$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft File: ysNNxbjd0zsX7HVcldRdD3YlD6g.mft (raw, json) Hash identifier: /o9AZ5HaYqLzejcWL5ML9altyeF7Aiqfd4dxpv3iHRw= Subject key identifier: 44:33:CB:99:69:5D:C8:94:AE:48:1F:1B:F5:59:5E:95:73:10:9F:4D Authority key identifier: CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 Certificate issuer: /CN=A91C9B39/serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft Manifest number: 0112 Signing time: Fri 31 May 2024 06:07:49 +0000 Manifest this update: Fri 31 May 2024 06:07:49 +0000 Manifest next update: Fri 07 Jun 2024 06:07:49 +0000 Files and hashes: 1: ysNNxbjd0zsX7HVcldRdD3YlD6g.crl (hash: bM8hIIQYqzHYh5duh2A4CEpnOnbhFoMbVqTpqt2zxnE=) 2: E21DEF607B5E11ED98247D60C4F9AE02.roa (hash: wVLpiDvUNcL+/S8+hpAS1H+FwWVQ7qUJxAOT5+veKUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 06:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B39/serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Validity Not Before: May 31 06:07:49 2024 GMT Not After : Jun 7 06:07:49 2024 GMT Subject: CN=66596935-2b55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f1:fb:ec:e8:df:3d:d9:fc:e7:fb:b2:fd:c4: 1e:b6:dd:18:0f:77:40:72:54:aa:0b:b1:5e:d5:22: ef:77:14:30:d5:be:98:8d:6e:23:5e:e7:7a:e2:46: 08:35:c8:b2:31:73:9b:e5:1e:f8:27:01:6a:36:d2: 10:d7:42:1a:20:43:88:05:68:29:35:d2:e5:c6:db: 9f:c4:cd:f6:39:a6:d5:04:f1:41:a5:b6:4b:70:ed: b4:44:db:e6:ee:bd:da:db:56:24:9c:f5:df:a7:92: fe:6a:83:2b:87:a5:df:ba:c2:60:e6:dd:01:c8:84: 0d:c9:97:b5:bd:24:d8:b6:e8:c2:2a:dc:62:f8:44: e1:08:4e:d4:b2:d2:be:0a:b8:4e:ea:a5:af:b5:4b: 07:83:f6:bc:10:00:94:2b:51:c9:64:0e:d4:b3:39: cf:53:32:c7:09:b1:1c:af:70:a4:3b:fa:87:21:42: 98:9c:c8:54:df:45:40:14:1a:93:25:5b:22:7a:fa: e2:23:50:5a:78:96:a7:9e:00:f3:5e:74:74:bf:86: 2a:70:ad:4f:5f:1e:64:8a:74:13:02:90:71:6c:4f: 44:89:26:16:c0:f0:77:7f:e4:97:e3:c5:0f:1a:f9: da:c5:f3:05:e8:11:a0:2f:41:de:2a:53:78:8a:bb: 51:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:33:CB:99:69:5D:C8:94:AE:48:1F:1B:F5:59:5E:95:73:10:9F:4D X509v3 Authority Key Identifier: keyid:CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:e2:d1:31:06:56:3f:ac:ed:c3:04:c3:57:f2:31:bf:ab:6f: e3:ce:df:fe:e3:ea:76:03:a1:3a:ac:16:e2:0f:d4:07:42:47: fe:7c:2a:7c:04:48:3b:dc:80:3c:59:7e:c4:8f:2d:67:81:d8: 43:c2:14:01:bd:df:01:6b:1b:9b:7c:4a:87:f3:c0:cf:6d:50: 73:dc:29:6c:12:30:2c:cc:4b:d3:3a:f5:5d:12:96:b7:d1:0a: 43:25:94:f2:a8:6f:da:0e:e1:d1:ee:ff:3a:d5:21:2b:51:6c: d6:09:30:ea:1f:bd:1f:e7:93:e0:18:8c:6b:1d:eb:ce:8b:89: f1:c5:85:5e:84:4a:6d:70:15:02:b3:ea:c6:80:a9:a8:a9:f2: 8c:bc:9a:03:a0:d9:79:97:59:55:39:a6:b7:8a:dd:fa:cb:77: a2:58:02:b3:2d:b2:9c:e8:b4:18:e7:48:0f:08:97:f9:cc:01: f7:fb:6e:d3:f0:16:b1:3d:5e:0c:9f:8c:d9:8b:e5:d5:99:45: f6:65:31:4d:67:d0:fa:a1:10:a2:5d:d9:f8:03:57:4a:33:f7: ed:7e:a0:09:7a:14:cc:8c:90:f5:11:56:ea:b6:1c:9c:91:f7: 5b:72:85:47:8d:ce:05:71:4a:52:01:ac:82:f6:cf:4a:ba:2c: 66:68:7c:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCMzkxMTAvBgNVBAUTKENBQzM0REM1QjhEREQzM0IxN0VDNzU1Qzk1RDQ1RDBG NzYyNTBGQTgwHhcNMjQwNTMxMDYwNzQ5WhcNMjQwNjA3MDYwNzQ5WjAYMRYwFAYD VQQDEw02NjU5NjkzNS0yYjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2vH77OjfPdn85/uy/cQett0YD3dAclSqC7Fe1SLvdxQw1b6YjW4jXud64kYI NciyMXOb5R74JwFqNtIQ10IaIEOIBWgpNdLlxtufxM32OabVBPFBpbZLcO20RNvm 7r3a21YknPXfp5L+aoMrh6XfusJg5t0ByIQNyZe1vSTYtujCKtxi+EThCE7UstK+ CrhO6qWvtUsHg/a8EACUK1HJZA7UsznPUzLHCbEcr3CkO/qHIUKYnMhU30VAFBqT JVsievriI1BaeJanngDzXnR0v4YqcK1PXx5kinQTApBxbE9EiSYWwPB3f+SX48UP GvnaxfMF6BGgL0HeKlN4irtROQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQzy5lp XciUrkgfG/VZXpVzEJ9NMB8GA1UdIwQYMBaAFMrDTcW43dM7F+x1XJXUXQ92JQ+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUIzOS9CNjE1RDBCQzdC NUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6c1g3SFZjbGRSZEQzWWxE NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzTk54YmpkMHpzWDdIVmNsZFJkRDNZbEQ2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUIzOS9CNjE1RDBCQzdCNUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6 c1g3SFZjbGRSZEQzWWxENmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBv4tExBlY/rO3DBMNX8jG/q2/jzt/+4+p2A6E6rBbiD9QHQkf+fCp8 BEg73IA8WX7Ejy1ngdhDwhQBvd8BaxubfEqH88DPbVBz3ClsEjAszEvTOvVdEpa3 0QpDJZTyqG/aDuHR7v861SErUWzWCTDqH70f55PgGIxrHevOi4nxxYVehEptcBUC s+rGgKmoqfKMvJoDoNl5l1lVOaa3it36y3eiWAKzLbKc6LQY50gPCJf5zAH3+27T 8BaxPV4Mn4zZi+XVmUX2ZTFNZ9D6oRCiXdn4A1dKM/ftfqAJehTMjJD1EVbqthyc kfdbcoVHjc4FcUpSAayC9s9KuixmaHx8 -----END CERTIFICATE-----Generated at Fri May 31 06:33:59 2024 by rpki-client on console-fra.rpki-client.org