$ rpki-client -vvf rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft File: JyyuXyHIv2trSRWvAATH78_H2z0.mft (raw, json) Hash identifier: jQhqvMwUiQKlWRePoiFuseIzOuNqsVOV1ZTW0odCNNs= Subject key identifier: 14:C8:72:A6:43:93:FA:B7:2D:C2:0B:35:BD:4C:66:74:0A:B5:A7:E7 Authority key identifier: 27:2C:AE:5F:21:C8:BF:6B:6B:49:15:AF:00:04:C7:EF:CF:C7:DB:3D Certificate issuer: /CN=A917314A/serialNumber=272CAE5F21C8BF6B6B4915AF0004C7EFCFC7DB3D Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft Manifest number: 01D2 Signing time: Sat 27 Apr 2024 04:16:09 +0000 Manifest this update: Sat 27 Apr 2024 04:16:08 +0000 Manifest next update: Sat 04 May 2024 04:16:08 +0000 Files and hashes: 1: JyyuXyHIv2trSRWvAATH78_H2z0.crl (hash: pFsv9stxAIMi7dXn1PDHiFA/XhtkGeqrNTAM1xlHgMU=) 2: 8620180E00EE11EDBC60AA4FC4F9AE02.roa (hash: 2cpATBWtgy3APIVBNOdyD0O7siFFkKRcwZjLZkyPE+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.crl rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917314A/serialNumber=272CAE5F21C8BF6B6B4915AF0004C7EFCFC7DB3D Validity Not Before: Apr 27 04:16:08 2024 GMT Not After : May 4 04:16:08 2024 GMT Subject: CN=662c7c09-ba7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e7:38:82:12:b0:34:f6:cd:be:03:1a:38:7d: 3b:01:2d:ae:d7:a6:d4:f6:c7:5e:3e:cd:c0:48:4a: e9:ab:83:d6:95:e2:81:d1:36:2b:1c:d6:86:f7:60: 6b:ef:a6:5a:34:2e:64:40:ab:28:fa:c4:4a:a4:4a: 71:f6:92:db:71:13:7a:15:36:99:0a:bd:40:cf:8b: ae:99:9b:9b:8c:4e:d9:45:35:d7:67:5e:b6:d1:23: df:28:7b:bc:8d:20:f9:cb:8a:d1:89:94:17:5c:c0: c3:38:a5:16:2f:dd:8c:64:52:52:1e:47:a2:68:ca: 9f:d3:26:61:65:a9:41:6e:62:45:cd:d5:94:1f:84: a4:38:02:d6:cb:a5:6f:97:f6:38:95:41:c5:11:3e: 5c:0d:b1:77:30:89:55:6e:41:31:2d:e9:ee:2f:a8: 8e:0c:30:7a:39:1f:d8:57:dd:e6:22:f3:e3:fa:04: 1b:03:9b:a8:35:0c:98:78:73:2d:44:ce:e7:3c:e8: 01:b3:90:63:ac:ab:44:30:3f:1f:fb:76:b7:ad:e7: 8a:2c:54:5e:9c:15:db:9d:4e:1a:c8:ce:82:28:d9: 0d:99:e3:bd:35:be:05:fc:6c:5e:ee:ac:7d:50:10: 87:c5:3b:78:49:dc:fc:db:1b:44:63:46:b1:4c:2b: 9f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C8:72:A6:43:93:FA:B7:2D:C2:0B:35:BD:4C:66:74:0A:B5:A7:E7 X509v3 Authority Key Identifier: keyid:27:2C:AE:5F:21:C8:BF:6B:6B:49:15:AF:00:04:C7:EF:CF:C7:DB:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:5f:ce:3b:2c:b2:38:8e:e1:a6:1c:31:79:8c:53:40:bf:06: e9:c7:69:8a:8f:58:25:a9:63:70:83:f8:4d:31:97:b7:a2:1f: 7b:6a:ac:f7:89:3f:3b:cf:84:97:aa:5c:36:31:07:45:fa:1a: 24:64:34:1f:32:40:db:bd:29:5e:b5:73:39:43:93:41:e8:27: ea:3d:2c:ff:dd:35:16:9e:0a:ab:78:37:ac:1e:ab:78:de:aa: 85:62:58:f3:38:50:fb:be:10:d0:2f:55:c7:64:de:d7:3c:f9: 7d:64:9c:e3:c6:a1:49:fd:04:12:53:63:67:8b:67:58:40:2b: ec:5d:b3:cf:4f:ec:25:63:15:4e:c6:19:ea:f3:16:88:4f:8b: 35:b0:8b:29:e8:c0:fd:6c:3f:54:3e:05:66:72:0d:ed:1c:88: 5c:d5:88:d0:2a:4e:59:38:8a:be:37:39:b3:94:1c:9b:53:26: 85:fd:9b:2a:fb:af:69:36:b4:b4:25:dc:c0:02:12:cd:78:cf: 7e:f9:3d:37:a4:f0:69:47:82:7d:62:7f:d7:4c:ef:2d:0b:67: 14:40:9c:23:3f:1e:6c:f6:20:5e:be:2c:a4:1f:0b:b0:4c:5e: 54:12:1e:61:20:fc:e9:3c:9a:10:e4:b4:6e:75:f8:1f:7f:ae: d6:db:b7:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxNEExMTAvBgNVBAUTKDI3MkNBRTVGMjFDOEJGNkI2QjQ5MTVBRjAwMDRDN0VG Q0ZDN0RCM0QwHhcNMjQwNDI3MDQxNjA4WhcNMjQwNTA0MDQxNjA4WjAYMRYwFAYD VQQDEw02NjJjN2MwOS1iYTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOc4ghKwNPbNvgMaOH07AS2u16bU9sdePs3ASErpq4PWleKB0TYrHNaG92Br 76ZaNC5kQKso+sRKpEpx9pLbcRN6FTaZCr1Az4uumZubjE7ZRTXXZ1620SPfKHu8 jSD5y4rRiZQXXMDDOKUWL92MZFJSHkeiaMqf0yZhZalBbmJFzdWUH4SkOALWy6Vv l/Y4lUHFET5cDbF3MIlVbkExLenuL6iODDB6OR/YV93mIvPj+gQbA5uoNQyYeHMt RM7nPOgBs5BjrKtEMD8f+3a3reeKLFRenBXbnU4ayM6CKNkNmeO9Nb4F/Gxe7qx9 UBCHxTt4Sdz82xtEY0axTCufCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTIcqZD k/q3LcILNb1MZnQKtafnMB8GA1UdIwQYMBaAFCcsrl8hyL9ra0kVrwAEx+/Px9s9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzE0QS81RUY4QTkxNjAw RUExMUVEOUMwQ0IzMzJDNEY5QUUwMi9KeXl1WHlISXYydHJTUld2QUFUSDc4X0gy ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p5eXVYeUhJdjJ0clNSV3ZBQVRINzhfSDJ6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzE0QS81RUY4QTkxNjAwRUExMUVEOUMwQ0IzMzJDNEY5QUUwMi9KeXl1WHlISXYy dHJTUld2QUFUSDc4X0gyejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/X847LLI4juGmHDF5jFNAvwbpx2mKj1glqWNwg/hNMZe3oh97aqz3 iT87z4SXqlw2MQdF+hokZDQfMkDbvSletXM5Q5NB6CfqPSz/3TUWngqreDesHqt4 3qqFYljzOFD7vhDQL1XHZN7XPPl9ZJzjxqFJ/QQSU2Nni2dYQCvsXbPPT+wlYxVO xhnq8xaIT4s1sIsp6MD9bD9UPgVmcg3tHIhc1YjQKk5ZOIq+NzmzlBybUyaF/Zsq +69pNrS0JdzAAhLNeM9++T03pPBpR4J9Yn/XTO8tC2cUQJwjPx5s9iBeviykHwuw TF5UEh5hIPzpPJoQ5LRudfgff67W27fd -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:10 2024 by rpki-client on console-ams.rpki-client.org