$ rpki-client -vvf rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft File: 5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft (raw, json) Hash identifier: hmBr5aKcEnEr9J31R/qioaSxFwkH2tRvf2ztPdNIhPQ= Subject key identifier: D8:F9:95:C3:08:D6:ED:A9:5D:67:0F:8B:F6:9B:0E:2E:6F:85:C5:4B Authority key identifier: E5:8F:98:E3:C6:14:21:46:54:53:AC:42:55:F0:AF:B0:AD:95:D2:46 Certificate issuer: /CN=A9170533/serialNumber=E58F98E3C61421465453AC4255F0AFB0AD95D246 Certificate serial: 02CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft Manifest number: 02C9 Signing time: Sun 05 May 2024 03:35:23 +0000 Manifest this update: Sun 05 May 2024 03:35:22 +0000 Manifest next update: Sun 12 May 2024 03:35:22 +0000 Files and hashes: 1: 5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl (hash: B+IN1noitYms9YCFht4H0G2zwP0AKPYWA2B6X8vtVjg=) 2: 6664BEB29F8611ECBE806D30C4F9AE02.roa (hash: J1ZxobCjySr29I83EXKEIEZFXwKH71fahhCDu8nIit4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 716 (0x2cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170533/serialNumber=E58F98E3C61421465453AC4255F0AFB0AD95D246 Validity Not Before: May 5 03:35:22 2024 GMT Not After : May 12 03:35:22 2024 GMT Subject: CN=6636fe7b-53e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:b9:ae:51:bb:36:78:e3:ed:d4:c6:f7:f8:7d: d8:75:23:b2:94:68:5f:68:b5:a9:cc:40:ed:34:a0: 43:a3:95:2a:f3:39:5d:b3:56:f9:14:5f:81:6b:92: cb:7d:e1:dc:d9:01:3e:31:4e:21:73:63:12:55:4e: a1:ed:61:84:41:fb:f1:a5:f7:09:79:6a:c2:90:6e: 9d:4b:4b:ae:c2:12:8b:27:65:43:46:f9:ac:01:c6: 34:81:ef:e3:47:43:4a:62:c6:3e:26:5a:01:18:6d: e6:22:d2:25:be:af:16:1e:d8:24:7d:d5:85:5d:b1: e5:9f:58:c5:12:05:47:6a:e7:83:88:a2:a3:36:0e: 4e:5a:f6:d3:64:59:e4:da:53:cb:7e:c4:6f:a1:9d: 9d:da:4c:eb:83:a1:d6:b1:95:d8:a3:10:e1:e2:0e: 69:fb:e7:36:1d:25:81:e0:9e:23:76:0b:31:27:e9: 31:69:77:a4:3c:fb:ca:47:44:a4:af:5e:ba:58:7e: c8:b1:d5:2e:f7:cc:f2:68:fc:9a:df:b4:a1:d2:8a: 6a:b1:9c:bc:7e:97:d3:dc:72:70:ae:f7:ad:2e:ce: e8:b7:92:1d:ef:1c:f0:5e:3a:59:30:c3:2b:27:69: 38:89:90:bb:56:fd:ea:ca:da:f4:8d:db:0c:8b:cd: 13:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:F9:95:C3:08:D6:ED:A9:5D:67:0F:8B:F6:9B:0E:2E:6F:85:C5:4B X509v3 Authority Key Identifier: keyid:E5:8F:98:E3:C6:14:21:46:54:53:AC:42:55:F0:AF:B0:AD:95:D2:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:3a:55:86:df:ae:ed:fc:f8:59:a3:f1:59:a0:96:3d:c6:b5: 89:35:85:75:27:73:8c:b9:7e:e8:95:db:f4:a4:81:b4:11:0d: 94:2c:c3:47:4c:f7:7a:5c:d9:fd:5b:87:65:74:ff:b9:82:84: e8:e2:7f:5e:33:4f:2a:22:8c:79:14:be:d9:5c:1c:06:7a:95: af:30:44:07:24:22:dd:f5:8a:18:97:79:90:27:51:f9:3d:aa: aa:54:7f:86:7f:f3:a1:de:44:81:be:d7:9b:b0:3b:01:f2:ed: 37:4f:2e:b1:b8:ad:19:d7:dd:0d:6e:80:4a:19:e4:6c:4f:a1: b6:53:0a:2d:34:bc:12:da:13:23:ec:88:6e:f7:4c:01:55:bc: d8:55:d5:18:ab:89:67:a6:c9:21:62:2d:29:d2:46:78:df:89: 6e:ad:64:25:d1:b5:1b:d7:43:20:fc:6a:02:46:8b:e7:0d:c3: db:11:a9:30:75:39:6e:a0:25:7b:7a:f4:62:fc:e8:ac:4a:82: 06:a2:b5:4c:cc:de:fa:f9:c5:53:fa:ea:45:2b:44:d5:6e:a9: ad:0f:65:6a:25:45:9e:f9:0b:75:72:1b:25:6c:64:6b:49:5a: 40:27:a1:59:7b:f9:ae:1f:e6:8e:6a:46:e9:80:74:7b:14:b9: 5b:81:a3:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA1MzMxMTAvBgNVBAUTKEU1OEY5OEUzQzYxNDIxNDY1NDUzQUM0MjU1RjBBRkIw QUQ5NUQyNDYwHhcNMjQwNTA1MDMzNTIyWhcNMjQwNTEyMDMzNTIyWjAYMRYwFAYD VQQDEw02NjM2ZmU3Yi01M2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA67muUbs2eOPt1Mb3+H3YdSOylGhfaLWpzEDtNKBDo5Uq8zlds1b5FF+Ba5LL feHc2QE+MU4hc2MSVU6h7WGEQfvxpfcJeWrCkG6dS0uuwhKLJ2VDRvmsAcY0ge/j R0NKYsY+JloBGG3mItIlvq8WHtgkfdWFXbHln1jFEgVHaueDiKKjNg5OWvbTZFnk 2lPLfsRvoZ2d2kzrg6HWsZXYoxDh4g5p++c2HSWB4J4jdgsxJ+kxaXekPPvKR0Sk r166WH7IsdUu98zyaPya37Sh0opqsZy8fpfT3HJwrvetLs7ot5Id7xzwXjpZMMMr J2k4iZC7Vv3qytr0jdsMi80ToQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNj5lcMI 1u2pXWcPi/abDi5vhcVLMB8GA1UdIwQYMBaAFOWPmOPGFCFGVFOsQlXwr7CtldJG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDUzMy8yMkVEMkM5QTlG ODIxMUVDQkZDM0NGMUNDNEY5QUUwMi81WS1ZNDhZVUlVWlVVNnhDVmZDdnNLMlYw a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVZLVk0OFlVSVVaVVU2eENWZkN2c0syVjBrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDUzMy8yMkVEMkM5QTlGODIxMUVDQkZDM0NGMUNDNEY5QUUwMi81WS1ZNDhZVUlV WlVVNnhDVmZDdnNLMlYwa1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtOlWG367t/PhZo/FZoJY9xrWJNYV1J3OMuX7oldv0pIG0EQ2ULMNH TPd6XNn9W4dldP+5goTo4n9eM08qIox5FL7ZXBwGepWvMEQHJCLd9YoYl3mQJ1H5 PaqqVH+Gf/Oh3kSBvtebsDsB8u03Ty6xuK0Z190NboBKGeRsT6G2UwotNLwS2hMj 7Ihu90wBVbzYVdUYq4lnpskhYi0p0kZ434lurWQl0bUb10Mg/GoCRovnDcPbEakw dTluoCV7evRi/OisSoIGorVMzN76+cVT+upFK0TVbqmtD2VqJUWe+Qt1chslbGRr SVpAJ6FZe/muH+aOakbpgHR7FLlbgaMz -----END CERTIFICATE-----Generated at Sun May 5 04:34:54 2024 by rpki-client on console-fra.rpki-client.org