$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft File: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft (raw, json) Hash identifier: HPdCeesF/0Gt3ytkR21m42+0nxZP9uHHbz4HNyHzlR4= Subject key identifier: DB:DA:0D:4C:52:6A:33:26:16:08:A2:71:49:85:F2:11:29:09:CA:12 Authority key identifier: 62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE Certificate issuer: /CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Certificate serial: 0BB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft Manifest number: 0BAA Signing time: Fri 31 May 2024 19:48:52 +0000 Manifest this update: Fri 31 May 2024 19:48:51 +0000 Manifest next update: Fri 07 Jun 2024 19:48:51 +0000 Files and hashes: 1: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl (hash: eVnqyHxTX30/xcCEQWECy+H3qQyL/Y+7ZG/t0GkMTUM=) 2: BE8369D6053711EA9A24E761C4F9AE02.roa (hash: XxAe1LiLKzhQdzJO3Lo5T8NSvmoTjAF2Km8r6YlmsIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2999 (0xbb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Validity Not Before: May 31 19:48:51 2024 GMT Not After : Jun 7 19:48:51 2024 GMT Subject: CN=665a29a3-5493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a6:d6:5b:5d:70:51:3e:69:b4:8e:9b:6d:60: 10:d4:8f:2c:f4:c1:4f:85:70:d5:67:98:c3:86:af: 45:ed:e0:e8:ba:4d:ae:72:17:23:a4:09:e0:f9:b9: 29:cd:30:4b:fb:d5:1c:e7:e8:4f:c7:aa:e2:45:61: f6:45:e8:c4:96:c7:fb:4d:1b:8e:39:d7:79:5e:b4: 27:f9:68:f0:9b:e2:f8:be:98:5f:63:93:e5:5d:f1: 32:db:f7:d1:2a:f1:e1:77:38:8f:c4:24:b6:e2:af: 5f:1b:71:56:da:1a:c8:14:d8:19:58:d9:f8:b1:64: e1:87:03:8e:98:03:0c:69:05:f3:5c:76:f9:0d:2c: 90:7a:24:00:36:95:df:f9:02:b2:6d:a6:60:e2:e4: 2a:79:99:bf:a8:39:79:99:0a:e3:50:e2:43:6b:45: d0:02:7e:a5:72:42:78:4b:60:d6:aa:f2:9b:aa:05: 92:cf:7d:11:70:cf:f0:d7:7c:e9:97:2b:9c:35:aa: 22:3b:40:ee:52:89:2b:fc:39:5e:ac:0a:d5:b0:4b: d4:22:7c:cf:16:ab:bf:c3:18:f7:12:37:8f:ac:c1: 9e:fc:00:54:db:e3:fd:99:64:1d:a2:cf:9b:c8:15: b4:b2:3e:8c:64:ae:ba:5b:99:2a:82:5c:70:53:f4: f6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:DA:0D:4C:52:6A:33:26:16:08:A2:71:49:85:F2:11:29:09:CA:12 X509v3 Authority Key Identifier: keyid:62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:91:21:7d:5f:06:70:3f:d5:f4:d9:87:3f:be:20:a7:b2:31: 4a:12:c0:0b:b8:d7:3b:77:fc:7e:f1:de:f4:2c:13:81:04:f7: 29:06:7e:0d:a4:7b:62:3a:be:4e:9e:b2:1e:12:6b:32:ed:4c: 05:a6:11:15:36:e9:9b:a6:6e:b6:2a:01:8a:0c:db:ca:c4:1e: 56:6e:f2:7f:cd:dc:d7:66:4e:c6:c2:a7:d1:99:11:b5:0b:89: bc:f7:9c:45:9b:10:d4:9a:a4:74:ab:6f:95:3f:72:79:23:70: e8:1c:57:1f:ff:f1:71:99:01:9f:69:07:09:6d:ee:fb:e5:72: de:7f:cf:78:70:79:38:d7:3f:82:21:38:53:f3:4a:b6:c6:78: 19:54:09:65:5f:99:ca:a8:74:19:b7:2e:e0:b8:99:26:02:3a: ec:93:74:29:b3:f7:e4:b1:f0:03:b0:05:57:83:6c:92:30:74: 65:e6:f5:09:a4:15:2e:3c:3f:25:6e:82:cf:ee:7c:b4:1d:9f: 8d:e7:fa:24:60:2e:4e:f1:cc:44:ca:93:4b:a6:80:27:7a:96: 9c:54:91:aa:fc:bd:af:a5:8e:fc:df:ff:94:94:33:b9:86:0e: 4e:f8:2e:7e:b0:93:29:c0:c7:ca:93:09:94:b2:8c:2b:59:a5: 86:df:f3:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0NkIxMTAvBgNVBAUTKDYyMkVFNzU0MzZENkYyRjM5RkIyM0QyQ0VCMjIzMzcx ODQ1NzNERkUwHhcNMjQwNTMxMTk0ODUxWhcNMjQwNjA3MTk0ODUxWjAYMRYwFAYD VQQDEw02NjVhMjlhMy01NDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxabWW11wUT5ptI6bbWAQ1I8s9MFPhXDVZ5jDhq9F7eDouk2uchcjpAng+bkp zTBL+9Uc5+hPx6riRWH2RejElsf7TRuOOdd5XrQn+Wjwm+L4vphfY5PlXfEy2/fR KvHhdziPxCS24q9fG3FW2hrIFNgZWNn4sWThhwOOmAMMaQXzXHb5DSyQeiQANpXf +QKybaZg4uQqeZm/qDl5mQrjUOJDa0XQAn6lckJ4S2DWqvKbqgWSz30RcM/w13zp lyucNaoiO0DuUokr/DlerArVsEvUInzPFqu/wxj3EjePrMGe/ABU2+P9mWQdos+b yBW0sj6MZK66W5kqglxwU/T2pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvaDUxS ajMmFgiicUmF8hEpCcoSMB8GA1UdIwQYMBaAFGIu51Q21vLzn7I9LOsiM3GEVz3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjQ2Qi80OTMxRUU0NjAw N0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2T2ZzajBzNnlJemNZUlhQ ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpN25WRGJXOHZPZnNqMHM2eUl6Y1lSWFBmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjQ2Qi80OTMxRUU0NjAwN0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2 T2ZzajBzNnlJemNZUlhQZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAkSF9XwZwP9X02Yc/viCnsjFKEsALuNc7d/x+8d70LBOBBPcpBn4N pHtiOr5OnrIeEmsy7UwFphEVNumbpm62KgGKDNvKxB5WbvJ/zdzXZk7GwqfRmRG1 C4m895xFmxDUmqR0q2+VP3J5I3DoHFcf//FxmQGfaQcJbe775XLef894cHk41z+C IThT80q2xngZVAllX5nKqHQZty7guJkmAjrsk3Qps/fksfADsAVXg2ySMHRl5vUJ pBUuPD8lboLP7ny0HZ+N5/okYC5O8cxEypNLpoAnepacVJGq/L2vpY783/+UlDO5 hg5O+C5+sJMpwMfKkwmUsowrWaWG3/OL -----END CERTIFICATE-----Generated at Fri May 31 20:34:19 2024 by rpki-client on console-ams.rpki-client.org