$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft File: YCgZkDDJlCoUSqFr-zB450H27CM.mft (raw, json) Hash identifier: TcjQBP+bknuizaor8te+5fBZLLtetCKNQ1PudyxMnRQ= Subject key identifier: AD:4E:BB:97:6F:34:74:0A:F1:42:64:67:DE:AC:D6:75:0D:57:5C:3F Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Certificate serial: 093D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft Manifest number: 092F Signing time: Thu 02 May 2024 21:15:35 +0000 Manifest this update: Thu 02 May 2024 21:15:34 +0000 Manifest next update: Thu 09 May 2024 21:15:34 +0000 Files and hashes: 1: YCgZkDDJlCoUSqFr-zB450H27CM.crl (hash: ayLOOPLtzYFwhXyTe8x3AkQyk2ErkPfDC6TjBrLHc2g=) 2: 5D2B0616A9C011EABAAB4624C4F9AE02.roa (hash: yiUTn34nFtRxV5JAhkPGjI3Dqg4FJfadYSzxX54DxmU=) 3: 5C1CF19EA9C011EABAAB4624C4F9AE02.roa (hash: z0HhZvByumG+3blwc24Ax6Cba3C3ly99sGI80bagaU0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2365 (0x93d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Validity Not Before: May 2 21:15:34 2024 GMT Not After : May 9 21:15:34 2024 GMT Subject: CN=66340277-8861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1e:85:51:19:95:04:a2:25:06:97:02:2e:4f: de:35:43:57:6f:8a:a2:ff:85:6f:27:99:7d:f1:17: 94:f7:88:54:7e:3f:8f:46:4b:8a:89:8a:af:99:b3: 23:d1:24:05:24:eb:4e:e6:22:14:f7:c8:9c:ec:e0: c6:48:22:95:24:51:e0:03:4e:a7:ba:2e:46:56:93: 88:1a:5b:6e:cc:e3:0c:15:d4:be:ba:92:eb:66:25: 27:12:88:ce:cc:7d:6d:8f:83:89:6f:40:8d:77:b9: 2b:43:a9:65:b1:b5:33:6b:60:45:e0:b7:98:87:d6: ae:2c:5e:93:07:08:40:79:47:3e:90:2d:8f:c8:d1: 66:23:ea:9a:9e:eb:e5:d9:5c:f6:65:89:9d:68:78: a6:19:77:33:7b:ef:a5:07:44:25:91:f8:b9:c9:9f: 0a:01:bd:51:93:9f:b8:61:d0:a7:3f:15:47:77:20: b9:27:ce:08:b3:6b:9e:49:60:1f:02:a4:18:20:2c: 14:83:47:44:59:8a:bc:e6:3c:93:87:86:fa:1e:dd: 78:75:2c:13:7f:67:7e:97:2c:45:a3:63:a7:fd:96: 62:bb:a4:23:bb:a1:53:b3:a6:40:45:48:8b:17:97: 93:c5:2c:de:ad:94:97:35:88:fc:95:8b:ad:5f:6f: 0c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:4E:BB:97:6F:34:74:0A:F1:42:64:67:DE:AC:D6:75:0D:57:5C:3F X509v3 Authority Key Identifier: keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:3d:2b:33:be:4e:5a:3c:9b:f4:b8:b2:8b:bf:de:1c:d0:00: a7:78:7e:4c:0e:3f:78:38:e9:59:b1:7d:d3:1b:a6:0e:cd:9d: 1a:c5:8a:e3:98:c1:c5:ef:75:b8:9b:64:1d:bb:94:2b:3d:05: fb:4b:72:4f:6e:99:64:af:6d:e0:c0:f3:58:6b:d4:2f:05:7c: b4:5f:a5:5a:d8:c7:d5:4f:6f:0c:83:b1:b5:0f:31:79:9b:23: ce:50:79:27:8a:21:c8:77:d4:22:eb:dc:12:19:0f:d7:aa:c1: 83:c3:10:b6:99:4c:36:f8:4a:4d:52:d5:a9:62:0b:66:54:dd: 06:7a:ce:66:c7:9a:b2:29:30:80:15:cd:f7:ab:8c:82:98:ee: 18:a5:74:9e:f4:a5:91:b3:e5:cd:5c:79:51:00:8e:29:bf:50: ff:e1:84:70:35:51:9c:6e:2c:a7:d0:04:b8:06:3c:4e:74:0c: a2:75:c3:9d:f5:8d:4d:e9:f4:2c:a8:70:1d:59:57:fd:95:be: a7:88:93:cd:cc:67:ef:96:1c:4c:c7:fc:2a:f1:68:bf:f1:b1: 73:64:0f:75:76:48:d4:af:14:d4:43:b3:1f:b7:6d:8e:61:1c: 6a:9c:67:4f:3e:51:aa:e3:c1:71:08:2b:84:b6:fc:80:a1:49: 07:0f:c8:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVENEYxMTAvBgNVBAUTKDYwMjgxOTkwMzBDOTk0MkExNDRBQTE2QkZCMzA3OEU3 NDFGNkVDMjMwHhcNMjQwNTAyMjExNTM0WhcNMjQwNTA5MjExNTM0WjAYMRYwFAYD VQQDEw02NjM0MDI3Ny04ODYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1B6FURmVBKIlBpcCLk/eNUNXb4qi/4VvJ5l98ReU94hUfj+PRkuKiYqvmbMj 0SQFJOtO5iIU98ic7ODGSCKVJFHgA06nui5GVpOIGltuzOMMFdS+upLrZiUnEojO zH1tj4OJb0CNd7krQ6llsbUza2BF4LeYh9auLF6TBwhAeUc+kC2PyNFmI+qanuvl 2Vz2ZYmdaHimGXcze++lB0Qlkfi5yZ8KAb1Rk5+4YdCnPxVHdyC5J84Is2ueSWAf AqQYICwUg0dEWYq85jyTh4b6Ht14dSwTf2d+lyxFo2On/ZZiu6Qju6FTs6ZARUiL F5eTxSzerZSXNYj8lYutX28M5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1Ou5dv NHQK8UJkZ96s1nUNV1w/MB8GA1UdIwQYMBaAFGAoGZAwyZQqFEqha/sweOdB9uwj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUQ0Ri81ODVGNEQwRTc4 NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxDb1VTcUZyLXpCNDUwSDI3 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZ1prRERKbENvVVNxRnItekI0NTBIMjdDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUQ0Ri81ODVGNEQwRTc4NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxD b1VTcUZyLXpCNDUwSDI3Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsPSszvk5aPJv0uLKLv94c0ACneH5MDj94OOlZsX3TG6YOzZ0axYrj mMHF73W4m2Qdu5QrPQX7S3JPbplkr23gwPNYa9QvBXy0X6Va2MfVT28Mg7G1DzF5 myPOUHkniiHId9Qi69wSGQ/XqsGDwxC2mUw2+EpNUtWpYgtmVN0Ges5mx5qyKTCA Fc33q4yCmO4YpXSe9KWRs+XNXHlRAI4pv1D/4YRwNVGcbiyn0AS4BjxOdAyidcOd 9Y1N6fQsqHAdWVf9lb6niJPNzGfvlhxMx/wq8Wi/8bFzZA91dkjUrxTUQ7Mft22O YRxqnGdPPlGq48FxCCuEtvyAoUkHD8gw -----END CERTIFICATE-----Generated at Thu May 2 22:13:18 2024 by rpki-client on console-fra.rpki-client.org