$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft File: yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft (raw, json) Hash identifier: DCJFQnFYK/yKFboLhFVj9vJu3B3GqT0QGecUBPjHAm4= Subject key identifier: 72:96:BF:CE:94:3F:BE:77:19:3C:F0:83:6B:06:FA:E3:7A:9F:4B:4B Authority key identifier: C8:90:92:54:F6:96:66:D5:85:E3:10:AC:D8:DF:F2:B1:FB:9A:5F:2A Certificate issuer: /CN=A91B3558/serialNumber=C8909254F69666D585E310ACD8DFF2B1FB9A5F2A Certificate serial: 0FA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft Manifest number: 0F95 Signing time: Sat 18 May 2024 18:06:23 +0000 Manifest this update: Sat 18 May 2024 18:06:23 +0000 Manifest next update: Sat 25 May 2024 18:06:23 +0000 Files and hashes: 1: yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl (hash: Xm2zKaHRUTRRrVEQUWUianx4brbCE/0fPNfC2Wz6ZW8=) 2: 97DCD534391211E99E31F655C4F9AE02.roa (hash: u3zJLIBXmPMMaISzvvvs+ZsNk5/sWyDnDmAG1w53iqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4000 (0xfa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3558/serialNumber=C8909254F69666D585E310ACD8DFF2B1FB9A5F2A Validity Not Before: May 18 18:06:23 2024 GMT Not After : May 25 18:06:23 2024 GMT Subject: CN=6648ee1f-a6ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:20:b9:ca:36:13:c7:e3:ef:2e:b6:4d:d9:ba: 9b:8e:40:11:84:5f:2a:82:32:22:d4:8b:66:b7:c5: 4c:5d:c1:43:3d:36:9e:d9:a6:26:0c:ee:96:de:1d: 56:3a:3c:89:0c:6b:2b:6f:b3:01:69:5c:08:b7:84: 4f:87:64:14:e9:87:6b:51:79:e3:d2:7d:89:fc:88: 99:c0:40:ab:d0:cb:d9:32:39:23:96:7b:3d:61:04: 2d:63:05:fb:cf:e9:3c:cd:02:c9:38:7f:48:9d:0a: bc:58:5a:0f:6c:b0:88:50:0b:fb:9d:ef:b6:4c:5d: aa:58:41:c0:8d:83:5e:44:c8:74:6d:74:32:06:f1: 0a:61:5b:73:97:91:9b:93:70:8c:5c:38:7d:6e:f2: 0c:f0:8c:7c:37:b9:6a:f0:66:14:54:8f:7b:8b:ba: ce:f8:5f:e7:17:10:4c:45:72:0b:1d:89:82:1a:36: 51:d9:f0:0f:b5:2b:9c:88:3b:a9:b2:9b:15:af:ae: dd:a5:df:48:fe:94:2b:15:e0:14:cc:9e:1d:5a:c9: 0a:ea:c4:da:d8:2d:48:d3:f5:42:b2:ad:d3:e1:9c: 7f:c3:92:93:c9:c0:ed:3b:21:2e:da:4f:03:2c:db: 94:1a:64:40:e8:bf:a4:b7:07:fc:9e:36:aa:61:91: a1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:96:BF:CE:94:3F:BE:77:19:3C:F0:83:6B:06:FA:E3:7A:9F:4B:4B X509v3 Authority Key Identifier: keyid:C8:90:92:54:F6:96:66:D5:85:E3:10:AC:D8:DF:F2:B1:FB:9A:5F:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:d3:ae:a0:66:6a:71:1f:8d:8b:94:61:30:f9:6b:c8:03:44: 68:e5:b5:21:3a:5a:53:d9:89:25:33:80:b3:13:a8:c0:6a:77: a4:87:dc:41:03:fc:01:f1:d2:75:a1:a9:37:f2:9d:aa:e5:20: 28:02:9c:6d:3a:31:e0:8f:d3:0c:58:72:04:e0:68:63:bc:fe: 69:a5:8e:66:61:ba:15:5c:c9:9c:5f:45:15:23:8c:2d:40:3f: 81:cd:8a:2e:ba:74:07:f6:65:ca:fe:c4:c9:d7:a4:7e:11:27: 6f:93:0f:24:27:21:57:fc:3f:e1:9e:d7:3e:ca:0f:2c:5e:44: 52:16:3b:06:f1:59:fa:7c:50:8a:0e:34:5a:6f:f9:85:41:ca: 19:36:a9:a7:8a:d3:97:3e:5f:76:96:c3:f9:82:c5:0f:6b:a0: 95:ac:5a:41:e4:e8:a7:17:a6:10:4f:6b:9d:eb:76:82:fa:70: b8:45:20:00:e2:15:7a:8a:50:24:63:5f:26:6c:d0:b2:40:60: 4f:c8:d4:64:65:20:52:6e:5b:eb:ed:35:cb:6b:af:fe:f1:85: 2e:c2:67:f7:ea:88:ea:d2:62:a7:2f:eb:51:fe:ef:99:d6:8d: be:86:5f:f8:bf:37:b0:70:d9:e1:e1:72:43:c4:91:c2:5a:4c: d0:c6:b2:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1NTgxMTAvBgNVBAUTKEM4OTA5MjU0RjY5NjY2RDU4NUUzMTBBQ0Q4REZGMkIx RkI5QTVGMkEwHhcNMjQwNTE4MTgwNjIzWhcNMjQwNTI1MTgwNjIzWjAYMRYwFAYD VQQDEw02NjQ4ZWUxZi1hNmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiC5yjYTx+PvLrZN2bqbjkARhF8qgjIi1Itmt8VMXcFDPTae2aYmDO6W3h1W OjyJDGsrb7MBaVwIt4RPh2QU6YdrUXnj0n2J/IiZwECr0MvZMjkjlns9YQQtYwX7 z+k8zQLJOH9InQq8WFoPbLCIUAv7ne+2TF2qWEHAjYNeRMh0bXQyBvEKYVtzl5Gb k3CMXDh9bvIM8Ix8N7lq8GYUVI97i7rO+F/nFxBMRXILHYmCGjZR2fAPtSuciDup spsVr67dpd9I/pQrFeAUzJ4dWskK6sTa2C1I0/VCsq3T4Zx/w5KTycDtOyEu2k8D LNuUGmRA6L+ktwf8njaqYZGhewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKWv86U P753GTzwg2sG+uN6n0tLMB8GA1UdIwQYMBaAFMiQklT2lmbVheMQrNjf8rH7ml8q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzU1OC8wRjIxMjE0RTM5 MDUxMUU5OUEzMzAyMzNDNEY5QUUwMi95SkNTVlBhV1p0V0Y0eENzMk5feXNmdWFY eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lKQ1NWUGFXWnRXRjR4Q3MyTl95c2Z1YVh5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzU1OC8wRjIxMjE0RTM5MDUxMUU5OUEzMzAyMzNDNEY5QUUwMi95SkNTVlBhV1p0 V0Y0eENzMk5feXNmdWFYeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT066gZmpxH42LlGEw+WvIA0Ro5bUhOlpT2YklM4CzE6jAanekh9xB A/wB8dJ1oak38p2q5SAoApxtOjHgj9MMWHIE4GhjvP5ppY5mYboVXMmcX0UVI4wt QD+BzYouunQH9mXK/sTJ16R+ESdvkw8kJyFX/D/hntc+yg8sXkRSFjsG8Vn6fFCK DjRab/mFQcoZNqmnitOXPl92lsP5gsUPa6CVrFpB5OinF6YQT2ud63aC+nC4RSAA 4hV6ilAkY18mbNCyQGBPyNRkZSBSblvr7TXLa6/+8YUuwmf36ojq0mKnL+tR/u+Z 1o2+hl/4vzewcNnh4XJDxJHCWkzQxrKO -----END CERTIFICATE-----Generated at Sat May 18 19:15:25 2024 by rpki-client on console-ams.rpki-client.org