$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft File: YOVPYFHttB6nqVCJbNm71nASDWM.mft (raw, json) Hash identifier: 2QMaVbIb8QAymVZZQaNXcLWVSx9zNrcq6Jtad18fGUI= Subject key identifier: 47:B4:69:38:EA:26:51:F2:3B:28:AC:04:39:92:2A:27:88:73:64:91 Authority key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 Certificate issuer: /CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft Manifest number: 19 Signing time: Fri 31 May 2024 09:40:42 +0000 Manifest this update: Fri 31 May 2024 09:40:41 +0000 Manifest next update: Fri 07 Jun 2024 09:40:41 +0000 Files and hashes: 1: YOVPYFHttB6nqVCJbNm71nASDWM.crl (hash: yqj9yyyJMrHnIch6ut6dCbZN2Eb+RdQjkAETfcLFO1E=) 2: 99AA3580F88611EE8E9B3E71C4F9AE02.roa (hash: Y7kMM1dM1beBmLLZbOfmY+in4AMcumHFmTxJNOq/occ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 09:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Validity Not Before: May 31 09:40:41 2024 GMT Not After : Jun 7 09:40:41 2024 GMT Subject: CN=66599b1a-77ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:98:07:1f:9b:4b:5e:6c:81:ee:81:54:30:86: 2a:4c:7e:2f:a4:7d:1c:62:9d:ab:4e:43:5b:d1:7e: 3f:32:5e:25:ad:8d:99:45:f7:60:65:26:f1:30:f0: e7:64:d0:d3:e0:1a:8f:84:b3:21:17:e7:6f:bd:1a: b8:23:8e:e1:46:06:dc:76:53:3a:03:b2:02:bb:74: 3b:39:5b:2b:ba:f3:1d:fa:d6:fe:08:02:e5:99:4f: 72:f5:d0:8c:5a:4c:37:dd:9b:c7:7a:0c:99:96:9c: 69:aa:ab:c0:a2:03:5f:27:88:5d:c8:e5:2d:8e:89: 6f:6f:bc:50:d9:a1:ec:6f:1d:ec:d4:8a:e2:e2:95: e9:4b:98:0c:b4:0e:60:8a:46:32:9c:ef:eb:a0:d1: 43:d8:d4:59:24:c1:55:54:39:a1:8f:98:81:2c:3f: ca:85:ef:69:44:9e:ca:d6:da:8b:4c:60:00:5d:32: c7:bf:d6:f3:33:8d:92:7c:9e:ed:30:61:9b:36:58: be:8b:24:18:e9:43:7c:32:1a:e1:66:d5:31:de:aa: d3:87:bc:18:a0:cc:40:be:d8:02:8d:43:77:a3:8f: 77:bc:13:c6:49:17:16:3f:7d:06:22:e0:ee:cd:dc: 52:77:4f:6d:4c:0e:bc:18:94:12:21:ef:80:de:c9: 22:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B4:69:38:EA:26:51:F2:3B:28:AC:04:39:92:2A:27:88:73:64:91 X509v3 Authority Key Identifier: keyid:60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:09:36:73:4d:ce:52:92:28:ae:5f:2d:e9:a9:1c:b0:38:b4: f6:81:57:ab:55:3a:51:95:7e:76:2f:ab:85:4e:dd:18:f3:bf: a7:8e:21:ed:ab:53:c3:f5:d1:5d:b6:3e:91:76:cb:0c:94:01: fa:df:5b:ef:0c:05:9e:0e:7d:8f:7d:ac:69:ad:2a:46:2e:9e: fc:9c:90:91:4a:d4:ab:67:a3:02:6d:e9:f7:f3:34:11:a5:4b: 93:4b:ae:64:d3:90:8a:a1:ce:05:10:2f:0a:3b:8b:d7:a5:21: 6c:d7:f1:52:93:f5:8c:5b:41:06:d8:20:db:ff:09:6a:3b:23: 51:ba:74:c4:6b:2a:02:2a:03:bf:16:6f:99:5e:91:2d:23:8a: d1:e1:e5:90:01:be:cb:96:17:62:12:c0:76:4d:ec:6c:53:d7: a7:d2:d3:b9:fe:e0:1d:ee:ab:9c:8b:23:2e:fc:59:31:a0:f7: a8:7f:f1:e5:18:a6:b9:29:34:52:46:c4:51:ae:49:67:b2:a0: d2:4a:ed:cd:89:d9:93:3a:4f:c9:d2:b3:0a:bc:8e:f9:a6:5c: 58:2a:93:96:7f:2e:93:63:b7:65:9d:ee:4a:35:9e:b1:c2:43: a2:af:f9:f2:c7:f5:10:cc:aa:ff:10:a1:56:e3:47:96:23:1b: 33:f4:31:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Rjg5QTExMC8GA1UEBRMoNjBFNTRGNjA1MUVEQjQxRUE3QTk1MDg5NkNEOUJCRDY3 MDEyMEQ2MzAeFw0yNDA1MzEwOTQwNDFaFw0yNDA2MDcwOTQwNDFaMBgxFjAUBgNV BAMTDTY2NTk5YjFhLTc3YWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxmAcfm0tebIHugVQwhipMfi+kfRxinatOQ1vRfj8yXiWtjZlF92BlJvEw8Odk 0NPgGo+EsyEX52+9GrgjjuFGBtx2UzoDsgK7dDs5Wyu68x361v4IAuWZT3L10Ixa TDfdm8d6DJmWnGmqq8CiA18niF3I5S2OiW9vvFDZoexvHezUiuLilelLmAy0DmCK RjKc7+ug0UPY1FkkwVVUOaGPmIEsP8qF72lEnsrW2otMYABdMse/1vMzjZJ8nu0w YZs2WL6LJBjpQ3wyGuFm1THeqtOHvBigzEC+2AKNQ3ejj3e8E8ZJFxY/fQYi4O7N 3FJ3T21MDrwYlBIh74DeySLzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUR7RpOOom UfI7KKwEOZIqJ4hzZJEwHwYDVR0jBBgwFoAUYOVPYFHttB6nqVCJbNm71nASDWMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGODlBLzhDNzA0NzQ0Rjg4 NDExRUVBN0IzQTc1MEM0RjlBRTAyL1lPVlBZRkh0dEI2bnFWQ0piTm03MW5BU0RX TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWU9WUFlGSHR0QjZucVZDSmJObTcxbkFTRFdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG ODlBLzhDNzA0NzQ0Rjg4NDExRUVBN0IzQTc1MEM0RjlBRTAyL1lPVlBZRkh0dEI2 bnFWQ0piTm03MW5BU0RXTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJwJNnNNzlKSKK5fLempHLA4tPaBV6tVOlGVfnYvq4VO3Rjzv6eOIe2r U8P10V22PpF2ywyUAfrfW+8MBZ4OfY99rGmtKkYunvyckJFK1KtnowJt6ffzNBGl S5NLrmTTkIqhzgUQLwo7i9elIWzX8VKT9YxbQQbYINv/CWo7I1G6dMRrKgIqA78W b5lekS0jitHh5ZABvsuWF2ISwHZN7GxT16fS07n+4B3uq5yLIy78WTGg96h/8eUY prkpNFJGxFGuSWeyoNJK7c2J2ZM6T8nSswq8jvmmXFgqk5Z/LpNjt2Wd7ko1nrHC Q6Kv+fLH9RDMqv8QoVbjR5YjGzP0MR0= -----END CERTIFICATE-----Generated at Fri May 31 13:04:59 2024 by rpki-client on console-ams.rpki-client.org