$ rpki-client -vvf rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.mft File: yddu42nMHPDmKcUQpLr0ZeFfteE.mft (raw, json) Hash identifier: HAiKibVpcSTMTWO8mPBsKK2g1Pzo3WAFe+fPcGsy/1A= Subject key identifier: 71:BE:99:6D:49:2C:90:2D:64:8E:E2:D6:4A:0E:E1:5F:CD:37:2F:82 Authority key identifier: C9:D7:6E:E3:69:CC:1C:F0:E6:29:C5:10:A4:BA:F4:65:E1:5F:B5:E1 Certificate issuer: /CN=A9194E59/serialNumber=C9D76EE369CC1CF0E629C510A4BAF465E15FB5E1 Certificate serial: 0357 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yddu42nMHPDmKcUQpLr0ZeFfteE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.mft Manifest number: 0353 Signing time: Sun 19 May 2024 02:54:08 +0000 Manifest this update: Sun 19 May 2024 02:54:08 +0000 Manifest next update: Sun 26 May 2024 02:54:08 +0000 Files and hashes: 1: yddu42nMHPDmKcUQpLr0ZeFfteE.crl (hash: MC8hgbxZBz9OJBdcIn5MiLwzvWhfJXzE8nObBwvgEuc=) 2: AD9D02406C6811ECB7C0925AC4F9AE02.roa (hash: 3m69N55k503nBZXkA2Wc4jTSELjgmgkJcqb5mw8T6ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.crl rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yddu42nMHPDmKcUQpLr0ZeFfteE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 855 (0x357) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194E59/serialNumber=C9D76EE369CC1CF0E629C510A4BAF465E15FB5E1 Validity Not Before: May 19 02:54:08 2024 GMT Not After : May 26 02:54:08 2024 GMT Subject: CN=664969d0-b2af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:04:bf:e4:26:21:f4:4f:12:0c:e2:46:1c:2c: 99:e2:ea:d9:39:3e:5a:55:35:38:e4:61:67:0e:cd: db:d1:40:6f:0f:ec:aa:a0:f8:56:77:ec:3e:55:0b: 2a:f6:61:7f:b7:ea:13:e0:b0:aa:c2:99:bd:70:3d: 81:49:b1:1b:93:d4:ee:44:c9:d9:4d:56:12:b3:13: dd:f8:00:47:33:c1:d1:8b:9b:1f:1c:58:9b:64:91: a3:8b:c2:06:e9:47:72:69:ad:34:3a:54:46:b1:81: 93:5d:3d:a2:6c:21:23:ab:8a:91:24:76:66:40:d0: 9c:26:bf:f2:fc:d1:24:79:82:af:46:a5:4c:99:25: 78:35:d4:91:fd:d9:43:55:be:c3:27:bd:95:56:93: f9:65:d0:64:6d:76:a8:0d:b8:f1:e3:b7:1a:64:cd: 8c:6c:87:86:83:f7:a6:ed:ce:13:ef:d5:64:64:f6: ed:81:b6:03:64:d4:03:88:b7:2a:d9:06:6e:f4:25: 64:7e:1b:1e:40:a4:00:dd:bb:c9:27:60:b7:1b:ce: 4c:c4:09:12:29:86:a8:1a:7e:d7:d6:40:d1:2b:30: a5:33:60:b7:10:cb:3f:55:6c:fb:db:d7:ae:a9:2f: 37:32:8a:f8:75:9a:8d:81:62:ec:a7:58:59:d5:b2: 61:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:BE:99:6D:49:2C:90:2D:64:8E:E2:D6:4A:0E:E1:5F:CD:37:2F:82 X509v3 Authority Key Identifier: keyid:C9:D7:6E:E3:69:CC:1C:F0:E6:29:C5:10:A4:BA:F4:65:E1:5F:B5:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yddu42nMHPDmKcUQpLr0ZeFfteE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:4e:c0:57:3f:65:37:7d:fc:1f:3b:f8:db:3c:49:44:e0:7e: 24:ff:59:47:be:e2:b5:e7:09:3f:5e:01:38:4b:f9:9a:de:a9: d2:92:ec:0b:03:37:c5:2f:27:11:e8:2d:c6:82:f5:b1:5e:bd: b0:f7:50:2c:9e:a4:05:4b:98:55:86:5b:39:72:73:f6:69:b6: 54:1b:d5:d6:61:43:0a:7a:6e:65:de:1e:43:d5:0c:3e:4d:82: c3:62:b9:dd:e6:37:84:5d:83:cb:48:a1:a7:28:d9:ad:a8:2d: 7e:1a:53:27:64:8f:ac:49:10:9a:42:85:34:90:ae:0e:a9:73: 7a:0c:b4:cf:6a:2b:4c:bc:b5:82:f8:22:3d:85:3d:47:ab:11: 07:48:22:b1:66:6e:f9:dc:17:af:12:b8:30:90:3c:c4:08:2f: 88:5e:b0:cb:27:03:c9:8e:13:5e:c6:df:1e:d6:43:c5:56:f9: 60:17:08:af:49:a3:e1:15:05:0d:d1:e0:9a:1c:d4:4b:b8:12: 83:24:fa:b9:7d:e0:b8:30:40:20:8c:3c:03:4a:7e:c2:2d:5a: b2:d9:43:44:0f:83:b6:48:7a:58:3b:f9:f0:d6:bf:2b:d8:fb: d4:91:3d:cd:1d:f3:ac:2e:0a:af:ea:17:c6:9e:ba:f5:76:8c: df:fd:3b:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFNTkxMTAvBgNVBAUTKEM5RDc2RUUzNjlDQzFDRjBFNjI5QzUxMEE0QkFGNDY1 RTE1RkI1RTEwHhcNMjQwNTE5MDI1NDA4WhcNMjQwNTI2MDI1NDA4WjAYMRYwFAYD VQQDEw02NjQ5NjlkMC1iMmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwS/5CYh9E8SDOJGHCyZ4urZOT5aVTU45GFnDs3b0UBvD+yqoPhWd+w+VQsq 9mF/t+oT4LCqwpm9cD2BSbEbk9TuRMnZTVYSsxPd+ABHM8HRi5sfHFibZJGji8IG 6Udyaa00OlRGsYGTXT2ibCEjq4qRJHZmQNCcJr/y/NEkeYKvRqVMmSV4NdSR/dlD Vb7DJ72VVpP5ZdBkbXaoDbjx47caZM2MbIeGg/em7c4T79VkZPbtgbYDZNQDiLcq 2QZu9CVkfhseQKQA3bvJJ2C3G85MxAkSKYaoGn7X1kDRKzClM2C3EMs/VWz729eu qS83Mor4dZqNgWLsp1hZ1bJhQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHG+mW1J LJAtZI7i1koO4V/NNy+CMB8GA1UdIwQYMBaAFMnXbuNpzBzw5inFEKS69GXhX7Xh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEU1OS9BQjYxMTFCNDZD NjQxMUVDQkVBQTE4NTJDNEY5QUUwMi95ZGR1NDJuTUhQRG1LY1VRcExyMFplRmZ0 ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lkZHU0Mm5NSFBEbUtjVVFwTHIwWmVGZnRlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEU1OS9BQjYxMTFCNDZDNjQxMUVDQkVBQTE4NTJDNEY5QUUwMi95ZGR1NDJuTUhQ RG1LY1VRcExyMFplRmZ0ZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMTsBXP2U3ffwfO/jbPElE4H4k/1lHvuK15wk/XgE4S/ma3qnSkuwL AzfFLycR6C3GgvWxXr2w91AsnqQFS5hVhls5cnP2abZUG9XWYUMKem5l3h5D1Qw+ TYLDYrnd5jeEXYPLSKGnKNmtqC1+GlMnZI+sSRCaQoU0kK4OqXN6DLTPaitMvLWC +CI9hT1HqxEHSCKxZm753BevErgwkDzECC+IXrDLJwPJjhNext8e1kPFVvlgFwiv SaPhFQUN0eCaHNRLuBKDJPq5feC4MEAgjDwDSn7CLVqy2UNED4O2SHpYO/nw1r8r 2PvUkT3NHfOsLgqv6hfGnrr1dozf/TuH -----END CERTIFICATE-----Generated at Sun May 19 03:38:15 2024 by rpki-client on console-ams.rpki-client.org