$ rpki-client -vvf rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft File: Ys-2EOllD-PIACvGF7cFck0qAt0.mft (raw, json) Hash identifier: hFNXoVg1lYh5e1EogmUAnAU3tzIm4zqwwSaLz3S8vyk= Subject key identifier: E1:55:5F:7F:BD:E7:A9:32:64:9D:C0:3F:B5:1D:5A:35:46:36:CC:6C Authority key identifier: 62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD Certificate issuer: /CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Certificate serial: 1762 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft Manifest number: 1756 Signing time: Sat 18 May 2024 17:02:08 +0000 Manifest this update: Sat 18 May 2024 17:02:07 +0000 Manifest next update: Sat 25 May 2024 17:02:07 +0000 Files and hashes: 1: Ys-2EOllD-PIACvGF7cFck0qAt0.crl (hash: ivtgCq+6s1wC5MZAuIuVC5ZwzxxI2W4g0tzYvnJTINE=) 2: C1C12662CFC811EB9A5C5879C4F9AE02.roa (hash: NtyIg/qsbxBW29uVmnc48ijTWNNWD33eAJJJQi88bGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5986 (0x1762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Validity Not Before: May 18 17:02:07 2024 GMT Not After : May 25 17:02:07 2024 GMT Subject: CN=6648df10-ad79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ce:ce:b1:03:20:ca:d5:94:54:34:ca:40:41: 8a:2e:40:3a:b3:eb:d7:4b:ab:37:34:d2:c8:55:91: c3:e1:08:14:e2:3c:ea:59:c7:14:cd:89:91:a5:f2: 14:2f:85:ad:b9:51:ce:2a:82:46:96:7e:0a:f9:0d: cb:23:a2:67:2d:34:7c:e6:b0:b5:ff:6a:ea:96:0d: 89:c2:d1:94:98:96:d8:98:80:cc:08:f2:8b:94:65: 56:61:5c:3d:12:db:ae:1a:a3:92:5a:6e:d9:af:3d: ec:6c:3e:f3:22:7d:b6:ac:06:65:dc:70:88:7c:43: 03:6a:65:c3:e8:6e:bb:db:15:da:a9:c3:03:0a:7c: 1c:5d:b7:c1:50:ce:57:ef:b9:63:fa:dc:68:d0:b9: 25:1d:1c:46:e8:7e:0a:fd:8c:c1:fa:3c:b4:50:df: e0:d9:24:5f:3d:c7:77:c2:92:a7:8d:87:14:a3:4b: 37:5b:82:7e:80:13:22:51:d4:7f:86:b7:66:e7:34: e4:02:65:40:e4:c2:62:9e:72:43:62:99:95:39:52: b0:4a:96:19:f7:ce:cd:3c:c9:67:24:1b:2c:4c:31: 8d:56:77:d5:36:7e:98:18:f6:63:f6:a3:01:78:53: 48:99:5f:0d:8e:2f:52:d9:17:54:88:f3:f8:83:4a: 29:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:55:5F:7F:BD:E7:A9:32:64:9D:C0:3F:B5:1D:5A:35:46:36:CC:6C X509v3 Authority Key Identifier: keyid:62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:c0:f8:0f:99:80:2c:3c:93:3c:35:05:0f:2f:47:07:2b:a7: cf:8b:6e:ac:60:7d:ba:08:fb:40:18:1e:1c:18:b8:8d:ed:96: 94:21:ed:5e:b5:01:ca:a7:31:77:c3:da:d6:3e:93:7c:27:c6: 1a:9b:26:a4:1b:8a:01:9a:13:af:cb:20:5b:4e:24:fd:df:94: e1:f5:66:3c:7f:17:2a:6e:16:c6:8f:ff:0b:85:ee:ca:5d:21: 6f:a5:ab:37:bb:6c:cf:a3:6f:6b:c1:05:65:1e:c2:11:3d:db: d0:8e:1b:83:81:62:bb:0a:60:13:1b:2d:1b:05:84:69:ef:c6: 27:29:b8:d3:c8:3e:77:73:80:89:8a:b5:9c:ae:ff:20:32:3b: 1f:b1:28:a2:0c:21:93:46:f1:00:a0:0f:77:71:76:d0:49:26: ef:cd:be:a9:16:cd:9a:88:65:43:1e:83:af:94:43:e7:15:2b: 92:c8:63:d6:07:f1:3f:71:43:d6:4f:77:0e:70:7f:30:f2:7a: d8:e6:0d:84:59:1e:d2:99:49:ef:2a:38:c4:29:8d:9b:f4:dc: ec:5a:c1:af:63:76:41:87:14:78:fb:fa:4c:b7:2e:83:3b:17: 18:d4:e8:06:eb:9c:16:53:ee:25:1c:76:8e:13:6a:10:30:ed: 55:a9:d9:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxQjExMTAvBgNVBAUTKDYyQ0ZCNjEwRTk2NTBGRTNDODAwMkJDNjE3QjcwNTcy NEQyQTAyREQwHhcNMjQwNTE4MTcwMjA3WhcNMjQwNTI1MTcwMjA3WjAYMRYwFAYD VQQDEw02NjQ4ZGYxMC1hZDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA087OsQMgytWUVDTKQEGKLkA6s+vXS6s3NNLIVZHD4QgU4jzqWccUzYmRpfIU L4WtuVHOKoJGln4K+Q3LI6JnLTR85rC1/2rqlg2JwtGUmJbYmIDMCPKLlGVWYVw9 EtuuGqOSWm7Zrz3sbD7zIn22rAZl3HCIfEMDamXD6G672xXaqcMDCnwcXbfBUM5X 77lj+txo0LklHRxG6H4K/YzB+jy0UN/g2SRfPcd3wpKnjYcUo0s3W4J+gBMiUdR/ hrdm5zTkAmVA5MJinnJDYpmVOVKwSpYZ987NPMlnJBssTDGNVnfVNn6YGPZj9qMB eFNImV8Nji9S2RdUiPP4g0opgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFVX3+9 56kyZJ3AP7UdWjVGNsxsMB8GA1UdIwQYMBaAFGLPthDpZQ/jyAArxhe3BXJNKgLd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjFCMS9BMEYwQURGMEIy NTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQtUElBQ3ZHRjdjRmNrMHFB dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzLTJFT2xsRC1QSUFDdkdGN2NGY2swcUF0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjFCMS9BMEYwQURGMEIyNTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQt UElBQ3ZHRjdjRmNrMHFBdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0wPgPmYAsPJM8NQUPL0cHK6fPi26sYH26CPtAGB4cGLiN7ZaUIe1e tQHKpzF3w9rWPpN8J8YamyakG4oBmhOvyyBbTiT935Th9WY8fxcqbhbGj/8Lhe7K XSFvpas3u2zPo29rwQVlHsIRPdvQjhuDgWK7CmATGy0bBYRp78YnKbjTyD53c4CJ irWcrv8gMjsfsSiiDCGTRvEAoA93cXbQSSbvzb6pFs2aiGVDHoOvlEPnFSuSyGPW B/E/cUPWT3cOcH8w8nrY5g2EWR7SmUnvKjjEKY2b9NzsWsGvY3ZBhxR4+/pMty6D OxcY1OgG65wWU+4lHHaOE2oQMO1VqdmZ -----END CERTIFICATE-----Generated at Sat May 18 17:37:33 2024 by rpki-client on console-fra.rpki-client.org