$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: HHHmRIvHkS1TznSz8WhzB8eT/PV/BnchIsUeHMMAKzk= Subject key identifier: 5B:9E:80:4E:CA:9B:FA:7D:C2:88:50:89:6A:36:90:F0:41:37:77:AC Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 1004 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 0FF7 Signing time: Tue 30 Apr 2024 18:14:51 +0000 Manifest this update: Tue 30 Apr 2024 18:14:50 +0000 Manifest next update: Tue 07 May 2024 18:14:50 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: oEeseVPK+cby6pxm5Er6tTIq0OGDKR+Zt/mpUgEDRDs=) 2: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: T/B/35CfwwdqXePoF3h1HVhAJX4x/EEmRiwOM5XJuNE=) 3: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: l1VKJZ1xyO5pP88882DZ3CpkZe16EkwbV1eYRWz6QEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 18:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4100 (0x1004) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Apr 30 18:14:50 2024 GMT Not After : May 7 18:14:50 2024 GMT Subject: CN=6631351a-96f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a6:01:16:a1:d5:0d:78:72:82:33:f8:3f:70: ef:91:e2:d6:5b:c9:39:4d:1c:bd:48:ff:93:a7:5e: 2e:ca:24:6e:33:2e:38:c9:3c:3b:23:2e:89:e2:c9: 37:d5:08:77:f9:f5:de:ba:a4:b7:b5:95:89:e3:4e: bc:19:d4:01:3f:64:04:61:2d:d2:72:c5:0c:39:a2: 60:c5:73:2f:43:77:06:43:1f:4e:76:86:0b:ae:74: 3a:24:7d:fc:1e:d0:8d:ff:85:f8:bb:68:eb:50:91: c5:28:89:24:08:12:09:72:2c:f2:15:14:40:92:62: 78:7d:79:95:59:a0:dd:7b:ee:34:07:ff:89:c2:11: dc:85:81:be:fe:99:92:21:2b:57:3d:8b:c7:b0:d4: 14:d1:31:e2:79:4c:5c:ed:f4:11:95:6b:6f:7d:64: 42:e6:ea:f2:a8:b6:bd:36:9f:75:89:11:64:e1:92: 17:32:51:af:97:c6:33:c0:03:44:c1:12:c4:b1:67: da:2d:5f:b0:9c:54:c9:d1:03:ff:2d:0a:4a:9a:b2: d5:6f:5c:3e:d6:b5:43:44:25:ac:eb:a4:7a:3a:af: c5:7e:f4:b8:07:2b:bf:aa:b2:b1:bd:db:95:20:25: b5:ef:13:62:a9:18:21:b2:63:0b:ff:83:e0:e1:4a: c3:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:9E:80:4E:CA:9B:FA:7D:C2:88:50:89:6A:36:90:F0:41:37:77:AC X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:d0:b6:92:73:4c:3a:14:77:b2:78:ea:2c:d1:06:de:4e:fa: 76:8f:05:4d:30:17:14:be:09:c2:1d:63:96:ad:a4:55:b9:24: d4:3c:8a:98:5f:9e:e7:18:0d:f9:8d:44:9a:54:7c:e7:73:15: be:c5:ba:ed:f4:e8:10:c2:b3:2a:7d:42:37:58:84:f0:51:21: c5:82:ad:c6:9c:de:f6:14:e8:be:ba:6e:95:29:db:80:ca:00: a4:1e:a6:9a:4a:5b:61:fe:7e:bc:39:96:ea:d5:06:29:de:48: 87:99:20:02:93:b2:3f:6c:6b:11:cf:7b:8c:ce:bb:99:03:78: cf:0e:50:79:2c:f9:a9:75:0a:e7:3e:76:9c:8b:43:ca:85:e6: bd:fe:7f:80:42:8f:18:0e:11:85:0a:34:f7:91:16:03:48:2e: 76:c8:e5:2d:74:4f:15:22:6d:7e:7b:8a:eb:f2:f3:03:3d:c2: f5:1d:97:e9:17:45:dd:60:f7:39:48:1a:05:71:71:be:97:b2: 34:23:13:c2:8f:ac:08:6f:bc:28:34:6b:3a:5c:86:61:e3:b0: 04:b5:47:bd:e2:54:ca:92:f9:d3:54:cb:29:c3:55:dc:55:51: 43:e3:76:d2:0e:c2:14:a3:51:65:ff:fd:4b:c8:12:bb:3d:ec: 11:c1:f0:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjQwNDMwMTgxNDUwWhcNMjQwNTA3MTgxNDUwWjAYMRYwFAYD VQQDEw02NjMxMzUxYS05NmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16YBFqHVDXhygjP4P3DvkeLWW8k5TRy9SP+Tp14uyiRuMy44yTw7Iy6J4sk3 1Qh3+fXeuqS3tZWJ4068GdQBP2QEYS3ScsUMOaJgxXMvQ3cGQx9OdoYLrnQ6JH38 HtCN/4X4u2jrUJHFKIkkCBIJcizyFRRAkmJ4fXmVWaDde+40B/+JwhHchYG+/pmS IStXPYvHsNQU0THieUxc7fQRlWtvfWRC5uryqLa9Np91iRFk4ZIXMlGvl8YzwANE wRLEsWfaLV+wnFTJ0QP/LQpKmrLVb1w+1rVDRCWs66R6Oq/FfvS4Byu/qrKxvduV ICW17xNiqRghsmML/4Pg4UrDqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFuegE7K m/p9wohQiWo2kPBBN3esMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg0LaSc0w6FHeyeOos0QbeTvp2jwVNMBcUvgnCHWOWraRVuSTUPIqY X57nGA35jUSaVHzncxW+xbrt9OgQwrMqfUI3WITwUSHFgq3GnN72FOi+um6VKduA ygCkHqaaSlth/n68OZbq1QYp3kiHmSACk7I/bGsRz3uMzruZA3jPDlB5LPmpdQrn Pnaci0PKhea9/n+AQo8YDhGFCjT3kRYDSC52yOUtdE8VIm1+e4rr8vMDPcL1HZfp F0XdYPc5SBoFcXG+l7I0IxPCj6wIb7woNGs6XIZh47AEtUe94lTKkvnTVMspw1Xc VVFD43bSDsIUo1Fl//1LyBK7PewRwfBl -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:57 2024 by rpki-client on console-fra.rpki-client.org