$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB5F3/73AFED862D2111EB83D99079C4F9AE02/yk4HUSi1N46tOjNLzp3hFXc1nNo.mft File: yk4HUSi1N46tOjNLzp3hFXc1nNo.mft (raw, json) Hash identifier: ZI8EMVGy7EyWTgwm16l57y5bKZdrpz5FhYKSERCpzt8= Subject key identifier: ED:81:42:20:12:A9:9C:01:B1:E5:59:62:9E:8E:C5:26:62:4F:08:18 Authority key identifier: CA:4E:07:51:28:B5:37:8E:AD:3A:33:4B:CE:9D:E1:15:77:35:9C:DA Certificate issuer: /CN=A91CB5F3/serialNumber=CA4E075128B5378EAD3A334BCE9DE11577359CDA Certificate serial: 067F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yk4HUSi1N46tOjNLzp3hFXc1nNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB5F3/73AFED862D2111EB83D99079C4F9AE02/yk4HUSi1N46tOjNLzp3hFXc1nNo.mft Manifest number: 067B Signing time: Sat 18 May 2024 23:26:24 +0000 Manifest this update: Sat 18 May 2024 23:26:23 +0000 Manifest next update: Sat 25 May 2024 23:26:23 +0000 Files and hashes: 1: yk4HUSi1N46tOjNLzp3hFXc1nNo.crl (hash: jZl0dxrCwuZJSuw0snom/8gvLjughqTPG/fhSJQFWWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB5F3/73AFED862D2111EB83D99079C4F9AE02/yk4HUSi1N46tOjNLzp3hFXc1nNo.crl rsync://rpki.apnic.net/member_repository/A91CB5F3/73AFED862D2111EB83D99079C4F9AE02/yk4HUSi1N46tOjNLzp3hFXc1nNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yk4HUSi1N46tOjNLzp3hFXc1nNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1663 (0x67f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB5F3/serialNumber=CA4E075128B5378EAD3A334BCE9DE11577359CDA Validity Not Before: May 18 23:26:23 2024 GMT Not After : May 25 23:26:23 2024 GMT Subject: CN=66493920-e235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0d:96:50:7f:24:80:af:b3:b9:b8:51:7e:99: 7e:a1:c4:2f:77:6e:16:44:52:38:e4:1c:9a:57:1d: 36:66:ab:3a:81:20:b5:b9:9a:a3:45:cb:9e:42:06: 82:cc:08:86:35:98:a8:79:f1:d4:fd:8a:35:cb:31: a5:86:46:25:8f:3a:b7:70:ec:86:0f:f0:aa:80:55: 75:3b:5d:8c:81:ab:ee:0a:af:ce:47:7f:9a:7c:c8: d5:c7:f1:6a:29:f4:10:06:fb:cd:17:99:32:26:29: 08:86:7b:99:47:0d:cb:58:9f:08:a7:1b:5e:12:6f: e0:64:38:26:f1:e8:a0:d2:0f:0d:ec:8e:69:73:26: ff:47:ac:e8:7e:a1:97:b1:80:54:27:03:47:c8:dc: 54:2f:14:96:79:6d:9c:00:7e:95:f3:67:95:47:55: f2:dc:9e:cc:fb:e4:7a:b9:07:e4:57:55:1f:08:ff: f2:42:33:b1:8c:fd:c7:bd:9c:c4:0b:98:bf:68:61: 96:36:b3:82:e6:63:7e:94:c1:73:3b:42:0f:ba:c2: 8d:7d:90:7d:bb:5a:23:13:06:1a:f9:4d:81:08:d1: c9:3a:94:d0:4b:79:44:b3:da:5f:c1:ae:62:5d:ec: 53:65:df:09:5b:9e:6f:15:38:5b:f8:01:49:b4:3d: 4b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:81:42:20:12:A9:9C:01:B1:E5:59:62:9E:8E:C5:26:62:4F:08:18 X509v3 Authority Key Identifier: keyid:CA:4E:07:51:28:B5:37:8E:AD:3A:33:4B:CE:9D:E1:15:77:35:9C:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB5F3/73AFED862D2111EB83D99079C4F9AE02/yk4HUSi1N46tOjNLzp3hFXc1nNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yk4HUSi1N46tOjNLzp3hFXc1nNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB5F3/73AFED862D2111EB83D99079C4F9AE02/yk4HUSi1N46tOjNLzp3hFXc1nNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:c1:aa:83:40:e4:c8:5d:1c:63:b9:2c:1b:16:be:e5:8d:a4: f4:e5:85:64:5d:b4:2c:26:82:e2:bb:f0:8a:4e:a0:8f:38:b0: 0c:d5:45:10:7d:3a:66:cf:58:f3:53:80:59:71:61:00:21:d4: 70:ef:25:37:2e:84:7c:d3:52:fa:11:ce:a0:a3:f7:cf:dc:9b: f8:fe:80:45:ed:90:35:5e:e2:34:1f:a2:fd:36:6d:a9:7d:07: 44:31:58:14:e6:3c:8f:a2:1b:42:f1:a4:66:75:df:b1:fe:33: 7c:69:aa:04:24:f6:5d:2e:ba:ff:ca:db:45:b1:de:76:53:2c: df:9f:97:34:80:18:71:e3:a6:07:bb:d4:4e:c8:fd:6b:e2:70: 34:da:18:ea:6f:56:a4:81:4d:ff:3f:5c:ad:56:c7:d3:e6:81: 07:25:7c:c0:35:8e:f1:c6:cd:9b:6d:c9:03:e4:dc:b7:37:fc: 07:e7:53:98:12:8b:48:28:b7:38:74:92:57:90:cc:63:16:e7: 63:ec:ea:c4:ec:5b:d3:86:ca:c5:54:93:77:7a:cd:36:30:0d: 85:b9:eb:b4:79:a0:7a:8e:6a:a0:72:bd:7c:cc:14:a4:2e:0c: 6e:ac:5e:8d:d1:9f:1e:c7:41:c2:5a:2d:03:4e:2a:7a:23:0e: 4b:c1:c8:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I1RjMxMTAvBgNVBAUTKENBNEUwNzUxMjhCNTM3OEVBRDNBMzM0QkNFOURFMTE1 NzczNTlDREEwHhcNMjQwNTE4MjMyNjIzWhcNMjQwNTI1MjMyNjIzWjAYMRYwFAYD VQQDEw02NjQ5MzkyMC1lMjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsA2WUH8kgK+zubhRfpl+ocQvd24WRFI45ByaVx02Zqs6gSC1uZqjRcueQgaC zAiGNZioefHU/Yo1yzGlhkYljzq3cOyGD/CqgFV1O12MgavuCq/OR3+afMjVx/Fq KfQQBvvNF5kyJikIhnuZRw3LWJ8IpxteEm/gZDgm8eig0g8N7I5pcyb/R6zofqGX sYBUJwNHyNxULxSWeW2cAH6V82eVR1Xy3J7M++R6uQfkV1UfCP/yQjOxjP3HvZzE C5i/aGGWNrOC5mN+lMFzO0IPusKNfZB9u1ojEwYa+U2BCNHJOpTQS3lEs9pfwa5i XexTZd8JW55vFThb+AFJtD1L+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2BQiAS qZwBseVZYp6OxSZiTwgYMB8GA1UdIwQYMBaAFMpOB1EotTeOrTozS86d4RV3NZza MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjVGMy83M0FGRUQ4NjJE MjExMUVCODNEOTkwNzlDNEY5QUUwMi95azRIVVNpMU40NnRPak5MenAzaEZYYzFu Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lrNEhVU2kxTjQ2dE9qTkx6cDNoRlhjMW5Oby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjVGMy83M0FGRUQ4NjJEMjExMUVCODNEOTkwNzlDNEY5QUUwMi95azRIVVNpMU40 NnRPak5MenAzaEZYYzFuTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxwaqDQOTIXRxjuSwbFr7ljaT05YVkXbQsJoLiu/CKTqCPOLAM1UUQ fTpmz1jzU4BZcWEAIdRw7yU3LoR801L6Ec6go/fP3Jv4/oBF7ZA1XuI0H6L9Nm2p fQdEMVgU5jyPohtC8aRmdd+x/jN8aaoEJPZdLrr/yttFsd52Uyzfn5c0gBhx46YH u9ROyP1r4nA02hjqb1akgU3/P1ytVsfT5oEHJXzANY7xxs2bbckD5Ny3N/wH51OY EotIKLc4dJJXkMxjFudj7OrE7FvThsrFVJN3es02MA2Fueu0eaB6jmqgcr18zBSk LgxurF6N0Z8ex0HCWi0DTip6Iw5LwchI -----END CERTIFICATE-----Generated at Sun May 19 00:16:19 2024 by rpki-client on console-fra.rpki-client.org