$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4D7C/4CF65A86DE3C11EC954ECA59C4F9AE02/ypYLZSt4Zwr6PgknwoSZifn5VM4.mft File: ypYLZSt4Zwr6PgknwoSZifn5VM4.mft (raw, json) Hash identifier: ubJU9GFIqKK9RstiTC2udc0FhKQB7QD4rbY2Es4TXzQ= Subject key identifier: DD:3C:1D:82:28:0A:AD:F7:8D:04:9D:11:C8:84:57:6A:35:8D:16:A7 Authority key identifier: CA:96:0B:65:2B:78:67:0A:FA:3E:09:27:C2:84:99:89:F9:F9:54:CE Certificate issuer: /CN=A91C4D7C/serialNumber=CA960B652B78670AFA3E0927C2849989F9F954CE Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypYLZSt4Zwr6PgknwoSZifn5VM4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4D7C/4CF65A86DE3C11EC954ECA59C4F9AE02/ypYLZSt4Zwr6PgknwoSZifn5VM4.mft Manifest number: 0236 Signing time: Sun 19 May 2024 04:01:40 +0000 Manifest this update: Sun 19 May 2024 04:01:39 +0000 Manifest next update: Sun 26 May 2024 04:01:39 +0000 Files and hashes: 1: ypYLZSt4Zwr6PgknwoSZifn5VM4.crl (hash: HJd/D5owgZ+T1InoWp7x6zdi06TItY4ENxNM0KCrwY4=) 2: 38D281C4EE3B11EC8EE6DA63C4F9AE02.roa (hash: /u0Kxf9z2tsor7smJOehenO1ry6Xed7uZ3J+GBC/RjI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4D7C/4CF65A86DE3C11EC954ECA59C4F9AE02/ypYLZSt4Zwr6PgknwoSZifn5VM4.crl rsync://rpki.apnic.net/member_repository/A91C4D7C/4CF65A86DE3C11EC954ECA59C4F9AE02/ypYLZSt4Zwr6PgknwoSZifn5VM4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypYLZSt4Zwr6PgknwoSZifn5VM4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4D7C/serialNumber=CA960B652B78670AFA3E0927C2849989F9F954CE Validity Not Before: May 19 04:01:39 2024 GMT Not After : May 26 04:01:39 2024 GMT Subject: CN=664979a3-c0da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:01:46:83:72:cc:55:ff:f1:a9:ea:96:88:c5: 69:7b:c7:d0:7a:a7:e8:c6:81:fd:2d:9e:4f:a6:79: da:f2:e8:5d:49:05:de:1c:2f:32:29:1e:a0:20:6b: f1:16:d4:99:c3:98:27:ed:1f:13:64:70:4d:e1:d8: bc:00:f7:74:9b:e7:5a:8d:95:d6:e0:aa:fc:0e:4e: 2b:3c:a2:19:46:20:a5:b6:7f:93:1a:1c:de:c2:4c: 2a:85:d6:5e:da:ad:b2:7a:03:cb:5b:c0:b3:7d:fa: 5f:2d:b0:22:2d:b4:6e:8d:c8:54:df:c3:d4:63:0a: c1:af:c0:af:db:af:f3:4c:68:cc:1b:2a:9a:28:c2: 2e:72:d8:ea:af:7a:c1:45:66:41:a0:7e:43:15:9e: 1e:b1:67:b6:31:33:1d:34:02:90:85:6d:17:71:1b: ec:05:16:4c:26:41:c3:00:b1:da:d4:48:5b:cc:c5: a4:fa:4d:14:f5:f0:ba:e5:61:d3:24:bf:e4:2e:e6: f4:29:14:47:d2:73:fd:67:e8:d2:1b:bc:14:a2:97: c2:e9:c2:8f:1d:9d:95:b2:a8:22:33:1d:47:f4:c3: 8e:8a:b0:85:17:eb:94:74:18:73:a6:b0:15:c7:99: 66:cf:6e:24:78:22:88:90:67:51:d3:ba:58:e2:a2: 18:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3C:1D:82:28:0A:AD:F7:8D:04:9D:11:C8:84:57:6A:35:8D:16:A7 X509v3 Authority Key Identifier: keyid:CA:96:0B:65:2B:78:67:0A:FA:3E:09:27:C2:84:99:89:F9:F9:54:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4D7C/4CF65A86DE3C11EC954ECA59C4F9AE02/ypYLZSt4Zwr6PgknwoSZifn5VM4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypYLZSt4Zwr6PgknwoSZifn5VM4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4D7C/4CF65A86DE3C11EC954ECA59C4F9AE02/ypYLZSt4Zwr6PgknwoSZifn5VM4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:81:aa:bc:d3:03:1f:08:48:af:7d:c5:2e:39:3c:d7:07:69: 43:52:81:36:b2:20:9e:65:44:a3:aa:3b:b4:fc:38:39:47:98: 01:4e:2a:81:86:e8:0d:2f:71:86:1d:ec:18:af:fe:32:49:82: 9d:1d:8f:7f:38:15:7a:8c:99:d8:bc:a6:da:7a:11:40:aa:3b: d1:89:17:9e:77:32:7a:a2:81:81:49:6d:63:41:1d:69:e5:a4: 5e:a4:c3:fa:fc:a6:58:89:97:0a:5d:7f:63:ba:99:c0:fe:f0: 64:fd:29:94:8d:80:a6:21:d4:38:bf:7d:16:95:ed:fc:d9:6f: a9:bb:3f:4b:32:26:53:e4:ac:5d:ce:d8:4e:c9:b5:6c:fc:34: 58:d3:a4:1d:93:58:1d:6b:d1:4f:42:22:8b:ef:a7:9c:f6:af: b5:df:fe:d6:00:12:20:56:94:19:14:ba:9a:9f:4d:0b:ec:74: 60:3c:df:af:8f:96:a0:94:89:0e:40:a0:95:9c:c2:59:51:83: fc:0d:3e:6d:90:76:b2:cf:b3:97:b6:b9:32:ac:9d:e1:dd:1c: 62:bc:2a:cf:8a:e9:34:90:56:a2:b7:e4:41:c3:c1:05:9b:10: f0:88:cf:b5:1c:3e:aa:ea:d0:95:25:1b:63:33:3b:e4:3b:5a: 7a:fe:82:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzREN0MxMTAvBgNVBAUTKENBOTYwQjY1MkI3ODY3MEFGQTNFMDkyN0MyODQ5OTg5 RjlGOTU0Q0UwHhcNMjQwNTE5MDQwMTM5WhcNMjQwNTI2MDQwMTM5WjAYMRYwFAYD VQQDEw02NjQ5NzlhMy1jMGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQFGg3LMVf/xqeqWiMVpe8fQeqfoxoH9LZ5Ppnna8uhdSQXeHC8yKR6gIGvx FtSZw5gn7R8TZHBN4di8APd0m+dajZXW4Kr8Dk4rPKIZRiCltn+TGhzewkwqhdZe 2q2yegPLW8CzffpfLbAiLbRujchU38PUYwrBr8Cv26/zTGjMGyqaKMIuctjqr3rB RWZBoH5DFZ4esWe2MTMdNAKQhW0XcRvsBRZMJkHDALHa1EhbzMWk+k0U9fC65WHT JL/kLub0KRRH0nP9Z+jSG7wUopfC6cKPHZ2VsqgiMx1H9MOOirCFF+uUdBhzprAV x5lmz24keCKIkGdR07pY4qIYFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN08HYIo Cq33jQSdEciEV2o1jRanMB8GA1UdIwQYMBaAFMqWC2UreGcK+j4JJ8KEmYn5+VTO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEQ3Qy80Q0Y2NUE4NkRF M0MxMUVDOTU0RUNBNTlDNEY5QUUwMi95cFlMWlN0NFp3cjZQZ2tud29TWmlmbjVW TTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwWUxaU3Q0WndyNlBna253b1NaaWZuNVZNNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEQ3Qy80Q0Y2NUE4NkRFM0MxMUVDOTU0RUNBNTlDNEY5QUUwMi95cFlMWlN0NFp3 cjZQZ2tud29TWmlmbjVWTTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArgaq80wMfCEivfcUuOTzXB2lDUoE2siCeZUSjqju0/Dg5R5gBTiqB hugNL3GGHewYr/4ySYKdHY9/OBV6jJnYvKbaehFAqjvRiReedzJ6ooGBSW1jQR1p 5aRepMP6/KZYiZcKXX9jupnA/vBk/SmUjYCmIdQ4v30Wle382W+puz9LMiZT5Kxd zthOybVs/DRY06Qdk1gda9FPQiKL76ec9q+13/7WABIgVpQZFLqan00L7HRgPN+v j5aglIkOQKCVnMJZUYP8DT5tkHayz7OXtrkyrJ3h3RxivCrPiuk0kFait+RBw8EF mxDwiM+1HD6q6tCVJRtjMzvkO1p6/oKW -----END CERTIFICATE-----Generated at Sun May 19 04:56:56 2024 by rpki-client on console-fra.rpki-client.org