$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: FyKVRpN/Dwphp1Ojs5OTLTNz6szbK+f/gckZVBvNsl0= Subject key identifier: 75:32:7C:87:46:DD:60:79:85:AB:57:64:C3:38:7A:E0:29:73:67:92 Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: FB Signing time: Fri 03 May 2024 05:41:34 +0000 Manifest this update: Fri 03 May 2024 05:41:33 +0000 Manifest next update: Fri 10 May 2024 05:41:33 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: Yj39QOcOzQMbL0WftMWEyAUlpfvuO4MLILB58oR/TR0=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: /uWMNP1WtMNTZYHRDA417xpJfUKrmS6c5bkJ4hhX1ME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: May 3 05:41:33 2024 GMT Not After : May 10 05:41:33 2024 GMT Subject: CN=6634790d-bff2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b2:dd:b5:f6:52:42:ab:ab:7b:7b:ef:e5:b3: 23:3e:c8:c0:c9:f7:ce:65:15:7e:fd:3b:13:81:98: 56:25:7d:5f:53:26:c0:fd:d1:93:3d:82:7d:6f:13: c1:e0:2b:0a:06:db:61:8e:36:df:7b:0b:41:48:67: 20:db:f4:0a:6b:52:39:f5:95:b3:c2:c9:ef:9a:7c: 90:b1:e3:2e:90:a0:24:70:5b:ea:a4:f2:a1:91:9b: 41:fb:d7:ba:f6:a6:68:39:03:e0:f9:2b:2b:00:56: 13:f8:dc:ad:73:ed:29:b4:a4:5e:70:1c:ec:18:63: fc:61:ee:ee:ca:a8:81:b8:b6:62:a5:32:4e:0e:0a: 5f:ea:48:0d:59:3c:72:86:58:ad:ab:bf:ab:45:53: 0f:3c:8c:07:5e:35:d1:bd:42:2c:75:30:57:67:30: dc:ac:97:6e:4a:96:70:78:60:d1:18:1a:6a:e6:4a: 34:50:0a:c2:91:b7:59:f0:a1:b3:59:1e:5b:8c:a3: a6:37:81:0f:52:15:d9:a2:17:06:bf:d5:86:c7:ae: 00:79:f9:ed:76:37:29:69:a1:23:46:86:6f:3a:ca: 01:16:71:d2:0e:fc:dc:6a:cd:b1:7d:06:24:7e:dd: 5a:83:56:d9:7e:46:f1:7f:58:43:fd:01:43:83:19: b7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:32:7C:87:46:DD:60:79:85:AB:57:64:C3:38:7A:E0:29:73:67:92 X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:1b:3a:a1:e7:32:f3:4f:b9:70:bf:78:c5:c6:2c:a5:f2:d0: 39:71:0b:3e:5b:3f:b2:50:a2:8e:fd:c4:80:a1:89:61:d7:ff: 3f:22:3b:91:7c:3a:d3:6d:5f:93:d9:14:0f:1e:4c:2a:3f:3b: f8:90:44:14:f9:77:45:16:96:08:a3:88:78:c1:1d:65:b2:e3: 30:60:20:a4:96:90:f8:d3:64:81:f7:4e:7d:96:fa:0b:cc:c1: 11:c3:76:52:d4:fe:08:36:2d:40:22:9d:ec:9b:40:3d:e2:cc: ba:a2:80:ca:e9:69:bc:e9:0e:8a:6f:02:c0:b3:3e:48:bf:7e: a6:d0:2c:27:a9:64:01:ae:b8:d0:3f:18:7b:d6:2d:3a:74:cb: fb:39:c0:91:1d:ca:37:0e:10:47:d1:b6:d9:2c:c0:9b:b1:e0: ec:7b:80:d0:a5:18:d4:5c:65:eb:dc:36:7a:bd:99:d1:6a:59: e5:e0:17:5c:48:61:13:d7:b9:4b:30:1b:66:b1:c2:e0:7f:ee: 10:ef:97:7d:6e:f2:ee:ac:96:25:57:ba:7d:15:bb:b6:94:b1: 69:c9:d7:ef:38:9a:76:41:da:03:43:a4:b9:79:8b:75:c3:94: 40:62:fa:3f:17:06:c5:08:05:78:cd:3b:e0:17:93:ef:8b:9b: 84:b8:1b:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjQwNTAzMDU0MTMzWhcNMjQwNTEwMDU0MTMzWjAYMRYwFAYD VQQDEw02NjM0NzkwZC1iZmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLLdtfZSQqure3vv5bMjPsjAyffOZRV+/TsTgZhWJX1fUybA/dGTPYJ9bxPB 4CsKBtthjjbfewtBSGcg2/QKa1I59ZWzwsnvmnyQseMukKAkcFvqpPKhkZtB+9e6 9qZoOQPg+SsrAFYT+Nytc+0ptKRecBzsGGP8Ye7uyqiBuLZipTJODgpf6kgNWTxy hlitq7+rRVMPPIwHXjXRvUIsdTBXZzDcrJduSpZweGDRGBpq5ko0UArCkbdZ8KGz WR5bjKOmN4EPUhXZohcGv9WGx64AefntdjcpaaEjRoZvOsoBFnHSDvzcas2xfQYk ft1ag1bZfkbxf1hD/QFDgxm38wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUyfIdG 3WB5hatXZMM4euApc2eSMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArGzqh5zLzT7lwv3jFxiyl8tA5cQs+Wz+yUKKO/cSAoYlh1/8/IjuR fDrTbV+T2RQPHkwqPzv4kEQU+XdFFpYIo4h4wR1lsuMwYCCklpD402SB9059lvoL zMERw3ZS1P4INi1AIp3sm0A94sy6ooDK6Wm86Q6KbwLAsz5Iv36m0CwnqWQBrrjQ Pxh71i06dMv7OcCRHco3DhBH0bbZLMCbseDse4DQpRjUXGXr3DZ6vZnRalnl4Bdc SGET17lLMBtmscLgf+4Q75d9bvLurJYlV7p9Fbu2lLFpydfvOJp2QdoDQ6S5eYt1 w5RAYvo/FwbFCAV4zTvgF5Pvi5uEuBvx -----END CERTIFICATE-----Generated at Fri May 3 06:28:37 2024 by rpki-client on console-fra.rpki-client.org