$ rpki-client -vvf rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft File: sYTDX2rtv7hd2kET8nUuDInKOpA.mft (raw, json) Hash identifier: IDLn4HTPdldZkwB5jeKOjIN4cUuSGjAKGQJdIDBOtN8= Subject key identifier: 74:BA:79:96:61:C1:C0:6C:60:90:D0:49:9F:82:88:F4:C1:82:66:9E Authority key identifier: B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 Certificate issuer: /CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Certificate serial: 0A2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft Manifest number: 0A27 Signing time: Sat 18 May 2024 20:34:15 +0000 Manifest this update: Sat 18 May 2024 20:34:15 +0000 Manifest next update: Sat 25 May 2024 20:34:15 +0000 Files and hashes: 1: sYTDX2rtv7hd2kET8nUuDInKOpA.crl (hash: LLqqtMoVvkGik2b8l7X7SVjqu/DB1sfVWnvldsn8SbI=) 2: F9D16F1CC7D811EDB42DFF20C4F9AE02.roa (hash: oo4Z2IzwnZrGrJi36X5QXi5JdjWdK/gLBgNaCY2IPBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2605 (0xa2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Validity Not Before: May 18 20:34:15 2024 GMT Not After : May 25 20:34:15 2024 GMT Subject: CN=664910c7-8922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7d:d9:7b:9d:61:db:4e:4b:c5:5b:68:20:5e: 97:69:91:d8:d9:f4:c5:de:29:a9:93:17:43:50:67: 72:a8:73:c6:a6:91:fe:02:3e:0d:16:6e:b2:55:68: d3:ff:fa:c4:a9:b2:d9:23:99:86:94:29:90:01:83: 52:f0:1b:04:c6:38:3b:99:ce:24:a8:03:27:fd:d1: a0:e5:b6:9f:14:df:41:25:b5:9a:18:f5:36:d1:db: be:7e:83:f4:ac:08:dc:f3:b4:97:e8:98:00:39:c7: 38:59:b0:51:91:65:6e:69:90:ac:ed:d7:e0:d0:e3: c0:6e:33:04:d2:79:dc:29:81:af:fd:fa:47:ea:a2: 72:1e:67:9e:5f:a9:e6:58:7d:0d:d0:11:42:3a:ae: d3:43:5a:de:bd:c7:2a:05:f3:e1:0b:d6:fa:c0:2b: 19:3a:3d:05:76:6a:d1:3c:e1:e2:ac:bb:3e:4c:53: 91:12:a8:0d:a8:ca:35:94:29:16:0c:c8:b5:1b:dc: 75:e2:34:56:98:77:02:c6:8a:cb:4c:2a:d1:c5:29: d2:c0:30:12:3a:cf:e7:49:47:d6:3d:24:3f:92:3c: e6:0a:70:06:f9:bd:d0:1c:08:ec:bd:50:6b:8f:7e: f1:07:06:f6:aa:f3:54:5d:77:34:7f:ce:1c:92:c4: 2a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:BA:79:96:61:C1:C0:6C:60:90:D0:49:9F:82:88:F4:C1:82:66:9E X509v3 Authority Key Identifier: keyid:B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:09:41:62:81:e9:86:b7:4b:9f:df:c3:b2:98:3d:40:c5:2d: 04:a9:7c:3b:e8:c8:11:ec:b1:2d:32:7f:5b:b0:84:7b:e9:10: 27:43:94:a7:d8:1f:3c:76:d2:cb:53:aa:b1:10:6a:2e:21:c2: c7:74:4e:20:45:f1:b2:9a:77:86:bc:9b:ba:ee:31:89:35:80: c9:5e:0e:88:85:c0:23:b9:e4:89:79:02:63:8a:75:d2:15:f2: e4:7a:5a:d5:4f:ff:8d:03:ea:f5:93:66:fa:d0:81:ea:d0:3f: 28:47:3b:0c:49:53:b1:a6:54:6e:5a:6e:34:88:32:16:c4:75: 85:8a:0f:32:24:6e:e3:23:a1:d8:d3:9f:af:04:42:ca:31:6a: f1:5e:ef:10:60:5e:49:85:65:82:b7:34:88:b9:0d:f3:76:59: 07:14:40:75:02:29:34:af:f5:05:7c:ac:b4:06:98:b3:14:0a: 16:50:c8:f3:b4:ed:c5:6e:f0:77:4b:46:56:b5:4f:28:68:06: ed:32:69:81:3f:b9:16:91:d1:0f:66:2f:aa:f4:c1:d0:e6:41: 86:fe:69:01:ff:87:23:97:cf:3a:1b:16:94:aa:63:dc:b2:89: 38:c9:56:a8:49:6f:76:ce:1e:5c:4e:3c:ce:6b:34:71:5c:43: 80:45:1e:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg4RjQxMTAvBgNVBAUTKEIxODRDMzVGNkFFREJGQjg1RERBNDExM0YyNzUyRTBD ODlDQTNBOTAwHhcNMjQwNTE4MjAzNDE1WhcNMjQwNTI1MjAzNDE1WjAYMRYwFAYD VQQDEw02NjQ5MTBjNy04OTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4H3Ze51h205LxVtoIF6XaZHY2fTF3impkxdDUGdyqHPGppH+Aj4NFm6yVWjT //rEqbLZI5mGlCmQAYNS8BsExjg7mc4kqAMn/dGg5bafFN9BJbWaGPU20du+foP0 rAjc87SX6JgAOcc4WbBRkWVuaZCs7dfg0OPAbjME0nncKYGv/fpH6qJyHmeeX6nm WH0N0BFCOq7TQ1revccqBfPhC9b6wCsZOj0FdmrRPOHirLs+TFOREqgNqMo1lCkW DMi1G9x14jRWmHcCxorLTCrRxSnSwDASOs/nSUfWPSQ/kjzmCnAG+b3QHAjsvVBr j37xBwb2qvNUXXc0f84cksQq5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHS6eZZh wcBsYJDQSZ+CiPTBgmaeMB8GA1UdIwQYMBaAFLGEw19q7b+4XdpBE/J1LgyJyjqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODhGNC8wN0FFNzdDQzQ4 Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3aGQya0VUOG5VdURJbktP cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZVERYMnJ0djdoZDJrRVQ4blV1REluS09wQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODhGNC8wN0FFNzdDQzQ4Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3 aGQya0VUOG5VdURJbktPcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFCUFigemGt0uf38OymD1AxS0EqXw76MgR7LEtMn9bsIR76RAnQ5Sn 2B88dtLLU6qxEGouIcLHdE4gRfGymneGvJu67jGJNYDJXg6IhcAjueSJeQJjinXS FfLkelrVT/+NA+r1k2b60IHq0D8oRzsMSVOxplRuWm40iDIWxHWFig8yJG7jI6HY 05+vBELKMWrxXu8QYF5JhWWCtzSIuQ3zdlkHFEB1Aik0r/UFfKy0BpizFAoWUMjz tO3FbvB3S0ZWtU8oaAbtMmmBP7kWkdEPZi+q9MHQ5kGG/mkB/4cjl886GxaUqmPc sok4yVaoSW92zh5cTjzOazRxXEOARR5m -----END CERTIFICATE-----Generated at Sat May 18 21:31:32 2024 by rpki-client on console-ams.rpki-client.org