$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft File: yDkkRRVKIRRXRo3JJnXGsrycRIs.mft (raw, json) Hash identifier: FgtPAvzIA1KbWlVTLgiwsAi3azBDQ0fiNTYTh4OdjIw= Subject key identifier: A3:2C:54:A2:0B:9C:62:14:E7:1A:17:80:15:1C:3E:C6:A7:95:DA:02 Authority key identifier: C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B Certificate issuer: /CN=A91A7890/serialNumber=C8392445154A211457468DC92675C6B2BC9C448B Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft Manifest number: CF Signing time: Sun 19 May 2024 06:12:46 +0000 Manifest this update: Sun 19 May 2024 06:12:46 +0000 Manifest next update: Sun 26 May 2024 06:12:46 +0000 Files and hashes: 1: yDkkRRVKIRRXRo3JJnXGsrycRIs.crl (hash: 2DS/F9cdqn+93RLxsJb6T+ye11Oq/rRQVL/hLCbO1dg=) 2: EC8CA72CDAE311EDA0A6B03DC4F9AE02.roa (hash: 0gX4UrZECG0FToJDBxjG8qBIchgjnj/y4QahR0VE2wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7890/serialNumber=C8392445154A211457468DC92675C6B2BC9C448B Validity Not Before: May 19 06:12:46 2024 GMT Not After : May 26 06:12:46 2024 GMT Subject: CN=6649985e-4542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e8:1f:68:a5:ea:ac:ff:b5:3b:8f:f3:80:b7: 9a:63:c6:22:2a:0f:23:bc:14:0e:c0:cc:74:58:1b: aa:9e:ce:27:94:bd:5c:f0:ad:3a:59:58:fe:3c:28: 65:eb:7e:3a:90:5e:d9:87:36:44:c0:f6:aa:7f:3f: de:39:f3:ec:34:35:ac:02:09:75:3e:32:56:f0:6e: ae:41:c3:47:30:62:3d:c3:c9:00:1c:78:7c:96:cf: c7:5e:76:5c:c8:6f:cf:09:f7:4b:45:b7:51:6e:39: 2c:f4:4f:85:f0:24:80:f3:ed:64:94:ba:65:30:7e: e4:a1:72:0c:44:b0:8f:3f:ad:e1:3b:f5:47:49:3a: 99:cf:61:9c:2b:92:b7:c7:a0:a7:f4:51:f4:1a:ad: 8c:4c:db:26:31:24:ec:2b:c5:69:1d:d4:b5:97:3d: ce:9d:b1:cd:30:a3:34:5b:3b:db:d0:e9:bb:69:37: 48:11:52:30:d4:e2:96:e5:3d:e2:3f:a6:b7:76:0e: 4d:10:4c:6d:66:ff:b9:b8:38:3a:21:7a:ce:bb:22: 81:ea:bc:03:cf:c8:75:9b:36:56:a9:b0:0c:28:5f: 62:5f:6c:73:d3:46:d9:5e:67:06:3f:31:f6:30:66: 44:e1:88:c0:04:a7:9a:5c:2a:28:03:1b:7c:4b:1a: 3e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:2C:54:A2:0B:9C:62:14:E7:1A:17:80:15:1C:3E:C6:A7:95:DA:02 X509v3 Authority Key Identifier: keyid:C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:b8:c2:93:5c:6d:95:d1:a6:fe:91:09:d0:49:52:b3:9e:cf: de:5f:fd:51:f7:cf:04:07:d7:71:60:6a:a5:98:38:5c:ce:41: aa:b9:bc:d8:6b:81:86:fd:0c:8e:00:22:87:91:24:1e:fd:7e: 6d:d5:04:5f:45:22:b6:87:50:aa:67:01:88:7c:27:cd:08:01: a8:bc:e5:1a:99:c5:84:d3:3e:c4:dc:cf:4d:5a:76:f5:76:56: 11:58:8a:b6:d8:34:45:6c:6f:2f:7a:04:c8:56:36:9b:69:76: 44:01:d1:39:a5:db:ef:3b:9f:bb:8b:9e:43:ff:58:4e:b8:ff: a5:cb:36:84:cd:66:5c:6e:69:3b:40:57:8d:86:6e:73:59:46: 04:39:f0:1e:a8:79:5d:33:25:8d:71:c2:2c:fa:1d:d4:57:41: f1:50:c0:56:a0:26:1d:98:eb:bc:14:d5:8f:cb:3e:2f:78:0e: 72:15:e4:3a:5a:45:11:91:90:8c:cf:bf:a9:6e:b2:c9:ce:45: 44:5d:24:a5:71:c1:e6:95:f6:ac:84:b3:8e:e0:e8:3c:12:97: 55:dc:00:3e:05:cc:6b:48:a2:48:54:c9:0c:1e:91:82:65:32: fb:ec:df:d2:af:fc:aa:45:80:2f:d0:3c:90:72:f9:e0:26:d0: 8a:2b:45:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4OTAxMTAvBgNVBAUTKEM4MzkyNDQ1MTU0QTIxMTQ1NzQ2OERDOTI2NzVDNkIy QkM5QzQ0OEIwHhcNMjQwNTE5MDYxMjQ2WhcNMjQwNTI2MDYxMjQ2WjAYMRYwFAYD VQQDEw02NjQ5OTg1ZS00NTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+gfaKXqrP+1O4/zgLeaY8YiKg8jvBQOwMx0WBuqns4nlL1c8K06WVj+PChl 6346kF7ZhzZEwPaqfz/eOfPsNDWsAgl1PjJW8G6uQcNHMGI9w8kAHHh8ls/HXnZc yG/PCfdLRbdRbjks9E+F8CSA8+1klLplMH7koXIMRLCPP63hO/VHSTqZz2GcK5K3 x6Cn9FH0Gq2MTNsmMSTsK8VpHdS1lz3OnbHNMKM0Wzvb0Om7aTdIEVIw1OKW5T3i P6a3dg5NEExtZv+5uDg6IXrOuyKB6rwDz8h1mzZWqbAMKF9iX2xz00bZXmcGPzH2 MGZE4YjABKeaXCooAxt8Sxo+0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMsVKIL nGIU5xoXgBUcPsanldoCMB8GA1UdIwQYMBaAFMg5JEUVSiEUV0aNySZ1xrK8nESL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzg5MC9BREUxMzE4NkRB REYxMUVEQjFGOUQ3MTlDNEY5QUUwMi95RGtrUlJWS0lSUlhSbzNKSm5YR3NyeWNS SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lEa2tSUlZLSVJSWFJvM0pKblhHc3J5Y1JJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzg5MC9BREUxMzE4NkRBREYxMUVEQjFGOUQ3MTlDNEY5QUUwMi95RGtrUlJWS0lS UlhSbzNKSm5YR3NyeWNSSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCruMKTXG2V0ab+kQnQSVKzns/eX/1R988EB9dxYGqlmDhczkGqubzY a4GG/QyOACKHkSQe/X5t1QRfRSK2h1CqZwGIfCfNCAGovOUamcWE0z7E3M9NWnb1 dlYRWIq22DRFbG8vegTIVjabaXZEAdE5pdvvO5+7i55D/1hOuP+lyzaEzWZcbmk7 QFeNhm5zWUYEOfAeqHldMyWNccIs+h3UV0HxUMBWoCYdmOu8FNWPyz4veA5yFeQ6 WkURkZCMz7+pbrLJzkVEXSSlccHmlfashLOO4Og8EpdV3AA+BcxrSKJIVMkMHpGC ZTL77N/Sr/yqRYAv0DyQcvngJtCKK0Wg -----END CERTIFICATE-----Generated at Sun May 19 08:25:07 2024 by rpki-client on console-ams.rpki-client.org