$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft File: YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft (raw, json) Hash identifier: C222704FDEkJiZ2yuaXVUkOtexGLJ3g80R7sBPamX/g= Subject key identifier: 71:73:5A:69:51:6E:1C:3E:91:52:E5:47:D4:68:F1:D0:3D:90:42:7F Authority key identifier: 60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 Certificate issuer: /CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Certificate serial: 071F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft Manifest number: 0717 Signing time: Sat 18 May 2024 22:38:08 +0000 Manifest this update: Sat 18 May 2024 22:38:08 +0000 Manifest next update: Sat 25 May 2024 22:38:08 +0000 Files and hashes: 1: YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl (hash: eZoFz5eqoZOwlI9ISeibKquIijYXmjvK8P4NqPQHClU=) 2: 0A66C1B0C60711EE8FCEFB7AC4F9AE02.roa (hash: Cv4buu4tGegNo3sfekNQZw2bOzJ5sxdUUegkAC9I2Ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1823 (0x71f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Validity Not Before: May 18 22:38:08 2024 GMT Not After : May 25 22:38:08 2024 GMT Subject: CN=66492dd0-99d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:96:b3:e2:2a:29:e5:8f:cd:89:00:69:8d:50: f9:c8:96:3f:be:d0:16:67:15:63:ee:7f:ef:79:13: f4:1b:a0:9a:6f:23:1a:9e:2b:3c:cf:59:4f:4d:c6: b3:bf:e6:75:f7:e6:0b:dc:74:4f:35:d7:ba:22:14: 37:5a:d2:d5:5f:70:7b:7b:f2:94:80:2d:f4:88:23: 7a:28:2d:fa:24:47:cb:31:cf:76:af:fc:ce:f2:b9: 60:24:43:6b:53:20:c4:69:c0:bf:91:b8:dd:3a:b9: e2:f8:c2:cd:0b:79:8c:bb:bd:a0:2e:7c:0f:dd:95: 41:55:28:a5:b2:25:4f:fe:58:08:15:51:41:b7:4d: 0b:5b:e8:a2:dc:56:d6:be:d8:35:3f:71:4a:20:55: c4:c2:0a:61:10:52:2d:53:4d:e1:7e:38:52:80:70: 9f:eb:f1:53:7f:ab:b4:0f:1a:b5:17:c0:6f:7a:70: 55:36:71:73:29:01:8d:96:5e:f1:82:72:04:77:85: a2:39:38:9a:77:66:fa:7d:6d:88:f3:c4:64:e7:74: 0d:7f:6e:c2:5d:a3:91:f9:34:3c:bc:10:9b:86:9f: 7e:de:9c:60:92:69:1c:77:52:13:fd:5f:47:b1:c8: 7b:da:a1:5a:7f:95:9b:c2:92:ad:a4:c5:65:d4:2b: b8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:73:5A:69:51:6E:1C:3E:91:52:E5:47:D4:68:F1:D0:3D:90:42:7F X509v3 Authority Key Identifier: keyid:60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:f6:b4:6e:32:f7:f0:31:4b:6d:94:e2:6b:4d:e7:f7:84:71: d4:0c:ed:52:18:9a:75:18:77:64:12:40:09:42:52:53:93:c0: bd:9d:ec:0d:70:22:2a:f8:a4:00:a9:ba:71:ce:a7:20:76:25: 16:3b:f0:f5:4e:f8:c8:50:c1:f9:96:ef:9b:78:49:8c:c9:62: 86:2d:0e:a8:69:88:c4:af:42:68:c8:07:f7:5c:df:98:a8:96: bd:2c:b9:99:f7:f4:ec:e2:7f:93:05:0d:46:c3:c8:18:e3:75: e4:b6:3c:28:01:35:a8:d3:b8:63:71:b4:df:77:11:1a:5f:6f: 30:72:9f:f6:58:65:13:0c:ee:f0:23:4d:13:2c:c7:d5:eb:2d: 73:96:fc:31:59:a9:c4:3c:b4:c5:37:1d:6a:de:ff:a0:e9:45: bc:da:86:23:4f:a8:60:22:72:33:7b:30:a6:9f:b0:ad:9c:f2: 1a:05:96:33:f8:34:6e:39:c2:b0:0c:10:68:9b:7b:7e:9a:fd: 87:18:85:11:af:e1:fd:1f:d5:f3:37:19:4a:b8:4d:c6:54:30: a5:10:ff:27:89:ec:60:0c:44:f1:9b:39:80:d2:0f:4d:07:15: 69:dc:17:36:fc:69:9f:51:3a:dc:f0:dd:7f:18:9e:34:43:d9: 89:63:1b:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzQzYxMTAvBgNVBAUTKDYwNkVFODVEQzNDNDY3RkM0NjRBODk0RUQ0N0E5RjFC RDMyMUI0NDEwHhcNMjQwNTE4MjIzODA4WhcNMjQwNTI1MjIzODA4WjAYMRYwFAYD VQQDEw02NjQ5MmRkMC05OWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25az4iop5Y/NiQBpjVD5yJY/vtAWZxVj7n/veRP0G6CabyManis8z1lPTcaz v+Z19+YL3HRPNde6IhQ3WtLVX3B7e/KUgC30iCN6KC36JEfLMc92r/zO8rlgJENr UyDEacC/kbjdOrni+MLNC3mMu72gLnwP3ZVBVSilsiVP/lgIFVFBt00LW+ii3FbW vtg1P3FKIFXEwgphEFItU03hfjhSgHCf6/FTf6u0Dxq1F8BvenBVNnFzKQGNll7x gnIEd4WiOTiad2b6fW2I88Rk53QNf27CXaOR+TQ8vBCbhp9+3pxgkmkcd1IT/V9H sch72qFaf5WbwpKtpMVl1Cu4mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFzWmlR bhw+kVLlR9Ro8dA9kEJ/MB8GA1UdIwQYMBaAFGBu6F3DxGf8RkqJTtR6nxvTIbRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNDNi82MzFDQzE2MEYz MzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpfeEdTb2xPMUhxZkc5TWh0 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lHN29YY1BFWl94R1NvbE8xSHFmRzlNaHRFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjNDNi82MzFDQzE2MEYzMzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpf eEdTb2xPMUhxZkc5TWh0RUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY9rRuMvfwMUttlOJrTef3hHHUDO1SGJp1GHdkEkAJQlJTk8C9newN cCIq+KQAqbpxzqcgdiUWO/D1TvjIUMH5lu+beEmMyWKGLQ6oaYjEr0JoyAf3XN+Y qJa9LLmZ9/Ts4n+TBQ1Gw8gY43XktjwoATWo07hjcbTfdxEaX28wcp/2WGUTDO7w I00TLMfV6y1zlvwxWanEPLTFNx1q3v+g6UW82oYjT6hgInIzezCmn7CtnPIaBZYz +DRuOcKwDBBom3t+mv2HGIURr+H9H9XzNxlKuE3GVDClEP8niexgDETxmzmA0g9N BxVp3Bc2/GmfUTrc8N1/GJ40Q9mJYxvC -----END CERTIFICATE-----Generated at Sun May 19 00:16:18 2024 by rpki-client on console-fra.rpki-client.org