QzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRreWRHaU5KSlNpNmQzX04w alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZemR5ajZQdGt5ZEdpTkpKU2k2ZDNfTjBqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDU4OS81RkM2MjdDNDYxQzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRr eWRHaU5KSlNpNmQzX04walEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfL7spsNnQ6owGHJpDBsOx+j5U4CwbybZXF4gHff5V2ylxzHa4/o6o QiCrz2/drZL9ATtK71p98zyRIc3YSK0Ub2QwbJN8NemON4X3LSLh6gOQu2/rh89e hb4m3aMFDUf8g5MBg6JnOagshQrQd1zUQBXkB7O1G8qmE7VWLfs3Gs3DPFEfSlCq GORGVZfOofkTIilzDI14Bp2qA37EcZcHWUPXeoTXTHJxk6ewFnh7AXHXCzw1gXzg z7QFbK4gz1sTXn/lyJiOu9rkAIk1bVEqDq2eZsJU0QPMqbL/tbjI4vrxhE/v6u3r 0Dqqd4q4fl5WZIQpFjknBEUpRE/1AJSD -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:18 2024 by rpki-client on console-ams.rpki-client.org