$ rpki-client -vvf rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.mft File: YYQdHtq_n_D2AYxhEBevcZYnok0.mft (raw, json) Hash identifier: DntHbIbNIraTpqq1ukOiVTSLNnQtCsycqcSJsziIEaY= Subject key identifier: 6C:3C:CA:77:7C:D3:20:4F:DC:D4:20:3E:2D:94:BF:18:8E:D8:22:56 Authority key identifier: 61:84:1D:1E:DA:BF:9F:F0:F6:01:8C:61:10:17:AF:71:96:27:A2:4D Certificate issuer: /CN=A9117373/serialNumber=61841D1EDABF9FF0F6018C611017AF719627A24D Certificate serial: 0459 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YYQdHtq_n_D2AYxhEBevcZYnok0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.mft Manifest number: 0433 Signing time: Fri 03 May 2024 02:15:26 +0000 Manifest this update: Fri 03 May 2024 02:15:25 +0000 Manifest next update: Fri 10 May 2024 02:15:25 +0000 Files and hashes: 1: YYQdHtq_n_D2AYxhEBevcZYnok0.crl (hash: P9AlENhKuEcs5mVi9DoPIPUpgHEDxxYevMyqJRj/j28=) 2: A2AEDEF4F50E11EEAA2A5A2CC4F9AE02.roa (hash: d0rFnKNi2lfu7sS8IFxklmK375YKiTyMiZTM4A7hzbc=) 3: CBCD14C8471B11EEABCACF68C4F9AE02.roa (hash: 5ZmWg6xrJpfW5WC6wuJT+TOrF1Il/rYBPGPUIHa/1ds=) 4: CF9E64BED65711EE8623B920C4F9AE02.roa (hash: zWYR8QAy7N2GS5DQTyhRhcDnGuBhK80YMuuGcbf9ORY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.crl rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YYQdHtq_n_D2AYxhEBevcZYnok0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1113 (0x459) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117373/serialNumber=61841D1EDABF9FF0F6018C611017AF719627A24D Validity Not Before: May 3 02:15:25 2024 GMT Not After : May 10 02:15:25 2024 GMT Subject: CN=663448be-6b84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:09:8e:8d:76:e3:15:23:03:9f:b9:ef:bc:35: d3:28:0a:7a:50:05:50:46:38:73:fc:f0:09:f5:ae: 5f:b2:89:b5:32:d1:87:b8:de:1f:54:be:d8:60:4d: e2:59:7d:35:27:17:b7:d0:7a:ef:76:5f:42:c4:ca: 62:c3:82:18:65:96:3d:12:c5:e8:1a:bd:3d:65:6d: 84:4e:ff:07:1c:7f:79:f6:be:eb:16:49:3e:d5:ca: 04:bf:a7:d9:87:db:73:13:c9:2a:be:6c:53:a4:f6: 04:43:ad:80:90:64:67:7b:e1:5b:71:12:80:47:95: a6:b7:4f:a9:3d:c5:52:fc:0c:cd:4e:89:53:68:72: 8f:d5:9e:53:e6:24:9a:2a:8c:bf:b2:33:5e:90:5a: eb:47:32:79:85:7f:83:b7:6d:2f:ab:07:15:dc:2a: 31:de:06:0c:c5:58:fb:ae:39:1a:b4:34:86:ea:ea: 8b:48:1f:34:21:67:ea:72:44:40:b3:44:0e:92:68: 4f:ef:34:f7:7a:c7:fc:70:bc:d6:c6:67:c5:48:ca: 49:0e:52:96:21:d8:ac:d9:f8:28:ca:67:39:38:2d: ed:53:17:97:ff:a4:b8:f6:06:13:b7:70:86:db:eb: 68:0f:99:04:2a:07:cf:74:07:22:55:b9:8a:a2:61: 61:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:3C:CA:77:7C:D3:20:4F:DC:D4:20:3E:2D:94:BF:18:8E:D8:22:56 X509v3 Authority Key Identifier: keyid:61:84:1D:1E:DA:BF:9F:F0:F6:01:8C:61:10:17:AF:71:96:27:A2:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YYQdHtq_n_D2AYxhEBevcZYnok0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:fc:9e:fc:9c:12:de:66:b4:94:bb:5d:d7:9e:e8:bf:45:d0: 47:09:28:dc:b9:0e:7a:19:aa:a8:b6:9e:c7:a5:4d:ea:fc:d9: 39:6c:65:2b:ba:b3:81:b4:2e:25:8c:3c:e8:d0:11:48:b4:8a: b1:c3:1b:73:42:ad:05:65:da:31:0b:5b:e8:03:ae:33:28:c4: 16:73:c2:c8:fb:b3:c7:fb:15:99:b9:fe:6c:5d:e5:df:e5:99: 12:09:9a:91:42:ea:56:cf:91:5b:6e:c1:87:7a:4b:f5:bc:35: 76:8e:cf:47:84:dc:37:72:17:c0:09:f7:16:21:0a:e6:39:98: c8:b3:51:fd:f0:4d:37:d0:13:fa:ee:f6:24:c5:ae:f3:40:ac: 00:ac:0f:d8:fa:d0:b3:73:3d:e6:f3:f1:38:7e:78:c7:55:d5: c0:5c:e5:5a:52:c2:00:ff:47:b3:7a:b3:21:5a:1a:00:2a:72: 5a:53:36:91:71:aa:d3:8f:45:d3:b3:e0:c6:e7:86:97:9f:66: 25:a4:d4:d4:af:e5:56:c8:45:a3:6a:36:a9:ea:99:db:89:eb: 1d:1f:cb:f8:3c:87:9c:54:b5:f8:b8:15:d3:8e:dc:2b:2d:c8: e0:ae:3d:64:3e:c3:0b:5a:ae:b5:64:94:50:e4:4f:06:fa:2d: 73:09:ec:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTczNzMxMTAvBgNVBAUTKDYxODQxRDFFREFCRjlGRjBGNjAxOEM2MTEwMTdBRjcx OTYyN0EyNEQwHhcNMjQwNTAzMDIxNTI1WhcNMjQwNTEwMDIxNTI1WjAYMRYwFAYD VQQDEw02NjM0NDhiZS02Yjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QmOjXbjFSMDn7nvvDXTKAp6UAVQRjhz/PAJ9a5fsom1MtGHuN4fVL7YYE3i WX01Jxe30Hrvdl9CxMpiw4IYZZY9EsXoGr09ZW2ETv8HHH959r7rFkk+1coEv6fZ h9tzE8kqvmxTpPYEQ62AkGRne+FbcRKAR5Wmt0+pPcVS/AzNTolTaHKP1Z5T5iSa Koy/sjNekFrrRzJ5hX+Dt20vqwcV3Cox3gYMxVj7rjkatDSG6uqLSB80IWfqckRA s0QOkmhP7zT3esf8cLzWxmfFSMpJDlKWIdis2fgoymc5OC3tUxeX/6S49gYTt3CG 2+toD5kEKgfPdAciVbmKomFh6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGw8ynd8 0yBP3NQgPi2UvxiO2CJWMB8GA1UdIwQYMBaAFGGEHR7av5/w9gGMYRAXr3GWJ6JN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzM3My9CRkE5QzM2MjIz QUExMUVDQTgxMTZCMjdDNEY5QUUwMi9ZWVFkSHRxX25fRDJBWXhoRUJldmNaWW5v azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lZUWRIdHFfbl9EMkFZeGhFQmV2Y1pZbm9rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzM3My9CRkE5QzM2MjIzQUExMUVDQTgxMTZCMjdDNEY5QUUwMi9ZWVFkSHRxX25f RDJBWXhoRUJldmNaWW5vazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN/J78nBLeZrSUu13Xnui/RdBHCSjcuQ56Gaqotp7HpU3q/Nk5bGUr urOBtC4ljDzo0BFItIqxwxtzQq0FZdoxC1voA64zKMQWc8LI+7PH+xWZuf5sXeXf 5ZkSCZqRQupWz5FbbsGHekv1vDV2js9HhNw3chfACfcWIQrmOZjIs1H98E030BP6 7vYkxa7zQKwArA/Y+tCzcz3m8/E4fnjHVdXAXOVaUsIA/0ezerMhWhoAKnJaUzaR carTj0XTs+DG54aXn2YlpNTUr+VWyEWjajap6pnbiesdH8v4PIecVLX4uBXTjtwr Lcjgrj1kPsMLWq61ZJRQ5E8G+i1zCexl -----END CERTIFICATE-----Generated at Fri May 3 04:45:07 2024 by rpki-client on console-fra.rpki-client.org