$ rpki-client -vvf rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft File: ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft (raw, json) Hash identifier: CROhtm/Y4YpEDEmmrH/aiqXtUfMDcLUO2Zh6hVs3aLs= Subject key identifier: 45:89:2C:8C:FB:2A:95:E5:2A:77:BF:42:86:B1:92:73:11:1B:07:46 Authority key identifier: CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 Certificate issuer: /CN=A9193037/serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Certificate serial: 083D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft Manifest number: 0836 Signing time: Sat 18 May 2024 21:45:45 +0000 Manifest this update: Sat 18 May 2024 21:45:45 +0000 Manifest next update: Sat 25 May 2024 21:45:45 +0000 Files and hashes: 1: ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl (hash: V77XejwB/BgEUFDozUlio+gqjsq8eeRt70yciH4GDcU=) 2: D9C523A0B05A11EAA233021EC4F9AE02.roa (hash: d7eZQhXl7uffo6qAEcA6YYcZjXgyj7hlZJtD1IB1s1s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2109 (0x83d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193037/serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Validity Not Before: May 18 21:45:45 2024 GMT Not After : May 25 21:45:45 2024 GMT Subject: CN=66492189-1218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:a9:be:cd:09:64:75:a0:e1:2f:a5:74:67:a1: 2a:7c:0b:c2:99:5d:67:b8:b5:6d:e2:3d:d8:a1:66: c2:6b:c7:ee:98:0a:1c:ab:5c:17:69:bc:1b:85:09: 03:ec:11:55:af:ed:dd:a0:f0:a4:4f:be:c3:30:fc: 4d:3f:a1:4b:33:b9:b6:e8:a0:d2:d8:67:60:33:4d: 56:25:ca:82:c4:2e:d3:b7:a1:8e:3e:08:c4:50:54: 23:6f:f7:91:ee:52:44:d3:2f:68:73:2d:e3:d9:c1: 1d:24:e4:f5:eb:2c:48:61:ca:29:95:46:2f:c1:58: f3:83:f1:20:cf:f8:e4:0f:8c:60:1e:83:20:44:8b: 1c:ab:58:c2:31:c5:4a:e0:51:11:19:72:a4:19:6b: 4e:83:a3:25:55:79:5f:70:9f:1e:af:41:12:11:b9: 34:48:47:a0:45:7b:e6:41:75:84:db:16:1c:8e:24: f6:2c:e9:66:a3:2b:1a:c5:f8:3d:a2:ff:19:7a:df: f2:48:83:15:03:3f:de:ab:85:fe:fb:30:c2:78:da: c0:da:66:b6:11:76:16:9a:b9:d6:03:d3:03:7a:b4: 7d:3f:39:8c:df:3e:15:1e:f9:2f:96:49:29:73:95: 3a:a0:0b:ae:d4:71:e6:fb:cf:63:2b:b2:97:f7:e3: d5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:89:2C:8C:FB:2A:95:E5:2A:77:BF:42:86:B1:92:73:11:1B:07:46 X509v3 Authority Key Identifier: keyid:CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:b4:c8:c9:fb:dc:41:95:d6:60:92:39:61:d7:da:cf:e1:04: 0d:ea:a7:18:e2:0f:f9:e4:47:64:b3:45:a9:0b:0a:8b:76:5f: 01:8f:1b:a9:a8:29:1f:1c:92:82:72:45:64:8b:57:f4:42:7f: da:7a:9f:01:48:40:60:9b:f7:ca:76:4d:f5:82:c8:2b:56:e1: 81:35:d2:bc:0a:d8:40:ad:ea:0d:21:4f:e8:21:75:94:3f:4b: cf:b2:74:1c:47:95:17:04:df:10:5e:2a:49:10:f9:0f:e8:03: ba:24:65:5b:bf:96:27:1d:e6:dd:6d:7b:e5:45:07:87:bd:f8: 09:b3:4e:8e:fe:32:0c:95:0f:1a:8b:e4:ff:fd:63:54:78:69: 42:8d:7f:d7:0c:15:06:74:29:a6:e3:9f:84:f7:4f:d2:e0:3c: 2e:7b:2a:e0:23:f0:17:50:c7:a9:db:a0:90:0b:d9:2b:bc:1d: 02:4b:4d:78:ca:a0:ae:9a:54:0f:9b:f1:95:86:fa:fe:68:33: 64:d9:08:ad:78:6e:51:13:c3:c5:c9:d7:d7:37:70:14:c1:97: a8:1d:96:20:d3:bc:db:cf:f5:db:79:71:f9:43:5a:7b:36:f1: c3:e1:a7:b5:bd:38:73:40:cf:7f:47:24:f2:9b:98:dd:f4:9f: f5:fd:02:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwMzcxMTAvBgNVBAUTKENBOTU1OTE0Rjk4QjJGQzkxNkE0NTEyREE3MkFCNzVB MTFDNTJCRDAwHhcNMjQwNTE4MjE0NTQ1WhcNMjQwNTI1MjE0NTQ1WjAYMRYwFAYD VQQDEw02NjQ5MjE4OS0xMjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9am+zQlkdaDhL6V0Z6EqfAvCmV1nuLVt4j3YoWbCa8fumAocq1wXabwbhQkD 7BFVr+3doPCkT77DMPxNP6FLM7m26KDS2GdgM01WJcqCxC7Tt6GOPgjEUFQjb/eR 7lJE0y9ocy3j2cEdJOT16yxIYcoplUYvwVjzg/Egz/jkD4xgHoMgRIscq1jCMcVK 4FERGXKkGWtOg6MlVXlfcJ8er0ESEbk0SEegRXvmQXWE2xYcjiT2LOlmoysaxfg9 ov8Zet/ySIMVAz/eq4X++zDCeNrA2ma2EXYWmrnWA9MDerR9PzmM3z4VHvkvlkkp c5U6oAuu1HHm+89jK7KX9+PVqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWJLIz7 KpXlKne/QoaxknMRGwdGMB8GA1UdIwQYMBaAFMqVWRT5iy/JFqRRLacqt1oRxSvQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzAzNy85NDBFNDZCNEFB QkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4a1dwRkV0cHlxM1doSEZL OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwVlpGUG1MTDhrV3BGRXRweXEzV2hIRks5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzAzNy85NDBFNDZCNEFBQkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4 a1dwRkV0cHlxM1doSEZLOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZtMjJ+9xBldZgkjlh19rP4QQN6qcY4g/55Edks0WpCwqLdl8Bjxup qCkfHJKCckVki1f0Qn/aep8BSEBgm/fKdk31gsgrVuGBNdK8CthAreoNIU/oIXWU P0vPsnQcR5UXBN8QXipJEPkP6AO6JGVbv5YnHebdbXvlRQeHvfgJs06O/jIMlQ8a i+T//WNUeGlCjX/XDBUGdCmm45+E90/S4DwueyrgI/AXUMep26CQC9krvB0CS014 yqCumlQPm/GVhvr+aDNk2QiteG5RE8PFydfXN3AUwZeoHZYg07zbz/XbeXH5Q1p7 NvHD4ae1vThzQM9/RyTym5jd9J/1/QLS -----END CERTIFICATE-----Generated at Sun May 19 00:16:17 2024 by rpki-client on console-fra.rpki-client.org