$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: uIh532IwUrlc4CM8YsOJchPHC4THFPPs9gmnAXxpbCI= Subject key identifier: CA:20:4A:DD:C7:E5:EA:7B:2E:13:11:08:10:43:1F:76:CE:60:D3:5A Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: EF Signing time: Sun 19 May 2024 05:51:45 +0000 Manifest this update: Sun 19 May 2024 05:51:44 +0000 Manifest next update: Sun 26 May 2024 05:51:44 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: ddriJHYFvM5SVV/T90f97LWgyhp44gi1x0E0aw0WemI=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: VONiHwejXacpBeR7rVkbydMQIhwSgiZRwegZVDVvf5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: May 19 05:51:44 2024 GMT Not After : May 26 05:51:44 2024 GMT Subject: CN=66499371-c6a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1e:04:d2:68:48:e8:4e:54:95:e7:90:f1:c8: f4:89:25:c1:6e:b2:a9:78:19:6b:e5:76:89:3f:da: 8c:14:2c:e0:59:c0:75:ab:45:67:19:d1:9a:75:9b: 66:c6:65:fd:d2:e6:bc:ef:37:27:30:0b:b2:d2:96: 4c:a8:ab:d6:8e:15:e7:11:dc:e9:3b:2f:1e:62:5a: c0:8b:87:31:1d:21:c2:c5:48:b6:eb:4c:8e:9f:86: 14:b3:c4:d3:6f:00:1d:2d:36:b4:7c:8b:9b:f3:99: b0:5c:2b:16:88:6f:3e:59:7d:10:49:f9:82:26:cd: 40:5c:d2:13:6b:95:d4:0d:bb:ce:da:c5:82:15:b8: d2:61:91:76:8b:f7:ba:a8:b6:9b:17:29:93:a1:ea: 75:8d:bb:04:b5:94:40:89:22:fb:29:d8:39:dd:7a: bd:d5:20:3d:ba:ce:7e:d8:13:7e:43:8f:bb:a7:e7: 37:81:4d:81:75:57:6f:03:f3:8f:49:24:40:ee:3d: 06:d5:f0:0d:ac:3b:d4:cc:8a:8e:17:33:a6:40:7d: 89:2a:a2:4d:b6:c4:a3:59:7a:91:aa:83:97:98:69: 7e:8e:7c:92:b0:14:b5:cb:b5:71:59:47:cf:95:ee: 7a:fe:c7:d7:e5:11:6d:31:cc:b3:af:c3:f7:95:7a: 21:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:20:4A:DD:C7:E5:EA:7B:2E:13:11:08:10:43:1F:76:CE:60:D3:5A X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:ab:a4:3c:18:fd:eb:4a:47:85:f9:cb:e9:ec:4d:e1:21:d4: bf:40:50:6e:34:a9:cc:6b:55:df:3c:5e:7b:37:56:6a:d7:ee: 7e:e2:bf:e5:1e:82:48:54:21:58:fc:f1:8f:0b:06:a6:55:c1: 6e:3c:55:70:1b:a5:e6:bd:c5:04:a2:a3:3d:2e:4b:36:48:2b: 73:dd:18:dd:aa:aa:ce:69:89:28:01:92:a5:95:d7:89:0e:05: 67:eb:0a:3c:df:e0:9f:3a:cc:be:51:eb:0f:fb:ee:72:fe:51: b7:eb:82:ad:df:74:c4:92:ad:d0:0a:5b:48:33:8e:5d:9c:cc: ea:45:3b:c4:e1:ce:52:6a:68:a3:18:bf:d4:c3:4f:3c:8f:3b: 65:d6:f8:31:d8:48:af:6a:55:2d:6b:b3:42:c5:f2:d0:1b:d0: 8c:d1:2b:af:0b:50:a1:77:80:3d:94:23:4a:d2:d8:27:be:62: ff:ae:5d:cb:19:02:09:6f:48:da:9b:41:62:47:80:64:37:9e: c1:c1:5f:3b:02:c6:b4:6e:e4:71:58:cb:6b:ac:03:43:98:d3: 30:0a:c0:48:e9:b9:82:46:9e:59:24:84:a1:ca:c1:26:ad:c1: 4d:6b:ee:5e:48:de:29:77:55:28:c8:ce:71:af:f5:9b:10:ba: 4d:00:a5:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjQwNTE5MDU1MTQ0WhcNMjQwNTI2MDU1MTQ0WjAYMRYwFAYD VQQDEw02NjQ5OTM3MS1jNmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6R4E0mhI6E5UleeQ8cj0iSXBbrKpeBlr5XaJP9qMFCzgWcB1q0VnGdGadZtm xmX90ua87zcnMAuy0pZMqKvWjhXnEdzpOy8eYlrAi4cxHSHCxUi260yOn4YUs8TT bwAdLTa0fIub85mwXCsWiG8+WX0QSfmCJs1AXNITa5XUDbvO2sWCFbjSYZF2i/e6 qLabFymToep1jbsEtZRAiSL7Kdg53Xq91SA9us5+2BN+Q4+7p+c3gU2BdVdvA/OP SSRA7j0G1fANrDvUzIqOFzOmQH2JKqJNtsSjWXqRqoOXmGl+jnySsBS1y7VxWUfP le56/sfX5RFtMcyzr8P3lXoh5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMogSt3H 5ep7LhMRCBBDH3bOYNNaMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZq6Q8GP3rSkeF+cvp7E3hIdS/QFBuNKnMa1XfPF57N1Zq1+5+4r/l HoJIVCFY/PGPCwamVcFuPFVwG6XmvcUEoqM9Lks2SCtz3RjdqqrOaYkoAZKlldeJ DgVn6wo83+CfOsy+UesP++5y/lG364Kt33TEkq3QCltIM45dnMzqRTvE4c5Samij GL/Uw088jztl1vgx2EivalUta7NCxfLQG9CM0SuvC1Chd4A9lCNK0tgnvmL/rl3L GQIJb0jam0FiR4BkN57BwV87Asa0buRxWMtrrANDmNMwCsBI6bmCRp5ZJIShysEm rcFNa+5eSN4pd1UoyM5xr/WbELpNAKX4 -----END CERTIFICATE-----Generated at Sun May 19 07:40:44 2024 by rpki-client on console-fra.rpki-client.org