$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft File: y51BptqW92pP8FhrXoqIn8AjVFc.mft (raw, json) Hash identifier: iIwOpaQ8GcMxa2+9BS4pE2rq9AWbCIHqpta9aig2doQ= Subject key identifier: D5:56:E8:C2:97:77:1F:7D:77:DD:4D:F1:8C:5E:7B:09:9A:FC:0B:39 Authority key identifier: CB:9D:41:A6:DA:96:F7:6A:4F:F0:58:6B:5E:8A:88:9F:C0:23:54:57 Certificate issuer: /CN=A91C7A69/serialNumber=CB9D41A6DA96F76A4FF0586B5E8A889FC0235457 Certificate serial: 0272 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y51BptqW92pP8FhrXoqIn8AjVFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft Manifest number: 026E Signing time: Sun 19 May 2024 03:46:41 +0000 Manifest this update: Sun 19 May 2024 03:46:41 +0000 Manifest next update: Sun 26 May 2024 03:46:40 +0000 Files and hashes: 1: y51BptqW92pP8FhrXoqIn8AjVFc.crl (hash: +xg/6PEf7ppR7w9JADtGku9hecewHLXtwD5XyeLPd8I=) 2: 4FF0079CC6CB11ECB185E43EC4F9AE02.roa (hash: Ev0nDvkLlRNvzsvGeZZyQLqh4efVJk/u06lrQKwckCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.crl rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y51BptqW92pP8FhrXoqIn8AjVFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7A69/serialNumber=CB9D41A6DA96F76A4FF0586B5E8A889FC0235457 Validity Not Before: May 19 03:46:41 2024 GMT Not After : May 26 03:46:40 2024 GMT Subject: CN=66497621-5ed7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5f:71:6a:2a:ff:31:23:d6:9f:83:67:7d:9a: b8:2f:46:52:51:5d:26:97:db:9b:e2:f6:f9:06:2b: 1d:56:e4:ff:36:83:3c:de:e3:2b:ca:92:71:7f:0d: ef:9a:a0:42:f3:19:d6:1f:92:25:2f:5f:94:b8:d8: 73:aa:49:c6:56:bf:8e:f6:5c:27:93:d4:21:b0:81: 79:c0:5b:07:7a:b9:62:de:bb:7b:f1:fb:7b:bc:80: 78:8f:21:58:36:8c:b3:7d:d5:a8:2a:b9:7b:80:31: c1:0c:ca:c8:f6:3e:92:c3:88:46:02:f8:af:a9:ec: 89:e3:c6:31:5e:2c:3e:81:c5:3a:c2:b3:86:dd:62: bd:fa:4e:6e:49:2c:90:1a:7c:17:60:21:de:db:57: 65:77:6e:6e:fe:06:27:e0:cc:a8:9d:7a:bb:5f:54: f8:df:3c:52:d8:42:62:8f:08:72:18:e3:4c:6e:bd: d9:96:c3:b6:08:6f:9e:70:8b:d8:92:98:7d:f6:88: 3c:10:f0:c5:d6:4b:32:fe:e7:e9:f8:7c:c6:8b:f3: 27:a4:04:c4:b6:5e:e9:75:4c:43:1d:f0:70:eb:f7: 72:a2:08:4a:08:b3:ad:90:69:2d:64:b5:f1:6d:8a: a4:a1:0c:c1:f7:82:7e:e3:ba:86:6d:3d:18:b5:80: 8b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:56:E8:C2:97:77:1F:7D:77:DD:4D:F1:8C:5E:7B:09:9A:FC:0B:39 X509v3 Authority Key Identifier: keyid:CB:9D:41:A6:DA:96:F7:6A:4F:F0:58:6B:5E:8A:88:9F:C0:23:54:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y51BptqW92pP8FhrXoqIn8AjVFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:e6:9e:08:93:ec:b8:7d:1b:88:cc:ab:4d:21:3d:40:dc:19: 54:8a:19:6f:e8:bf:96:be:c9:25:63:9d:c5:d0:af:dc:32:77: 33:0f:ce:91:61:f2:9e:62:c9:23:41:41:83:dd:bd:62:64:4d: 70:3d:e8:8f:c4:1f:06:cf:59:b0:5f:0c:9c:94:d2:4e:f6:0b: d3:05:82:fb:7e:44:87:d7:b3:0c:21:e6:93:38:3d:3a:71:3a: 44:c0:8a:b0:39:cc:9e:5d:23:d6:5f:40:25:55:97:65:7e:7d: 3e:f7:40:52:ea:12:e1:93:12:b2:9c:ab:b1:b0:09:73:dd:fb: f0:d5:aa:4f:8a:13:08:e1:a1:b6:cf:7c:60:22:0d:ee:0e:7a: 08:56:b7:6e:62:7e:40:10:3f:1f:c7:f1:c4:36:88:b2:d4:7e: 5a:ea:5f:15:d3:a6:ac:40:1d:9d:b2:b0:94:2f:bc:e6:a9:49: 98:39:a8:31:33:e9:85:ef:6c:91:99:ed:03:98:77:5b:b3:2a: 57:1c:69:d1:16:b4:13:ce:46:98:9d:47:b1:48:9c:68:4b:cf: 3c:dc:af:92:be:25:14:c4:17:c1:59:55:aa:34:fb:fe:40:08: 5a:3c:2a:2d:1e:87:43:09:96:28:1d:92:13:fe:7c:3d:7f:e7: ce:7f:49:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBNjkxMTAvBgNVBAUTKENCOUQ0MUE2REE5NkY3NkE0RkYwNTg2QjVFOEE4ODlG QzAyMzU0NTcwHhcNMjQwNTE5MDM0NjQxWhcNMjQwNTI2MDM0NjQwWjAYMRYwFAYD VQQDEw02NjQ5NzYyMS01ZWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn19xair/MSPWn4NnfZq4L0ZSUV0ml9ub4vb5BisdVuT/NoM83uMrypJxfw3v mqBC8xnWH5IlL1+UuNhzqknGVr+O9lwnk9QhsIF5wFsHerli3rt78ft7vIB4jyFY NoyzfdWoKrl7gDHBDMrI9j6Sw4hGAvivqeyJ48YxXiw+gcU6wrOG3WK9+k5uSSyQ GnwXYCHe21dld25u/gYn4MyonXq7X1T43zxS2EJijwhyGONMbr3ZlsO2CG+ecIvY kph99og8EPDF1ksy/ufp+HzGi/MnpATEtl7pdUxDHfBw6/dyoghKCLOtkGktZLXx bYqkoQzB94J+47qGbT0YtYCLHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVW6MKX dx99d91N8Yxeewma/As5MB8GA1UdIwQYMBaAFMudQabalvdqT/BYa16KiJ/AI1RX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0E2OS84QUYzRDVCMkM2 MDMxMUVDOEIwRDVEM0RDNEY5QUUwMi95NTFCcHRxVzkycFA4RmhyWG9xSW44QWpW RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k1MUJwdHFXOTJwUDhGaHJYb3FJbjhBalZGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0E2OS84QUYzRDVCMkM2MDMxMUVDOEIwRDVEM0RDNEY5QUUwMi95NTFCcHRxVzky cFA4RmhyWG9xSW44QWpWRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH5p4Ik+y4fRuIzKtNIT1A3BlUihlv6L+WvsklY53F0K/cMnczD86R YfKeYskjQUGD3b1iZE1wPeiPxB8Gz1mwXwyclNJO9gvTBYL7fkSH17MMIeaTOD06 cTpEwIqwOcyeXSPWX0AlVZdlfn0+90BS6hLhkxKynKuxsAlz3fvw1apPihMI4aG2 z3xgIg3uDnoIVrduYn5AED8fx/HENoiy1H5a6l8V06asQB2dsrCUL7zmqUmYOagx M+mF72yRme0DmHdbsypXHGnRFrQTzkaYnUexSJxoS8883K+SviUUxBfBWVWqNPv+ QAhaPCotHodDCZYoHZIT/nw9f+fOf0lA -----END CERTIFICATE-----Generated at Sun May 19 04:20:43 2024 by rpki-client on console-ams.rpki-client.org