$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft File: yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft (raw, json) Hash identifier: +gAgyj7lQkiQ7vXpoawKwJOoKk19B0lut7TND34gwBU= Subject key identifier: 70:43:1B:2F:29:C1:0C:1F:5B:62:57:76:AB:E6:4D:A0:D4:31:6C:40 Authority key identifier: C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54 Certificate issuer: /CN=A91B49F2/serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54 Certificate serial: 0D81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft Manifest number: 0D71 Signing time: Sat 18 May 2024 18:37:19 +0000 Manifest this update: Sat 18 May 2024 18:37:19 +0000 Manifest next update: Sat 25 May 2024 18:37:19 +0000 Files and hashes: 1: yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl (hash: qfWeIYyDAJm30cXtw5hpxe/ABjnB0kVjtEOLv1Y8ZcM=) 2: BB0AA59C0A3D11EB82ECEA4BC4F9AE02.roa (hash: vDPTpSGs9ZOjYuc7NUWTQuudWGkrqoK2aHeKLNNMSkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3457 (0xd81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2/serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54 Validity Not Before: May 18 18:37:19 2024 GMT Not After : May 25 18:37:19 2024 GMT Subject: CN=6648f55f-2bb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c6:f8:62:cb:d6:28:3e:8b:3a:ad:84:56:69: c6:3c:b7:ec:7d:8e:cf:73:45:7d:b6:cc:01:e7:73: e9:ed:e2:b3:5d:16:27:f4:56:c7:70:9d:da:69:e9: 3d:0a:e6:36:ef:c7:b4:ac:37:7a:98:77:61:b6:0e: 77:fc:17:d7:0f:e7:87:c4:58:17:f3:a6:b6:9e:d9: b3:61:7f:2e:46:7d:5b:d9:c7:a7:15:25:ea:b9:53: 50:b9:e2:fc:f7:3d:c6:64:de:24:83:93:80:f4:27: e9:d8:2d:38:8f:29:df:fc:bd:a5:99:d5:22:e1:77: 8b:3d:b0:5d:64:49:00:ba:1d:81:69:a1:91:91:e3: 08:7f:08:a9:fc:6b:02:f8:37:ed:a4:5a:10:f3:67: dd:7e:36:b3:7a:61:e2:0c:a7:1c:6c:88:e1:04:6a: 2c:fe:2c:4d:f6:e5:c7:82:70:f4:1d:ae:92:01:0d: 74:0a:18:5d:5c:99:0f:25:96:49:b0:d8:e1:f2:c1: ad:ca:09:65:4a:40:a6:45:45:12:04:b2:08:df:d7: 3d:3e:a0:9c:df:99:7d:11:ab:df:57:93:17:ac:d0: b2:57:f1:62:44:9c:f7:ec:2b:d8:ba:c3:8d:8b:6e: 06:fe:06:29:33:5b:e9:d7:e0:3b:9a:41:82:12:ee: cc:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:43:1B:2F:29:C1:0C:1F:5B:62:57:76:AB:E6:4D:A0:D4:31:6C:40 X509v3 Authority Key Identifier: keyid:C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:7c:71:2b:3e:2e:08:7d:4d:32:63:20:32:d5:19:8c:74:1c: 5d:31:c4:73:b6:4e:6f:af:2e:a7:5f:19:32:69:30:d9:ec:5f: c5:27:5c:76:5f:0a:d6:1e:fa:45:f6:e3:e6:61:a2:62:a5:33: 78:68:fe:d8:78:62:4d:12:76:15:0c:92:ca:77:ff:85:cd:87: 47:35:59:c8:83:bd:dd:44:ab:8f:5c:97:ae:ea:c8:f3:f5:4b: c6:10:6e:0b:34:4c:69:a6:84:b7:50:6f:5d:fe:b6:de:9b:64: 60:38:d9:7c:a9:de:ff:02:89:2f:7a:46:bb:6b:9e:1b:39:e2: 1f:67:bb:c6:28:bc:34:ff:10:58:ce:01:2b:f4:6c:2a:0b:df: 05:af:ac:15:7b:69:87:74:91:f7:19:50:68:2f:00:92:45:72: ff:63:ef:0e:0a:08:e2:f7:c1:ee:d7:d1:e3:e5:f8:1c:b2:aa: f2:2c:7d:a3:9c:0c:dc:9a:6f:42:a8:67:4f:26:25:5f:cc:ec: 38:7d:12:fe:af:03:87:bb:97:ec:78:e0:15:ec:ea:17:db:1f: 33:79:b0:a0:73:b5:7c:9f:57:30:f8:42:16:48:a7:94:2b:00: 52:d9:97:dd:a9:53:f2:a1:b9:d8:d2:d7:5f:f0:15:b9:ab:74: 25:da:0a:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKEM4NzNCQjYxMEI5MTNDM0VDREM3MDhBMjY1QTc0QjEx NDFBNzZGNTQwHhcNMjQwNTE4MTgzNzE5WhcNMjQwNTI1MTgzNzE5WjAYMRYwFAYD VQQDEw02NjQ4ZjU1Zi0yYmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Mb4YsvWKD6LOq2EVmnGPLfsfY7Pc0V9tswB53Pp7eKzXRYn9FbHcJ3aaek9 CuY278e0rDd6mHdhtg53/BfXD+eHxFgX86a2ntmzYX8uRn1b2cenFSXquVNQueL8 9z3GZN4kg5OA9Cfp2C04jynf/L2lmdUi4XeLPbBdZEkAuh2BaaGRkeMIfwip/GsC +DftpFoQ82fdfjazemHiDKccbIjhBGos/ixN9uXHgnD0Ha6SAQ10ChhdXJkPJZZJ sNjh8sGtygllSkCmRUUSBLII39c9PqCc35l9EavfV5MXrNCyV/FiRJz37CvYusON i24G/gYpM1vp1+A7mkGCEu7MEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBDGy8p wQwfW2JXdqvmTaDUMWxAMB8GA1UdIwQYMBaAFMhzu2ELkTw+zccIomWnSxFBp29U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi84MkU0QzJBMEE2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi95SE83WVF1UlBEN054d2lpWmFkTEVVR25i MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lITzdZUXVSUEQ3Tnh3aWlaYWRMRVVHbmIxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlGMi84MkU0QzJBMEE2RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi95SE83WVF1UlBE N054d2lpWmFkTEVVR25iMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjfHErPi4IfU0yYyAy1RmMdBxdMcRztk5vry6nXxkyaTDZ7F/FJ1x2 XwrWHvpF9uPmYaJipTN4aP7YeGJNEnYVDJLKd/+FzYdHNVnIg73dRKuPXJeu6sjz 9UvGEG4LNExppoS3UG9d/rbem2RgONl8qd7/Aokveka7a54bOeIfZ7vGKLw0/xBY zgEr9GwqC98Fr6wVe2mHdJH3GVBoLwCSRXL/Y+8OCgji98Hu19Hj5fgcsqryLH2j nAzcmm9CqGdPJiVfzOw4fRL+rwOHu5fseOAV7OoX2x8zebCgc7V8n1cw+EIWSKeU KwBS2ZfdqVPyobnY0tdf8BW5q3Ql2grL -----END CERTIFICATE-----Generated at Sat May 18 19:15:26 2024 by rpki-client on console-ams.rpki-client.org