$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: 4cSS/V5e1SBTrtAGpOBKLIn+o83IeyZn04C0VFeVVuM= Subject key identifier: 34:D0:F9:A3:CE:29:4E:04:BF:EC:56:BA:16:14:4F:B0:C8:DD:F9:08 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0A10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 09FD Signing time: Thu 02 May 2024 20:51:26 +0000 Manifest this update: Thu 02 May 2024 20:51:25 +0000 Manifest next update: Thu 09 May 2024 20:51:25 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: sN46NjYowzyjBuax6/G0Ns5SfyRYH9xLmUlXoixoQmo=) 2: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: J8CmfyyKJCrYxa/cZGFydyBPFYTmCuysA/8LkHcB4js=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:51:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2576 (0xa10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: May 2 20:51:25 2024 GMT Not After : May 9 20:51:25 2024 GMT Subject: CN=6633fccd-8ddd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a2:96:3e:2a:0a:33:8a:f8:da:e8:0c:fd:c5: ab:80:a4:4c:bb:3d:7e:8f:bb:ea:0d:ba:0c:a5:15: 7b:1a:45:9e:ee:54:fd:d6:fc:23:b2:54:e6:a9:91: f9:58:0c:66:86:d4:b9:34:2b:26:f8:23:be:9d:77: 05:a6:67:45:a4:0c:15:5c:e0:2f:8c:50:3c:aa:4e: d8:83:38:6f:25:06:94:5d:9b:e6:d6:b5:fb:03:16: 3b:95:2e:a0:8e:c7:53:c3:eb:65:ff:0c:8c:0b:77: 4b:b9:81:31:86:e7:96:a9:70:d0:fc:96:85:48:32: 2e:94:02:08:16:91:57:6e:77:4b:5c:6e:3b:90:16: af:de:83:a5:19:aa:e1:f5:1c:00:e1:0f:a9:80:1c: b0:0f:c9:b9:42:37:d2:5d:7f:78:63:66:c7:f6:4a: 20:2c:36:df:c9:19:a1:04:d6:a4:73:3a:c1:c7:8a: 41:a8:80:05:03:82:60:f2:3c:27:39:7b:85:1f:df: f2:35:74:33:c8:d1:aa:4e:aa:1c:69:ec:36:08:c1: 36:05:69:b6:9c:eb:3f:80:5b:d6:3d:83:56:9b:bf: d7:35:05:38:59:f1:44:22:0f:6a:8e:46:1a:39:d9: a9:99:21:e7:7a:84:03:04:8f:be:64:fb:24:02:d6: 1e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:D0:F9:A3:CE:29:4E:04:BF:EC:56:BA:16:14:4F:B0:C8:DD:F9:08 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:ba:9b:55:b3:f1:fa:37:6a:2a:ca:07:d1:22:19:34:69:31: 29:98:2a:24:b9:23:50:1c:3c:3a:84:fa:bb:6f:5a:bd:0b:86: 41:3d:ce:21:92:65:d4:c7:6e:ff:60:4c:5d:95:89:1e:c7:da: 81:79:ce:d5:24:0e:0e:fe:51:c8:ab:0d:58:c2:1b:ae:25:6f: 1c:7f:ba:ce:3f:92:78:29:a3:db:2f:19:ae:68:a8:97:c9:b8: 07:16:fa:31:4f:e2:c2:f8:1a:2e:e0:f6:1e:19:56:9b:4a:9c: ab:f8:f8:7b:a6:64:59:63:b4:e5:11:1b:4e:a9:1d:87:21:08: d1:31:76:82:0c:e7:03:f0:bf:73:9b:75:bb:00:c0:fb:00:57: 75:13:35:a7:55:2e:56:41:ff:e7:62:2f:99:33:34:b4:e8:cc: b2:5d:44:e5:f7:74:94:d3:cc:5f:4f:9c:2a:5b:12:95:0f:12: e9:7c:ce:d7:71:c0:ad:71:df:7b:c5:1f:9a:45:08:16:5f:39: 2e:c7:fa:be:c9:c8:68:e4:58:f8:e1:77:b4:1f:a3:2d:fa:b0: 52:6b:23:81:e5:92:d6:1f:0f:2e:1d:26:1a:d7:3b:d1:7f:1f: bf:01:73:e9:f3:1a:7f:73:7f:8a:a5:89:87:ea:13:c6:9d:b7: 18:ea:d7:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjQwNTAyMjA1MTI1WhcNMjQwNTA5MjA1MTI1WjAYMRYwFAYD VQQDEw02NjMzZmNjZC04ZGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqKWPioKM4r42ugM/cWrgKRMuz1+j7vqDboMpRV7GkWe7lT91vwjslTmqZH5 WAxmhtS5NCsm+CO+nXcFpmdFpAwVXOAvjFA8qk7YgzhvJQaUXZvm1rX7AxY7lS6g jsdTw+tl/wyMC3dLuYExhueWqXDQ/JaFSDIulAIIFpFXbndLXG47kBav3oOlGarh 9RwA4Q+pgBywD8m5QjfSXX94Y2bH9kogLDbfyRmhBNakczrBx4pBqIAFA4Jg8jwn OXuFH9/yNXQzyNGqTqocaew2CME2BWm2nOs/gFvWPYNWm7/XNQU4WfFEIg9qjkYa OdmpmSHneoQDBI++ZPskAtYelQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDTQ+aPO KU4Ev+xWuhYUT7DI3fkIMB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpuptVs/H6N2oqygfRIhk0aTEpmCokuSNQHDw6hPq7b1q9C4ZBPc4h kmXUx27/YExdlYkex9qBec7VJA4O/lHIqw1YwhuuJW8cf7rOP5J4KaPbLxmuaKiX ybgHFvoxT+LC+Bou4PYeGVabSpyr+Ph7pmRZY7TlERtOqR2HIQjRMXaCDOcD8L9z m3W7AMD7AFd1EzWnVS5WQf/nYi+ZMzS06MyyXUTl93SU08xfT5wqWxKVDxLpfM7X ccCtcd97xR+aRQgWXzkux/q+ycho5Fj44Xe0H6Mt+rBSayOB5ZLWHw8uHSYa1zvR fx+/AXPp8xp/c3+KpYmH6hPGnbcY6tcR -----END CERTIFICATE-----Generated at Thu May 2 22:13:17 2024 by rpki-client on console-fra.rpki-client.org