$ rpki-client -vvf rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft File: LyR3675WsNegrUTCcX21_ggNyug.mft (raw, json) Hash identifier: F1CMfULXGXpUCLXIZrCCa7A5tCz+82KSZzrV5/xq0+M= Subject key identifier: 33:3B:7E:2B:87:28:40:25:87:2C:B1:D1:D7:6D:3A:09:46:29:53:A9 Authority key identifier: 2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 Certificate issuer: /CN=A91479A7/serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft Manifest number: AA Signing time: Wed 15 May 2024 07:10:37 +0000 Manifest this update: Wed 15 May 2024 07:10:36 +0000 Manifest next update: Wed 22 May 2024 07:10:36 +0000 Files and hashes: 1: LyR3675WsNegrUTCcX21_ggNyug.crl (hash: /lgT3ba96/ZEdaO76/Ca25a0jERxjA/1L4IObxNLA6w=) 2: 7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa (hash: n+UG6V5XV7UFganlBH1N62nTVgBD1jdXRIOHq8v8JMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91479A7/serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Validity Not Before: May 15 07:10:36 2024 GMT Not After : May 22 07:10:36 2024 GMT Subject: CN=66445fed-5217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6b:10:49:57:46:66:83:7a:96:aa:f9:9d:dc: 8e:e5:ad:80:0d:ab:aa:c3:26:3f:99:68:84:19:9f: 5a:d5:3f:1b:24:f5:68:4b:79:f9:c7:8b:35:1a:81: 6d:f0:68:f4:40:cb:db:86:73:c3:e7:e6:c1:bd:f2: 77:3b:90:f1:3a:47:db:d5:3c:34:32:32:53:9c:73: 08:c7:1b:7d:48:e2:2f:6d:34:71:5f:09:3d:af:eb: 32:e3:b6:1d:cd:f9:44:f4:83:36:45:39:20:a3:28: cf:1e:b9:a3:4b:cf:19:3e:a1:a3:72:e6:a0:71:6d: 12:7f:32:81:60:f0:e5:83:f2:c4:d8:79:bd:25:33: 6f:01:68:9c:ea:bf:3e:89:eb:7c:a6:1d:dc:15:8b: 14:54:ef:05:5d:aa:49:40:e5:5e:5e:c6:eb:be:be: 65:46:d5:e2:ec:bf:18:8d:91:6a:f3:19:54:10:73: 34:4c:fc:4b:c5:c3:41:b7:ef:aa:ed:49:dc:ac:01: 89:7f:1e:1e:9a:a5:d2:d7:89:3a:be:89:41:d9:fe: 4d:f5:18:dc:bc:c4:ac:62:1b:0e:da:91:1d:23:10: c2:29:e9:ae:cd:57:ec:64:08:00:52:12:e2:6b:b0: c7:db:35:a3:66:b4:1c:1e:a1:90:0f:c7:a7:cc:1c: d9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:3B:7E:2B:87:28:40:25:87:2C:B1:D1:D7:6D:3A:09:46:29:53:A9 X509v3 Authority Key Identifier: keyid:2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:58:6b:26:9f:1c:48:c2:6c:e6:af:cf:e3:b6:60:79:9d:11: 0f:b6:c8:c3:bf:27:dd:55:60:c7:5f:5e:36:cb:8e:bf:1d:db: 56:86:6c:c0:c3:cf:53:8a:79:a7:ec:b4:8a:e3:d3:a8:d6:46: 76:d6:ba:9e:6a:1a:85:49:7d:ff:91:11:ea:84:56:48:8c:cd: a1:e8:d2:a4:d3:27:7b:a2:f4:11:d5:7c:2b:63:e8:d8:b3:f2: 02:15:18:b0:c3:43:8e:97:a8:3f:6d:e7:67:e8:22:27:3a:f8: df:5f:42:b9:3d:38:ad:07:79:0e:e4:67:3e:57:11:93:35:b0: ee:91:ec:dc:a8:71:21:cd:6f:a1:df:4f:ba:0f:d1:df:bb:14: f4:83:fd:6a:55:0a:02:99:40:73:6f:2b:e1:40:30:43:3e:28: 49:90:9c:7b:ee:ab:91:96:0a:72:3b:04:8d:84:f0:b1:c7:6c: 4c:b9:93:0b:48:7f:c7:1a:ab:01:40:9c:bb:98:3a:a1:e0:85: 90:a0:46:8a:6b:88:b9:74:65:c6:f2:c6:a5:ec:b9:1d:9c:89: 3c:40:2a:c8:e3:e7:bb:87:0b:e0:d3:00:69:63:cb:4e:4e:80: 90:8d:7f:97:6d:8c:7a:c5:5b:91:02:8c:f0:9b:2a:02:94:a5: 80:35:40:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc5QTcxMTAvBgNVBAUTKDJGMjQ3N0VCQkU1NkIwRDdBMEFENDRDMjcxN0RCNUZF MDgwRENBRTgwHhcNMjQwNTE1MDcxMDM2WhcNMjQwNTIyMDcxMDM2WjAYMRYwFAYD VQQDEw02NjQ0NWZlZC01MjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWsQSVdGZoN6lqr5ndyO5a2ADauqwyY/mWiEGZ9a1T8bJPVoS3n5x4s1GoFt 8Gj0QMvbhnPD5+bBvfJ3O5DxOkfb1Tw0MjJTnHMIxxt9SOIvbTRxXwk9r+sy47Yd zflE9IM2RTkgoyjPHrmjS88ZPqGjcuagcW0SfzKBYPDlg/LE2Hm9JTNvAWic6r8+ iet8ph3cFYsUVO8FXapJQOVeXsbrvr5lRtXi7L8YjZFq8xlUEHM0TPxLxcNBt++q 7UncrAGJfx4emqXS14k6volB2f5N9RjcvMSsYhsO2pEdIxDCKemuzVfsZAgAUhLi a7DH2zWjZrQcHqGQD8enzBzZJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDM7fiuH KEAlhyyx0ddtOglGKVOpMB8GA1UdIwQYMBaAFC8kd+u+VrDXoK1EwnF9tf4IDcro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzlBNy84QkE5NjNENDQz RjUxMUVFOUE4RTRFMTZDNEY5QUUwMi9MeVIzNjc1V3NOZWdyVVRDY1gyMV9nZ055 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x5UjM2NzVXc05lZ3JVVENjWDIxX2dnTnl1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzlBNy84QkE5NjNENDQzRjUxMUVFOUE4RTRFMTZDNEY5QUUwMi9MeVIzNjc1V3NO ZWdyVVRDY1gyMV9nZ055dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeWGsmnxxIwmzmr8/jtmB5nREPtsjDvyfdVWDHX142y46/HdtWhmzA w89Tinmn7LSK49Oo1kZ21rqeahqFSX3/kRHqhFZIjM2h6NKk0yd7ovQR1XwrY+jY s/ICFRiww0OOl6g/bedn6CInOvjfX0K5PTitB3kO5Gc+VxGTNbDukezcqHEhzW+h 30+6D9HfuxT0g/1qVQoCmUBzbyvhQDBDPihJkJx77quRlgpyOwSNhPCxx2xMuZML SH/HGqsBQJy7mDqh4IWQoEaKa4i5dGXG8sal7LkdnIk8QCrI4+e7hwvg0wBpY8tO ToCQjX+XbYx6xVuRAozwmyoClKWANUBf -----END CERTIFICATE-----Generated at Wed May 15 09:04:09 2024 by rpki-client on console-ams.rpki-client.org