$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C43/DC2F546839E411EA96173374C4F9AE02/ygziy6mc3g2QJ_zkhk8myRPUGeM.mft File: ygziy6mc3g2QJ_zkhk8myRPUGeM.mft (raw, json) Hash identifier: 0e4OF1UI4CQuoL3cXls0RLr/s4mEX7rfvYABkFQkXnI= Subject key identifier: D1:47:1F:11:3E:1F:A7:11:A0:D0:60:16:D8:E3:33:BF:D7:C4:92:1E Authority key identifier: CA:0C:E2:CB:A9:9C:DE:0D:90:27:FC:E4:86:4F:26:C9:13:D4:19:E3 Certificate issuer: /CN=A91B2C43/serialNumber=CA0CE2CBA99CDE0D9027FCE4864F26C913D419E3 Certificate serial: 0A9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygziy6mc3g2QJ_zkhk8myRPUGeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C43/DC2F546839E411EA96173374C4F9AE02/ygziy6mc3g2QJ_zkhk8myRPUGeM.mft Manifest number: 0A88 Signing time: Sat 18 May 2024 20:17:17 +0000 Manifest this update: Sat 18 May 2024 20:17:16 +0000 Manifest next update: Sat 25 May 2024 20:17:16 +0000 Files and hashes: 1: ygziy6mc3g2QJ_zkhk8myRPUGeM.crl (hash: WAsMOV/HQvBu8SWr5z5dImNcVUx49a7HebU8cug0A/g=) 2: AD989788E05511EEADC7D67EC4F9AE02.roa (hash: bSu0/aJwqyDIpSQexz7gKeDLygCiwIxJotGQrEfJHow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C43/DC2F546839E411EA96173374C4F9AE02/ygziy6mc3g2QJ_zkhk8myRPUGeM.crl rsync://rpki.apnic.net/member_repository/A91B2C43/DC2F546839E411EA96173374C4F9AE02/ygziy6mc3g2QJ_zkhk8myRPUGeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygziy6mc3g2QJ_zkhk8myRPUGeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2718 (0xa9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C43/serialNumber=CA0CE2CBA99CDE0D9027FCE4864F26C913D419E3 Validity Not Before: May 18 20:17:16 2024 GMT Not After : May 25 20:17:16 2024 GMT Subject: CN=66490ccc-30fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:fe:bf:4e:f0:51:f8:03:bc:22:d9:cb:2b:8f: 93:e5:6d:5d:b4:0f:20:01:fe:a1:ef:b8:90:12:05: dd:e9:65:a9:ad:0c:5c:88:7a:6f:c4:22:c1:71:07: 4a:01:be:f0:5a:fb:71:35:81:6d:62:c1:07:3b:7d: 6f:bd:0d:19:21:e4:37:0f:a0:9a:1e:c6:49:4c:af: e9:73:97:cc:aa:65:d5:ce:ba:09:1d:43:46:1a:70: 49:b2:05:d6:8c:32:93:38:2f:7b:ab:45:a3:5c:75: 68:59:ca:8c:63:33:25:9d:b1:bc:69:7a:f7:89:16: b6:6e:13:00:6a:bb:f9:4d:24:4d:c9:0f:7d:cb:ab: f3:c1:cc:64:2f:e7:1a:cc:60:09:3c:7e:d1:7c:b9: e2:ff:26:73:ac:be:5c:73:0d:69:88:ec:92:20:1c: bc:65:eb:06:ab:7d:ad:3c:32:02:8a:8d:6c:a6:4b: 5e:8e:01:d1:5c:dc:fa:5b:64:23:d4:af:9e:0b:27: e3:09:82:90:b6:4f:70:27:ba:53:07:bf:12:da:48: 82:a2:83:83:34:09:28:7e:23:c5:7d:9c:53:d5:89: 59:d7:ce:5a:2c:10:f6:91:7c:b2:65:4e:38:9d:b3: 2d:e6:29:bc:fc:4c:47:15:38:4c:5f:37:52:2f:24: bc:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:47:1F:11:3E:1F:A7:11:A0:D0:60:16:D8:E3:33:BF:D7:C4:92:1E X509v3 Authority Key Identifier: keyid:CA:0C:E2:CB:A9:9C:DE:0D:90:27:FC:E4:86:4F:26:C9:13:D4:19:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C43/DC2F546839E411EA96173374C4F9AE02/ygziy6mc3g2QJ_zkhk8myRPUGeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygziy6mc3g2QJ_zkhk8myRPUGeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C43/DC2F546839E411EA96173374C4F9AE02/ygziy6mc3g2QJ_zkhk8myRPUGeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:39:75:d7:01:82:02:46:01:cc:8d:a6:3b:77:a1:83:38:f1: e5:2b:05:60:04:02:52:2f:65:e5:60:f3:2c:a5:e2:5b:c2:c5: 32:42:ae:a4:c0:b7:05:15:d1:8d:c1:58:c6:d8:4a:cb:46:bc: d8:0f:6f:5a:cf:28:8b:75:3a:f9:5c:36:bd:32:05:e6:66:82: bb:3c:d6:9f:76:6e:f2:cb:7a:30:0a:59:9f:d7:7b:40:b1:32: 0a:df:f4:bb:14:14:cc:28:61:dd:5e:de:92:81:e5:5a:bf:13: ec:6a:ac:9c:9e:67:03:1b:82:96:a3:0f:74:85:17:75:1f:c9: 0d:99:c3:72:ce:f5:e9:a0:7f:0d:a4:4f:4e:fc:c8:c6:37:82: 78:23:57:21:29:17:ee:5c:a0:4e:b9:6e:16:31:10:fe:21:43: 75:7b:b8:ab:7a:30:15:5b:31:ae:5a:3c:07:87:fc:b1:d5:ee: 79:bd:ac:00:cc:56:29:8a:0b:d3:e8:1a:ba:59:f3:f3:ef:24: 5f:35:f8:c2:c8:d5:d4:4c:ee:c6:65:f0:c6:bd:81:c6:7f:f6: c3:60:6d:fa:9b:bb:73:7a:56:38:61:71:09:e6:f7:bb:7a:04: e2:46:e3:22:7c:72:9d:3d:ce:3f:66:d4:64:aa:f4:ef:83:ed: 0d:7e:72:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDNDMxMTAvBgNVBAUTKENBMENFMkNCQTk5Q0RFMEQ5MDI3RkNFNDg2NEYyNkM5 MTNENDE5RTMwHhcNMjQwNTE4MjAxNzE2WhcNMjQwNTI1MjAxNzE2WjAYMRYwFAYD VQQDEw02NjQ5MGNjYy0zMGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/6/TvBR+AO8ItnLK4+T5W1dtA8gAf6h77iQEgXd6WWprQxciHpvxCLBcQdK Ab7wWvtxNYFtYsEHO31vvQ0ZIeQ3D6CaHsZJTK/pc5fMqmXVzroJHUNGGnBJsgXW jDKTOC97q0WjXHVoWcqMYzMlnbG8aXr3iRa2bhMAarv5TSRNyQ99y6vzwcxkL+ca zGAJPH7RfLni/yZzrL5ccw1piOySIBy8ZesGq32tPDICio1spktejgHRXNz6W2Qj 1K+eCyfjCYKQtk9wJ7pTB78S2kiCooODNAkofiPFfZxT1YlZ185aLBD2kXyyZU44 nbMt5im8/ExHFThMXzdSLyS8xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFHHxE+ H6cRoNBgFtjjM7/XxJIeMB8GA1UdIwQYMBaAFMoM4supnN4NkCf85IZPJskT1Bnj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM0My9EQzJGNTQ2ODM5 RTQxMUVBOTYxNzMzNzRDNEY5QUUwMi95Z3ppeTZtYzNnMlFKX3praGs4bXlSUFVH ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lneml5Nm1jM2cyUUpfemtoazhteVJQVUdlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM0My9EQzJGNTQ2ODM5RTQxMUVBOTYxNzMzNzRDNEY5QUUwMi95Z3ppeTZtYzNn MlFKX3praGs4bXlSUFVHZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCOXXXAYICRgHMjaY7d6GDOPHlKwVgBAJSL2XlYPMspeJbwsUyQq6k wLcFFdGNwVjG2ErLRrzYD29azyiLdTr5XDa9MgXmZoK7PNafdm7yy3owClmf13tA sTIK3/S7FBTMKGHdXt6SgeVavxPsaqycnmcDG4KWow90hRd1H8kNmcNyzvXpoH8N pE9O/MjGN4J4I1chKRfuXKBOuW4WMRD+IUN1e7irejAVWzGuWjwHh/yx1e55vawA zFYpigvT6Bq6WfPz7yRfNfjCyNXUTO7GZfDGvYHGf/bDYG36m7tzelY4YXEJ5ve7 egTiRuMifHKdPc4/ZtRkqvTvg+0NfnJV -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org