$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft File: RYBbVYDVFRl9GmFa1myLnUhU9eo.mft (raw, json) Hash identifier: LdtaE3STrobmro4NyT5cZwRcXuF6NchY1dIySZ9C5WA= Subject key identifier: A8:D7:F3:16:62:12:EB:E3:C3:D9:0C:C9:FA:FD:5B:22:48:6A:6D:52 Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA Certificate issuer: /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Certificate serial: 171C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft Manifest number: 1714 Signing time: Mon 06 May 2024 17:09:49 +0000 Manifest this update: Mon 06 May 2024 17:09:48 +0000 Manifest next update: Mon 13 May 2024 17:09:48 +0000 Files and hashes: 1: RYBbVYDVFRl9GmFa1myLnUhU9eo.crl (hash: RFMts3jLwmIrW89N/GX2texsojSFRcJrVvpfaPW1AJY=) 2: 94A1F97A369711EA866E381CC4F9AE02.roa (hash: VW98jNO4dH4/21q6/2uer54gWI4ZklqT1nPB4rk3Ngk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 17:09:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5916 (0x171c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Validity Not Before: May 6 17:09:48 2024 GMT Not After : May 13 17:09:48 2024 GMT Subject: CN=66390edd-1879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:21:2f:79:dd:62:eb:2b:ff:2b:57:50:3e:5e: 4c:11:3e:2f:d6:3e:af:a8:27:25:36:40:51:aa:92: 65:99:ee:ab:41:0b:65:d0:05:90:d6:d4:25:dd:92: 87:71:c7:53:6a:43:a3:32:3b:89:3c:10:05:2b:e7: 8f:71:c4:0c:46:48:82:6c:e7:c2:ca:59:7e:94:80: 1e:f6:f6:ec:d9:aa:36:90:37:7d:a3:bc:75:9d:dd: 80:52:0b:12:8d:5c:6e:a0:54:e5:21:af:52:cb:64: 3d:7f:94:d9:5f:5f:cd:cd:06:e3:a1:b7:e0:cd:22: e6:3d:c7:f6:ca:b4:6b:ec:cd:82:bf:86:ae:4a:de: ab:96:85:3c:52:26:60:36:c2:91:3f:0e:ef:b7:bd: 57:d0:1d:3f:20:d3:2d:cf:a2:4f:9a:a3:75:3f:cc: 25:ec:78:4f:6a:70:7b:ca:e7:2b:c8:44:b1:22:84: a6:f5:15:d0:81:c4:a4:e9:5a:5d:26:ce:b6:cc:d6: 34:b8:0c:d4:9f:ab:39:25:bc:ea:da:a3:10:e1:93: 87:bf:8d:5c:b3:0c:c6:56:50:a2:09:7e:6b:de:2c: 47:f1:94:55:80:d8:f3:c3:64:18:7f:4d:83:ab:5f: a2:61:eb:94:11:a2:a6:4a:88:1f:2e:32:97:ea:78: 7f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:D7:F3:16:62:12:EB:E3:C3:D9:0C:C9:FA:FD:5B:22:48:6A:6D:52 X509v3 Authority Key Identifier: keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:50:c3:7c:8e:2c:e3:08:5b:75:67:d7:c2:cc:e9:c5:b6:39: 21:56:54:a4:83:b3:0e:4a:83:1d:79:cc:f5:5b:aa:7a:28:45: 9c:67:1d:49:09:ed:eb:69:20:a9:6f:fe:77:0d:83:e9:fe:3c: f4:37:4e:e8:d1:de:e0:ed:d0:a5:23:4b:b8:7e:11:31:2a:66: b2:8c:0f:65:69:f4:e7:24:e2:00:0c:fb:23:15:b7:7a:2e:dd: 4f:4a:bc:cd:fe:0e:b9:1d:dd:8b:35:10:5b:e7:0a:56:b9:f9: 35:99:59:91:04:dd:e2:eb:47:7b:ec:27:33:06:34:9f:e6:cc: 36:41:9a:be:cc:a1:50:83:5c:95:b3:e7:ca:f4:25:bb:63:ef: 7d:ca:32:71:fd:68:49:53:c0:a2:4b:23:d5:a4:c4:44:8a:5e: 4c:59:d8:55:0f:d4:d1:f3:5c:f6:51:28:45:8b:3d:d6:e5:96: 56:f0:10:c8:87:6d:1e:9c:c2:58:4f:1d:4b:e6:51:05:a8:6a: ec:3b:68:cb:4a:58:b3:d1:49:8a:0a:6b:4b:34:88:5e:b8:e5: 9c:a8:d7:7a:43:63:8c:3f:4b:a2:99:89:de:5c:41:5d:e5:48: f8:ef:56:c8:f0:50:a3:e0:e2:a5:ab:e7:3f:85:9f:2f:5a:ae: a3:14:55:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5RTcxMTAvBgNVBAUTKDQ1ODA1QjU1ODBENTE1MTk3RDFBNjE1QUQ2NkM4QjlE NDg1NEY1RUEwHhcNMjQwNTA2MTcwOTQ4WhcNMjQwNTEzMTcwOTQ4WjAYMRYwFAYD VQQDEw02NjM5MGVkZC0xODc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4iEved1i6yv/K1dQPl5MET4v1j6vqCclNkBRqpJlme6rQQtl0AWQ1tQl3ZKH ccdTakOjMjuJPBAFK+ePccQMRkiCbOfCyll+lIAe9vbs2ao2kDd9o7x1nd2AUgsS jVxuoFTlIa9Sy2Q9f5TZX1/NzQbjobfgzSLmPcf2yrRr7M2Cv4auSt6rloU8UiZg NsKRPw7vt71X0B0/INMtz6JPmqN1P8wl7HhPanB7yucryESxIoSm9RXQgcSk6Vpd Js62zNY0uAzUn6s5Jbzq2qMQ4ZOHv41cswzGVlCiCX5r3ixH8ZRVgNjzw2QYf02D q1+iYeuUEaKmSogfLjKX6nh/nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjX8xZi Euvjw9kMyfr9WyJIam1SMB8GA1UdIwQYMBaAFEWAW1WA1RUZfRphWtZsi51IVPXq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODlFNy9GOEZGMTUyMkJE RkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZSbDlHbUZhMW15TG5VaFU5 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZQmJWWURWRlJsOUdtRmExbXlMblVoVTllby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODlFNy9GOEZGMTUyMkJERkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZS bDlHbUZhMW15TG5VaFU5ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAUMN8jizjCFt1Z9fCzOnFtjkhVlSkg7MOSoMdecz1W6p6KEWcZx1J Ce3raSCpb/53DYPp/jz0N07o0d7g7dClI0u4fhExKmayjA9lafTnJOIADPsjFbd6 Lt1PSrzN/g65Hd2LNRBb5wpWufk1mVmRBN3i60d77CczBjSf5sw2QZq+zKFQg1yV s+fK9CW7Y+99yjJx/WhJU8CiSyPVpMREil5MWdhVD9TR81z2UShFiz3W5ZZW8BDI h20enMJYTx1L5lEFqGrsO2jLSliz0UmKCmtLNIheuOWcqNd6Q2OMP0uimYneXEFd 5Uj471bI8FCj4OKlq+c/hZ8vWq6jFFW3 -----END CERTIFICATE-----Generated at Mon May 6 20:19:11 2024 by rpki-client on console-fra.rpki-client.org