$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: Ekh+Qrq0ONQ6TPhzkFXFgBgVyYwPzvPwloERZxl3K5s= Subject key identifier: BB:C1:B5:29:11:34:0C:8A:0E:29:EE:B9:F2:6A:5C:2F:83:32:05:E1 Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 04E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 04E4 Signing time: Fri 03 May 2024 01:26:43 +0000 Manifest this update: Fri 03 May 2024 01:26:42 +0000 Manifest next update: Fri 10 May 2024 01:26:42 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: yoTzQQYcZiJUxmbRbujJ+IgY8ImBXTyvYiJI60MVMm0=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: LlRmkz9YxwYm1C2j9p8xPkYv28PYadhTVXhJRGajwN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1257 (0x4e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: May 3 01:26:42 2024 GMT Not After : May 10 01:26:42 2024 GMT Subject: CN=66343d52-0a4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4f:f4:ae:a8:55:30:03:be:96:97:2a:fe:8a: 83:9e:1e:b7:fd:ca:49:bd:2d:aa:a8:5f:19:99:ef: 0f:8f:9b:ac:5b:fd:7b:9a:be:39:08:cf:79:9a:fa: 8f:49:a3:47:ad:a3:18:8f:f8:bf:01:8c:7d:c1:24: 4f:a9:9a:77:2b:8a:a4:86:f6:0d:03:7a:57:ec:f3: 1b:b3:60:d6:7c:fd:fb:01:ae:f3:3e:3e:c7:b4:ef: bf:a3:34:0f:b4:71:5b:de:e5:4a:42:93:b5:71:0a: e7:da:a1:24:16:1b:b9:1d:c0:74:55:92:29:87:c6: 07:03:fc:d6:d4:8d:5a:ec:f9:a3:87:37:be:f5:d6: 40:28:7c:13:2e:3f:4e:31:d6:de:07:0d:3c:c8:a8: bb:6d:cb:3c:65:a4:41:9e:1e:50:a4:df:94:74:57: 27:53:4e:e6:c6:53:4b:e8:88:a6:95:39:67:bb:1f: f8:91:52:95:bc:70:b9:7a:11:36:a2:34:98:4c:fc: 9d:8a:98:47:85:bc:1d:51:88:a5:84:d8:7e:b7:c7: d2:26:d1:97:af:3a:f8:db:85:f7:9a:27:e4:80:3f: 45:32:8f:5b:c0:a1:5b:7e:d9:e6:4e:6b:a3:fb:9a: f7:37:de:6a:dd:d1:55:38:39:08:b4:e5:e0:88:67: b1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C1:B5:29:11:34:0C:8A:0E:29:EE:B9:F2:6A:5C:2F:83:32:05:E1 X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:67:2b:9d:ac:dc:c4:3e:dc:ce:05:76:8a:8d:ec:34:44:8d: e8:71:0b:e9:93:95:1b:54:be:0d:23:22:14:4c:00:88:d1:55: 28:83:ae:c6:08:2d:6c:1f:7d:a3:51:e6:2d:7c:c2:5c:45:bf: 32:88:25:85:96:a3:31:f9:67:c5:51:66:c5:3f:98:4c:d4:0c: 88:cd:4f:e2:e6:33:39:05:2f:84:fc:61:a4:5f:b1:41:eb:13: 34:b3:80:b5:5d:df:5e:cd:fe:3e:0b:d1:a3:db:e1:aa:81:07: db:3c:f6:53:ec:4e:bc:a7:23:cb:3d:ee:07:93:28:3a:e5:65: ad:2f:3c:d6:bc:48:d3:13:8b:a7:48:e2:22:ba:6a:18:0f:20: 65:96:41:0c:6a:99:f2:da:19:ef:72:fa:ea:a1:07:ac:14:c6: b3:4f:0f:46:35:15:12:a8:9c:a1:fb:d2:86:6a:7a:24:7c:48: 5d:19:2a:3c:9d:58:59:5b:61:dc:12:7b:15:14:95:4a:d3:a9: 4c:44:92:a1:37:3e:11:15:53:25:e5:20:4e:48:aa:df:0c:af: e2:4e:44:f6:cf:54:db:12:71:6a:d9:cd:ae:92:72:45:69:9b: 15:83:6e:2b:a3:49:a3:3e:6b:08:f5:d7:39:8d:f9:40:5b:d4: bc:52:3c:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjQwNTAzMDEyNjQyWhcNMjQwNTEwMDEyNjQyWjAYMRYwFAYD VQQDEw02NjM0M2Q1Mi0wYTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxU/0rqhVMAO+lpcq/oqDnh63/cpJvS2qqF8Zme8Pj5usW/17mr45CM95mvqP SaNHraMYj/i/AYx9wSRPqZp3K4qkhvYNA3pX7PMbs2DWfP37Aa7zPj7HtO+/ozQP tHFb3uVKQpO1cQrn2qEkFhu5HcB0VZIph8YHA/zW1I1a7Pmjhze+9dZAKHwTLj9O MdbeBw08yKi7bcs8ZaRBnh5QpN+UdFcnU07mxlNL6IimlTlnux/4kVKVvHC5ehE2 ojSYTPydiphHhbwdUYilhNh+t8fSJtGXrzr424X3mifkgD9FMo9bwKFbftnmTmuj +5r3N95q3dFVODkItOXgiGexlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvBtSkR NAyKDinuufJqXC+DMgXhMB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9ZyudrNzEPtzOBXaKjew0RI3ocQvpk5UbVL4NIyIUTACI0VUog67G CC1sH32jUeYtfMJcRb8yiCWFlqMx+WfFUWbFP5hM1AyIzU/i5jM5BS+E/GGkX7FB 6xM0s4C1Xd9ezf4+C9Gj2+GqgQfbPPZT7E68pyPLPe4Hkyg65WWtLzzWvEjTE4un SOIiumoYDyBllkEMapny2hnvcvrqoQesFMazTw9GNRUSqJyh+9KGanokfEhdGSo8 nVhZW2HcEnsVFJVK06lMRJKhNz4RFVMl5SBOSKrfDK/iTkT2z1TbEnFq2c2uknJF aZsVg24ro0mjPmsI9dc5jflAW9S8Ujwk -----END CERTIFICATE-----Generated at Fri May 3 03:10:47 2024 by rpki-client on console-ams.rpki-client.org