$ rpki-client -vvf rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.mft File: y8CtGWWFFkH2YRHo4pAmmKm57YA.mft (raw, json) Hash identifier: LAqShsb2mk4h8CDl8GwtRpOAIGBwYxs34YspXb1gytc= Subject key identifier: DC:5F:90:B9:C8:3A:83:C9:4C:71:9C:51:BA:2F:6E:EF:5D:3B:81:3C Authority key identifier: CB:C0:AD:19:65:85:16:41:F6:61:11:E8:E2:90:26:98:A9:B9:ED:80 Certificate issuer: /CN=A91C38CC/serialNumber=CBC0AD1965851641F66111E8E2902698A9B9ED80 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8CtGWWFFkH2YRHo4pAmmKm57YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.mft Manifest number: 2A Signing time: Sun 19 May 2024 08:28:25 +0000 Manifest this update: Sun 19 May 2024 08:28:24 +0000 Manifest next update: Sun 26 May 2024 08:28:24 +0000 Files and hashes: 1: y8CtGWWFFkH2YRHo4pAmmKm57YA.crl (hash: VT/azOLiA2oB1kggfPwIkN8pw8r2yFLHwLbu4bvT7KY=) 2: CA2A06D6D5E511EE9B319A12C4F9AE02.roa (hash: Qq5UU0tcDxAU8exKz+6U8pmnC5amKrv1RDGkSY0cphM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.crl rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8CtGWWFFkH2YRHo4pAmmKm57YA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C38CC/serialNumber=CBC0AD1965851641F66111E8E2902698A9B9ED80 Validity Not Before: May 19 08:28:24 2024 GMT Not After : May 26 08:28:24 2024 GMT Subject: CN=6649b829-8a14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:93:d5:29:28:34:94:48:b6:9c:18:33:41:4c: 96:77:bb:9a:aa:66:d6:ba:32:e0:a2:ae:31:e1:68: d6:47:ef:b5:98:19:b2:02:23:a2:9c:1b:3b:05:c7: 8c:ed:64:a5:f1:f0:10:17:5f:aa:df:58:b1:27:0f: d1:cd:1c:df:97:ed:df:d6:e7:b2:08:9e:a7:8b:a8: df:16:03:a9:f2:e1:a7:df:4a:89:00:8b:e7:39:0f: d8:88:80:41:27:7a:29:f0:04:bc:ce:45:30:ca:31: e6:35:fe:79:25:3b:af:89:46:ac:40:b9:2c:39:43: 1e:d1:9b:a7:dc:47:4d:33:a7:00:6b:02:57:8e:76: 76:8b:b6:cf:6d:01:b2:5a:82:fc:f6:fc:6f:a5:cf: 8c:f7:bd:5a:43:68:53:89:f1:ad:9d:c7:f3:4b:00: ee:11:73:d0:57:93:e0:70:9c:74:72:04:62:29:db: c7:d3:d3:f9:fe:c1:de:7c:4d:29:ea:27:28:d9:ea: a1:06:be:0c:49:b0:e6:04:29:f2:ae:f6:a4:e9:b2: 35:5c:17:cc:cf:91:d0:21:06:b6:d9:d9:07:de:a3: a4:b3:94:de:40:95:2a:d5:40:23:a3:4f:cb:e9:a4: 5a:c7:b0:b5:22:f9:6e:f7:9d:cb:7f:4f:1b:74:91: 1f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:5F:90:B9:C8:3A:83:C9:4C:71:9C:51:BA:2F:6E:EF:5D:3B:81:3C X509v3 Authority Key Identifier: keyid:CB:C0:AD:19:65:85:16:41:F6:61:11:E8:E2:90:26:98:A9:B9:ED:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8CtGWWFFkH2YRHo4pAmmKm57YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:ab:f3:71:5a:41:85:57:02:28:45:4c:0e:c8:8c:d9:0c:e6: ca:ea:97:a7:29:6a:2b:11:af:31:b6:78:dd:32:2a:8d:dd:06: 39:de:17:b7:81:e6:bd:da:e2:f5:75:29:f9:57:26:22:51:d1: cd:38:2c:84:b2:4c:ea:19:15:62:79:5f:af:07:52:7d:a9:de: 60:18:06:1a:ba:6c:38:f0:4b:a6:04:fd:11:c9:74:e3:5b:45: 27:47:9e:cb:db:50:a0:ff:96:d4:01:2e:2c:cb:9b:98:ec:53: 8d:61:83:0c:8a:3d:8b:bb:bb:bd:65:24:5f:6d:6d:b1:1a:7c: ab:fc:85:14:5b:81:fb:a8:c8:57:ca:a0:cf:cc:01:35:bf:61: 82:6e:f7:06:e5:b3:cb:a4:34:42:ea:d7:04:a6:09:7f:fb:3e: d5:77:aa:36:a5:0c:f0:85:63:db:3c:bd:bc:7a:90:e6:35:51: 4b:d7:77:b2:6f:33:b4:ca:5f:f2:a2:6f:58:80:f4:80:ba:97: 6a:23:c6:d5:61:a4:f1:6e:69:5d:64:ab:a7:95:e8:55:93:91: b4:5e:9d:a7:33:d0:94:ee:c6:a5:43:70:53:f5:6d:6c:38:94: ab:24:62:37:47:3b:30:1f:2b:d1:37:27:35:10:2a:57:c8:52: 9a:2c:c1:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MzhDQzExMC8GA1UEBRMoQ0JDMEFEMTk2NTg1MTY0MUY2NjExMUU4RTI5MDI2OThB OUI5RUQ4MDAeFw0yNDA1MTkwODI4MjRaFw0yNDA1MjYwODI4MjRaMBgxFjAUBgNV BAMTDTY2NDliODI5LThhMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCUk9UpKDSUSLacGDNBTJZ3u5qqZta6MuCirjHhaNZH77WYGbICI6KcGzsFx4zt ZKXx8BAXX6rfWLEnD9HNHN+X7d/W57IInqeLqN8WA6ny4affSokAi+c5D9iIgEEn einwBLzORTDKMeY1/nklO6+JRqxAuSw5Qx7Rm6fcR00zpwBrAleOdnaLts9tAbJa gvz2/G+lz4z3vVpDaFOJ8a2dx/NLAO4Rc9BXk+BwnHRyBGIp28fT0/n+wd58TSnq JyjZ6qEGvgxJsOYEKfKu9qTpsjVcF8zPkdAhBrbZ2Qfeo6SzlN5AlSrVQCOjT8vp pFrHsLUi+W73nct/Txt0kR8rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3F+Qucg6 g8lMcZxRui9u7107gTwwHwYDVR0jBBgwFoAUy8CtGWWFFkH2YRHo4pAmmKm57YAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzOENDLzNBQzU3QzhDRDVF NTExRUVCNzc5MjIzRUM0RjlBRTAyL3k4Q3RHV1dGRmtIMllSSG80cEFtbUttNTdZ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveThDdEdXV0ZGa0gyWVJIbzRwQW1tS201N1lBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMz OENDLzNBQzU3QzhDRDVFNTExRUVCNzc5MjIzRUM0RjlBRTAyL3k4Q3RHV1dGRmtI MllSSG80cEFtbUttNTdZQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGir83FaQYVXAihFTA7IjNkM5srql6cpaisRrzG2eN0yKo3dBjneF7eB 5r3a4vV1KflXJiJR0c04LISyTOoZFWJ5X68HUn2p3mAYBhq6bDjwS6YE/RHJdONb RSdHnsvbUKD/ltQBLizLm5jsU41hgwyKPYu7u71lJF9tbbEafKv8hRRbgfuoyFfK oM/MATW/YYJu9wbls8ukNELq1wSmCX/7PtV3qjalDPCFY9s8vbx6kOY1UUvXd7Jv M7TKX/Kib1iA9IC6l2ojxtVhpPFuaV1kq6eV6FWTkbRenacz0JTuxqVDcFP1bWw4 lKskYjdHOzAfK9E3JzUQKlfIUposwXE= -----END CERTIFICATE-----Generated at Sun May 19 09:32:18 2024 by rpki-client on console-ams.rpki-client.org