$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft File: YeT4YWtiQmYakffQErbNHkCTiQs.mft (raw, json) Hash identifier: gKsbGt4dmwff+tUgSJ247skxrGiEQJEsK5sj2xxgVIc= Subject key identifier: D7:04:B4:A6:60:5A:88:F2:68:C8:4A:F6:20:42:09:F2:52:4A:72:DB Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft Manifest number: 1F Signing time: Wed 15 May 2024 08:46:51 +0000 Manifest this update: Wed 15 May 2024 08:46:50 +0000 Manifest next update: Wed 22 May 2024 08:46:50 +0000 Files and hashes: 1: YeT4YWtiQmYakffQErbNHkCTiQs.crl (hash: SBlZU00ln0dGKk5hcQmJmEh4B5bm1OfsL5VGOtZs/04=) 2: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (hash: a7kXfwNeuBzF/aeEMRcbCbD2kj3ZcaqnqO+KkH+rl/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Validity Not Before: May 15 08:46:50 2024 GMT Not After : May 22 08:46:50 2024 GMT Subject: CN=6644767b-dfa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:45:ab:99:47:86:61:25:93:13:36:32:95:e8: c6:6f:4b:b3:62:b6:5d:1c:23:35:93:83:44:11:de: 5f:49:06:68:bc:06:19:90:cb:b6:f7:93:5a:83:94: 57:5f:a1:23:1b:05:74:06:8e:c3:20:2e:41:34:eb: 69:0a:83:55:fb:85:a1:e1:15:d8:b1:0b:11:0a:90: e0:8d:a0:d6:e0:98:eb:2c:e3:b4:2d:51:c2:82:b9: 5c:9d:e5:89:93:39:88:54:93:7a:fa:61:60:1f:4c: a9:11:ed:5f:1f:83:99:95:f0:76:b1:c2:40:22:44: 10:45:63:fb:76:a2:66:63:1e:f9:ae:f7:a3:5a:65: 13:a7:c7:65:b5:66:b4:ca:97:05:e8:2d:00:7c:ee: 85:b4:15:88:34:ce:8e:a7:2c:f2:b4:45:51:12:c4: be:3a:7c:c8:99:5e:ec:e5:38:36:ef:30:87:d9:5b: e9:60:c3:d7:fe:44:7e:23:14:2c:77:13:5e:47:cd: 85:d6:79:9a:7d:5d:77:0c:a8:91:ea:4c:73:68:5f: e2:99:9f:1a:d2:4f:f9:64:aa:61:a7:94:71:4d:9b: 07:99:36:c5:c1:72:a1:88:7a:78:5a:dc:03:9c:24: 27:c9:df:32:57:ce:00:7a:3f:d8:d2:16:e8:40:30: 5c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:04:B4:A6:60:5A:88:F2:68:C8:4A:F6:20:42:09:F2:52:4A:72:DB X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:c3:95:ae:d8:b9:60:17:18:08:52:49:38:2f:a0:03:9e:05: 7c:ea:6f:68:9d:b4:48:44:2f:5e:14:95:58:2c:08:c8:58:ba: 0d:d8:79:06:1e:4b:63:17:bf:74:a7:c1:a2:31:e0:2f:79:b9: f2:ce:ab:af:47:39:78:2e:c8:fd:19:51:6e:b8:29:fb:01:a9: 38:da:b3:7e:cf:df:68:60:dc:fe:0e:c8:c8:fc:14:20:3c:86: 4a:76:08:a3:e7:b1:bc:00:9d:1e:2d:3e:ca:bc:6f:67:26:b8: a9:83:eb:b7:07:e3:c2:5a:35:8b:bf:c6:4e:c9:83:cf:d2:31: 8b:44:a1:3e:51:61:4e:b9:5a:65:0a:b2:ec:99:94:0a:0f:54: 5a:09:22:6d:bc:11:9a:43:dc:7b:6e:c4:51:c6:ca:9e:62:c4: ea:ac:a3:2c:6a:47:f7:98:f2:f6:ca:cc:09:64:64:d4:68:fb: cd:63:dd:f2:39:0b:f0:f3:c0:bf:aa:e8:40:47:76:ce:37:ca: 36:2a:f4:cb:c8:ca:01:60:ec:fc:ea:95:eb:0f:67:71:6d:b7: 7e:f9:15:57:ce:12:91:7f:19:1a:17:e2:53:c0:e8:a4:d1:28: 89:ee:9f:7b:8a:f5:3b:73:b5:53:c8:bd:b4:b6:a0:7c:2d:18: 53:0b:8d:e9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDVENzExMC8GA1UEBRMoNjFFNEY4NjE2QjYyNDI2NjFBOTFGN0QwMTJCNkNEMUU0 MDkzODkwQjAeFw0yNDA1MTUwODQ2NTBaFw0yNDA1MjIwODQ2NTBaMBgxFjAUBgNV BAMTDTY2NDQ3NjdiLWRmYTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDERauZR4ZhJZMTNjKV6MZvS7Nitl0cIzWTg0QR3l9JBmi8BhmQy7b3k1qDlFdf oSMbBXQGjsMgLkE062kKg1X7haHhFdixCxEKkOCNoNbgmOss47QtUcKCuVyd5YmT OYhUk3r6YWAfTKkR7V8fg5mV8HaxwkAiRBBFY/t2omZjHvmu96NaZROnx2W1ZrTK lwXoLQB87oW0FYg0zo6nLPK0RVESxL46fMiZXuzlODbvMIfZW+lgw9f+RH4jFCx3 E15HzYXWeZp9XXcMqJHqTHNoX+KZnxrST/lkqmGnlHFNmweZNsXBcqGIenha3AOc JCfJ3zJXzgB6P9jSFuhAMFy/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1wS0pmBa iPJoyEr2IEIJ8lJKctswHwYDVR0jBBgwFoAUYeT4YWtiQmYakffQErbNHkCTiQsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwNUQ3LzNCNTBGMTMyRTU3 RjExRUVBRjFEMjkxQkM0RjlBRTAyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlR cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWWVUNFlXdGlRbVlha2ZmUUVyYk5Ia0NUaVFzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw NUQ3LzNCNTBGMTMyRTU3RjExRUVBRjFEMjkxQkM0RjlBRTAyL1llVDRZV3RpUW1Z YWtmZlFFcmJOSGtDVGlRcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFPDla7YuWAXGAhSSTgvoAOeBXzqb2idtEhEL14UlVgsCMhYug3YeQYe S2MXv3SnwaIx4C95ufLOq69HOXguyP0ZUW64KfsBqTjas37P32hg3P4OyMj8FCA8 hkp2CKPnsbwAnR4tPsq8b2cmuKmD67cH48JaNYu/xk7Jg8/SMYtEoT5RYU65WmUK suyZlAoPVFoJIm28EZpD3HtuxFHGyp5ixOqsoyxqR/eY8vbKzAlkZNRo+81j3fI5 C/DzwL+q6EBHds43yjYq9MvIygFg7PzqlesPZ3Ftt375FVfOEpF/GRoX4lPA6KTR KInun3uK9TtztVPIvbS2oHwtGFMLjek= -----END CERTIFICATE-----Generated at Wed May 15 09:27:33 2024 by rpki-client on console-fra.rpki-client.org