$ rpki-client -vvf rpki.apnic.net/member_repository/A9177BBE/4659591C02A411ED87D29C87C4F9AE02/yGKAiFiS3bSQ2a8Kwd0thu-bO-U.mft File: yGKAiFiS3bSQ2a8Kwd0thu-bO-U.mft (raw, json) Hash identifier: tyJsLPqdepVvcmvcY1MmK50y0Y8tnVAus72Lgd5XCRY= Subject key identifier: 74:0D:E6:A3:62:8B:AA:CF:C1:6D:4E:F5:1F:E8:8D:3A:6F:98:14:87 Authority key identifier: C8:62:80:88:58:92:DD:B4:90:D9:AF:0A:C1:DD:2D:86:EF:9B:3B:E5 Certificate issuer: /CN=A9177BBE/serialNumber=C86280885892DDB490D9AF0AC1DD2D86EF9B3BE5 Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yGKAiFiS3bSQ2a8Kwd0thu-bO-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177BBE/4659591C02A411ED87D29C87C4F9AE02/yGKAiFiS3bSQ2a8Kwd0thu-bO-U.mft Manifest number: 01D8 Signing time: Sun 19 May 2024 22:38:06 +0000 Manifest this update: Sun 19 May 2024 22:38:06 +0000 Manifest next update: Sun 26 May 2024 22:38:06 +0000 Files and hashes: 1: yGKAiFiS3bSQ2a8Kwd0thu-bO-U.crl (hash: aG5BhgY1oxvATX6On0K8epA/cBaO4fTd4WWiTiEDMzk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177BBE/4659591C02A411ED87D29C87C4F9AE02/yGKAiFiS3bSQ2a8Kwd0thu-bO-U.crl rsync://rpki.apnic.net/member_repository/A9177BBE/4659591C02A411ED87D29C87C4F9AE02/yGKAiFiS3bSQ2a8Kwd0thu-bO-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yGKAiFiS3bSQ2a8Kwd0thu-bO-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 19:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177BBE/serialNumber=C86280885892DDB490D9AF0AC1DD2D86EF9B3BE5 Validity Not Before: May 19 22:38:06 2024 GMT Not After : May 26 22:38:06 2024 GMT Subject: CN=664a7f4e-6d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fd:b0:1f:a3:31:94:65:2b:5f:a1:69:9f:ca: 8a:a9:89:03:a0:8c:93:ff:fc:3b:44:f6:a9:52:3a: 37:8c:d5:b5:fb:e8:34:a9:5e:19:0d:9b:4b:37:05: d6:3e:7d:41:e0:66:8b:be:18:f3:5a:4f:fc:fd:f5: ba:c4:c0:70:52:76:03:ff:09:df:0e:71:aa:0e:11: c2:8d:33:07:f1:fb:f9:a5:96:44:28:af:fe:95:1f: 68:32:3b:38:c7:08:64:e5:0c:cd:c2:60:e3:bb:b1: b6:4f:25:e8:1c:6c:94:37:cc:ea:28:e4:5a:0d:83: 80:c8:95:7d:52:e8:ec:c2:3a:fc:b4:61:c9:d8:3b: ea:83:87:eb:0a:a0:21:2b:6c:55:74:78:43:52:bd: 16:3a:c0:4e:29:dd:0f:47:89:52:a8:23:3b:c4:02: ff:24:4d:cc:b5:f8:30:d4:ee:5e:22:a2:05:3b:85: f4:87:a1:3c:97:17:63:1e:84:00:8c:f2:1f:1b:f6: 63:b3:e1:ca:3e:4c:39:62:85:08:5d:7c:21:d0:95: f0:21:d7:92:a3:be:af:5c:80:56:5f:f9:d8:4c:21: 53:bb:d8:f3:3d:9d:e9:79:f8:22:c2:7c:5e:a6:f2: d8:9a:2c:ad:16:33:72:af:c7:01:52:6a:73:b6:fa: a8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:0D:E6:A3:62:8B:AA:CF:C1:6D:4E:F5:1F:E8:8D:3A:6F:98:14:87 X509v3 Authority Key Identifier: keyid:C8:62:80:88:58:92:DD:B4:90:D9:AF:0A:C1:DD:2D:86:EF:9B:3B:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177BBE/4659591C02A411ED87D29C87C4F9AE02/yGKAiFiS3bSQ2a8Kwd0thu-bO-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yGKAiFiS3bSQ2a8Kwd0thu-bO-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177BBE/4659591C02A411ED87D29C87C4F9AE02/yGKAiFiS3bSQ2a8Kwd0thu-bO-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:fa:90:7d:5e:ec:c2:12:4d:7b:87:c8:2b:46:96:07:0e:f9: a7:69:0e:02:8f:14:30:25:86:4b:60:51:1a:1c:6d:ca:c4:d8: 41:58:04:4d:cd:75:c3:9a:fb:b4:51:51:e4:ce:05:7a:d5:76: a5:8d:4a:8a:f9:b6:a8:18:93:05:1b:fa:9f:da:6b:06:53:4e: 9f:8c:86:80:47:b4:5d:af:bc:c2:03:65:62:3a:8b:49:4c:b5: 9b:e3:82:86:f5:92:a3:5a:ee:f4:09:76:c3:0d:c2:40:03:7f: 14:90:db:76:dc:8a:9f:ec:cd:3e:74:ad:38:4d:9a:ad:d6:a3: ef:7f:46:e0:07:9b:35:01:d7:67:0c:34:b9:b7:09:21:20:4d: c5:c5:f4:61:86:02:70:eb:ba:9c:ae:25:c6:64:d7:68:9e:4f: 01:61:3b:81:65:15:cb:53:35:5b:38:20:33:00:35:8b:a4:84: 69:82:1f:2e:a7:a2:b7:e5:98:02:e9:0b:07:91:c4:b2:bc:80: 2a:13:71:9d:1a:86:c0:1a:2c:38:3f:fa:3d:93:9d:20:63:b2: 10:30:db:25:b0:28:5d:8d:2d:99:f1:b0:f5:44:34:eb:78:5d: 81:82:6f:60:2e:f8:36:1e:19:b3:61:2e:a9:15:ca:9b:86:11: e7:0e:1e:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdCQkUxMTAvBgNVBAUTKEM4NjI4MDg4NTg5MkREQjQ5MEQ5QUYwQUMxREQyRDg2 RUY5QjNCRTUwHhcNMjQwNTE5MjIzODA2WhcNMjQwNTI2MjIzODA2WjAYMRYwFAYD VQQDEw02NjRhN2Y0ZS02ZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsv2wH6MxlGUrX6Fpn8qKqYkDoIyT//w7RPapUjo3jNW1++g0qV4ZDZtLNwXW Pn1B4GaLvhjzWk/8/fW6xMBwUnYD/wnfDnGqDhHCjTMH8fv5pZZEKK/+lR9oMjs4 xwhk5QzNwmDju7G2TyXoHGyUN8zqKORaDYOAyJV9Uujswjr8tGHJ2Dvqg4frCqAh K2xVdHhDUr0WOsBOKd0PR4lSqCM7xAL/JE3Mtfgw1O5eIqIFO4X0h6E8lxdjHoQA jPIfG/Zjs+HKPkw5YoUIXXwh0JXwIdeSo76vXIBWX/nYTCFTu9jzPZ3pefgiwnxe pvLYmiytFjNyr8cBUmpztvqoewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQN5qNi i6rPwW1O9R/ojTpvmBSHMB8GA1UdIwQYMBaAFMhigIhYkt20kNmvCsHdLYbvmzvl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0JCRS80NjU5NTkxQzAy QTQxMUVEODdEMjlDODdDNEY5QUUwMi95R0tBaUZpUzNiU1EyYThLd2QwdGh1LWJP LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lHS0FpRmlTM2JTUTJhOEt3ZDB0aHUtYk8tVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0JCRS80NjU5NTkxQzAyQTQxMUVEODdEMjlDODdDNEY5QUUwMi95R0tBaUZpUzNi U1EyYThLd2QwdGh1LWJPLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR+pB9XuzCEk17h8grRpYHDvmnaQ4CjxQwJYZLYFEaHG3KxNhBWARN zXXDmvu0UVHkzgV61XaljUqK+baoGJMFG/qf2msGU06fjIaAR7Rdr7zCA2ViOotJ TLWb44KG9ZKjWu70CXbDDcJAA38UkNt23Iqf7M0+dK04TZqt1qPvf0bgB5s1Addn DDS5twkhIE3FxfRhhgJw67qcriXGZNdonk8BYTuBZRXLUzVbOCAzADWLpIRpgh8u p6K35ZgC6QsHkcSyvIAqE3GdGobAGiw4P/o9k50gY7IQMNslsChdjS2Z8bD1RDTr eF2Bgm9gLvg2HhmzYS6pFcqbhhHnDh7/ -----END CERTIFICATE-----Generated at Sun May 19 23:42:29 2024 by rpki-client on console-fra.rpki-client.org