$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: oFurqe4JvW4S2yEqVrSEsE8IyItk/dPGlljGqlAKF14= Subject key identifier: 5D:91:88:CB:7B:53:D0:38:E8:85:7F:EC:F7:87:4D:CF:44:E7:17:E8 Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1A69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1A41 Signing time: Sun 02 Jun 2024 16:56:52 +0000 Manifest this update: Sun 02 Jun 2024 16:56:51 +0000 Manifest next update: Sun 09 Jun 2024 16:56:51 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: NxH2Z7JUpJUMU7V2SOgN4hKVuD0CpsmE/t9eykytkQY=) 2: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: Vek/WzrMVx7KqqfBWKpfk6Pa/vctgDmGCLNJlCCefXs=) 3: 9F0E9576B9C411EE903B7417C4F9AE02.roa (hash: W6H9H9LwBoEmL90fNd3rQ0U3Qmsn0xykwMt5+6WyjPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 16:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6761 (0x1a69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Jun 2 16:56:51 2024 GMT Not After : Jun 9 16:56:51 2024 GMT Subject: CN=665ca454-28dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:d7:4d:f2:b9:1f:42:a8:33:65:d7:a6:57:04: 5a:64:96:72:c7:87:78:40:30:0d:9b:78:1d:48:5d: 55:34:21:6c:5b:0c:b7:0c:48:fb:f2:a2:6e:b0:df: dd:b1:e7:0a:b6:3e:99:b3:81:90:e7:36:c4:e7:e8: ff:3b:6e:a5:7e:e3:dd:72:96:36:e3:45:00:78:5f: 76:7d:1f:91:c1:05:c7:62:43:5b:5f:22:75:94:41: d0:22:9b:e0:89:c4:d0:b1:ef:fb:f4:2b:9d:8b:92: 10:23:fb:28:ce:13:d8:45:c2:ad:47:64:fa:b8:9f: 10:b6:32:54:a4:5f:c3:33:97:e0:09:d0:3b:7f:79: c4:2a:83:c7:00:8b:05:bb:f1:cf:0d:1a:bb:93:15: 85:17:65:a5:4e:43:b8:9b:59:73:9a:1f:99:34:97: 66:4d:1f:05:e9:65:70:0e:92:c5:c2:ce:78:b2:90: c8:9c:2a:37:ea:8f:84:3f:be:b4:5c:6e:2d:d5:dd: f5:bc:9b:42:c9:d7:78:39:5f:d7:a2:40:e5:c8:5b: 75:2e:6a:bc:b0:b2:62:24:b5:bf:52:71:76:05:92: 91:80:06:d8:dc:f6:3f:fc:bc:8f:24:ec:93:da:d7: a8:04:5d:23:ca:06:9f:63:5d:94:63:0e:4a:a0:69: 7e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:91:88:CB:7B:53:D0:38:E8:85:7F:EC:F7:87:4D:CF:44:E7:17:E8 X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:cf:60:93:0b:c4:e4:e7:34:ce:bc:a5:d5:36:85:79:31:ec: 35:85:85:92:fd:94:6a:8a:b1:30:71:c1:42:48:3c:eb:4a:ce: 07:d4:06:97:7b:6d:77:f1:10:ad:92:2c:61:f9:2a:17:ea:26: a0:a0:29:15:69:c0:cb:a8:13:1c:5b:69:b2:59:15:cd:6d:53: 51:10:28:9f:ed:b3:23:a1:95:65:61:9f:8b:74:d1:11:6c:10: 0d:4e:7c:e9:77:0f:e3:24:2d:78:2b:73:a7:1b:51:78:0d:28: 18:68:e4:6c:af:ac:37:73:92:60:52:bf:e6:87:d9:50:36:5a: 64:d4:dc:c9:0b:79:e1:38:dd:05:97:d2:7d:40:08:83:3f:e7: 47:cd:b0:ab:f7:d8:f8:89:a4:06:30:8a:7a:fb:45:6c:f9:0c: b8:d2:e2:4d:c2:d4:22:88:8c:74:7c:3a:9f:1f:cf:1e:89:82: 46:d9:52:70:16:75:23:49:f7:19:d8:ca:75:fc:88:63:ac:5f: 15:4f:2d:79:d1:fc:70:5a:a1:30:ee:71:13:36:51:b5:40:b4: 0c:a3:3d:9b:9e:92:a1:c1:b8:63:03:2f:a3:e4:e0:a8:cd:48: 7b:9e:27:54:c4:dd:01:51:3d:54:dc:08:8d:30:e9:87:87:46: ce:99:30:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjQwNjAyMTY1NjUxWhcNMjQwNjA5MTY1NjUxWjAYMRYwFAYD VQQDEw02NjVjYTQ1NC0yOGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+ddN8rkfQqgzZdemVwRaZJZyx4d4QDANm3gdSF1VNCFsWwy3DEj78qJusN/d secKtj6Zs4GQ5zbE5+j/O26lfuPdcpY240UAeF92fR+RwQXHYkNbXyJ1lEHQIpvg icTQse/79Cudi5IQI/sozhPYRcKtR2T6uJ8QtjJUpF/DM5fgCdA7f3nEKoPHAIsF u/HPDRq7kxWFF2WlTkO4m1lzmh+ZNJdmTR8F6WVwDpLFws54spDInCo36o+EP760 XG4t1d31vJtCydd4OV/XokDlyFt1Lmq8sLJiJLW/UnF2BZKRgAbY3PY//LyPJOyT 2teoBF0jygafY12UYw5KoGl+kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2RiMt7 U9A46IV/7PeHTc9E5xfoMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOz2CTC8Tk5zTOvKXVNoV5Mew1hYWS/ZRqirEwccFCSDzrSs4H1AaX e2138RCtkixh+SoX6iagoCkVacDLqBMcW2myWRXNbVNRECif7bMjoZVlYZ+LdNER bBANTnzpdw/jJC14K3OnG1F4DSgYaORsr6w3c5JgUr/mh9lQNlpk1NzJC3nhON0F l9J9QAiDP+dHzbCr99j4iaQGMIp6+0Vs+Qy40uJNwtQiiIx0fDqfH88eiYJG2VJw FnUjSfcZ2Mp1/IhjrF8VTy150fxwWqEw7nETNlG1QLQMoz2bnpKhwbhjAy+j5OCo zUh7nidUxN0BUT1U3AiNMOmHh0bOmTD5 -----END CERTIFICATE-----Generated at Sun Jun 2 18:46:17 2024 by rpki-client on console-ams.rpki-client.org