$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft File: YDUU_FCDUUDwM--oQ87pOWOWol0.mft (raw, json) Hash identifier: htRXroZqDhl/SB75hJVDefgIQ+Nbhh5IEUpLR6DI56M= Subject key identifier: DC:97:5E:47:A7:06:F7:1D:E1:72:3D:2F:61:7F:4D:0A:63:1B:14:BC Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 0A4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft Manifest number: 0A47 Signing time: Mon 06 May 2024 20:30:26 +0000 Manifest this update: Mon 06 May 2024 20:30:25 +0000 Manifest next update: Mon 13 May 2024 20:30:25 +0000 Files and hashes: 1: YDUU_FCDUUDwM--oQ87pOWOWol0.crl (hash: Y67ifqjYfsRBKnGKROR24iFl2KHoH4rGE7hqD6F3tTM=) 2: 42EE36A240EC11EA875BC545C4F9AE02.roa (hash: I/qPuyUkKtwnXgFp3BLtqWc/cf44Yyk2LIv/V8g+A9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2636 (0xa4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Validity Not Before: May 6 20:30:25 2024 GMT Not After : May 13 20:30:25 2024 GMT Subject: CN=66393de1-5e1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:17:07:56:5d:5d:89:b0:4f:0d:5f:10:f7:34: 09:cc:ce:32:a6:2c:a3:b2:45:f2:2f:93:94:99:fc: d7:c9:7c:0b:ee:5a:e2:41:fc:af:04:f6:a1:3c:7a: ce:70:fd:ec:2b:98:0d:d3:e9:c9:f1:b2:1a:cd:a8: e6:f1:03:25:80:3a:08:a4:66:a2:f1:a2:a2:bd:f1: cf:9e:08:a4:dd:97:16:1a:ad:3e:b9:ee:3c:36:33: 4d:aa:e9:7c:87:32:19:c3:c8:c0:42:34:51:83:9d: 71:96:f0:be:8f:f0:5c:38:56:3e:1a:94:b6:23:63: 5d:d5:4c:ec:57:81:b4:84:7d:b1:c7:4b:c5:09:bf: 97:d6:08:38:e8:ec:ed:e4:4a:1d:a0:19:66:e6:da: a0:01:0c:bd:49:5f:5b:cc:ba:65:5e:d3:65:18:64: 33:62:b3:0c:c0:1c:30:04:f0:ff:0c:e2:b4:ca:d0: 77:90:74:84:e9:cb:c2:7f:88:68:f1:e7:15:9d:83: 5e:3d:aa:45:d8:02:e6:0d:8c:b8:65:67:5c:bf:3d: 62:96:35:dc:85:c4:32:31:86:63:99:21:2f:3c:23: 8f:0d:ce:3a:c9:38:c4:c9:8b:b8:0c:7e:9a:d8:13: af:2b:c1:46:0a:bc:6d:63:2f:0a:bd:09:56:12:90: 46:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:97:5E:47:A7:06:F7:1D:E1:72:3D:2F:61:7F:4D:0A:63:1B:14:BC X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:9e:f5:d0:08:a4:dc:9c:8d:38:ff:43:85:9a:04:cc:4c:2a: 3a:cc:4d:9b:14:15:6b:72:a4:8d:14:be:55:e5:ef:d7:48:a2: e6:85:c6:ec:fa:aa:4a:b3:66:ce:56:4f:f0:f4:22:96:e4:5b: 2b:be:4f:b8:44:5a:2a:7d:f3:4d:ce:3f:90:09:6e:3b:18:ff: 51:d1:e1:de:c9:9f:03:ed:bb:4e:ff:14:aa:5e:c3:20:6d:53: 83:de:7d:b2:40:2a:15:2b:e5:13:50:88:c1:9a:c8:08:02:bd: 81:4a:15:59:e7:c3:fb:4a:56:a2:01:c3:85:9e:08:a8:f7:78: cd:59:e2:91:9c:da:c9:0c:63:b6:6c:3a:8a:73:db:4f:42:38: 2d:6b:23:69:ae:35:34:91:4d:75:ac:2f:20:9a:39:3c:ab:55: 44:af:20:37:3c:66:35:7d:27:1a:bd:c9:12:41:1c:18:ba:56: dd:3f:65:16:14:a7:02:4a:a7:4c:fe:ac:07:e4:c8:9e:a2:a9: 52:90:d5:2d:fc:a8:da:c5:dd:a0:05:62:8d:e3:d4:9d:8e:9b: 33:93:79:82:a6:30:53:ab:0b:8c:ed:ba:52:31:55:42:4c:7a: ae:1f:9f:fe:1a:fd:ce:79:c3:98:b7:86:58:48:e2:df:90:14: f0:db:7e:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjQwNTA2MjAzMDI1WhcNMjQwNTEzMjAzMDI1WjAYMRYwFAYD VQQDEw02NjM5M2RlMS01ZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRcHVl1dibBPDV8Q9zQJzM4ypiyjskXyL5OUmfzXyXwL7lriQfyvBPahPHrO cP3sK5gN0+nJ8bIazajm8QMlgDoIpGai8aKivfHPngik3ZcWGq0+ue48NjNNqul8 hzIZw8jAQjRRg51xlvC+j/BcOFY+GpS2I2Nd1UzsV4G0hH2xx0vFCb+X1gg46Ozt 5EodoBlm5tqgAQy9SV9bzLplXtNlGGQzYrMMwBwwBPD/DOK0ytB3kHSE6cvCf4ho 8ecVnYNePapF2ALmDYy4ZWdcvz1iljXchcQyMYZjmSEvPCOPDc46yTjEyYu4DH6a 2BOvK8FGCrxtYy8KvQlWEpBGxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyXXken Bvcd4XI9L2F/TQpjGxS8MB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MThGQS85ODQyNDQ5QzQwRUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVV RHdNLS1vUTg3cE9XT1dvbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4nvXQCKTcnI04/0OFmgTMTCo6zE2bFBVrcqSNFL5V5e/XSKLmhcbs +qpKs2bOVk/w9CKW5Fsrvk+4RFoqffNNzj+QCW47GP9R0eHeyZ8D7btO/xSqXsMg bVOD3n2yQCoVK+UTUIjBmsgIAr2BShVZ58P7SlaiAcOFngio93jNWeKRnNrJDGO2 bDqKc9tPQjgtayNprjU0kU11rC8gmjk8q1VEryA3PGY1fScavckSQRwYulbdP2UW FKcCSqdM/qwH5MieoqlSkNUt/Kjaxd2gBWKN49Sdjpszk3mCpjBTqwuM7bpSMVVC THquH5/+Gv3OecOYt4ZYSOLfkBTw236j -----END CERTIFICATE-----Generated at Mon May 6 22:40:52 2024 by rpki-client on console-ams.rpki-client.org