$ rpki-client -vvf rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft File: Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft (raw, json) Hash identifier: 1QaLDW4BOaEGT5kKndF1NXg07Axcs7USyC9Lp/+A6T0= Subject key identifier: 81:6B:3F:86:6F:50:96:8C:11:8E:B3:21:17:92:67:7B:C7:1A:92:59 Authority key identifier: 63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B Certificate issuer: /CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Certificate serial: 0590 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft Manifest number: 058A Signing time: Sun 19 May 2024 00:29:55 +0000 Manifest this update: Sun 19 May 2024 00:29:54 +0000 Manifest next update: Sun 26 May 2024 00:29:54 +0000 Files and hashes: 1: Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl (hash: X6XN4s3pOYoN95ccrnxanvj8XonizdczaLNE9XJlSO4=) 2: 47EB76428ABA11EB8A85C01BC4F9AE02.roa (hash: SpmHHByflJabB6mdPnxEp0JfBy+lpq83eP4W9sBlxuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1424 (0x590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Validity Not Before: May 19 00:29:54 2024 GMT Not After : May 26 00:29:54 2024 GMT Subject: CN=66494802-8fe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:50:5c:31:f8:f6:16:4f:e5:a4:d9:52:aa:76: f7:1b:3a:07:63:a8:8f:85:20:97:08:ba:9b:46:35: 8f:21:c3:e9:e5:c2:f9:d1:a8:df:9c:cc:59:20:90: d0:eb:10:6d:f6:dc:0a:d4:c1:06:2e:6b:05:91:d2: d5:4d:7e:fb:d8:78:4a:b5:c7:2a:ee:21:53:39:e5: 93:6a:86:87:91:9f:32:d5:ec:6f:de:23:2c:47:88: d6:82:b0:72:00:b2:85:0c:bc:93:53:61:bc:fd:d5: 70:44:e3:ba:a6:ba:eb:d0:53:c6:62:72:c7:f2:b7: a6:eb:c0:3a:3d:aa:d4:3f:27:ea:32:42:89:27:64: 2d:10:1f:3e:16:2d:02:b6:9e:50:23:78:00:bf:07: ae:53:5c:6e:57:10:4a:18:fd:64:05:34:53:ee:53: 10:49:f0:35:be:90:d2:51:b5:fa:8f:d9:fb:aa:8e: 8b:69:ab:33:b6:37:4c:f6:48:61:9a:d8:d4:1a:ef: 04:9e:72:76:71:d9:5b:94:a7:b2:41:eb:b2:cb:34: bf:a3:89:36:11:49:9d:30:1c:d5:33:68:28:6f:ce: bf:3b:2e:80:d2:ee:cd:7e:1f:99:2e:05:2c:bc:c6: 19:e4:e4:8a:07:ce:39:15:a7:ff:8b:e9:17:3f:43: 35:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:6B:3F:86:6F:50:96:8C:11:8E:B3:21:17:92:67:7B:C7:1A:92:59 X509v3 Authority Key Identifier: keyid:63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:0d:8a:6a:0b:29:e2:d6:b4:0d:bd:c6:8c:10:4c:1a:14:ed: 4f:f0:da:b7:7b:09:48:5f:c3:18:d1:d5:e1:3d:56:7a:07:c6: 5c:5a:40:e3:e8:29:19:6e:2d:38:36:26:c9:c0:86:67:b2:92: 56:5a:cc:b8:d3:bd:3c:72:b3:70:45:66:dd:f4:59:1c:d3:73: 0d:c3:85:a4:58:06:e4:75:d8:03:72:67:c9:38:e7:04:56:b7: b7:9f:a9:48:01:94:21:bc:f7:af:2c:af:ef:5f:df:2e:3d:6c: f0:fc:b7:eb:72:2a:f0:00:e8:ef:97:cc:c6:b6:91:85:41:ca: df:6d:39:c7:12:60:fa:e0:0a:df:44:44:29:17:58:3b:67:eb: 4b:df:95:93:67:cd:2e:1c:75:be:a0:c3:87:62:1d:41:a9:05: ec:57:b4:42:a6:c7:23:84:92:ba:d6:ae:fa:be:74:58:83:48: 17:8c:60:89:0d:71:a2:02:83:a2:97:91:98:6e:f5:ab:e3:6f: 7a:65:56:99:d0:bd:e4:ac:31:cb:d9:b7:43:70:9d:92:4d:ab: e3:29:c7:0a:07:77:76:05:a7:c9:42:53:a2:7d:e6:94:2e:34: 98:1b:81:f3:17:fa:d4:c7:61:52:ac:d8:46:16:3e:0c:51:12: ca:43:db:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzNUQxMTAvBgNVBAUTKDYzNTkzMDlFRjQ5QjQ0NUY2RUI1MzMxQkRGMEE5NEM1 QzZFRkMzN0IwHhcNMjQwNTE5MDAyOTU0WhcNMjQwNTI2MDAyOTU0WjAYMRYwFAYD VQQDEw02NjQ5NDgwMi04ZmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11BcMfj2Fk/lpNlSqnb3GzoHY6iPhSCXCLqbRjWPIcPp5cL50ajfnMxZIJDQ 6xBt9twK1MEGLmsFkdLVTX772HhKtccq7iFTOeWTaoaHkZ8y1exv3iMsR4jWgrBy ALKFDLyTU2G8/dVwROO6prrr0FPGYnLH8rem68A6ParUPyfqMkKJJ2QtEB8+Fi0C tp5QI3gAvweuU1xuVxBKGP1kBTRT7lMQSfA1vpDSUbX6j9n7qo6LaasztjdM9khh mtjUGu8EnnJ2cdlblKeyQeuyyzS/o4k2EUmdMBzVM2gob86/Oy6A0u7Nfh+ZLgUs vMYZ5OSKB845Faf/i+kXP0M1QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIFrP4Zv UJaMEY6zIReSZ3vHGpJZMB8GA1UdIwQYMBaAFGNZMJ70m0RfbrUzG98KlMXG78N7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTM1RC9GNTAwRjcyODhB QjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJGOXV0VE1iM3dxVXhjYnZ3 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxa3dudlNiUkY5dXRUTWIzd3FVeGNidnczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTM1RC9GNTAwRjcyODhBQjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJG OXV0VE1iM3dxVXhjYnZ3M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkDYpqCyni1rQNvcaMEEwaFO1P8Nq3ewlIX8MY0dXhPVZ6B8ZcWkDj 6CkZbi04NibJwIZnspJWWsy40708crNwRWbd9Fkc03MNw4WkWAbkddgDcmfJOOcE Vre3n6lIAZQhvPevLK/vX98uPWzw/LfrcirwAOjvl8zGtpGFQcrfbTnHEmD64Arf REQpF1g7Z+tL35WTZ80uHHW+oMOHYh1BqQXsV7RCpscjhJK61q76vnRYg0gXjGCJ DXGiAoOil5GYbvWr4296ZVaZ0L3krDHL2bdDcJ2STavjKccKB3d2BafJQlOifeaU LjSYG4HzF/rUx2FSrNhGFj4MURLKQ9vg -----END CERTIFICATE-----Generated at Sun May 19 01:47:15 2024 by rpki-client on console-ams.rpki-client.org