$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D2A/5525F5E03DC111EAAF98CB35C4F9AE02/yZ7yD58LAHfHDV1zAOC7_Ych7_8.mft File: yZ7yD58LAHfHDV1zAOC7_Ych7_8.mft (raw, json) Hash identifier: uSeRRUQJI4lxvSim2QTytpvbMNaf8kXUybMleqV/ga8= Subject key identifier: 1E:46:6F:67:D4:81:88:7B:AE:42:06:6F:0F:F5:CE:A1:74:AD:88:49 Authority key identifier: C9:9E:F2:0F:9F:0B:00:77:C7:0D:5D:73:00:E0:BB:FD:87:21:EF:FF Certificate issuer: /CN=A91C9D2A/serialNumber=C99EF20F9F0B0077C70D5D7300E0BBFD8721EFFF Certificate serial: 0A8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ7yD58LAHfHDV1zAOC7_Ych7_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D2A/5525F5E03DC111EAAF98CB35C4F9AE02/yZ7yD58LAHfHDV1zAOC7_Ych7_8.mft Manifest number: 0A71 Signing time: Sat 18 May 2024 20:21:10 +0000 Manifest this update: Sat 18 May 2024 20:21:09 +0000 Manifest next update: Sat 25 May 2024 20:21:09 +0000 Files and hashes: 1: yZ7yD58LAHfHDV1zAOC7_Ych7_8.crl (hash: xMemCIGmIYWGEoZBzzszWNqLBw42Nq/OPXANwm2kGdY=) 2: 782DDB5C0E9111EFB468FB5AC4F9AE02.roa (hash: YXw0jsaRIW1ICDb3dMyKnsqdSmrPFezmL9suut8cBNU=) 3: 775595120E9111EFB468FB5AC4F9AE02.roa (hash: qiHHDW7jVMXgfiRmAyNzDdqQ6GpAUfWWfOnPnHvJH58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D2A/5525F5E03DC111EAAF98CB35C4F9AE02/yZ7yD58LAHfHDV1zAOC7_Ych7_8.crl rsync://rpki.apnic.net/member_repository/A91C9D2A/5525F5E03DC111EAAF98CB35C4F9AE02/yZ7yD58LAHfHDV1zAOC7_Ych7_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ7yD58LAHfHDV1zAOC7_Ych7_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2699 (0xa8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D2A/serialNumber=C99EF20F9F0B0077C70D5D7300E0BBFD8721EFFF Validity Not Before: May 18 20:21:09 2024 GMT Not After : May 25 20:21:09 2024 GMT Subject: CN=66490db5-db48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:97:78:0f:76:84:c8:52:7c:6e:b8:dc:05:bc: a4:4e:80:8c:0b:13:6d:55:0f:6f:6a:14:12:9f:14: 22:a1:3c:46:a4:10:ee:5c:b0:9d:96:8b:0e:e2:c7: db:3c:05:3d:bd:9f:f6:6e:a8:c7:c9:d6:df:1f:41: 83:1b:4f:55:86:ef:a0:60:b1:90:ab:cb:68:69:fe: 7c:96:c7:53:9e:26:f9:3b:aa:2c:74:7c:7e:ab:d9: 39:3b:ee:7b:34:bf:9b:22:93:f4:f5:e5:c5:4b:0b: 09:d9:9d:18:87:a7:82:7d:dc:ea:24:b8:a6:35:0e: 83:b6:4d:03:53:bd:be:18:62:c6:a1:54:f8:67:32: ac:b5:6e:72:2a:81:18:f8:5b:16:2e:2c:7c:78:ed: 64:12:94:05:ad:fe:04:8a:21:f8:1b:26:d8:5d:16: f2:81:67:de:b7:9e:e0:51:57:2c:8a:88:99:0a:92: 53:ac:cb:23:ff:23:6c:92:ba:62:5f:e3:ea:c5:55: ad:75:ea:4f:29:27:c5:c0:99:c5:33:ff:a4:92:fa: aa:50:75:b0:4f:44:82:0b:b6:94:b2:5d:2e:6c:69: 28:75:b5:54:27:ca:98:ed:59:f0:67:0f:a2:77:39: 6d:c3:78:f9:ef:f8:73:d4:a7:92:3a:07:66:df:71: e2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:46:6F:67:D4:81:88:7B:AE:42:06:6F:0F:F5:CE:A1:74:AD:88:49 X509v3 Authority Key Identifier: keyid:C9:9E:F2:0F:9F:0B:00:77:C7:0D:5D:73:00:E0:BB:FD:87:21:EF:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D2A/5525F5E03DC111EAAF98CB35C4F9AE02/yZ7yD58LAHfHDV1zAOC7_Ych7_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ7yD58LAHfHDV1zAOC7_Ych7_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D2A/5525F5E03DC111EAAF98CB35C4F9AE02/yZ7yD58LAHfHDV1zAOC7_Ych7_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:eb:81:82:f8:58:49:b4:f7:d6:9f:93:2e:6d:8c:47:88:06: 3c:f5:1b:9d:b3:a1:a1:3d:44:c1:83:82:c7:17:b8:e7:a1:25: cd:fd:c3:e1:16:f1:38:f8:e8:42:08:81:ed:fe:74:12:4b:9b: dc:60:ee:d2:b5:f0:72:2f:18:9e:04:9c:99:ae:5b:d9:28:46: b3:19:87:c4:58:00:c0:5c:ce:f9:b8:47:fe:31:13:9a:73:41: 0a:14:10:4e:0f:84:b4:ad:ff:89:a7:ad:ec:65:10:d8:70:f0: 50:31:66:21:0b:b8:3a:b3:cf:01:0d:ef:f1:d0:eb:f8:0b:65: 0a:76:16:64:3e:83:9d:60:2f:a0:94:9c:f5:da:cf:8b:a4:80: 2a:36:01:fc:c1:ad:02:50:89:e0:8d:5f:e1:26:cb:55:57:2d: 77:9f:79:0e:fc:6e:99:72:b6:ec:4a:bb:cd:a9:b0:1e:9c:80: 8c:6d:4b:79:ad:f5:f7:43:a7:3a:d1:02:c1:ff:a2:63:82:6a: dd:7b:e2:30:4a:c6:ce:4a:1f:54:6a:54:37:25:be:93:36:9f: 42:20:1f:df:d0:d1:aa:9b:ef:04:c1:f2:8d:8e:2c:e3:ad:29: 9a:ba:22:86:be:a1:b8:dc:84:4c:67:16:1c:25:51:09:2b:c7: ba:c6:45:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlEMkExMTAvBgNVBAUTKEM5OUVGMjBGOUYwQjAwNzdDNzBENUQ3MzAwRTBCQkZE ODcyMUVGRkYwHhcNMjQwNTE4MjAyMTA5WhcNMjQwNTI1MjAyMTA5WjAYMRYwFAYD VQQDEw02NjQ5MGRiNS1kYjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpd4D3aEyFJ8brjcBbykToCMCxNtVQ9vahQSnxQioTxGpBDuXLCdlosO4sfb PAU9vZ/2bqjHydbfH0GDG09Vhu+gYLGQq8toaf58lsdTnib5O6osdHx+q9k5O+57 NL+bIpP09eXFSwsJ2Z0Yh6eCfdzqJLimNQ6Dtk0DU72+GGLGoVT4ZzKstW5yKoEY +FsWLix8eO1kEpQFrf4EiiH4GybYXRbygWfet57gUVcsioiZCpJTrMsj/yNskrpi X+PqxVWtdepPKSfFwJnFM/+kkvqqUHWwT0SCC7aUsl0ubGkodbVUJ8qY7VnwZw+i dzltw3j57/hz1KeSOgdm33Hi6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5Gb2fU gYh7rkIGbw/1zqF0rYhJMB8GA1UdIwQYMBaAFMme8g+fCwB3xw1dcwDgu/2HIe// MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQyQS81NTI1RjVFMDNE QzExMUVBQUY5OENCMzVDNEY5QUUwMi95Wjd5RDU4TEFIZkhEVjF6QU9DN19ZY2g3 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laN3lENThMQUhmSERWMXpBT0M3X1ljaDdfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUQyQS81NTI1RjVFMDNEQzExMUVBQUY5OENCMzVDNEY5QUUwMi95Wjd5RDU4TEFI ZkhEVjF6QU9DN19ZY2g3XzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA064GC+FhJtPfWn5MubYxHiAY89Ruds6GhPUTBg4LHF7jnoSXN/cPh FvE4+OhCCIHt/nQSS5vcYO7StfByLxieBJyZrlvZKEazGYfEWADAXM75uEf+MROa c0EKFBBOD4S0rf+Jp63sZRDYcPBQMWYhC7g6s88BDe/x0Ov4C2UKdhZkPoOdYC+g lJz12s+LpIAqNgH8wa0CUIngjV/hJstVVy13n3kO/G6ZcrbsSrvNqbAenICMbUt5 rfX3Q6c60QLB/6Jjgmrde+IwSsbOSh9UalQ3Jb6TNp9CIB/f0NGqm+8EwfKNjizj rSmauiKGvqG43IRMZxYcJVEJK8e6xkWJ -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org