$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft File: y1IFTj13aOoWtrColMdzon3qkho.mft (raw, json) Hash identifier: qg/B7oNNeTKSPCAsgbK/Ekz+ux6z3rZJKZSuEVYfwm0= Subject key identifier: 76:56:AE:74:9A:0E:3A:8C:02:C2:DF:92:6A:F0:EC:54:01:A7:EF:23 Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A Certificate issuer: /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Certificate serial: 0B33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft Manifest number: 0B2C Signing time: Sat 18 May 2024 19:48:24 +0000 Manifest this update: Sat 18 May 2024 19:48:24 +0000 Manifest next update: Sat 25 May 2024 19:48:24 +0000 Files and hashes: 1: y1IFTj13aOoWtrColMdzon3qkho.crl (hash: FP2skvrnKtpCGrNLB8BINVXyj9ccIF7tUuwBn2f4Fg8=) 2: 65866C4815D111EABE986319C4F9AE02.roa (hash: bE3U6nrCmV5LZYyjfhqmrx0+q5PYDYCOOXB/IfjAEuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2867 (0xb33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Validity Not Before: May 18 19:48:24 2024 GMT Not After : May 25 19:48:24 2024 GMT Subject: CN=66490608-a6c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:30:80:7b:f8:e0:8b:14:6a:a1:1b:61:68:63: 58:98:08:e7:3a:b0:ab:e4:72:00:cf:ca:a1:de:1b: 8f:ab:6d:20:3f:62:5d:4d:31:b4:b5:0a:6e:2d:e1: 2b:3e:fa:4e:7c:53:c7:7f:64:f8:f8:ae:45:72:93: 9c:da:d3:42:51:67:a1:19:39:04:a6:72:d0:74:ef: f2:c2:d3:04:78:18:df:99:de:a1:b1:c8:b5:8f:a2: 58:89:ba:b6:70:af:80:14:a2:d9:99:17:74:64:ce: 61:c4:5f:17:ae:64:d1:42:6c:fd:e8:b3:bb:19:f2: a4:cf:a1:f2:9e:2c:6a:76:0b:0e:c9:36:e1:bb:8d: b4:59:f5:6a:64:55:79:86:43:42:4e:47:11:29:c3: bd:f2:40:ca:fa:3d:69:92:b4:3d:5f:c4:7f:48:97: 50:67:e5:df:ab:c6:8a:39:d9:7f:4d:5d:d5:67:98: 95:9c:ad:a8:fe:35:55:07:17:94:38:c1:45:6e:e8: 22:f1:c2:c4:eb:6e:78:90:6f:bd:23:55:ce:1c:93: 59:21:c9:e3:52:68:a4:f7:3d:0f:63:59:d1:13:44: 92:e2:24:3e:1d:ac:49:c3:1d:75:86:f9:15:c6:79: 1b:76:fc:b0:ae:f6:6b:4d:cc:54:55:4e:4b:75:49: e2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:56:AE:74:9A:0E:3A:8C:02:C2:DF:92:6A:F0:EC:54:01:A7:EF:23 X509v3 Authority Key Identifier: keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:fb:4a:32:2b:79:8f:81:4b:32:77:48:65:76:7d:50:96:d2: 06:b5:45:1e:04:a3:70:2e:1d:52:83:a8:e0:33:dd:fe:5f:ef: b7:c0:3a:7d:61:9b:4a:ee:f7:23:cd:79:29:b0:b8:f0:d8:64: bc:ac:7f:98:8d:48:c3:e1:e7:ea:9f:f4:d4:94:bc:22:01:7c: 9e:af:c3:94:bb:78:6c:20:ec:07:25:fa:f2:7a:a0:8a:0c:3c: f3:40:61:22:1b:44:a6:43:f9:bf:69:16:f3:1c:ec:56:55:77: 67:16:76:3f:22:fc:cc:57:73:7e:75:09:84:30:74:de:69:93: f1:62:7f:20:db:3f:63:9e:2d:03:a9:19:c2:5b:7a:36:c6:f0: 27:67:73:47:88:17:e0:b1:f6:6c:34:78:2e:b8:85:8a:d9:74: a7:31:63:01:6a:bc:58:8d:c2:5b:a2:1a:d9:fe:17:65:54:4d: b4:00:f8:85:b2:ee:c6:54:de:ca:76:d4:18:26:c6:59:3f:3c: 03:25:44:95:59:f0:6c:da:42:2a:a5:45:4c:4e:28:bf:8c:94: 6b:ca:02:c3:c3:22:f5:ed:18:82:05:29:59:64:c7:b3:21:62: 10:a8:35:a4:27:57:36:4e:da:3f:bb:ee:44:3a:ee:17:dd:10: 77:09:1b:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI2QUMxMTAvBgNVBAUTKENCNTIwNTRFM0Q3NzY4RUExNkI2QjBBODk0Qzc3M0Ey N0RFQTkyMUEwHhcNMjQwNTE4MTk0ODI0WhcNMjQwNTI1MTk0ODI0WjAYMRYwFAYD VQQDEw02NjQ5MDYwOC1hNmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTCAe/jgixRqoRthaGNYmAjnOrCr5HIAz8qh3huPq20gP2JdTTG0tQpuLeEr PvpOfFPHf2T4+K5FcpOc2tNCUWehGTkEpnLQdO/ywtMEeBjfmd6hsci1j6JYibq2 cK+AFKLZmRd0ZM5hxF8XrmTRQmz96LO7GfKkz6HynixqdgsOyTbhu420WfVqZFV5 hkNCTkcRKcO98kDK+j1pkrQ9X8R/SJdQZ+Xfq8aKOdl/TV3VZ5iVnK2o/jVVBxeU OMFFbugi8cLE6254kG+9I1XOHJNZIcnjUmik9z0PY1nRE0SS4iQ+HaxJwx11hvkV xnkbdvywrvZrTcxUVU5LdUni2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZWrnSa DjqMAsLfkmrw7FQBp+8jMB8GA1UdIwQYMBaAFMtSBU49d2jqFrawqJTHc6J96pIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjZBQy9EN0U5OEE2RTE1 RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FPb1d0ckNvbE1kem9uM3Fr aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxSUZUajEzYU9vV3RyQ29sTWR6b24zcWtoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjZBQy9EN0U5OEE2RTE1RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FP b1d0ckNvbE1kem9uM3FraG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCw+0oyK3mPgUsyd0hldn1QltIGtUUeBKNwLh1Sg6jgM93+X++3wDp9 YZtK7vcjzXkpsLjw2GS8rH+YjUjD4efqn/TUlLwiAXyer8OUu3hsIOwHJfryeqCK DDzzQGEiG0SmQ/m/aRbzHOxWVXdnFnY/IvzMV3N+dQmEMHTeaZPxYn8g2z9jni0D qRnCW3o2xvAnZ3NHiBfgsfZsNHguuIWK2XSnMWMBarxYjcJbohrZ/hdlVE20APiF su7GVN7KdtQYJsZZPzwDJUSVWfBs2kIqpUVMTii/jJRrygLDwyL17RiCBSlZZMez IWIQqDWkJ1c2Tto/u+5EOu4X3RB3CRtU -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org