$ rpki-client -vvf rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft File: YRQatT_Urx2yqGr-fsj-yX1eodU.mft (raw, json) Hash identifier: ut45/IxuF5LOh3HE6Ft+8emBJuIwCWhKZQTi05WiaVc= Subject key identifier: BF:1E:13:C7:F1:F7:FD:89:1E:4B:AD:76:8D:D2:AF:C4:CA:47:61:3E Authority key identifier: 61:14:1A:B5:3F:D4:AF:1D:B2:A8:6A:FE:7E:C8:FE:C9:7D:5E:A1:D5 Certificate issuer: /CN=A918DEF0/serialNumber=61141AB53FD4AF1DB2A86AFE7EC8FEC97D5EA1D5 Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft Manifest number: AF Signing time: Sun 19 May 2024 06:35:10 +0000 Manifest this update: Sun 19 May 2024 06:35:09 +0000 Manifest next update: Sun 26 May 2024 06:35:09 +0000 Files and hashes: 1: YRQatT_Urx2yqGr-fsj-yX1eodU.crl (hash: dRmcaORRz5L8HAcFrZpf+I0wA5XOMUuMvTJ6RpLlapA=) 2: 6CE958B60A6E11EEA48F3036C4F9AE02.roa (hash: pnP8HGWyh4IaDoH3gtVkiqLPQPUCIyMk/JTjHMVioyQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.crl rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DEF0/serialNumber=61141AB53FD4AF1DB2A86AFE7EC8FEC97D5EA1D5 Validity Not Before: May 19 06:35:09 2024 GMT Not After : May 26 06:35:09 2024 GMT Subject: CN=66499d9d-2d9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fc:7c:26:40:d6:2e:98:ce:75:71:d7:cb:78: f4:d9:c7:92:a2:35:fd:f0:f3:8a:d4:9c:b6:c1:c3: 00:94:06:87:8a:c3:f9:dd:6e:cd:1c:31:b7:53:24: 9d:fe:11:14:72:80:0f:25:86:20:9f:d5:d4:ec:ab: 0f:5a:38:74:84:0b:88:f8:83:14:2b:f0:22:3b:f8: 39:fa:64:b8:82:48:84:3d:be:8c:43:61:2e:81:d5: 5b:64:34:42:11:0d:d1:2c:17:22:98:16:c5:a6:88: 3b:05:45:65:65:0b:49:ee:07:42:f0:ed:af:e5:77: d6:69:37:43:89:26:7e:af:3d:e3:a0:63:cc:4d:39: 88:f3:1c:c6:7e:95:6f:d2:c6:48:3b:76:1b:e9:ce: 9f:57:e9:56:94:68:7e:98:86:32:de:0d:75:28:9a: 0f:63:a8:3e:90:8a:57:8d:d0:ba:26:bc:a4:d4:a9: f0:8d:2b:2a:01:0e:6c:5d:ea:39:06:60:af:bc:ee: eb:cb:a7:96:eb:ea:bf:42:f5:6c:da:86:27:89:d1: ef:78:65:f3:94:6e:29:de:e5:32:c6:85:b1:31:10: e7:67:8c:02:45:52:b4:b8:73:02:73:fa:b4:a9:07: 48:24:fb:e7:62:e4:fb:e6:9b:1f:01:5a:14:b0:ae: 11:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:1E:13:C7:F1:F7:FD:89:1E:4B:AD:76:8D:D2:AF:C4:CA:47:61:3E X509v3 Authority Key Identifier: keyid:61:14:1A:B5:3F:D4:AF:1D:B2:A8:6A:FE:7E:C8:FE:C9:7D:5E:A1:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:56:05:fa:87:fe:11:b4:28:48:7d:a4:44:68:d0:5e:8f:36: a1:4e:13:65:26:02:b7:50:58:5d:7f:e6:4c:88:2f:43:78:c8: 42:3d:d6:2c:64:e0:2a:f1:03:3b:67:d5:03:53:60:2d:9d:6e: 4d:f0:1a:51:50:58:a8:13:96:97:20:89:98:54:35:e7:cf:62: 07:19:29:63:a9:70:93:66:8d:f6:52:64:f6:37:6d:fa:3e:7b: 01:b7:7d:65:08:49:6a:08:63:84:33:74:61:61:3d:ac:58:dc: d0:11:b6:5f:26:33:94:b2:53:c1:79:7d:2a:4b:7b:84:11:c2: 94:87:2c:ac:e1:a0:a9:a6:91:9f:eb:49:25:da:6f:c6:e6:69: 5f:d0:11:f1:ab:76:3d:e7:e5:c7:1e:4d:5c:84:b1:28:a6:31: b2:c0:41:4e:f3:b8:a6:bf:a8:50:c5:f2:e0:e3:2c:98:39:db: b7:4b:3f:8d:be:2c:fe:2a:2a:95:e1:07:67:35:4d:5e:7e:48: fd:10:b0:2e:c9:d8:d4:90:c0:a1:0e:a0:d1:d7:57:a9:1d:a0: de:3e:ec:08:5d:80:55:33:22:ff:6a:95:2b:ac:74:ba:32:65: c4:cb:df:47:43:4e:4a:6c:a1:20:8b:68:6a:d7:b7:86:e0:24: 97:79:a3:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERFRjAxMTAvBgNVBAUTKDYxMTQxQUI1M0ZENEFGMURCMkE4NkFGRTdFQzhGRUM5 N0Q1RUExRDUwHhcNMjQwNTE5MDYzNTA5WhcNMjQwNTI2MDYzNTA5WjAYMRYwFAYD VQQDEw02NjQ5OWQ5ZC0yZDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvx8JkDWLpjOdXHXy3j02ceSojX98POK1Jy2wcMAlAaHisP53W7NHDG3UySd /hEUcoAPJYYgn9XU7KsPWjh0hAuI+IMUK/AiO/g5+mS4gkiEPb6MQ2EugdVbZDRC EQ3RLBcimBbFpog7BUVlZQtJ7gdC8O2v5XfWaTdDiSZ+rz3joGPMTTmI8xzGfpVv 0sZIO3Yb6c6fV+lWlGh+mIYy3g11KJoPY6g+kIpXjdC6Jryk1KnwjSsqAQ5sXeo5 BmCvvO7ry6eW6+q/QvVs2oYnidHveGXzlG4p3uUyxoWxMRDnZ4wCRVK0uHMCc/q0 qQdIJPvnYuT75psfAVoUsK4RYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8eE8fx 9/2JHkutdo3Sr8TKR2E+MB8GA1UdIwQYMBaAFGEUGrU/1K8dsqhq/n7I/sl9XqHV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REVGMC84MjAzMDlDMjBB NUYxMUVFQjRGRUQyNjVDNEY5QUUwMi9ZUlFhdFRfVXJ4MnlxR3ItZnNqLXlYMWVv ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSUWF0VF9VcngyeXFHci1mc2oteVgxZW9kVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REVGMC84MjAzMDlDMjBBNUYxMUVFQjRGRUQyNjVDNEY5QUUwMi9ZUlFhdFRfVXJ4 MnlxR3ItZnNqLXlYMWVvZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDVgX6h/4RtChIfaREaNBejzahThNlJgK3UFhdf+ZMiC9DeMhCPdYs ZOAq8QM7Z9UDU2AtnW5N8BpRUFioE5aXIImYVDXnz2IHGSljqXCTZo32UmT2N236 PnsBt31lCElqCGOEM3RhYT2sWNzQEbZfJjOUslPBeX0qS3uEEcKUhyys4aCpppGf 60kl2m/G5mlf0BHxq3Y95+XHHk1chLEopjGywEFO87imv6hQxfLg4yyYOdu3Sz+N viz+KiqV4QdnNU1efkj9ELAuydjUkMChDqDR11epHaDePuwIXYBVMyL/apUrrHS6 MmXEy99HQ05KbKEgi2hq17eG4CSXeaNL -----END CERTIFICATE-----Generated at Sun May 19 08:25:03 2024 by rpki-client on console-ams.rpki-client.org