$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: 4y5cV6ECBJZgJcwmzcpDC20dYnU9Hvvywu8Fuq1+1tQ= Subject key identifier: B9:C8:25:0B:32:72:61:70:E2:CC:E9:05:3C:4D:57:1D:4A:C1:77:AF Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 025B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 0258 Signing time: Sat 01 Jun 2024 05:05:25 +0000 Manifest this update: Sat 01 Jun 2024 05:05:25 +0000 Manifest next update: Sat 08 Jun 2024 05:05:25 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: yepgb7lUU0KNRSTALjnSUP4LvZOlpWo28z9SkfRL5vM=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: RCfV8bIqd1stwpdUL12hC5tiTbZoC58Zty/Kc7NRaGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: Jun 1 05:05:25 2024 GMT Not After : Jun 8 05:05:25 2024 GMT Subject: CN=665aac15-36f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6d:2a:7f:22:62:51:7d:78:41:ae:49:96:83: 81:99:a4:80:68:6a:df:f6:f6:4f:79:33:f7:93:2e: 1a:f4:fe:69:a0:05:05:4a:e6:dd:d2:f4:2a:45:87: 87:f8:54:3e:d4:f8:9f:1b:14:f9:06:85:46:47:4d: b7:b5:ba:c4:af:a1:7c:34:f5:d6:df:8f:29:26:be: 67:f4:f6:fb:4e:a1:bf:d8:28:3a:fd:8c:6d:a3:49: f5:3c:ae:04:7e:9c:7d:34:65:6a:36:7d:f2:c8:92: e9:30:d9:79:9b:9e:99:13:98:2e:87:9f:8b:a2:d6: 4a:d9:31:e0:90:24:88:da:1e:23:af:83:ff:d7:76: bc:bb:7a:ef:36:e9:1b:8f:3f:2f:0d:cf:a4:cd:ca: 49:53:ff:17:70:74:d7:1c:4a:5c:d6:5b:e1:f3:58: f9:fc:a8:b0:9e:ad:c1:6a:67:9b:fa:b4:49:05:85: 43:47:55:c4:61:f8:d4:e2:29:24:0e:b9:06:cb:11: 73:8c:d0:bf:f3:45:41:db:b8:a4:f7:32:38:40:3c: aa:01:c7:73:41:c1:c7:dc:62:3e:77:c2:a4:94:a8: 25:fe:6d:09:36:d2:05:54:45:28:d4:6e:2d:ab:fc: 7d:ac:b5:76:3a:51:e5:30:07:a6:4d:2e:b5:d2:aa: bf:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C8:25:0B:32:72:61:70:E2:CC:E9:05:3C:4D:57:1D:4A:C1:77:AF X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:31:03:9d:2c:83:43:3a:dc:a3:7c:68:c5:52:b1:d7:39:e8: 93:c6:dc:91:18:8b:2e:fe:b6:2c:f7:0f:8f:ba:7e:b7:6b:37: 04:1a:28:f7:ff:dc:a7:63:e3:28:4c:d5:68:ca:9b:71:f3:f9: cb:d3:6c:fb:c7:9c:95:ef:10:6e:8a:33:3a:c8:13:01:a8:25: e5:79:b5:4e:f1:42:d7:7c:88:74:9f:c6:29:68:3f:f6:25:36: 27:94:8b:fa:05:ad:57:33:ed:e2:ea:3c:20:d0:13:6a:a6:e3: 25:b0:df:7d:29:3b:c8:52:aa:ac:e8:8f:4e:49:04:21:3c:cd: fb:fa:48:28:15:79:62:1a:06:1e:1c:d8:f9:cc:85:9e:9f:db: 87:40:ec:21:da:94:ee:24:12:9f:ce:13:52:59:55:90:83:9e: 0c:8c:65:cc:26:40:e9:86:64:09:7a:02:71:c3:67:d7:58:24: 25:a5:12:1a:26:02:d9:7a:71:3a:ce:b0:36:5e:fb:15:95:c5: 97:39:a5:7c:46:67:04:4e:13:66:03:c7:d8:1c:7c:4f:b1:24: bf:c9:69:b8:44:ac:85:3e:5d:c6:bf:f9:ef:e2:59:73:62:8b: 83:ea:57:94:1f:43:6a:29:90:1f:78:40:4e:ca:df:01:cb:d3: bb:77:03:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjQwNjAxMDUwNTI1WhcNMjQwNjA4MDUwNTI1WjAYMRYwFAYD VQQDEw02NjVhYWMxNS0zNmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4W0qfyJiUX14Qa5JloOBmaSAaGrf9vZPeTP3ky4a9P5poAUFSubd0vQqRYeH +FQ+1PifGxT5BoVGR023tbrEr6F8NPXW348pJr5n9Pb7TqG/2Cg6/Yxto0n1PK4E fpx9NGVqNn3yyJLpMNl5m56ZE5guh5+LotZK2THgkCSI2h4jr4P/13a8u3rvNukb jz8vDc+kzcpJU/8XcHTXHEpc1lvh81j5/Kiwnq3Bameb+rRJBYVDR1XEYfjU4ikk DrkGyxFzjNC/80VB27ik9zI4QDyqAcdzQcHH3GI+d8KklKgl/m0JNtIFVEUo1G4t q/x9rLV2OlHlMAemTS610qq/XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnIJQsy cmFw4szpBTxNVx1KwXevMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8MQOdLINDOtyjfGjFUrHXOeiTxtyRGIsu/rYs9w+Pun63azcEGij3 /9ynY+MoTNVoyptx8/nL02z7x5yV7xBuijM6yBMBqCXlebVO8ULXfIh0n8YpaD/2 JTYnlIv6Ba1XM+3i6jwg0BNqpuMlsN99KTvIUqqs6I9OSQQhPM37+kgoFXliGgYe HNj5zIWen9uHQOwh2pTuJBKfzhNSWVWQg54MjGXMJkDphmQJegJxw2fXWCQlpRIa JgLZenE6zrA2XvsVlcWXOaV8RmcEThNmA8fYHHxPsSS/yWm4RKyFPl3Gv/nv4llz YouD6leUH0NqKZAfeEBOyt8By9O7dwMr -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:32 2024 by rpki-client on console-ams.rpki-client.org