$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft File: yozvXh2MPaWsm67lsZbvBmCaOVk.mft (raw, json) Hash identifier: 9oG3kqwi+fNq5DYr3IE3lI59rBZ6+ZYGaZApIgQ7OXc= Subject key identifier: AD:EE:1B:FC:88:2B:C9:31:92:B9:B4:C4:4A:23:47:14:52:07:C1:E5 Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0A53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft Manifest number: 0A53 Signing time: Thu 02 May 2024 20:27:39 +0000 Manifest this update: Thu 02 May 2024 20:27:39 +0000 Manifest next update: Thu 09 May 2024 20:27:39 +0000 Files and hashes: 1: yozvXh2MPaWsm67lsZbvBmCaOVk.crl (hash: zxH+y+Km9VMuKU9FOwq/BwnnJDHFRV5aaJSz16FOCaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2643 (0xa53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: May 2 20:27:39 2024 GMT Not After : May 9 20:27:39 2024 GMT Subject: CN=6633f73b-583f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:3f:5b:72:b7:d1:f2:f8:fc:d5:a4:5c:ff:71: c7:7b:ee:65:88:60:cc:73:15:f9:af:e8:9b:b3:27: 2a:8a:19:f5:2c:3e:97:1f:64:54:60:bb:8b:70:a1: 12:a9:94:60:5d:c7:b8:e8:8a:a6:7c:ba:59:7d:09: f8:56:e4:60:f1:6d:be:38:9c:2a:ee:33:f8:92:9e: 52:d8:ef:e7:aa:3b:d1:4d:6b:b7:02:0f:46:e4:99: 46:1e:05:14:4d:63:25:05:25:78:ca:b3:a9:93:3a: 51:12:37:3c:81:2e:be:91:00:a0:aa:e1:7b:30:25: e8:02:cd:b1:0d:71:d4:d5:3f:c2:38:63:8b:ca:53: 0d:69:a4:da:cc:d6:4c:31:00:7e:ec:a8:7a:54:60: ab:63:df:b2:85:3c:1b:4a:e8:86:59:8d:56:94:ea: f3:23:0d:b9:a7:41:13:a0:de:65:61:09:89:41:e2: e2:bc:b9:a7:51:ff:a1:36:ee:1b:7d:86:fc:71:ce: f3:63:d0:49:ee:20:b3:d2:d0:a8:f5:11:db:a8:0b: cb:a9:9d:07:54:56:17:5b:66:51:96:01:da:b5:10: 5c:02:91:7d:93:c9:9c:81:ab:fc:21:2c:75:17:b7: 6a:8c:04:24:97:4c:ca:a4:48:e4:20:b7:b1:22:8c: 25:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:EE:1B:FC:88:2B:C9:31:92:B9:B4:C4:4A:23:47:14:52:07:C1:E5 X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:c2:64:6d:a1:81:69:f4:08:c3:c8:74:d9:96:37:a4:c9:1f: c6:30:f1:a2:4c:53:34:44:dd:c5:77:c1:ea:b8:a0:f2:bc:37: 8d:72:a6:93:25:a7:e1:b7:6f:98:d7:c6:44:57:a4:6d:49:5a: 58:32:6d:d7:c5:8b:05:d6:24:7a:95:52:c3:e7:45:c3:58:ce: fa:3b:56:a6:5e:b5:57:c4:82:d4:fc:ee:9b:48:48:b7:fc:5f: ba:90:c4:f6:7a:1e:84:a6:e8:32:71:fc:eb:91:2d:d4:8c:91: 5d:68:3f:9d:bf:03:39:21:da:33:0b:85:ef:45:dc:52:88:9f: c5:9f:57:ef:27:5b:8e:a0:66:93:0b:61:74:ec:3b:2c:cd:f4: c0:08:48:c5:cc:43:1e:35:ae:04:4e:90:9e:c5:50:68:7a:3b: 5f:22:66:1b:fc:a4:1f:51:79:e4:92:a1:39:c7:d0:bf:e9:5f: 92:28:41:58:f6:3d:53:ae:9d:c3:67:5b:5e:91:58:08:9e:a0: a3:d2:ab:64:ba:f6:8c:c1:20:21:a0:a9:47:97:dd:41:0b:ea: a1:96:76:51:76:7d:aa:2c:45:4c:f3:2d:79:87:fa:7c:e0:90: dc:0c:b6:2d:35:b8:2c:7f:2f:83:27:53:44:8b:32:d9:f3:97: c2:a6:3c:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjQwNTAyMjAyNzM5WhcNMjQwNTA5MjAyNzM5WjAYMRYwFAYD VQQDEw02NjMzZjczYi01ODNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9j9bcrfR8vj81aRc/3HHe+5liGDMcxX5r+ibsycqihn1LD6XH2RUYLuLcKES qZRgXce46IqmfLpZfQn4VuRg8W2+OJwq7jP4kp5S2O/nqjvRTWu3Ag9G5JlGHgUU TWMlBSV4yrOpkzpREjc8gS6+kQCgquF7MCXoAs2xDXHU1T/COGOLylMNaaTazNZM MQB+7Kh6VGCrY9+yhTwbSuiGWY1WlOrzIw25p0EToN5lYQmJQeLivLmnUf+hNu4b fYb8cc7zY9BJ7iCz0tCo9RHbqAvLqZ0HVFYXW2ZRlgHatRBcApF9k8mcgav8ISx1 F7dqjAQkl0zKpEjkILexIowl+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3uG/yI K8kxkrm0xEojRxRSB8HlMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCQS85M0UyRkIwQzNEQTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBh V3NtNjdsc1pidkJtQ2FPVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhwmRtoYFp9AjDyHTZljekyR/GMPGiTFM0RN3Fd8HquKDyvDeNcqaT Jafht2+Y18ZEV6RtSVpYMm3XxYsF1iR6lVLD50XDWM76O1amXrVXxILU/O6bSEi3 /F+6kMT2eh6EpugycfzrkS3UjJFdaD+dvwM5IdozC4XvRdxSiJ/Fn1fvJ1uOoGaT C2F07DsszfTACEjFzEMeNa4ETpCexVBoejtfImYb/KQfUXnkkqE5x9C/6V+SKEFY 9j1Trp3DZ1tekVgInqCj0qtkuvaMwSAhoKlHl91BC+qhlnZRdn2qLEVM8y15h/p8 4JDcDLYtNbgsfy+DJ1NEizLZ85fCpjxS -----END CERTIFICATE-----Generated at Thu May 2 22:13:15 2024 by rpki-client on console-fra.rpki-client.org