$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: GS8uTdLohCVBx5oX81b4cIn0+2H+VqTl8RWQY8pVQ30= Subject key identifier: 10:9F:A7:68:A8:06:2D:B6:C7:D3:46:7D:77:24:11:31:8E:B2:A9:02 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 04F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 04E2 Signing time: Sun 19 May 2024 01:24:21 +0000 Manifest this update: Sun 19 May 2024 01:24:21 +0000 Manifest next update: Sun 26 May 2024 01:24:21 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: K0/10MHEOa2wejK/PdIJUrPtlVfCOyEQCv5B6gmURc8=) 2: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: ei7I36a/n68cmPMmbMaIHsQLIaODPqloNYHBMw6AioQ=) 3: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (hash: iS2kCadt9EPztCML62YjpO3iZQeKW9op8orLhEYixVE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1271 (0x4f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: May 19 01:24:21 2024 GMT Not After : May 26 01:24:21 2024 GMT Subject: CN=664954c5-3c44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d2:b4:39:b5:b4:b7:78:b2:7c:e8:54:cf:4c: bf:83:84:a7:ee:a8:ba:19:fe:b4:17:d8:22:9f:7a: 28:3e:d5:e4:db:0e:ec:3b:be:a8:15:01:50:64:c1: 94:97:23:6c:4d:a0:40:74:fd:7f:e6:06:56:7d:11: 8b:be:a1:de:54:b5:39:6a:04:9f:ed:97:b9:44:ff: c8:b0:c5:a6:3d:41:3d:f9:19:ac:5e:97:50:f2:0f: 86:ce:9e:e1:92:04:08:96:75:49:85:52:a3:b7:00: 9d:36:45:78:42:73:f4:f4:5f:0f:84:75:cc:08:79: 3b:ad:f5:65:02:55:63:e4:c2:c2:65:c0:8e:19:55: 65:99:92:de:26:80:4a:ef:b6:c8:76:01:d3:52:18: a5:c5:14:5a:47:c8:d3:0a:67:6d:fc:0a:71:19:5a: f9:79:ff:9c:55:af:19:ff:a0:21:29:89:47:02:e2: 5b:a1:52:33:0f:24:bc:d2:9c:31:a5:c0:8d:dd:ef: 1b:e3:0c:f0:35:57:e8:17:e7:30:2e:8b:2b:94:30: 7f:fa:91:58:84:c2:21:cb:06:6d:d3:7b:9a:08:d1: 51:f3:c7:c9:7c:64:d5:95:9d:8c:95:84:d4:e2:dc: fd:50:da:4f:e1:41:b5:07:92:c2:76:04:3a:1c:b5: f0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:9F:A7:68:A8:06:2D:B6:C7:D3:46:7D:77:24:11:31:8E:B2:A9:02 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:0a:6e:59:3a:b3:f3:42:b9:5d:8a:1a:b3:79:d4:4c:43:b6: b2:36:ce:ad:51:6c:02:22:f7:97:99:b2:15:32:a3:c8:e8:7d: 8e:71:2f:45:4f:bf:52:b4:09:52:42:9d:56:8a:0b:4c:5f:09: 81:ef:5c:94:d5:8d:ea:18:be:4a:27:36:1c:3d:51:4e:77:de: 1c:e3:37:37:5a:e2:49:82:48:c7:d9:3a:26:11:f9:2a:08:68: d8:c1:f7:97:8c:b9:82:25:e2:ac:c5:54:c0:c6:cc:1d:3c:60: c7:2e:1e:ad:62:fd:31:df:30:b1:cf:c0:68:e1:54:a9:d5:57: a3:29:3f:e9:1e:f4:df:52:fb:6f:2d:84:82:fc:05:57:a8:08: 22:91:e3:4e:9f:24:2f:63:34:78:c9:1e:1b:db:0f:0b:58:73: 02:b2:b2:2e:88:7c:53:d3:ac:02:59:7a:7c:a4:f6:8a:73:6e: 03:9f:f4:9e:c0:8f:73:12:b8:1b:95:07:fa:ad:17:e3:b8:03: e9:49:6f:1d:8d:45:94:cd:12:44:bc:86:23:ec:35:85:57:a5: 50:e7:9a:6e:fb:e0:f9:5b:13:6b:71:1f:1a:da:53:9a:91:77: d6:7c:e2:0b:10:15:64:03:9c:c3:49:d9:ee:8e:f3:72:1c:73: 23:53:ef:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjQwNTE5MDEyNDIxWhcNMjQwNTI2MDEyNDIxWjAYMRYwFAYD VQQDEw02NjQ5NTRjNS0zYzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttK0ObW0t3iyfOhUz0y/g4Sn7qi6Gf60F9gin3ooPtXk2w7sO76oFQFQZMGU lyNsTaBAdP1/5gZWfRGLvqHeVLU5agSf7Ze5RP/IsMWmPUE9+RmsXpdQ8g+Gzp7h kgQIlnVJhVKjtwCdNkV4QnP09F8PhHXMCHk7rfVlAlVj5MLCZcCOGVVlmZLeJoBK 77bIdgHTUhilxRRaR8jTCmdt/ApxGVr5ef+cVa8Z/6AhKYlHAuJboVIzDyS80pwx pcCN3e8b4wzwNVfoF+cwLosrlDB/+pFYhMIhywZt03uaCNFR88fJfGTVlZ2MlYTU 4tz9UNpP4UG1B5LCdgQ6HLXwHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCfp2io Bi22x9NGfXckETGOsqkCMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgCm5ZOrPzQrldihqzedRMQ7ayNs6tUWwCIveXmbIVMqPI6H2OcS9F T79StAlSQp1WigtMXwmB71yU1Y3qGL5KJzYcPVFOd94c4zc3WuJJgkjH2TomEfkq CGjYwfeXjLmCJeKsxVTAxswdPGDHLh6tYv0x3zCxz8Bo4VSp1VejKT/pHvTfUvtv LYSC/AVXqAgikeNOnyQvYzR4yR4b2w8LWHMCsrIuiHxT06wCWXp8pPaKc24Dn/Se wI9zErgblQf6rRfjuAPpSW8djUWUzRJEvIYj7DWFV6VQ55pu++D5WxNrcR8a2lOa kXfWfOILEBVkA5zDSdnujvNyHHMjU+9u -----END CERTIFICATE-----Generated at Sun May 19 02:39:38 2024 by rpki-client on console-fra.rpki-client.org