$ rpki-client -vvf rpki.apnic.net/member_repository/A91A531A/2BDDFACE219711EBB45B0359C4F9AE02/yZNZQ2ka0elTZudBwTkwH7f35ts.mft File: yZNZQ2ka0elTZudBwTkwH7f35ts.mft (raw, json) Hash identifier: 8Z6QmTsaNnJWk6LSSxloqJi8SOxX3O1TvI25NjTdQaw= Subject key identifier: 65:DD:BA:F9:63:8F:FD:0F:D4:9D:18:38:F2:6B:07:75:5D:4A:41:43 Authority key identifier: C9:93:59:43:69:1A:D1:E9:53:66:E7:41:C1:39:30:1F:B7:F7:E6:DB Certificate issuer: /CN=A91A531A/serialNumber=C9935943691AD1E95366E741C139301FB7F7E6DB Certificate serial: 069C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZNZQ2ka0elTZudBwTkwH7f35ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A531A/2BDDFACE219711EBB45B0359C4F9AE02/yZNZQ2ka0elTZudBwTkwH7f35ts.mft Manifest number: 0697 Signing time: Sat 18 May 2024 23:18:36 +0000 Manifest this update: Sat 18 May 2024 23:18:35 +0000 Manifest next update: Sat 25 May 2024 23:18:35 +0000 Files and hashes: 1: yZNZQ2ka0elTZudBwTkwH7f35ts.crl (hash: mOPcMXX9mGw6IXTwhNWF4A9ppAiNO2xCh5uiKQr/agc=) 2: 43C467CA219911EB8F75645EC4F9AE02.roa (hash: N+FtAiUxsHhBvHtKNspxZwKivHBlBWR9LK3rO/Xb0dg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A531A/2BDDFACE219711EBB45B0359C4F9AE02/yZNZQ2ka0elTZudBwTkwH7f35ts.crl rsync://rpki.apnic.net/member_repository/A91A531A/2BDDFACE219711EBB45B0359C4F9AE02/yZNZQ2ka0elTZudBwTkwH7f35ts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZNZQ2ka0elTZudBwTkwH7f35ts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A531A/serialNumber=C9935943691AD1E95366E741C139301FB7F7E6DB Validity Not Before: May 18 23:18:35 2024 GMT Not After : May 25 23:18:35 2024 GMT Subject: CN=6649374c-51ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cb:f6:92:3d:08:47:f7:e8:a5:ce:dc:c2:20: ae:b8:21:af:4a:af:07:05:b4:6b:cd:2c:ae:67:44: ed:0e:d3:88:f4:1e:db:47:e5:38:41:e1:dc:86:b5: 69:e5:6f:17:8f:ff:f7:11:0c:29:bd:97:4d:9e:4d: 1e:be:36:d5:30:4c:0a:b8:54:62:b4:11:42:b5:8e: 79:d0:de:d1:98:ed:af:74:a9:7a:fd:50:ac:d0:02: 31:10:68:7b:63:00:92:32:16:46:92:b7:5e:92:87: a1:f0:43:fe:6c:1f:0d:4e:64:50:85:e7:6e:89:0f: 79:fa:46:d9:a1:5b:e9:d4:bf:43:cf:64:f6:82:49: 5f:6a:e2:3b:d2:0d:b1:97:e4:74:38:fa:b4:82:16: c8:03:c0:8c:ae:7c:09:83:d9:20:d9:bb:e0:d2:2d: 4d:d5:7a:ce:d6:3d:0d:12:73:97:49:43:98:21:52: d3:5d:51:4e:6d:5f:c0:79:1c:4b:88:40:cd:e7:1b: f2:28:ac:b8:d8:fe:aa:7f:4e:8f:78:62:d0:b8:eb: e9:c7:6c:c9:1a:d3:b3:66:80:9d:72:7b:80:cb:32: 97:92:8d:ca:f4:33:06:1f:ac:1d:a2:7b:54:93:80: 43:93:a2:9a:30:ef:a0:98:c9:52:64:f0:5b:73:96: 19:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:DD:BA:F9:63:8F:FD:0F:D4:9D:18:38:F2:6B:07:75:5D:4A:41:43 X509v3 Authority Key Identifier: keyid:C9:93:59:43:69:1A:D1:E9:53:66:E7:41:C1:39:30:1F:B7:F7:E6:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A531A/2BDDFACE219711EBB45B0359C4F9AE02/yZNZQ2ka0elTZudBwTkwH7f35ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZNZQ2ka0elTZudBwTkwH7f35ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A531A/2BDDFACE219711EBB45B0359C4F9AE02/yZNZQ2ka0elTZudBwTkwH7f35ts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:03:1e:1a:88:c9:34:8f:9e:3c:48:92:73:73:7d:bc:ea:02: e3:e2:24:c9:e1:98:9a:cd:54:42:f1:a3:b5:bd:82:e0:36:fb: eb:9c:fc:e1:1b:87:2e:ec:f1:50:e9:5f:ce:af:28:e4:39:19: fd:7f:18:ed:d7:0b:77:8a:e8:c6:bb:a9:73:c7:df:95:2b:01: 30:d4:fc:1a:07:a1:03:6f:48:da:44:49:17:da:a4:d0:3b:4f: 36:cb:1f:2f:93:e4:f0:cd:74:db:41:87:38:42:8c:ef:d4:7b: ed:a6:40:b5:20:79:fd:54:d0:61:37:a5:88:e3:bb:bc:fd:52: 65:bd:9c:fa:5e:74:7a:3a:09:c1:e3:e6:eb:53:8d:73:4d:3a: b4:ac:71:a0:10:f3:90:9e:80:35:d8:db:10:28:8e:cc:dd:79: 3c:69:5f:7d:8d:23:9a:d8:b3:12:aa:05:50:03:8d:6f:90:4c: 8f:8c:54:c4:ea:37:ab:59:bd:26:cb:d6:44:b1:db:18:9d:a0: fa:d9:db:94:aa:e8:f2:05:95:ad:11:55:6b:a2:63:5c:8b:e8: 39:4f:18:91:a5:a3:bb:be:e7:09:ef:d9:b6:11:cd:5c:e9:e2: 7b:88:b4:e7:4c:22:c1:94:ac:36:a8:51:bd:1a:a8:70:ab:85: ee:fd:5b:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUzMUExMTAvBgNVBAUTKEM5OTM1OTQzNjkxQUQxRTk1MzY2RTc0MUMxMzkzMDFG QjdGN0U2REIwHhcNMjQwNTE4MjMxODM1WhcNMjQwNTI1MjMxODM1WjAYMRYwFAYD VQQDEw02NjQ5Mzc0Yy01MWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sv2kj0IR/fopc7cwiCuuCGvSq8HBbRrzSyuZ0TtDtOI9B7bR+U4QeHchrVp 5W8Xj//3EQwpvZdNnk0evjbVMEwKuFRitBFCtY550N7RmO2vdKl6/VCs0AIxEGh7 YwCSMhZGkrdekoeh8EP+bB8NTmRQheduiQ95+kbZoVvp1L9Dz2T2gklfauI70g2x l+R0OPq0ghbIA8CMrnwJg9kg2bvg0i1N1XrO1j0NEnOXSUOYIVLTXVFObV/AeRxL iEDN5xvyKKy42P6qf06PeGLQuOvpx2zJGtOzZoCdcnuAyzKXko3K9DMGH6wdontU k4BDk6KaMO+gmMlSZPBbc5YZ6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXduvlj j/0P1J0YOPJrB3VdSkFDMB8GA1UdIwQYMBaAFMmTWUNpGtHpU2bnQcE5MB+39+bb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTMxQS8yQkRERkFDRTIx OTcxMUVCQjQ1QjAzNTlDNEY5QUUwMi95Wk5aUTJrYTBlbFRadWRCd1Rrd0g3ZjM1 dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laTlpRMmthMGVsVFp1ZEJ3VGt3SDdmMzV0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTMxQS8yQkRERkFDRTIxOTcxMUVCQjQ1QjAzNTlDNEY5QUUwMi95Wk5aUTJrYTBl bFRadWRCd1Rrd0g3ZjM1dHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4Ax4aiMk0j548SJJzc3286gLj4iTJ4ZiazVRC8aO1vYLgNvvrnPzh G4cu7PFQ6V/OryjkORn9fxjt1wt3iujGu6lzx9+VKwEw1PwaB6EDb0jaREkX2qTQ O082yx8vk+TwzXTbQYc4Qozv1HvtpkC1IHn9VNBhN6WI47u8/VJlvZz6XnR6OgnB 4+brU41zTTq0rHGgEPOQnoA12NsQKI7M3Xk8aV99jSOa2LMSqgVQA41vkEyPjFTE 6jerWb0my9ZEsdsYnaD62duUqujyBZWtEVVromNci+g5TxiRpaO7vucJ79m2Ec1c 6eJ7iLTnTCLBlKw2qFG9Gqhwq4Xu/VtF -----END CERTIFICATE-----Generated at Sun May 19 00:16:17 2024 by rpki-client on console-fra.rpki-client.org