$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft File: YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft (raw, json) Hash identifier: xnMq3khlLujjLcJqUqscA5eS8nDxNd0NjPjKr8oqhxk= Subject key identifier: CB:01:9B:FE:0C:19:B6:56:02:E7:6F:30:D0:B9:11:4D:33:C5:50:08 Authority key identifier: 60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B Certificate issuer: /CN=A91E5998/serialNumber=601DC54B1F5205080EFD9AA6CFA5A51C4A79DD2B Certificate serial: 055E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft Manifest number: 0559 Signing time: Sun 19 May 2024 00:49:35 +0000 Manifest this update: Sun 19 May 2024 00:49:35 +0000 Manifest next update: Sun 26 May 2024 00:49:35 +0000 Files and hashes: 1: YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl (hash: tttgYGxFrS12j27ANK3JCFGceNrUVhGgpgKsxev/6dw=) 2: 43F7D8B29F2011EB84479343C4F9AE02.roa (hash: InUCnpwuHID+w/5DgZFSxCnHtNAeoihOwtXlguK1z1s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1374 (0x55e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5998/serialNumber=601DC54B1F5205080EFD9AA6CFA5A51C4A79DD2B Validity Not Before: May 19 00:49:35 2024 GMT Not After : May 26 00:49:35 2024 GMT Subject: CN=66494c9f-33ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0d:66:d5:b7:14:7c:92:14:22:8d:84:2e:52: cf:0e:63:e9:fb:28:b0:80:f7:52:20:41:77:3d:5d: e5:cd:b6:68:2d:79:3f:db:b5:89:4f:0c:a1:35:b3: 9d:59:26:1d:74:9f:17:ea:48:42:5e:30:21:78:b3: e6:25:03:f4:03:bb:73:c3:ca:ba:32:51:6b:29:93: 8f:90:19:58:30:1c:26:6d:04:58:18:6a:c4:35:c6: f4:9e:8d:a2:17:88:05:16:8d:1c:f2:df:0b:83:02: 3b:ab:3c:66:0d:3c:0f:6e:18:33:b3:36:18:e2:8d: 70:b4:84:0d:14:eb:1c:36:5c:00:39:df:f7:ff:cb: 01:fe:23:7d:30:fe:02:92:0b:e2:fb:c4:00:78:bf: 0f:76:e7:d3:4f:ea:61:15:bc:ff:ff:c7:f9:40:13: 73:db:62:1b:60:be:ad:12:7a:af:19:99:b9:46:a4: 2a:e4:8a:05:d9:fc:fc:0d:54:47:85:6e:e8:6e:ea: 90:0d:4f:d2:69:eb:0d:9c:84:82:9d:80:eb:37:7c: 0b:32:d9:c3:a8:19:c7:91:09:58:d5:7a:25:7f:cd: de:22:fe:4a:dd:7b:f3:ca:28:4a:17:c0:11:99:71: 12:aa:86:15:78:06:2f:26:ce:35:aa:de:28:c0:9f: c0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:01:9B:FE:0C:19:B6:56:02:E7:6F:30:D0:B9:11:4D:33:C5:50:08 X509v3 Authority Key Identifier: keyid:60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:59:7f:22:88:90:19:1a:5e:46:5d:4e:64:f1:85:3e:08:50: 7a:70:1c:b5:51:8a:51:72:ae:fa:fa:8e:ac:b3:f7:0f:95:69: bd:33:62:fc:47:f8:d9:1d:5f:b8:8b:86:c4:2f:66:3b:9b:20: e9:60:30:53:ea:a6:ef:4c:bf:23:d0:5f:bf:44:1f:8f:a3:41: 04:5c:0c:26:02:ba:66:f7:0e:65:32:92:c3:6d:3c:80:1e:2e: 9d:e6:c7:28:2e:99:3b:ed:7f:a6:8e:81:56:c9:0d:8f:fd:9f: 1b:c8:59:d9:63:73:59:88:e9:0b:63:59:4f:f4:9a:18:e8:a9: d5:bf:71:63:ab:0d:65:d4:e5:7e:32:1b:86:32:3d:53:f4:23: db:f1:a0:7f:a9:47:34:8b:65:24:57:7c:e4:23:4c:f6:1f:b8: 18:10:6e:60:c2:75:ae:f5:f6:c7:01:c7:df:fc:ce:32:68:83: 53:df:16:15:77:29:b5:73:05:a7:68:0b:29:58:06:bf:2e:df: 67:05:f7:b0:54:81:84:30:65:7b:23:09:c9:3b:c4:60:34:53: 6a:8b:6e:f5:42:2a:04:58:43:b4:f6:d7:49:e2:0b:bd:5f:e7: 78:de:e9:38:b8:c1:0f:a7:fe:00:cd:a6:2e:e4:24:84:70:0f: 94:e7:d5:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU5OTgxMTAvBgNVBAUTKDYwMURDNTRCMUY1MjA1MDgwRUZEOUFBNkNGQTVBNTFD NEE3OUREMkIwHhcNMjQwNTE5MDA0OTM1WhcNMjQwNTI2MDA0OTM1WjAYMRYwFAYD VQQDEw02NjQ5NGM5Zi0zM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQ1m1bcUfJIUIo2ELlLPDmPp+yiwgPdSIEF3PV3lzbZoLXk/27WJTwyhNbOd WSYddJ8X6khCXjAheLPmJQP0A7tzw8q6MlFrKZOPkBlYMBwmbQRYGGrENcb0no2i F4gFFo0c8t8LgwI7qzxmDTwPbhgzszYY4o1wtIQNFOscNlwAOd/3/8sB/iN9MP4C kgvi+8QAeL8PdufTT+phFbz//8f5QBNz22IbYL6tEnqvGZm5RqQq5IoF2fz8DVRH hW7obuqQDU/SaesNnISCnYDrN3wLMtnDqBnHkQlY1Xolf83eIv5K3XvzyihKF8AR mXESqoYVeAYvJs41qt4owJ/AiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsBm/4M GbZWAudvMNC5EU0zxVAIMB8GA1UdIwQYMBaAFGAdxUsfUgUIDv2aps+lpRxKed0r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTk5OC8yQzU5MkUyODlG MUYxMUVCQjMwRDU3NDNDNEY5QUUwMi9ZQjNGU3g5U0JRZ09fWnFtejZXbEhFcDUz U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCM0ZTeDlTQlFnT19acW16NldsSEVwNTNTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTk5OC8yQzU5MkUyODlGMUYxMUVCQjMwRDU3NDNDNEY5QUUwMi9ZQjNGU3g5U0JR Z09fWnFtejZXbEhFcDUzU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIWX8iiJAZGl5GXU5k8YU+CFB6cBy1UYpRcq76+o6ss/cPlWm9M2L8 R/jZHV+4i4bEL2Y7myDpYDBT6qbvTL8j0F+/RB+Po0EEXAwmArpm9w5lMpLDbTyA Hi6d5scoLpk77X+mjoFWyQ2P/Z8byFnZY3NZiOkLY1lP9JoY6KnVv3Fjqw1l1OV+ MhuGMj1T9CPb8aB/qUc0i2UkV3zkI0z2H7gYEG5gwnWu9fbHAcff/M4yaINT3xYV dym1cwWnaAspWAa/Lt9nBfewVIGEMGV7IwnJO8RgNFNqi271QioEWEO09tdJ4gu9 X+d43uk4uMEPp/4AzaYu5CSEcA+U59WI -----END CERTIFICATE-----Generated at Sun May 19 01:47:16 2024 by rpki-client on console-ams.rpki-client.org