$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft File: _RYHGGNz6B9E0TeyoOlpV-YquKE.mft (raw, json) Hash identifier: SaAlR/E3scIHD+hEhWS8sDqrDvsJSy1oyhluSOX/xRE= Subject key identifier: 14:E2:AE:84:96:E5:75:8E:43:8C:C9:A8:7B:B7:CD:43:8D:4C:D5:1F Authority key identifier: FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 Certificate issuer: /CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Certificate serial: 3406 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft Manifest number: 33EC Signing time: Thu 30 May 2024 15:15:47 +0000 Manifest this update: Thu 30 May 2024 15:15:46 +0000 Manifest next update: Thu 06 Jun 2024 15:15:46 +0000 Files and hashes: 1: _RYHGGNz6B9E0TeyoOlpV-YquKE.crl (hash: Yw4q2/tR0TVtdE/K6D1rDcM6wWXGxDDPyXZDY3RZ6Rw=) 2: 5A7BB752BD2F11EBB84EE532C4F9AE02.roa (hash: xd9O5awJWnj85753YGPTNiRXIKf+lF0U4GouZuGX2do=) 3: D347187A7E9511ECA9132A0BC4F9AE02.roa (hash: tMiIh2SnbUa01KUZ7HKHJ4VkaKGRhGoHfiv19hmZ+m4=) 4: 59F4A758BD2F11EBB84EE532C4F9AE02.roa (hash: jfVy48uCBZNO9oC5aYAYEOjdj8Yg2pIdpVohIflK4tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 15:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13318 (0x3406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Validity Not Before: May 30 15:15:46 2024 GMT Not After : Jun 6 15:15:46 2024 GMT Subject: CN=66589823-8a23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8a:5c:39:e4:34:38:43:5e:f4:9b:56:0b:94: 94:d1:69:e8:3a:01:d9:a2:a1:5e:5a:c8:f5:67:4e: 68:04:d8:1f:fe:67:8c:9f:cf:6b:29:2d:c2:87:42: 53:82:60:52:db:21:4e:e1:56:6c:c4:44:29:60:24: 73:da:18:84:28:e8:7d:9c:f4:df:31:3c:08:4f:6e: 52:21:20:f5:ca:b8:6b:d5:79:89:f3:e7:f8:52:4c: bc:24:df:ab:c8:22:16:52:55:cf:a2:b2:1d:54:d4: b6:9a:6c:e6:d9:b6:b2:02:1c:aa:c0:a6:21:12:22: 38:f3:84:66:1a:4d:88:2b:9a:b8:92:40:07:8e:5e: 0d:9d:b5:27:ce:1a:fb:91:02:52:a7:fb:dd:3f:c0: 99:2b:28:f7:75:4d:04:95:ea:fb:1e:33:fc:03:51: d9:63:71:8d:33:71:f0:9a:93:93:c0:0c:30:7e:17: 1c:6c:25:4f:48:01:04:37:71:88:53:5f:8e:3b:e9: 03:db:eb:0a:ff:22:df:35:21:8a:e2:2e:47:b0:04: 57:43:79:5f:b8:2d:aa:18:f7:05:99:e1:f6:f5:24: 9e:6c:ed:b0:5c:ec:1b:fc:3e:bc:dc:8b:f2:45:38: eb:8d:58:28:9e:b3:a1:57:3d:c1:81:b0:dd:8b:00: 41:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E2:AE:84:96:E5:75:8E:43:8C:C9:A8:7B:B7:CD:43:8D:4C:D5:1F X509v3 Authority Key Identifier: keyid:FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:50:a0:e2:b1:56:9b:4f:f6:72:fd:c9:92:18:0c:c1:0e:2e: ab:db:7e:96:64:73:e9:46:6f:c9:f8:28:0d:80:c1:5a:5e:22: ee:48:dd:ce:7d:0d:31:a6:19:7f:ec:49:fb:65:80:51:34:50: f0:e7:c0:05:fc:a3:47:d0:23:2d:c7:11:5f:24:2b:e4:f1:f5: f7:d2:e8:e8:14:ef:ea:75:1d:6d:86:ff:6d:55:25:c7:50:b5: 34:9e:59:3c:1c:60:01:49:a4:67:9b:56:f0:28:e8:db:f2:86: 1b:ae:2e:b9:db:33:fe:31:f0:c5:d5:10:97:b2:f2:de:2e:47: 49:a1:86:38:20:af:61:b8:53:3f:af:15:f8:67:23:57:06:bf: 34:ca:bd:a4:1d:d4:29:85:15:1e:af:95:60:aa:80:8c:f9:15: c3:ff:0d:7c:90:56:ce:0e:1e:47:46:2b:e7:a6:0b:b8:af:8a: 56:11:d9:3d:76:b2:50:be:55:fd:a3:56:61:4e:6f:02:ff:5f: 23:6e:8f:bc:35:4e:f8:73:d9:57:43:e2:f1:64:ed:db:57:d8: 0b:2b:b9:ab:1a:61:76:92:4f:90:3b:8c:9c:1c:65:ca:79:d5: 59:11:1e:16:57:d1:a1:64:d5:df:3f:2f:86:23:4a:c4:5d:60: f0:36:dc:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKEZEMTYwNzE4NjM3M0U4MUY0NEQxMzdCMkEwRTk2OTU3 RTYyQUI4QTEwHhcNMjQwNTMwMTUxNTQ2WhcNMjQwNjA2MTUxNTQ2WjAYMRYwFAYD VQQDEw02NjU4OTgyMy04YTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4pcOeQ0OENe9JtWC5SU0WnoOgHZoqFeWsj1Z05oBNgf/meMn89rKS3Ch0JT gmBS2yFO4VZsxEQpYCRz2hiEKOh9nPTfMTwIT25SISD1yrhr1XmJ8+f4Uky8JN+r yCIWUlXPorIdVNS2mmzm2bayAhyqwKYhEiI484RmGk2IK5q4kkAHjl4NnbUnzhr7 kQJSp/vdP8CZKyj3dU0Eler7HjP8A1HZY3GNM3HwmpOTwAwwfhccbCVPSAEEN3GI U1+OO+kD2+sK/yLfNSGK4i5HsARXQ3lfuC2qGPcFmeH29SSebO2wXOwb/D683Ivy RTjrjVgonrOhVz3BgbDdiwBB3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTiroSW 5XWOQ4zJqHu3zUONTNUfMB8GA1UdIwQYMBaAFP0WBxhjc+gfRNE3sqDpaVfmKrih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC81QUUxOTdGNDFE OUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZCOUUwVGV5b09scFYtWXF1 S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19SWUhHR056NkI5RTBUZXlvT2xwVi1ZcXVLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk1OC81QUUxOTdGNDFEOUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZC OUUwVGV5b09scFYtWXF1S0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPUKDisVabT/Zy/cmSGAzBDi6r236WZHPpRm/J+CgNgMFaXiLuSN3O fQ0xphl/7En7ZYBRNFDw58AF/KNH0CMtxxFfJCvk8fX30ujoFO/qdR1thv9tVSXH ULU0nlk8HGABSaRnm1bwKOjb8oYbri652zP+MfDF1RCXsvLeLkdJoYY4IK9huFM/ rxX4ZyNXBr80yr2kHdQphRUer5VgqoCM+RXD/w18kFbODh5HRivnpgu4r4pWEdk9 drJQvlX9o1ZhTm8C/18jbo+8NU74c9lXQ+LxZO3bV9gLK7mrGmF2kk+QO4ycHGXK edVZER4WV9GhZNXfPy+GI0rEXWDwNtyB -----END CERTIFICATE-----Generated at Thu May 30 18:46:48 2024 by rpki-client on console-ams.rpki-client.org