$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft File: y2yF51LVad_PHekEycvnHkg-9fI.mft (raw, json) Hash identifier: gnkSafd0uESDG1LX8jVndLypBYCqzInaCD8bW7W4gbI= Subject key identifier: 7D:8D:0F:31:C4:0A:27:CA:9B:36:AB:33:0C:71:A0:E4:10:78:67:67 Authority key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 Certificate issuer: /CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Certificate serial: 040F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft Manifest number: 040A Signing time: Sun 19 May 2024 02:08:02 +0000 Manifest this update: Sun 19 May 2024 02:08:02 +0000 Manifest next update: Sun 26 May 2024 02:08:02 +0000 Files and hashes: 1: y2yF51LVad_PHekEycvnHkg-9fI.crl (hash: 6Eh82g43ZhMjmjxgU2ytTEyDTvmrhvLLqHdlxujefmA=) 2: B0A2E01225C411EC88466E59C4F9AE02.roa (hash: I+piLjYGGw6+AkIXPcBrTAOQrjo0ool2PDn7pB5uc1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1039 (0x40f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Validity Not Before: May 19 02:08:02 2024 GMT Not After : May 26 02:08:02 2024 GMT Subject: CN=66495f02-0b11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b2:68:f1:a7:7d:27:4d:ca:40:1e:8b:69:ff: 35:c7:8f:70:be:b9:90:d3:3c:39:69:7d:4b:4b:2c: 42:31:e1:19:65:30:7f:71:0f:42:20:d9:09:7f:56: dc:75:43:48:4a:6c:19:dc:cd:f1:f2:79:05:18:d4: a3:b3:fd:d0:59:f7:87:93:86:ae:41:33:27:e5:cd: 6c:47:cf:db:61:c1:ee:6d:f1:11:85:7d:95:ab:3f: 89:74:d6:04:87:0e:8f:f9:20:9a:34:42:c2:f0:a0: 71:29:76:a4:8a:2a:74:2f:8b:e3:49:09:a5:be:9a: d4:0a:8c:d9:e3:bb:e6:92:f8:db:0a:04:dc:1e:74: ac:1c:7a:01:48:59:88:bb:ee:6e:18:69:ad:26:2c: 11:09:89:f6:8b:3c:01:bb:b0:8a:0e:48:26:f0:c8: 1a:48:8b:db:d2:21:61:f6:e6:20:74:cc:44:e9:27: 3c:01:4c:fd:5a:20:7c:81:9b:62:7b:f7:3b:a8:2d: e6:dd:d5:99:a1:75:f3:4a:83:83:25:e7:8e:fb:33: f4:7d:9c:5a:17:d1:29:48:94:07:ed:03:ef:d6:97: c7:8e:cf:5d:4a:b2:50:5c:59:12:8e:cb:ca:64:b9: ea:91:8f:86:ba:0a:25:00:dc:f7:64:f9:96:0e:55: 2e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:8D:0F:31:C4:0A:27:CA:9B:36:AB:33:0C:71:A0:E4:10:78:67:67 X509v3 Authority Key Identifier: keyid:CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:ec:dd:1a:ac:21:a8:d4:ac:c1:31:14:45:15:58:9c:0a:f5: 18:b3:57:83:0d:1d:9d:22:3f:8c:33:6b:11:24:fe:61:48:c2: 33:8b:2f:da:1a:d4:0d:91:b2:fb:ee:45:7c:09:0a:32:8c:2c: d9:f0:de:42:75:d2:f1:68:51:92:62:8c:fb:53:ae:bb:46:2f: a2:7e:ed:b8:ef:61:01:38:f8:ad:a2:fc:1e:8d:5a:eb:0b:3e: 6d:36:a0:72:b4:14:d6:69:a6:1a:ea:17:4c:75:c6:50:e6:4b: c5:c3:55:78:f7:7e:c5:2d:0b:e3:fe:29:8e:0b:f3:81:22:67: 91:55:52:ad:e5:fc:fa:2d:db:9e:4f:06:de:7b:69:86:17:43: cb:94:e5:04:7f:3d:0c:60:50:44:bd:b9:61:7a:b2:de:09:97: 6d:ee:67:0d:b7:6b:2f:65:52:dd:46:6f:0d:3b:61:ca:96:a3: 66:f8:ca:f6:84:4a:62:1f:f9:91:ef:b0:81:7c:65:8f:b1:07: c6:30:37:58:1c:ca:21:c2:d3:9a:87:f8:11:8a:18:b2:08:0e: 7c:c8:31:d0:ec:89:f3:9b:eb:01:ba:50:b7:82:af:f2:b6:80: e8:b9:4d:96:7d:43:63:f2:1d:01:d9:a7:df:a8:ca:de:b7:ad: ba:c3:44:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKENCNkM4NUU3NTJENTY5REZDRjFERTkwNEM5Q0JFNzFF NDgzRUY1RjIwHhcNMjQwNTE5MDIwODAyWhcNMjQwNTI2MDIwODAyWjAYMRYwFAYD VQQDEw02NjQ5NWYwMi0wYjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2rJo8ad9J03KQB6Laf81x49wvrmQ0zw5aX1LSyxCMeEZZTB/cQ9CINkJf1bc dUNISmwZ3M3x8nkFGNSjs/3QWfeHk4auQTMn5c1sR8/bYcHubfERhX2Vqz+JdNYE hw6P+SCaNELC8KBxKXakiip0L4vjSQmlvprUCozZ47vmkvjbCgTcHnSsHHoBSFmI u+5uGGmtJiwRCYn2izwBu7CKDkgm8MgaSIvb0iFh9uYgdMxE6Sc8AUz9WiB8gZti e/c7qC3m3dWZoXXzSoODJeeO+zP0fZxaF9EpSJQH7QPv1pfHjs9dSrJQXFkSjsvK ZLnqkY+GugolANz3ZPmWDlUuAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2NDzHE CifKmzarMwxxoOQQeGdnMB8GA1UdIwQYMBaAFMtshedS1Wnfzx3pBMnL5x5IPvXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS9CQjUzMjNFODI1 QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFkX1BIZWtFeWN2bkhrZy05 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyeUY1MUxWYWRfUEhla0V5Y3ZuSGtnLTlmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS9CQjUzMjNFODI1QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFk X1BIZWtFeWN2bkhrZy05ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh7N0arCGo1KzBMRRFFVicCvUYs1eDDR2dIj+MM2sRJP5hSMIziy/a GtQNkbL77kV8CQoyjCzZ8N5CddLxaFGSYoz7U667Ri+ifu2472EBOPitovwejVrr Cz5tNqBytBTWaaYa6hdMdcZQ5kvFw1V4937FLQvj/imOC/OBImeRVVKt5fz6Ldue Twbee2mGF0PLlOUEfz0MYFBEvblherLeCZdt7mcNt2svZVLdRm8NO2HKlqNm+Mr2 hEpiH/mR77CBfGWPsQfGMDdYHMohwtOah/gRihiyCA58yDHQ7Inzm+sBulC3gq/y toDouU2WfUNj8h0B2affqMret626w0RT -----END CERTIFICATE-----Generated at Sun May 19 02:39:37 2024 by rpki-client on console-fra.rpki-client.org