$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: 8JRldsYT7VxAk79j9Drt6tNTY2U4yNeecM6VR2aJ26I= Subject key identifier: 9C:7D:F3:2C:47:E4:6B:A8:61:ED:4F:BF:53:AC:D7:D9:50:3C:49:62 Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 03D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 03CF Signing time: Sun 19 May 2024 02:21:45 +0000 Manifest this update: Sun 19 May 2024 02:21:45 +0000 Manifest next update: Sun 26 May 2024 02:21:45 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: tPC4nithgmounpTQaPQybG7U9GxxdaCR6KXV5ePw5SQ=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: 4tA4qoDdoOVKwdkSvB7F8+cRC0ox1Y1iSU6OwyReKas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: May 19 02:21:45 2024 GMT Not After : May 26 02:21:45 2024 GMT Subject: CN=66496239-ff46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a3:21:db:b1:9d:85:1f:2f:11:49:8d:92:ac: 87:35:11:a3:79:ee:cc:b9:0e:15:d4:96:ae:10:e0: 24:65:cf:b6:82:d6:49:97:34:81:01:8a:84:30:cd: d5:4c:78:b6:17:b5:47:08:56:33:12:6e:90:fe:06: c0:67:cd:32:4d:e6:70:99:c4:8e:99:d8:ee:c4:fb: 0c:7a:22:8a:cf:fc:b3:15:61:41:34:f9:67:5f:91: 9b:91:0b:cb:bf:92:d8:83:5d:27:70:02:a4:42:9c: 29:5f:68:b4:bb:4b:08:35:16:4f:1b:01:39:10:b5: 1b:fd:28:78:8a:74:05:de:d8:46:6f:75:79:e3:59: b6:73:55:35:bb:1d:c7:6c:73:1e:ca:23:e8:82:28: 11:5e:ef:d9:d3:67:77:b2:04:ff:e9:f5:0d:c7:60: f9:4a:82:17:21:5d:5d:35:61:47:ea:a5:03:ba:69: a5:ad:2e:41:03:3d:e6:66:51:d0:7d:e3:e4:5c:f7: 58:3c:79:8e:d4:1a:04:9c:b1:a4:12:9e:06:a2:0b: b0:a6:20:c2:91:2c:33:5b:04:b3:bc:05:a0:f1:d3: 75:fb:b2:08:47:6b:2d:f6:40:30:9d:49:d0:a8:35: 84:8e:06:f2:3d:2b:01:b9:39:d5:e5:1f:b6:d7:32: eb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:7D:F3:2C:47:E4:6B:A8:61:ED:4F:BF:53:AC:D7:D9:50:3C:49:62 X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:6a:70:82:df:fa:9a:ba:aa:4a:32:f3:25:47:39:3c:03:5b: 47:3d:63:e6:0a:22:54:a8:d6:2c:8e:7b:04:04:9b:ff:a0:20: 9b:b3:31:bc:f0:e8:c7:08:07:e7:7e:40:c0:d8:4e:8d:68:13: df:96:a6:c9:ba:18:bf:d8:a9:6d:59:5b:53:e1:45:5b:e4:3a: 98:4d:cd:75:9a:50:03:21:2c:b3:60:63:0e:ea:87:ee:06:a8: 38:41:fa:56:7f:55:c1:19:b4:1d:d1:6e:25:c3:66:bd:06:ac: b4:9b:56:45:61:9a:e0:65:53:04:95:10:92:cc:a8:90:c7:8b: d1:7f:73:88:7a:e0:4a:2d:72:71:f6:4e:e8:8e:4a:05:33:76: 08:66:9a:c3:4a:8b:33:d1:f8:29:74:aa:02:47:e5:a9:0c:5e: c1:01:d7:93:39:c7:c1:c3:06:da:bf:0a:60:9e:cc:1e:2c:02: df:06:6e:96:da:62:cc:be:1e:95:e4:6a:f4:8d:cf:be:1a:8f: 85:48:a7:9e:00:4d:3e:62:56:82:d9:dd:46:4e:c4:e8:b0:49: c7:65:c1:4a:65:42:d5:68:72:8e:5a:1b:ec:2f:91:88:2d:7e: 9e:94:68:ab:1b:77:de:33:91:d1:42:b8:f8:54:84:a1:74:6a: 3b:21:91:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjQwNTE5MDIyMTQ1WhcNMjQwNTI2MDIyMTQ1WjAYMRYwFAYD VQQDEw02NjQ5NjIzOS1mZjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqMh27GdhR8vEUmNkqyHNRGjee7MuQ4V1JauEOAkZc+2gtZJlzSBAYqEMM3V THi2F7VHCFYzEm6Q/gbAZ80yTeZwmcSOmdjuxPsMeiKKz/yzFWFBNPlnX5GbkQvL v5LYg10ncAKkQpwpX2i0u0sINRZPGwE5ELUb/Sh4inQF3thGb3V541m2c1U1ux3H bHMeyiPogigRXu/Z02d3sgT/6fUNx2D5SoIXIV1dNWFH6qUDummlrS5BAz3mZlHQ fePkXPdYPHmO1BoEnLGkEp4GoguwpiDCkSwzWwSzvAWg8dN1+7IIR2st9kAwnUnQ qDWEjgbyPSsBuTnV5R+21zLrBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJx98yxH 5GuoYe1Pv1Os19lQPEliMB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAranCC3/qauqpKMvMlRzk8A1tHPWPmCiJUqNYsjnsEBJv/oCCbszG8 8OjHCAfnfkDA2E6NaBPflqbJuhi/2KltWVtT4UVb5DqYTc11mlADISyzYGMO6ofu Bqg4QfpWf1XBGbQd0W4lw2a9Bqy0m1ZFYZrgZVMElRCSzKiQx4vRf3OIeuBKLXJx 9k7ojkoFM3YIZprDSosz0fgpdKoCR+WpDF7BAdeTOcfBwwbavwpgnsweLALfBm6W 2mLMvh6V5Gr0jc++Go+FSKeeAE0+YlaC2d1GTsTosEnHZcFKZULVaHKOWhvsL5GI LX6elGirG3feM5HRQrj4VIShdGo7IZFn -----END CERTIFICATE-----Generated at Sun May 19 02:59:11 2024 by rpki-client on console-ams.rpki-client.org