$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft File: yOujNL19pukuZ8QIvQN4e66uDK0.mft (raw, json) Hash identifier: Ekpmitfk2P3h5EK81dUPobL3+xuv8tZm0GY6sm+TCJo= Subject key identifier: 35:56:04:62:5C:3D:3E:F6:39:0F:2A:81:09:BA:C5:2E:DC:F1:6F:5C Authority key identifier: C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD Certificate issuer: /CN=A91CFE07/serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Certificate serial: 0CA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft Manifest number: 0C8F Signing time: Sat 18 May 2024 18:51:39 +0000 Manifest this update: Sat 18 May 2024 18:51:38 +0000 Manifest next update: Sat 25 May 2024 18:51:38 +0000 Files and hashes: 1: yOujNL19pukuZ8QIvQN4e66uDK0.crl (hash: QTXnqGCbJ4z9W/tpYjqgIe5f/i7ITYqeJTWuxbXOi9g=) 2: A95EC0B2C9FA11EBB7F2E749C4F9AE02.roa (hash: OnFCf8eAnEgvVp62T6YJKDeJaAnBLzi/6x3jgrk0jAY=) 3: A82C70A4C9FA11EBB7F2E749C4F9AE02.roa (hash: 2IL0VUXtbh4m28fX/DagcqnHyL8duadfYRBEM0Zd8j8=) 4: 226B7BC2AAC611EE9F22785DC4F9AE02.roa (hash: DWpmw7E9f8wB56ox5ZKO+BfCAC2t1e6DSbrfkrwOp6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3233 (0xca1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFE07/serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Validity Not Before: May 18 18:51:38 2024 GMT Not After : May 25 18:51:38 2024 GMT Subject: CN=6648f8ba-6c0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:92:5c:9c:80:d5:7b:f1:49:49:ae:0d:ce:57: c0:82:57:4c:01:77:21:76:7e:44:06:cd:6f:a1:71: 73:87:24:6a:ed:83:7e:15:22:27:36:a5:b6:20:c1: 52:f8:28:dc:0c:2d:13:15:44:d9:da:3e:a1:1e:69: 87:76:e7:26:b3:0c:15:e5:3e:38:86:64:f8:bb:24: 98:df:9c:ba:d8:b8:6f:f3:ef:f6:68:92:77:9d:8a: c5:77:64:e1:88:ed:4a:f3:34:20:29:e9:17:e0:bf: 08:81:34:59:70:4a:28:12:11:ab:3d:d6:dc:1f:19: 88:41:94:be:ef:a8:bd:ac:b3:b8:f7:5f:ee:94:70: 8e:df:a0:31:f8:f3:00:07:00:db:c9:37:e9:63:5a: 5f:0e:42:cd:f4:ba:93:64:e3:be:08:63:fc:24:f4: 27:50:db:b6:03:2c:9c:4e:d2:c5:0f:8e:9d:fd:a9: 10:68:e3:85:ea:04:47:64:4d:96:5c:dc:d9:e5:48: 66:9e:f7:00:c5:73:09:58:56:1b:45:f1:94:a5:28: 22:49:54:e2:69:a1:f3:93:7c:ef:d7:b0:54:73:b6: 2e:9b:0f:5c:70:fa:7f:37:b7:64:02:2c:d2:55:38: a7:4a:aa:f0:d4:df:4c:72:18:a2:a8:74:f2:f0:d8: 2c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:56:04:62:5C:3D:3E:F6:39:0F:2A:81:09:BA:C5:2E:DC:F1:6F:5C X509v3 Authority Key Identifier: keyid:C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:f6:1f:e8:e7:bb:a6:f7:0e:26:db:fe:72:a5:1b:5f:6b:92: 66:2e:24:50:ce:a6:19:01:d2:d3:84:77:68:44:68:99:ef:8e: 04:be:84:7d:13:37:6f:a3:4d:e9:e8:1a:76:89:f1:d7:c6:10: 6c:07:45:80:e4:5a:5d:75:9c:0f:2c:8d:df:1d:7c:d1:37:a3: d2:72:c4:25:8d:33:6c:28:04:3a:57:80:d8:f5:36:f1:41:45: ee:bc:5b:9b:12:f3:5a:b6:9d:e9:7d:cc:5a:a4:f9:d6:2b:67: 34:5e:59:35:fe:df:78:fb:49:9c:20:5d:59:f3:43:a5:31:91: 0a:f7:20:96:e1:ce:08:20:8d:78:4d:0a:85:bf:58:0c:f8:89: 64:e7:ec:f4:7c:1e:1a:a4:1b:95:31:ab:6f:c0:d4:4c:64:e0: 3e:e8:59:4d:63:72:4c:be:43:f3:90:ea:f6:1e:af:de:9e:5e: 60:b8:be:3e:4c:ed:9d:c5:17:f7:38:4b:18:58:44:a8:9a:6f: ce:d9:1d:c7:f9:76:83:7e:0a:e6:3d:f5:51:23:f9:91:65:d1: af:d5:f3:5b:03:f2:da:a8:4a:fb:6c:31:0d:21:04:32:b4:c3: 25:32:ee:56:97:45:ec:92:ff:59:ba:b9:eb:3c:35:ac:37:3f: c1:c7:b4:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZFMDcxMTAvBgNVBAUTKEM4RUJBMzM0QkQ3REE2RTkyRTY3QzQwOEJEMDM3ODdC QUVBRTBDQUQwHhcNMjQwNTE4MTg1MTM4WhcNMjQwNTI1MTg1MTM4WjAYMRYwFAYD VQQDEw02NjQ4ZjhiYS02YzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5JcnIDVe/FJSa4NzlfAgldMAXchdn5EBs1voXFzhyRq7YN+FSInNqW2IMFS +CjcDC0TFUTZ2j6hHmmHducmswwV5T44hmT4uySY35y62Lhv8+/2aJJ3nYrFd2Th iO1K8zQgKekX4L8IgTRZcEooEhGrPdbcHxmIQZS+76i9rLO491/ulHCO36Ax+PMA BwDbyTfpY1pfDkLN9LqTZOO+CGP8JPQnUNu2AyycTtLFD46d/akQaOOF6gRHZE2W XNzZ5UhmnvcAxXMJWFYbRfGUpSgiSVTiaaHzk3zv17BUc7Yumw9ccPp/N7dkAizS VTinSqrw1N9MchiiqHTy8NgsLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVWBGJc PT72OQ8qgQm6xS7c8W9cMB8GA1UdIwQYMBaAFMjrozS9fabpLmfECL0DeHuurgyt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkUwNy85NjJDNEI3RUQy QkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1a3VaOFFJdlFONGU2NnVE SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPdWpOTDE5cHVrdVo4UUl2UU40ZTY2dURLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkUwNy85NjJDNEI3RUQyQkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1 a3VaOFFJdlFONGU2NnVESzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY9h/o57um9w4m2/5ypRtfa5JmLiRQzqYZAdLThHdoRGiZ744EvoR9 Ezdvo03p6Bp2ifHXxhBsB0WA5FpddZwPLI3fHXzRN6PScsQljTNsKAQ6V4DY9Tbx QUXuvFubEvNatp3pfcxapPnWK2c0Xlk1/t94+0mcIF1Z80OlMZEK9yCW4c4III14 TQqFv1gM+Ilk5+z0fB4apBuVMatvwNRMZOA+6FlNY3JMvkPzkOr2Hq/enl5guL4+ TO2dxRf3OEsYWESomm/O2R3H+XaDfgrmPfVRI/mRZdGv1fNbA/LaqEr7bDENIQQy tMMlMu5Wl0Xskv9ZurnrPDWsNz/Bx7R3 -----END CERTIFICATE-----Generated at Sat May 18 20:16:06 2024 by rpki-client on console-ams.rpki-client.org