$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft File: Y3kC4bqWiB1HLuyt-kW1V348HDE.mft (raw, json) Hash identifier: IwiTEVkF2/AylsbuFMhlvmS4xZQZ4c0tN80aCdsbPNI= Subject key identifier: 7C:60:3C:CF:12:F8:34:EE:FC:E8:03:8D:38:B8:37:C0:F9:9A:B4:F9 Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft Manifest number: 5D Signing time: Sun 19 May 2024 07:43:47 +0000 Manifest this update: Sun 19 May 2024 07:43:47 +0000 Manifest next update: Sun 26 May 2024 07:43:47 +0000 Files and hashes: 1: Y3kC4bqWiB1HLuyt-kW1V348HDE.crl (hash: poJ3yEtbjJrWZBaKyLF6ram3unJquqXs7gOdckjBuBI=) 2: FF1FE402898011EEB3403779C4F9AE02.roa (hash: mgOPaRRwFXzAst0ljMiYc+D8an6Y3Tl3mAV8plK7S+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Validity Not Before: May 19 07:43:47 2024 GMT Not After : May 26 07:43:47 2024 GMT Subject: CN=6649adb3-c193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1a:72:59:61:44:81:57:1b:e1:f5:20:0a:a4: 9d:d3:56:53:b2:be:1d:8a:5c:04:e6:57:2f:f0:af: 84:51:ac:29:35:c2:75:ab:2a:5c:c7:c3:98:4d:d7: 68:3e:13:08:11:40:8a:28:50:e4:98:4c:b8:6c:0e: 8a:a3:35:c5:a1:6d:50:f7:c6:76:ba:e4:4f:d0:06: 67:b4:95:f7:65:c8:56:c2:36:af:08:84:83:2d:96: 93:c3:91:13:6c:c4:e0:2a:9a:2b:ab:57:7f:10:51: 0b:a9:b7:12:c9:62:6b:51:f1:1c:1d:22:9c:2e:29: c0:90:38:e7:53:d6:8b:83:85:3b:91:26:b6:1b:88: dc:fb:da:ef:69:ac:4f:c3:f8:49:a9:18:ff:4d:df: da:0b:fa:7a:b0:8a:d6:74:47:38:94:a5:db:6b:3c: da:d5:df:ff:96:9f:02:e9:4c:bf:1b:98:6a:65:8a: 14:d7:52:d0:0a:83:eb:4d:42:41:b8:48:29:a2:8a: 1d:37:8e:af:87:4a:f4:c1:eb:f9:98:77:a3:91:20: 6a:f9:9b:61:69:f3:e3:69:57:7b:69:cc:23:35:09: 2f:88:f3:8f:8e:2b:d6:90:14:3b:c2:9c:e5:77:12: 3d:7e:85:c4:5f:bd:a0:9a:72:60:fa:97:c9:89:05: ec:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:60:3C:CF:12:F8:34:EE:FC:E8:03:8D:38:B8:37:C0:F9:9A:B4:F9 X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:c8:46:38:54:dd:13:a9:56:27:23:4a:f8:a0:85:b4:28:61: b4:39:6c:df:22:1c:3d:76:b5:35:57:93:28:56:56:22:5a:89: 39:3d:62:22:4b:d7:43:f2:13:f1:d3:dc:48:89:2c:92:23:38: f6:b5:8d:bb:49:91:8a:a4:ae:42:45:00:b7:40:e0:17:d7:1f: 0c:de:a7:a8:06:fc:f5:fe:38:6b:e9:d0:52:a8:f2:d9:45:0d: d3:57:1c:9b:82:e6:0b:65:73:b3:f7:b8:2b:dd:98:5e:e1:18: 96:cb:70:dc:16:8b:fb:3a:3a:67:3e:b0:ed:d9:72:c0:61:c4: b6:d9:f2:4c:fb:e2:f6:3a:a0:f4:dc:2a:72:ec:71:be:e7:d5: 68:27:e1:5c:3a:d5:47:6d:54:e0:20:02:8f:27:98:7f:f6:87: 6e:e9:2f:e9:49:62:d6:ad:14:a1:4b:e9:3d:cb:a1:95:1a:0e: ae:a1:c0:c7:19:58:d8:a5:4f:84:67:4f:8a:00:37:5c:7d:08: 8f:92:92:37:51:09:21:5f:1e:f9:3c:2c:54:61:fe:ce:8b:e6: fe:6e:57:00:8c:70:08:c0:e6:9d:61:4e:88:ef:6c:98:fb:2a: f9:da:e6:d6:5c:a2:fb:1a:de:0a:1b:8a:e3:7a:a6:7c:c6:4b: 7f:a6:6a:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTUyNDExMC8GA1UEBRMoNjM3OTAyRTFCQTk2ODgxRDQ3MkVFQ0FERkE0NUI1NTc3 RTNDMUMzMTAeFw0yNDA1MTkwNzQzNDdaFw0yNDA1MjYwNzQzNDdaMBgxFjAUBgNV BAMTDTY2NDlhZGIzLWMxOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSGnJZYUSBVxvh9SAKpJ3TVlOyvh2KXATmVy/wr4RRrCk1wnWrKlzHw5hN12g+ EwgRQIooUOSYTLhsDoqjNcWhbVD3xna65E/QBme0lfdlyFbCNq8IhIMtlpPDkRNs xOAqmiurV38QUQuptxLJYmtR8RwdIpwuKcCQOOdT1ouDhTuRJrYbiNz72u9prE/D +EmpGP9N39oL+nqwitZ0RziUpdtrPNrV3/+WnwLpTL8bmGplihTXUtAKg+tNQkG4 SCmiih03jq+HSvTB6/mYd6ORIGr5m2Fp8+NpV3tpzCM1CS+I84+OK9aQFDvCnOV3 Ej1+hcRfvaCacmD6l8mJBewvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfGA8zxL4 NO786AONOLg3wPmatPkwHwYDVR0jBBgwFoAUY3kC4bqWiB1HLuyt+kW1V348HDEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFNTI0LzBDMkMyQkQ2ODhD NTExRUVBODMxMUM3MUM0RjlBRTAyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhE RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTNrQzRicVdpQjFITHV5dC1rVzFWMzQ4SERFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF NTI0LzBDMkMyQkQ2ODhDNTExRUVBODMxMUM3MUM0RjlBRTAyL1kza0M0YnFXaUIx SEx1eXQta1cxVjM0OEhERS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANXIRjhU3ROpVicjSvighbQoYbQ5bN8iHD12tTVXkyhWViJaiTk9YiJL 10PyE/HT3EiJLJIjOPa1jbtJkYqkrkJFALdA4BfXHwzep6gG/PX+OGvp0FKo8tlF DdNXHJuC5gtlc7P3uCvdmF7hGJbLcNwWi/s6Omc+sO3ZcsBhxLbZ8kz74vY6oPTc KnLscb7n1Wgn4Vw61UdtVOAgAo8nmH/2h27pL+lJYtatFKFL6T3LoZUaDq6hwMcZ WNilT4RnT4oAN1x9CI+SkjdRCSFfHvk8LFRh/s6L5v5uVwCMcAjA5p1hTojvbJj7 Kvna5tZcovsa3gobiuN6pnzGS3+maig= -----END CERTIFICATE-----Generated at Sun May 19 08:25:08 2024 by rpki-client on console-ams.rpki-client.org