$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: WQTAzfJniIZOCVzYBd42xIyWLdoW24Rb8r8tOR8o7lA= Subject key identifier: 9E:9F:11:9A:1D:81:0A:11:58:41:47:9D:3E:F0:9C:71:E2:A6:F3:73 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 0755 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 0749 Signing time: Fri 26 Apr 2024 22:21:22 +0000 Manifest this update: Fri 26 Apr 2024 22:21:21 +0000 Manifest next update: Fri 03 May 2024 22:21:21 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: 0epKLrjpz/OjMUuRxX3dap1HpE7a6c+JkG8HmUK0dP8=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: e0M69OOcktS7U9tIaV8UhvpaxYiOb9SW8R6FJOcK+PU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 22:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1877 (0x755) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Apr 26 22:21:21 2024 GMT Not After : May 3 22:21:21 2024 GMT Subject: CN=662c28e2-c895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b3:f3:2c:db:3a:c7:b5:02:d0:0c:4b:43:a9: 65:ae:ec:46:51:fc:de:46:1f:36:8a:a5:ae:5d:18: af:60:b9:fa:5c:0a:7b:1b:40:90:f4:b1:6d:04:e1: 9b:4c:fc:21:7d:c8:03:6d:e4:58:71:e5:a1:09:69: eb:1e:97:ec:b6:03:4a:26:1e:7f:e0:59:88:38:13: 56:da:77:06:7f:80:a8:82:89:e2:18:89:84:84:29: e0:2a:10:95:02:40:a1:3e:df:75:b0:47:0c:84:f7: 82:d6:ae:29:c8:13:74:19:2c:32:f7:61:ac:95:c8: 56:50:fb:52:25:55:a0:70:59:b9:b1:e9:09:11:b3: 20:82:44:4b:a3:e2:87:3b:df:91:02:a4:a7:2a:ee: 00:60:29:77:aa:41:c4:ca:11:af:6f:61:4b:20:67: 1e:e3:eb:dd:03:b8:07:e5:44:77:0a:77:ae:5c:7e: 25:6c:c4:5f:7d:ae:09:b0:ad:ef:dc:b9:d5:b8:2f: b1:45:43:4a:ba:c1:33:85:ec:6a:3f:d7:77:69:14: 33:c0:1a:9f:80:a0:d2:39:26:7c:2c:46:c4:17:4b: 97:4e:f7:69:b3:8a:83:d0:27:82:cd:6e:28:ff:86: db:18:b0:e4:fe:9b:c7:6c:76:5c:14:74:dc:ad:fd: 94:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:9F:11:9A:1D:81:0A:11:58:41:47:9D:3E:F0:9C:71:E2:A6:F3:73 X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:60:c4:19:b3:ed:24:6b:43:8e:4f:5f:e5:cd:0d:c6:aa:53: ed:07:af:92:16:81:cb:8c:7c:61:32:6f:78:5a:a7:68:b4:5a: f3:00:c8:9c:9c:a4:0f:9f:2f:55:7c:78:46:c8:a2:42:9a:4d: 94:5c:1f:f4:46:3f:b6:46:32:08:75:58:a5:6d:86:7d:31:eb: 75:77:11:84:a2:46:73:d7:9b:30:c5:84:ac:98:7d:a9:b2:b8: d1:a4:50:31:b1:e3:18:cd:12:ea:87:18:5a:93:86:f8:95:e6: b6:55:b5:70:70:95:cf:5f:91:b3:70:67:8c:60:76:d9:bc:63: 31:d7:40:93:9b:b8:d1:b6:69:9c:3e:26:05:a5:d4:6e:c6:7f: a2:c7:72:5e:75:18:39:c8:20:97:ce:1b:6f:32:db:00:99:87: 6c:a2:4e:dc:da:e1:5d:2c:4c:87:b3:6a:1e:bd:99:14:f5:fa: 8e:42:67:c1:5b:5f:2c:c9:24:13:65:04:cb:0f:64:fa:0f:0d: de:17:f0:83:84:1a:9b:ce:ef:5f:83:0d:7e:bb:2d:3d:54:46: 5c:e3:de:c1:67:61:77:26:14:57:52:c5:bf:ac:76:7e:01:79: e2:b6:56:18:44:aa:a0:c0:3b:01:2c:fe:78:4e:40:40:3d:90: 3c:f3:1d:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjQwNDI2MjIyMTIxWhcNMjQwNTAzMjIyMTIxWjAYMRYwFAYD VQQDEw02NjJjMjhlMi1jODk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LPzLNs6x7UC0AxLQ6llruxGUfzeRh82iqWuXRivYLn6XAp7G0CQ9LFtBOGb TPwhfcgDbeRYceWhCWnrHpfstgNKJh5/4FmIOBNW2ncGf4CogoniGImEhCngKhCV AkChPt91sEcMhPeC1q4pyBN0GSwy92GslchWUPtSJVWgcFm5sekJEbMggkRLo+KH O9+RAqSnKu4AYCl3qkHEyhGvb2FLIGce4+vdA7gH5UR3CneuXH4lbMRffa4JsK3v 3LnVuC+xRUNKusEzhexqP9d3aRQzwBqfgKDSOSZ8LEbEF0uXTvdps4qD0CeCzW4o /4bbGLDk/pvHbHZcFHTcrf2UlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6fEZod gQoRWEFHnT7wnHHipvNzMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQYMQZs+0ka0OOT1/lzQ3GqlPtB6+SFoHLjHxhMm94WqdotFrzAMic nKQPny9VfHhGyKJCmk2UXB/0Rj+2RjIIdVilbYZ9Met1dxGEokZz15swxYSsmH2p srjRpFAxseMYzRLqhxhak4b4lea2VbVwcJXPX5GzcGeMYHbZvGMx10CTm7jRtmmc PiYFpdRuxn+ix3JedRg5yCCXzhtvMtsAmYdsok7c2uFdLEyHs2oevZkU9fqOQmfB W18sySQTZQTLD2T6Dw3eF/CDhBqbzu9fgw1+uy09VEZc497BZ2F3JhRXUsW/rHZ+ AXnitlYYRKqgwDsBLP54TkBAPZA88x01 -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:56 2024 by rpki-client on console-ams.rpki-client.org