$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: U+P6NqPi5Gyvr9MaMDpDmB8tOE8xhN77MU8PM5vs99E= Subject key identifier: E6:90:6D:C4:59:0D:0F:FF:0B:0D:9A:A5:32:51:31:15:3A:40:E5:7D Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 0114 Signing time: Sun 19 May 2024 05:21:32 +0000 Manifest this update: Sun 19 May 2024 05:21:32 +0000 Manifest next update: Sun 26 May 2024 05:21:32 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: njz13ToUh3L8R3cGlPl8W94FUaCWDfIkrqw2thRzmiI=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: y/IwpYsi2Z5dT1V+QwVkRLz8/ghSFTIgN1Zav/eXCj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: May 19 05:21:32 2024 GMT Not After : May 26 05:21:32 2024 GMT Subject: CN=66498c5c-9465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:46:1e:6c:d2:c3:f8:8f:22:e1:ca:98:f5:00: 78:c5:2e:3a:99:d7:7b:79:86:63:1b:86:e3:e0:af: e2:c8:87:f9:d9:0c:c1:29:fc:cc:a8:b7:fa:da:4e: f0:21:ef:a8:24:8e:2e:55:73:07:8f:0f:9c:d0:a9: 4d:ef:68:6c:2e:6f:b6:39:ce:37:31:3e:db:44:05: 5f:01:a3:e7:f6:b3:32:f0:0e:88:a7:a9:ae:87:f8: 09:5c:f8:2d:b6:5e:93:54:ea:ad:7e:31:8e:0c:49: 62:20:c1:d6:20:94:a3:35:9b:f5:6e:d3:a7:45:19: 66:d1:65:ff:05:2c:4d:26:07:e3:2c:a3:c7:21:99: e1:45:92:4d:74:00:d0:b1:b2:da:e4:fe:f4:25:28: cc:de:16:8d:00:f1:ed:87:c4:ab:6a:00:9d:81:3f: 61:b3:3d:a2:73:29:d0:a4:e8:f8:91:d2:23:be:09: 7f:1a:7e:af:a3:a9:32:ab:d1:88:30:8d:94:3a:06: 29:9d:9b:24:f8:03:3e:56:9b:82:5b:1b:be:84:7d: f6:9d:3b:e1:31:46:ca:74:f1:1e:0e:a5:5a:23:b1: f5:0c:48:03:b1:32:87:c8:0b:6e:95:ac:17:af:6a: 29:cc:ef:f1:e1:87:d3:97:e5:23:2e:7e:d9:28:91: d8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:90:6D:C4:59:0D:0F:FF:0B:0D:9A:A5:32:51:31:15:3A:40:E5:7D X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:95:84:db:d9:19:22:1f:be:6d:99:e0:48:a1:42:f3:30:83: 85:dd:fe:39:2b:d8:ac:3e:53:e9:9d:43:b9:41:83:e1:db:ba: cd:4f:7e:f4:98:83:c6:e3:2e:8d:d3:cc:3b:f1:5f:ba:d7:ea: c9:2c:10:ca:93:51:3b:c1:b3:b7:73:ee:4e:f7:6a:29:1a:33: a8:05:87:70:26:20:ec:c9:16:c3:ee:19:8f:c4:7a:db:41:29: ec:01:34:be:f0:d4:1a:ff:60:8b:b4:a8:8e:e0:54:8d:8f:a8: 7a:dc:9c:77:81:e7:4b:d4:2f:74:28:a7:11:e9:ee:b1:df:4a: fb:9e:13:60:2d:05:29:f9:b5:9e:4b:f0:32:b2:70:1b:a7:32: b8:35:d2:e5:c0:38:61:0d:ba:9a:5e:bb:27:08:d2:88:7b:a1: 41:cc:82:24:04:9d:1d:2a:3a:38:e5:cb:83:f2:b9:bb:8c:2f: e0:d9:73:63:92:55:01:01:88:8e:74:9a:08:b6:17:d1:58:6c: a2:e3:89:8f:f0:a2:8f:f7:35:46:5b:6d:43:c8:0a:80:be:c9: aa:f9:44:1c:c2:ee:da:44:a2:fe:5a:c9:eb:e7:f9:d0:21:90: 2a:23:9b:80:0e:5a:de:7f:93:29:8f:fa:e0:f9:db:66:25:e0: 11:9a:de:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjQwNTE5MDUyMTMyWhcNMjQwNTI2MDUyMTMyWjAYMRYwFAYD VQQDEw02NjQ5OGM1Yy05NDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6UYebNLD+I8i4cqY9QB4xS46mdd7eYZjG4bj4K/iyIf52QzBKfzMqLf62k7w Ie+oJI4uVXMHjw+c0KlN72hsLm+2Oc43MT7bRAVfAaPn9rMy8A6Ip6muh/gJXPgt tl6TVOqtfjGODEliIMHWIJSjNZv1btOnRRlm0WX/BSxNJgfjLKPHIZnhRZJNdADQ sbLa5P70JSjM3haNAPHth8SragCdgT9hsz2icynQpOj4kdIjvgl/Gn6vo6kyq9GI MI2UOgYpnZsk+AM+VpuCWxu+hH32nTvhMUbKdPEeDqVaI7H1DEgDsTKHyAtulawX r2opzO/x4YfTl+UjLn7ZKJHYsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaQbcRZ DQ//Cw2apTJRMRU6QOV9MB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtlYTb2RkiH75tmeBIoULzMIOF3f45K9isPlPpnUO5QYPh27rNT370 mIPG4y6N08w78V+61+rJLBDKk1E7wbO3c+5O92opGjOoBYdwJiDsyRbD7hmPxHrb QSnsATS+8NQa/2CLtKiO4FSNj6h63Jx3gedL1C90KKcR6e6x30r7nhNgLQUp+bWe S/AysnAbpzK4NdLlwDhhDbqaXrsnCNKIe6FBzIIkBJ0dKjo45cuD8rm7jC/g2XNj klUBAYiOdJoIthfRWGyi44mP8KKP9zVGW21DyAqAvsmq+UQcwu7aRKL+Wsnr5/nQ IZAqI5uADlref5Mpj/rg+dtmJeARmt6B -----END CERTIFICATE-----Generated at Sun May 19 05:48:51 2024 by rpki-client on console-fra.rpki-client.org