$ rpki-client -vvf rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft File: yC1GI7edxaBABywRKhur60QWBBw.mft (raw, json) Hash identifier: 7ShcFeFlifM0Gzo/XzVcxeJ8xnYuEzwhyC44CozDc3s= Subject key identifier: 10:60:DE:78:A4:47:8E:8C:88:6C:07:64:5F:35:28:CD:AA:A6:C2:8A Authority key identifier: C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C Certificate issuer: /CN=A91D008B/serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Certificate serial: 04C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft Manifest number: 04C4 Signing time: Sun 19 May 2024 01:23:21 +0000 Manifest this update: Sun 19 May 2024 01:23:20 +0000 Manifest next update: Sun 26 May 2024 01:23:20 +0000 Files and hashes: 1: yC1GI7edxaBABywRKhur60QWBBw.crl (hash: YNjD2UxizVeGgMNR1A3MIvYDvnvkwDPnTounSPfsxug=) 2: 469C2676D76111EB97EB721DC4F9AE02.roa (hash: 7d5HceNo+BwC7Q7PU6+bWZvk1yROvAMjbz2juLPUG4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1224 (0x4c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D008B/serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Validity Not Before: May 19 01:23:20 2024 GMT Not After : May 26 01:23:20 2024 GMT Subject: CN=66495489-bd2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:43:c4:e6:03:9b:0c:2d:0a:19:40:7d:52:77: 1f:f1:39:27:e9:9d:c3:3a:8c:a6:26:d4:4d:82:58: 8c:45:fc:4f:a3:f1:0a:a9:62:32:8f:3c:3b:43:99: ce:ab:9b:76:5c:5a:7d:b8:96:16:73:b8:bf:0f:73: 57:c1:a3:95:cf:9f:fb:9b:a0:14:9c:4b:6d:91:f9: bf:b4:77:ba:38:05:81:c1:7b:e7:11:24:a4:8e:36: f7:af:a9:32:cb:8d:a9:7d:64:62:7a:55:35:67:e3: 62:c1:7b:df:cf:4c:b0:a1:5a:6d:6e:6a:18:42:57: 04:a4:a1:43:4d:a8:98:90:57:df:01:6e:2f:4e:dc: ba:05:b1:c6:e5:58:d8:ed:53:74:82:13:ca:0f:a4: 7f:bb:10:0d:89:b9:70:a1:49:be:a5:1f:37:52:0c: 04:4a:aa:77:2c:f5:86:58:87:f1:3d:e3:11:9f:0f: 5d:a4:24:67:c6:cf:f7:95:09:aa:ae:ff:2b:b7:e7: 0e:ec:c7:1f:5a:02:ed:e4:b3:b4:0a:5d:62:43:45: 6a:ce:48:3b:a2:2a:ac:fa:32:0c:68:9e:d2:05:95: 96:a1:22:ac:c3:b7:da:50:21:08:d5:cc:99:15:a8: b9:6f:67:90:7b:3f:e3:7e:67:6e:67:12:b6:a7:7e: 8b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:60:DE:78:A4:47:8E:8C:88:6C:07:64:5F:35:28:CD:AA:A6:C2:8A X509v3 Authority Key Identifier: keyid:C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:62:07:a7:70:e7:14:0f:7d:43:f7:c7:95:34:45:01:4e:a9: 72:f0:fb:dd:53:27:5b:0f:17:1b:1c:29:c9:6f:74:62:31:52: 83:1b:e2:47:0b:00:01:07:27:6c:1e:26:72:43:3c:0a:20:8d: bb:38:49:3d:0f:c3:65:85:35:57:1f:44:58:98:5b:2c:98:e3: 3b:86:11:75:d5:03:89:a7:3c:c4:45:73:84:ea:a2:e3:80:47: 29:14:27:ae:02:6e:ff:c1:ca:2f:87:f2:bd:c1:bc:7b:8b:03: 3e:51:ee:2d:7b:91:c8:1a:7a:b1:8e:df:6f:d9:58:cb:58:ad: 34:a4:86:3f:04:4e:d8:d6:a2:99:cd:40:44:ca:4c:81:0a:4f: 70:83:3f:f3:34:3c:a8:a2:3b:4d:b0:4d:e0:d6:df:0a:4a:a1: e7:d9:9c:3d:72:22:11:3b:62:d3:c9:52:91:f9:b4:23:bb:ac: 20:f1:10:71:ea:bc:06:07:ed:b3:b8:a1:6b:92:df:7c:00:c2: 15:ee:ae:f7:d6:1e:fb:78:8f:fc:d0:6d:17:02:73:c2:ba:59: 49:68:27:9c:3d:31:fd:73:f5:7d:2c:65:63:05:53:d7:1d:9f: 3e:b5:5b:0e:79:c8:42:e9:4a:53:a4:d7:64:31:25:f6:d0:ed: a5:ef:c6:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAwOEIxMTAvBgNVBAUTKEM4MkQ0NjIzQjc5REM1QTA0MDA3MkMxMTJBMUJBQkVC NDQxNjA0MUMwHhcNMjQwNTE5MDEyMzIwWhcNMjQwNTI2MDEyMzIwWjAYMRYwFAYD VQQDEw02NjQ5NTQ4OS1iZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUPE5gObDC0KGUB9Uncf8Tkn6Z3DOoymJtRNgliMRfxPo/EKqWIyjzw7Q5nO q5t2XFp9uJYWc7i/D3NXwaOVz5/7m6AUnEttkfm/tHe6OAWBwXvnESSkjjb3r6ky y42pfWRielU1Z+NiwXvfz0ywoVptbmoYQlcEpKFDTaiYkFffAW4vTty6BbHG5VjY 7VN0ghPKD6R/uxANiblwoUm+pR83UgwESqp3LPWGWIfxPeMRnw9dpCRnxs/3lQmq rv8rt+cO7McfWgLt5LO0Cl1iQ0Vqzkg7oiqs+jIMaJ7SBZWWoSKsw7faUCEI1cyZ Fai5b2eQez/jfmduZxK2p36LPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBg3nik R46MiGwHZF81KM2qpsKKMB8GA1UdIwQYMBaAFMgtRiO3ncWgQAcsESobq+tEFgQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDA4Qi80OUU2MjcxNkQ3 NUYxMUVCOUJEMjRCMURDNEY5QUUwMi95QzFHSTdlZHhhQkFCeXdSS2h1cjYwUVdC QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDMUdJN2VkeGFCQUJ5d1JLaHVyNjBRV0JCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDA4Qi80OUU2MjcxNkQ3NUYxMUVCOUJEMjRCMURDNEY5QUUwMi95QzFHSTdlZHhh QkFCeXdSS2h1cjYwUVdCQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAYgencOcUD31D98eVNEUBTqly8PvdUydbDxcbHCnJb3RiMVKDG+JH CwABBydsHiZyQzwKII27OEk9D8NlhTVXH0RYmFssmOM7hhF11QOJpzzERXOE6qLj gEcpFCeuAm7/wcovh/K9wbx7iwM+Ue4te5HIGnqxjt9v2VjLWK00pIY/BE7Y1qKZ zUBEykyBCk9wgz/zNDyoojtNsE3g1t8KSqHn2Zw9ciIRO2LTyVKR+bQju6wg8RBx 6rwGB+2zuKFrkt98AMIV7q731h77eI/80G0XAnPCullJaCecPTH9c/V9LGVjBVPX HZ8+tVsOechC6UpTpNdkMSX20O2l78bm -----END CERTIFICATE-----Generated at Sun May 19 02:59:14 2024 by rpki-client on console-ams.rpki-client.org