$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: Ty7G2RIfY6EFj0QfKzQwn32NW5GLCG3bZsuH/YYLgiw= Subject key identifier: 27:FF:CB:D5:5F:CD:1E:70:67:4D:12:85:D3:DD:99:2C:45:14:A4:92 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: D1 Signing time: Sat 01 Jun 2024 07:30:37 +0000 Manifest this update: Sat 01 Jun 2024 07:30:36 +0000 Manifest next update: Sat 08 Jun 2024 07:30:36 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: WB1A8xI8mOiVCyu8LvkgsZHxFy+dVzhRVh2VR0WGe5M=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: TdhZIYOqiSxv9GOoUzAaigjvIFJrtJpP2QczwEIQ1mA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Jun 1 07:30:36 2024 GMT Not After : Jun 8 07:30:36 2024 GMT Subject: CN=665ace1c-4934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e5:00:5a:e2:f8:38:18:d3:85:2b:40:3e:33: 39:1c:ae:31:c4:8b:1e:09:fb:88:86:aa:65:4c:48: 80:a9:8e:5d:21:07:13:6b:c1:4f:79:a6:73:87:1d: 64:19:8b:8b:3c:54:05:c2:21:1d:5c:49:e9:05:67: 7a:c6:0d:c8:88:d8:5b:67:8a:7f:76:1a:d4:0f:34: d5:a1:7b:41:ae:ec:aa:7b:db:5d:f8:03:48:12:91: 6d:32:7a:4d:a5:6e:18:0b:8a:c1:2b:2d:42:14:44: 2c:02:01:07:1d:76:81:6a:e1:f0:b0:46:dc:8c:fe: 7a:9b:b9:d1:51:50:64:99:b5:07:5d:3b:99:01:f2: 20:8a:de:20:20:5e:c3:53:67:8d:93:f6:79:5d:93: 55:a8:63:06:9b:b2:ce:6e:88:97:e0:df:10:64:74: af:29:1a:7b:18:e0:65:5d:e0:c2:94:86:97:2c:33: 63:4a:c5:ac:be:74:18:92:5f:ca:11:d2:1c:59:1c: 33:94:35:e2:45:41:c8:73:b1:58:98:48:ab:0c:a4: 60:fe:88:31:eb:ea:97:99:f3:e1:cd:82:bf:42:8e: 14:ea:86:44:f9:f3:71:a0:47:cf:90:1d:53:bb:10: b5:36:e8:f5:17:2e:a0:32:9d:fa:5b:c5:e4:e6:12: 0c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:FF:CB:D5:5F:CD:1E:70:67:4D:12:85:D3:DD:99:2C:45:14:A4:92 X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:ea:0d:bc:56:40:1a:45:5e:29:47:69:43:57:42:09:0a:10: 88:87:03:39:c3:f5:8e:60:45:17:fb:fb:91:8c:d9:99:e5:89: 4f:b0:ce:57:de:23:3b:f6:ea:f7:12:cd:42:df:6d:a1:0b:e2: 3f:93:07:fd:4d:35:15:41:80:22:db:73:e2:f6:c0:ae:59:0c: 08:5a:14:78:30:15:d8:b6:eb:76:ec:64:fd:c9:82:e2:94:fa: 0c:3f:77:a3:2f:ae:21:48:6e:3a:c0:f4:42:42:94:f2:cb:c3: 67:68:ac:2d:11:0e:83:ea:ba:9c:b5:7f:1f:b5:07:c1:cc:3e: b4:b5:91:16:99:32:46:7d:54:67:b4:94:c5:7b:2d:44:91:77: f3:f4:ac:ee:2b:d0:3c:63:f0:2c:eb:de:b6:f4:cf:6d:49:be: 00:be:53:75:e2:e8:61:7e:07:b8:49:0a:07:7e:14:9c:11:83: 23:04:92:13:f5:56:29:b0:4c:46:aa:59:e9:21:14:d5:fd:83: 25:9c:69:a3:30:58:53:18:7c:e2:00:df:58:0d:35:e9:64:a2: d7:99:e6:fd:44:e7:ee:6d:ae:6c:bf:f3:70:5a:c6:02:d2:77: 57:1e:92:d6:4a:ae:47:b0:9b:a5:e2:41:1e:0f:81:29:1a:f5: 42:45:8e:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjQwNjAxMDczMDM2WhcNMjQwNjA4MDczMDM2WjAYMRYwFAYD VQQDEw02NjVhY2UxYy00OTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6OUAWuL4OBjThStAPjM5HK4xxIseCfuIhqplTEiAqY5dIQcTa8FPeaZzhx1k GYuLPFQFwiEdXEnpBWd6xg3IiNhbZ4p/dhrUDzTVoXtBruyqe9td+ANIEpFtMnpN pW4YC4rBKy1CFEQsAgEHHXaBauHwsEbcjP56m7nRUVBkmbUHXTuZAfIgit4gIF7D U2eNk/Z5XZNVqGMGm7LOboiX4N8QZHSvKRp7GOBlXeDClIaXLDNjSsWsvnQYkl/K EdIcWRwzlDXiRUHIc7FYmEirDKRg/ogx6+qXmfPhzYK/Qo4U6oZE+fNxoEfPkB1T uxC1Nuj1Fy6gMp36W8Xk5hIMEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCf/y9Vf zR5wZ00ShdPdmSxFFKSSMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY6g28VkAaRV4pR2lDV0IJChCIhwM5w/WOYEUX+/uRjNmZ5YlPsM5X 3iM79ur3Es1C322hC+I/kwf9TTUVQYAi23Pi9sCuWQwIWhR4MBXYtut27GT9yYLi lPoMP3ejL64hSG46wPRCQpTyy8NnaKwtEQ6D6rqctX8ftQfBzD60tZEWmTJGfVRn tJTFey1EkXfz9KzuK9A8Y/As69629M9tSb4AvlN14uhhfge4SQoHfhScEYMjBJIT 9VYpsExGqlnpIRTV/YMlnGmjMFhTGHziAN9YDTXpZKLXmeb9ROfuba5sv/NwWsYC 0ndXHpLWSq5HsJul4kEeD4EpGvVCRY7O -----END CERTIFICATE-----Generated at Sat Jun 1 08:16:04 2024 by rpki-client on console-ams.rpki-client.org