$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft File: rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft (raw, json) Hash identifier: TCXp0EiwcDz6bXzGXTIEz0NtdhomdJrjtHOmHhDIP7s= Subject key identifier: D4:53:E7:36:E7:80:F7:A5:5D:52:9C:69:40:90:E9:AB:AE:57:01:61 Authority key identifier: AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 Certificate issuer: /CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Certificate serial: 0A7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft Manifest number: 0A75 Signing time: Sat 18 May 2024 20:17:55 +0000 Manifest this update: Sat 18 May 2024 20:17:54 +0000 Manifest next update: Sat 25 May 2024 20:17:54 +0000 Files and hashes: 1: rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl (hash: K6G3/lyYrS39vQPVVxueiZ6baIpvf9+CudUH5J+OPQY=) 2: FB6D5292263C11EEB9F5DB43C4F9AE02.roa (hash: tGjhsdRE4mpF1N0qbepC7ow/yzGd/4QJr9ZNX8lYpdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2687 (0xa7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Validity Not Before: May 18 20:17:54 2024 GMT Not After : May 25 20:17:54 2024 GMT Subject: CN=66490cf3-e4a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3b:df:9b:fd:5c:ea:9b:a3:4e:cd:44:82:88: 1c:25:ca:b5:58:5d:a5:42:83:04:5e:df:35:7e:10: 52:a5:a5:e0:f2:c9:68:35:db:eb:bf:6f:70:c9:74: d9:d8:4f:56:e3:72:58:2f:28:fe:a2:71:2a:54:0e: 7d:cd:8c:de:cc:b5:2d:39:56:99:cc:f3:e7:4c:8d: 26:85:d0:7b:ef:b0:22:fd:e7:79:41:01:19:ea:cc: bc:42:9f:ed:ea:a5:ba:26:20:e5:51:96:19:b1:8d: 16:29:1d:b6:cf:c7:3b:1c:bf:b7:c5:6f:f9:d7:f2: 14:fc:e6:99:d6:12:87:73:c5:3f:1f:46:38:65:0e: 8c:66:21:26:68:74:f5:5f:0d:52:ab:9a:0d:32:cb: 5e:a8:39:65:01:98:de:87:25:33:10:e5:05:6e:f5: 9e:d1:94:14:ba:19:f4:28:7d:d2:9a:b4:6a:9d:17: bb:df:03:96:e2:12:18:b5:af:31:c3:1a:32:d0:d1: 61:fa:72:ea:0a:a1:8b:6c:43:9a:c7:89:a0:da:98: 99:b0:5c:55:7c:f2:bc:b6:b7:d5:0d:cc:db:d3:15: a2:79:42:23:8c:2a:48:14:11:9c:7e:ac:05:74:80: 52:21:b3:21:c2:03:32:bf:4b:11:95:54:81:23:ef: 44:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:53:E7:36:E7:80:F7:A5:5D:52:9C:69:40:90:E9:AB:AE:57:01:61 X509v3 Authority Key Identifier: keyid:AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:b7:fd:3d:52:ad:9d:aa:fe:d8:7a:97:3b:f3:e1:78:a7:3f: f0:85:7e:d9:5a:88:8c:c3:86:96:2e:c8:64:f8:9b:d1:35:e6: 99:9a:57:2d:ce:c4:54:00:6c:a5:8f:15:5f:e2:16:e7:e5:41: 6c:18:6a:5a:70:90:14:c5:ca:fc:82:75:4c:7e:e1:e4:3c:93: 76:10:e7:e4:07:e8:1e:0d:a7:dc:17:d8:ad:e5:de:1f:93:c9: ce:fd:3c:d2:80:9d:ec:c9:52:ff:e5:41:57:39:13:76:c9:f2: 57:24:46:68:34:7c:c3:a2:7b:85:a9:49:bb:21:1f:14:8b:4a: 97:a7:9c:b3:fa:10:c8:58:d4:4f:cf:38:0c:6a:26:6a:bc:88: 1b:5d:a5:6e:75:38:9a:e7:97:9c:4c:ef:67:46:31:7c:b2:11: 97:e4:a9:4f:1c:2a:86:8e:ab:91:8b:1f:4d:c7:3a:ae:c3:96: 5d:13:72:84:20:71:93:1b:30:f7:53:31:ff:ad:88:3c:2c:af: 9f:68:f2:16:9d:30:95:70:bf:8b:3f:04:45:bf:27:c3:47:56: 6c:b5:dd:9e:0e:8a:73:a7:e1:89:7c:62:94:be:bd:0f:a6:ae: fd:69:60:90:49:be:37:97:91:2b:f8:f1:c0:b8:df:9f:de:15: 0b:b6:75:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY4QjYxMTAvBgNVBAUTKEFEODRGNEJDQkVCM0M5MzY1RjI4MjcxNTNCQTY5Q0VE MkE5OTEyRTIwHhcNMjQwNTE4MjAxNzU0WhcNMjQwNTI1MjAxNzU0WjAYMRYwFAYD VQQDEw02NjQ5MGNmMy1lNGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDvfm/1c6pujTs1EgogcJcq1WF2lQoMEXt81fhBSpaXg8sloNdvrv29wyXTZ 2E9W43JYLyj+onEqVA59zYzezLUtOVaZzPPnTI0mhdB777Ai/ed5QQEZ6sy8Qp/t 6qW6JiDlUZYZsY0WKR22z8c7HL+3xW/51/IU/OaZ1hKHc8U/H0Y4ZQ6MZiEmaHT1 Xw1Sq5oNMsteqDllAZjehyUzEOUFbvWe0ZQUuhn0KH3SmrRqnRe73wOW4hIYta8x wxoy0NFh+nLqCqGLbEOax4mg2piZsFxVfPK8trfVDczb0xWieUIjjCpIFBGcfqwF dIBSIbMhwgMyv0sRlVSBI+9EqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRT5zbn gPelXVKcaUCQ6auuVwFhMB8GA1UdIwQYMBaAFK2E9Ly+s8k2XygnFTumnO0qmRLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjhCNi80MEU3RkFCQTNB QTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlUWmZLQ2NWTzZhYzdTcVpF dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVDB2TDZ6eVRaZktDY1ZPNmFjN1NxWkV1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjhCNi80MEU3RkFCQTNBQTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlU WmZLQ2NWTzZhYzdTcVpFdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqt/09Uq2dqv7Yepc78+F4pz/whX7ZWoiMw4aWLshk+JvRNeaZmlct zsRUAGyljxVf4hbn5UFsGGpacJAUxcr8gnVMfuHkPJN2EOfkB+geDafcF9it5d4f k8nO/TzSgJ3syVL/5UFXORN2yfJXJEZoNHzDonuFqUm7IR8Ui0qXp5yz+hDIWNRP zzgMaiZqvIgbXaVudTia55ecTO9nRjF8shGX5KlPHCqGjquRix9Nxzquw5ZdE3KE IHGTGzD3UzH/rYg8LK+faPIWnTCVcL+LPwRFvyfDR1Zstd2eDopzp+GJfGKUvr0P pq79aWCQSb43l5Er+PHAuN+f3hULtnWq -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org