$ rpki-client -vvf rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft File: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft (raw, json) Hash identifier: oEJUcTgcVTCKPxeA9TA+pdbupzLL0tSAD/EPigww/JE= Subject key identifier: BF:5D:DB:B2:C6:1B:C7:4E:3A:A4:72:D2:18:F5:69:92:73:A6:4B:D5 Authority key identifier: D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 Certificate issuer: /CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft Manifest number: 13 Signing time: Sun 19 May 2024 08:46:58 +0000 Manifest this update: Sun 19 May 2024 08:46:58 +0000 Manifest next update: Sun 26 May 2024 08:46:58 +0000 Files and hashes: 1: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl (hash: iYBMd121/3yCmfqzrX9aLrioz7M+X7dx5DVuvS86BE0=) 2: D3ADEFE2F7F011EEB3618A2CC4F9AE02.roa (hash: W2Z0TL/1HC8+aj77AxzpaO0eIUfZzfdghUr4klZBZ40=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Validity Not Before: May 19 08:46:58 2024 GMT Not After : May 26 08:46:58 2024 GMT Subject: CN=6649bc82-e62f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:9d:c0:22:1c:10:c0:bf:ab:cc:67:05:bc:76: 48:8c:0b:1d:38:7f:80:5f:da:30:bb:4a:ad:d1:87: da:13:f6:1e:44:7b:5f:44:36:ef:e4:75:3f:dc:a0: f6:a0:a4:e3:aa:11:06:1a:3c:a0:1b:60:25:f7:e7: 19:e7:63:69:b4:5a:ed:ab:9e:ef:14:b3:e9:a9:62: 4a:2c:45:f1:55:e5:c5:42:2b:51:d5:d8:1a:63:ec: f7:02:8b:ec:3b:55:dd:f8:88:fb:b4:28:18:c7:47: b0:29:2e:59:9b:9f:a4:85:33:c1:44:93:6b:c0:38: d5:ed:c9:af:21:ae:2c:22:3d:9f:1d:f2:06:3b:ef: 5b:77:84:2c:b3:f9:dc:ff:e3:2b:b2:02:08:4a:94: 29:11:c8:9a:ce:8a:24:ce:29:89:0a:94:a4:eb:0a: 06:bf:16:07:9f:84:6a:e6:76:4d:50:9e:1f:d3:da: 92:15:5c:3a:cf:49:7d:14:3d:07:01:26:7e:d2:f2: 6f:1e:70:23:6e:65:47:0a:da:af:aa:bc:b6:44:bd: 53:92:5c:9f:c3:d0:dd:ac:72:d0:e9:cb:19:5c:55: 26:42:40:b8:6e:59:81:68:3f:53:d8:25:2b:ae:6e: 70:8c:f6:8e:24:51:30:8c:6f:30:0c:98:1d:6b:f1: 1c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:5D:DB:B2:C6:1B:C7:4E:3A:A4:72:D2:18:F5:69:92:73:A6:4B:D5 X509v3 Authority Key Identifier: keyid:D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:6e:e6:ac:1f:df:ab:98:ef:7d:0b:82:77:de:65:c5:4d:fb: 57:b0:b8:5f:3f:9b:be:9b:71:6b:5a:b1:73:97:0a:8e:2d:c5: ba:39:98:8a:26:d4:c3:1a:0b:e6:0a:0d:6b:35:60:8e:3e:c3: 9f:21:56:9d:2e:b4:c4:69:f1:db:8e:39:1b:9b:3a:65:ba:59: 16:ad:33:31:7b:c3:3a:d3:40:57:89:a1:54:40:aa:11:55:a7: 31:0a:66:f3:8e:1d:2c:90:4a:15:c3:41:40:a2:98:14:fe:ec: cf:6e:9a:3e:14:c2:38:4c:9d:4c:cf:04:33:e3:d0:03:57:af: 5c:c6:a8:11:ae:a2:51:2d:30:fd:2b:45:6c:82:da:10:16:50: d1:a6:aa:d9:79:a8:8b:07:c7:78:8e:9a:2f:0e:dd:c4:72:8d: 19:1a:55:92:44:92:47:00:f2:4c:0c:7f:d2:cb:c1:2a:ba:f8: c0:51:8b:36:4a:32:49:da:f9:be:0c:3c:ad:ed:d8:e0:68:50: b0:5f:e9:f7:1e:32:f6:90:05:ab:7b:3e:1d:75:f2:60:69:46: a1:35:32:b4:db:20:d8:52:c5:6c:a5:7f:96:6a:b4:f5:3c:02: 34:c3:5a:b3:49:45:4c:54:2f:4f:f2:ba:17:6e:6d:0e:f3:a1: 11:39:30:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB ODIyRjExMC8GA1UEBRMoRDk4NzJDMTkzRTE4REMxNTFGRTNFRjlFMjlBRkU4MzEy MUIyNEQxMDAeFw0yNDA1MTkwODQ2NThaFw0yNDA1MjYwODQ2NThaMBgxFjAUBgNV BAMTDTY2NDliYzgyLWU2MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYncAiHBDAv6vMZwW8dkiMCx04f4Bf2jC7Sq3Rh9oT9h5Ee19ENu/kdT/coPag pOOqEQYaPKAbYCX35xnnY2m0Wu2rnu8Us+mpYkosRfFV5cVCK1HV2Bpj7PcCi+w7 Vd34iPu0KBjHR7ApLlmbn6SFM8FEk2vAONXtya8hriwiPZ8d8gY771t3hCyz+dz/ 4yuyAghKlCkRyJrOiiTOKYkKlKTrCga/FgefhGrmdk1Qnh/T2pIVXDrPSX0UPQcB Jn7S8m8ecCNuZUcK2q+qvLZEvVOSXJ/D0N2sctDpyxlcVSZCQLhuWYFoP1PYJSuu bnCM9o4kUTCMbzAMmB1r8RzPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUv13bssYb x046pHLSGPVpknOmS9UwHwYDVR0jBBgwFoAU2YcsGT4Y3BUf4++eKa/oMSGyTRAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4MjJGLzU4NDJEMzA0RjdG MDExRUU5OEM4QzkyQkM0RjlBRTAyLzJZY3NHVDRZM0JVZjQtLWVLYV9vTVNHeVRS QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlljc0dUNFkzQlVmNC0tZUthX29NU0d5VFJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4 MjJGLzU4NDJEMzA0RjdGMDExRUU5OEM4QzkyQkM0RjlBRTAyLzJZY3NHVDRZM0JV ZjQtLWVLYV9vTVNHeVRSQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJBu5qwf36uY730LgnfeZcVN+1ewuF8/m76bcWtasXOXCo4txbo5mIom 1MMaC+YKDWs1YI4+w58hVp0utMRp8duOORubOmW6WRatMzF7wzrTQFeJoVRAqhFV pzEKZvOOHSyQShXDQUCimBT+7M9umj4UwjhMnUzPBDPj0ANXr1zGqBGuolEtMP0r RWyC2hAWUNGmqtl5qIsHx3iOmi8O3cRyjRkaVZJEkkcA8kwMf9LLwSq6+MBRizZK Mkna+b4MPK3t2OBoULBf6fceMvaQBat7Ph118mBpRqE1MrTbINhSxWylf5ZqtPU8 AjTDWrNJRUxUL0/yuhdubQ7zoRE5MJg= -----END CERTIFICATE-----Generated at Sun May 19 09:32:17 2024 by rpki-client on console-ams.rpki-client.org