$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft File: YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft (raw, json) Hash identifier: G+7yepUbv+u1RBjnTR4mPrKpMBuEoTYAAhIl5/y1xPw= Subject key identifier: 64:07:27:4F:20:F6:1E:3A:AE:9F:DD:AC:C2:B3:F4:CE:3C:3A:C8:75 Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft Manifest number: 31 Signing time: Sun 19 May 2024 08:23:21 +0000 Manifest this update: Sun 19 May 2024 08:23:20 +0000 Manifest next update: Sun 26 May 2024 08:23:20 +0000 Files and hashes: 1: YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl (hash: CTSgmRRuJtoxV988rrjOlK09pI49C7SapmEysp84a2w=) 2: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (hash: Vhc0oBsN9e1AmTssIF1IG416RW4yliZF1kVCc1MWbp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Validity Not Before: May 19 08:23:20 2024 GMT Not After : May 26 08:23:20 2024 GMT Subject: CN=6649b6f9-a8eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8e:28:f2:0e:67:35:b1:19:20:da:f4:d7:1e: ce:ea:fa:5e:49:9d:72:5c:93:d4:6a:0c:5e:0c:5c: 7b:26:b7:fd:88:cf:f7:85:5e:7a:53:eb:cd:c0:19: 53:0c:be:f7:8f:28:f2:cc:68:68:70:ae:1f:48:97: 3a:dd:68:d5:20:93:4a:cc:e6:4d:3f:07:69:b5:06: ee:ce:a5:f9:71:95:61:b4:30:a9:44:6b:26:f3:22: 6d:4f:5f:13:90:03:c8:1b:bb:87:53:88:f3:78:c7: 0b:e7:28:ee:b2:2b:a2:6e:a5:25:ee:9a:12:f7:53: 0b:a8:5f:e6:1b:48:46:40:33:e8:ff:8f:a6:5b:38: 41:56:5c:37:e9:6a:93:5f:a9:4d:28:1b:03:40:64: da:4d:15:1c:9b:29:84:47:43:02:78:c9:0f:3b:d2: e3:c4:58:0b:cc:1f:94:2a:ef:28:a5:4a:ff:c0:78: cf:27:6f:fb:84:ad:fe:11:6b:a7:b0:0b:64:7c:fd: 5d:b6:5a:a9:bf:23:db:94:a3:af:c6:3a:24:ce:4c: 18:75:ed:5a:b7:83:7c:bb:52:3d:d3:90:6b:c3:02: 19:b8:f0:19:ff:f6:a1:75:81:df:b4:54:58:73:76: 33:95:ba:88:c3:6c:66:02:09:a9:fa:84:21:38:ca: 15:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:07:27:4F:20:F6:1E:3A:AE:9F:DD:AC:C2:B3:F4:CE:3C:3A:C8:75 X509v3 Authority Key Identifier: keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:a1:36:8b:8a:32:ac:5a:bb:a5:57:35:d8:97:67:a3:f2:54: c0:7b:a8:c6:87:63:d2:f1:00:45:27:b7:c7:56:53:09:42:71: 86:3a:26:6b:88:be:1d:f0:36:43:fe:d9:7a:39:81:6c:9b:c7: 59:db:f4:fe:f9:72:1b:9c:d9:c3:88:16:fc:f5:38:0c:1a:47: 32:7f:db:c0:9c:fa:f4:83:21:6d:ea:6f:5a:8c:ae:c0:fa:74: 33:4e:24:18:d7:d6:f8:5d:57:d9:9e:66:cc:24:b7:70:6e:e2: c6:a4:45:81:78:53:ac:4a:68:a2:93:bf:df:b9:b0:32:a3:d8: 3b:c5:2c:eb:1c:97:f2:00:88:f0:ac:32:ad:d4:e5:b5:16:bc: a6:a8:fb:51:c3:fb:c8:f4:b1:6f:a8:93:e5:57:6a:13:1a:ce: 15:8b:55:2c:52:df:aa:9f:d0:4b:e9:f4:9b:b1:7f:23:57:3e: 9f:92:5a:26:fa:b9:73:7c:60:9c:38:02:eb:fc:d9:7d:a9:a1: da:f2:0b:02:8a:c1:a7:08:d6:41:02:b8:e6:f3:ef:17:43:15: b9:25:9a:bd:13:38:0e:93:d4:23:68:76:ab:85:5f:ff:26:ba: e8:55:48:4e:f6:cd:52:7c:2a:9f:8c:31:53:54:a5:e1:f5:a7: 2a:4c:ae:cb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MUNBQTExMC8GA1UEBRMoNjE3RjA1NEUzQ0U0NTFFMEMzRTdGNDQ2REQwOUY3ODY0 NjUyQjY1NjAeFw0yNDA1MTkwODIzMjBaFw0yNDA1MjYwODIzMjBaMBgxFjAUBgNV BAMTDTY2NDliNmY5LWE4ZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4jijyDmc1sRkg2vTXHs7q+l5JnXJck9RqDF4MXHsmt/2Iz/eFXnpT683AGVMM vvePKPLMaGhwrh9IlzrdaNUgk0rM5k0/B2m1Bu7OpflxlWG0MKlEaybzIm1PXxOQ A8gbu4dTiPN4xwvnKO6yK6JupSXumhL3UwuoX+YbSEZAM+j/j6ZbOEFWXDfpapNf qU0oGwNAZNpNFRybKYRHQwJ4yQ870uPEWAvMH5Qq7yilSv/AeM8nb/uErf4Ra6ew C2R8/V22Wqm/I9uUo6/GOiTOTBh17Vq3g3y7Uj3TkGvDAhm48Bn/9qF1gd+0VFhz djOVuojDbGYCCan6hCE4yhVjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZAcnTyD2 Hjqun92swrP0zjw6yHUwHwYDVR0jBBgwFoAUYX8FTjzkUeDD5/RG3Qn3hkZStlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExQ0FBLzhFMjc1QTFFQ0U0 QTExRUU4REU5RTUxRkM0RjlBRTAyL1lYOEZUanprVWVERDVfUkczUW4zaGtaU3Rs WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVg4RlRqemtVZURENV9SRzNRbjNoa1pTdGxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx Q0FBLzhFMjc1QTFFQ0U0QTExRUU4REU5RTUxRkM0RjlBRTAyL1lYOEZUanprVWVE RDVfUkczUW4zaGtaU3RsWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB+hNouKMqxau6VXNdiXZ6PyVMB7qMaHY9LxAEUnt8dWUwlCcYY6JmuI vh3wNkP+2Xo5gWybx1nb9P75chuc2cOIFvz1OAwaRzJ/28Cc+vSDIW3qb1qMrsD6 dDNOJBjX1vhdV9meZswkt3Bu4sakRYF4U6xKaKKTv9+5sDKj2DvFLOscl/IAiPCs Mq3U5bUWvKao+1HD+8j0sW+ok+VXahMazhWLVSxS36qf0Evp9JuxfyNXPp+SWib6 uXN8YJw4Auv82X2podryCwKKwacI1kECuObz7xdDFbklmr0TOA6T1CNodquFX/8m uuhVSE72zVJ8Kp+MMVNUpeH1pypMrss= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org