$ rpki-client -vvf rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft File: ybTeSHSWW_87LwRxASJXfm2bHRQ.mft (raw, json) Hash identifier: p06PJvIAgS8ffuFBG7PdWPSp2Vp0/2EMm+PecKb6zAA= Subject key identifier: 1D:C4:D3:25:2A:65:4B:FF:F2:51:56:3E:AB:9E:3D:51:45:64:96:A5 Authority key identifier: C9:B4:DE:48:74:96:5B:FF:3B:2F:04:71:01:22:57:7E:6D:9B:1D:14 Certificate issuer: /CN=A91B166D/serialNumber=C9B4DE4874965BFF3B2F04710122577E6D9B1D14 Certificate serial: 0B1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybTeSHSWW_87LwRxASJXfm2bHRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft Manifest number: 0B13 Signing time: Sat 18 May 2024 19:52:38 +0000 Manifest this update: Sat 18 May 2024 19:52:37 +0000 Manifest next update: Sat 25 May 2024 19:52:37 +0000 Files and hashes: 1: ybTeSHSWW_87LwRxASJXfm2bHRQ.crl (hash: yVMKwZ0doe/gettsCrYW6gMD2h5mkeE3IW5uEI5ZZEM=) 2: AA378BD6405111ECB91F2A37C4F9AE02.roa (hash: OZYL23mGG9CPsVcj8UrHa3HS/iPUrNbOkuZRw+Rgyck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.crl rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybTeSHSWW_87LwRxASJXfm2bHRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2844 (0xb1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B166D/serialNumber=C9B4DE4874965BFF3B2F04710122577E6D9B1D14 Validity Not Before: May 18 19:52:37 2024 GMT Not After : May 25 19:52:37 2024 GMT Subject: CN=66490706-f852 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2a:86:16:9c:0f:75:86:45:1b:23:35:14:70: 64:a2:da:fe:eb:bc:28:d9:20:24:d7:80:62:f5:86: 34:0d:20:3b:49:39:fd:9b:78:da:47:2d:ca:51:c7: de:1f:3f:b4:73:3b:e1:ea:d4:6b:84:c6:9b:5e:41: 8d:08:0f:0b:40:3b:3d:df:dc:fb:42:4e:31:04:5e: 30:92:3b:13:cf:af:f7:7e:85:7b:ba:88:cd:55:cd: 18:9a:6b:76:73:99:82:95:c1:19:66:af:df:24:f0: 79:13:25:af:cc:66:6f:40:05:f8:2e:19:5d:42:14: 79:f5:6c:65:ce:58:12:49:3e:e5:5e:66:f0:99:c3: e4:94:d6:51:e8:3b:da:d0:df:57:c4:69:4f:37:a6: cf:f5:6b:1c:ef:13:f0:c2:f5:50:07:87:d8:48:04: e3:8e:b4:ef:7e:ea:f6:8d:8b:5f:4a:84:69:c2:bd: cd:54:3b:a8:15:9c:68:10:e4:17:73:f5:20:54:4e: 6c:18:23:3f:e0:fe:17:d1:af:6b:d7:88:c0:53:7a: 9d:c0:a0:ba:de:16:ca:e6:0c:e4:09:b9:39:16:86: f6:d6:ff:77:2b:e6:b3:ca:fa:3f:f4:87:86:1f:52: 19:b3:1d:94:ac:39:7f:6e:56:00:1d:10:7b:c3:d1: 54:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C4:D3:25:2A:65:4B:FF:F2:51:56:3E:AB:9E:3D:51:45:64:96:A5 X509v3 Authority Key Identifier: keyid:C9:B4:DE:48:74:96:5B:FF:3B:2F:04:71:01:22:57:7E:6D:9B:1D:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybTeSHSWW_87LwRxASJXfm2bHRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:59:52:04:4b:33:fd:20:77:3c:ca:81:f7:f3:3d:2b:1d:25: 27:45:8b:5c:ba:ed:3d:91:68:8d:c1:67:cb:bf:0f:c0:a2:77: f1:8b:ee:0f:64:5b:2d:b1:26:03:51:3e:47:85:8a:2b:e2:f1: 96:6a:95:20:ef:de:b8:f5:5f:3f:d0:df:a3:71:86:f1:5c:69: 9a:47:5d:e8:4c:c7:88:3c:6b:bd:a0:86:ed:7d:db:78:7b:a7: 93:94:b5:64:cd:5e:26:be:8d:b7:9a:18:63:93:fd:9f:51:0a: 05:71:e1:44:4e:84:f9:2b:ba:d6:a0:b2:01:34:c7:1f:50:e6: 0e:bd:47:88:23:c6:c7:9e:f9:c8:3e:d2:1b:9f:27:50:64:c6: 9b:75:a6:25:95:c8:fe:79:a4:a7:46:e9:f7:3a:9d:1e:10:14: 0c:96:3f:77:ef:15:de:6e:54:6a:8c:2a:16:5e:91:9b:6a:93: 0d:fa:fb:ab:0b:ac:77:b0:7a:d3:2c:21:69:39:20:8b:2a:50: db:a9:0f:c3:cd:b7:ff:74:49:38:bc:e6:be:7b:3e:18:34:92: 94:75:76:52:dc:a8:30:3a:e1:ec:3d:da:4b:86:7c:23:74:dd: 5c:a7:08:f0:a0:2f:af:8d:af:68:ed:8f:52:02:29:a4:f0:81: 51:82:07:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE2NkQxMTAvBgNVBAUTKEM5QjRERTQ4NzQ5NjVCRkYzQjJGMDQ3MTAxMjI1NzdF NkQ5QjFEMTQwHhcNMjQwNTE4MTk1MjM3WhcNMjQwNTI1MTk1MjM3WjAYMRYwFAYD VQQDEw02NjQ5MDcwNi1mODUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyqGFpwPdYZFGyM1FHBkotr+67wo2SAk14Bi9YY0DSA7STn9m3jaRy3KUcfe Hz+0czvh6tRrhMabXkGNCA8LQDs939z7Qk4xBF4wkjsTz6/3foV7uojNVc0Ymmt2 c5mClcEZZq/fJPB5EyWvzGZvQAX4LhldQhR59WxlzlgSST7lXmbwmcPklNZR6Dva 0N9XxGlPN6bP9Wsc7xPwwvVQB4fYSATjjrTvfur2jYtfSoRpwr3NVDuoFZxoEOQX c/UgVE5sGCM/4P4X0a9r14jAU3qdwKC63hbK5gzkCbk5Fob21v93K+azyvo/9IeG H1IZsx2UrDl/blYAHRB7w9FU9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3E0yUq ZUv/8lFWPquePVFFZJalMB8GA1UdIwQYMBaAFMm03kh0llv/Oy8EcQEiV35tmx0U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTY2RC8yRTc2MjM1ODFC MUExMUVBOTczODlGNzdDNEY5QUUwMi95YlRlU0hTV1dfODdMd1J4QVNKWGZtMmJI UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3liVGVTSFNXV184N0x3UnhBU0pYZm0yYkhSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTY2RC8yRTc2MjM1ODFCMUExMUVBOTczODlGNzdDNEY5QUUwMi95YlRlU0hTV1df ODdMd1J4QVNKWGZtMmJIUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnWVIESzP9IHc8yoH38z0rHSUnRYtcuu09kWiNwWfLvw/Aonfxi+4P ZFstsSYDUT5HhYor4vGWapUg79649V8/0N+jcYbxXGmaR13oTMeIPGu9oIbtfdt4 e6eTlLVkzV4mvo23mhhjk/2fUQoFceFEToT5K7rWoLIBNMcfUOYOvUeII8bHnvnI PtIbnydQZMabdaYllcj+eaSnRun3Op0eEBQMlj937xXeblRqjCoWXpGbapMN+vur C6x3sHrTLCFpOSCLKlDbqQ/Dzbf/dEk4vOa+ez4YNJKUdXZS3KgwOuHsPdpLhnwj dN1cpwjwoC+vja9o7Y9SAimk8IFRggex -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org