$ rpki-client -vvf rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft File: Ys-2EOllD-PIACvGF7cFck0qAt0.mft (raw, json) Hash identifier: VCTzmq1f1/tAZwSTilHWsNLafLk+N6H0tdqOE3XNZAI= Subject key identifier: 8D:CA:F4:63:97:70:17:15:D9:A4:AC:0D:67:C5:A6:95:C4:F9:08:40 Authority key identifier: 62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD Certificate issuer: /CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Certificate serial: 1757 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft Manifest number: 174B Signing time: Fri 26 Apr 2024 17:02:57 +0000 Manifest this update: Fri 26 Apr 2024 17:02:57 +0000 Manifest next update: Fri 03 May 2024 17:02:57 +0000 Files and hashes: 1: Ys-2EOllD-PIACvGF7cFck0qAt0.crl (hash: s106CviMULjEBeWt2UUx3wMpJCMyMQpb9C25KkpH9ds=) 2: C1C12662CFC811EB9A5C5879C4F9AE02.roa (hash: NtyIg/qsbxBW29uVmnc48ijTWNNWD33eAJJJQi88bGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 17:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5975 (0x1757) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Validity Not Before: Apr 26 17:02:57 2024 GMT Not After : May 3 17:02:57 2024 GMT Subject: CN=662bde41-7bdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b6:14:7d:8e:97:68:c1:d1:be:7d:48:40:69: 6c:c3:24:6c:e4:00:b3:5d:db:e6:80:e1:0b:ba:25: d6:da:0e:02:be:f7:32:89:9a:ef:2b:d7:db:78:72: b7:eb:61:b3:8e:c3:86:ae:59:da:05:08:4b:b4:7e: dd:6b:21:1f:18:ca:f3:a4:04:29:73:85:d6:b3:e7: 64:f8:97:ad:76:a2:6a:4f:f9:06:a1:7d:87:a8:2e: fc:79:f0:8f:55:eb:a3:36:6d:be:7d:d0:b9:fd:b0: e8:de:55:61:60:37:72:9b:47:1f:86:e6:73:31:b8: d7:4d:2f:69:94:3b:9a:0d:84:1b:64:22:70:83:8c: 3a:48:b6:d2:fe:3b:7e:e4:04:5a:83:e7:b3:f4:2d: 5f:e5:07:ea:95:8f:aa:33:54:b3:07:ed:be:8e:72: c3:eb:18:26:a2:94:6b:db:a5:d4:25:ad:bc:30:a4: 33:e3:0f:12:a8:41:92:9a:8e:f8:b8:51:d4:f1:60: 0c:02:00:c7:5b:5e:c5:33:ce:33:91:57:4a:c5:5f: bd:78:ce:09:c0:b5:d0:0e:d9:d3:fa:dd:cb:65:09: 55:24:bd:80:51:90:1e:ea:96:57:2c:a4:45:4c:40: fa:0a:e3:f4:d0:42:17:b0:1b:bd:99:7d:4c:71:05: 30:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:CA:F4:63:97:70:17:15:D9:A4:AC:0D:67:C5:A6:95:C4:F9:08:40 X509v3 Authority Key Identifier: keyid:62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:94:21:ab:e7:9c:e4:95:53:76:85:81:32:6b:b0:b1:4c:2b: 71:09:c3:b6:d3:58:ce:9a:b8:1c:ac:a9:5a:ff:fa:cb:66:46: 0e:75:1a:5a:8a:d8:5f:37:bd:81:bd:1d:05:2a:d8:3b:9c:0f: 42:93:c9:86:03:3b:7c:3b:c3:57:f2:95:37:ef:b7:64:c4:5f: 4b:eb:24:0e:6c:5e:4d:44:0b:30:36:d0:6e:93:f6:be:6b:50: 69:a4:5a:4d:79:69:bb:61:ec:1e:34:7b:ae:b5:00:90:33:ce: 87:a7:ae:3f:44:56:0d:47:6a:57:af:7b:60:6b:ec:eb:29:9f: a6:70:6d:2e:dd:81:26:60:cf:c5:85:4c:83:33:16:3b:4f:31: df:a6:45:83:6f:d3:bb:65:ed:57:cb:bf:fd:fc:d6:dd:2c:5e: ed:72:76:73:15:ef:da:e3:2e:67:42:b5:0c:53:8f:9a:f6:bd: d2:98:8d:47:a5:1c:89:62:62:f0:22:12:dd:6b:33:b6:6a:86: c2:3b:82:2b:d7:48:4a:54:9e:b6:23:16:9f:3c:6a:40:ff:a5: d4:d2:63:b9:d4:99:9c:1d:8c:8d:99:8d:93:4b:56:11:8c:73: 29:90:7a:fd:41:36:37:9d:35:29:c3:9b:16:94:ef:cc:99:1b: 45:34:89:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxQjExMTAvBgNVBAUTKDYyQ0ZCNjEwRTk2NTBGRTNDODAwMkJDNjE3QjcwNTcy NEQyQTAyREQwHhcNMjQwNDI2MTcwMjU3WhcNMjQwNTAzMTcwMjU3WjAYMRYwFAYD VQQDEw02NjJiZGU0MS03YmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrYUfY6XaMHRvn1IQGlswyRs5ACzXdvmgOELuiXW2g4CvvcyiZrvK9fbeHK3 62GzjsOGrlnaBQhLtH7dayEfGMrzpAQpc4XWs+dk+JetdqJqT/kGoX2HqC78efCP VeujNm2+fdC5/bDo3lVhYDdym0cfhuZzMbjXTS9plDuaDYQbZCJwg4w6SLbS/jt+ 5ARag+ez9C1f5QfqlY+qM1SzB+2+jnLD6xgmopRr26XUJa28MKQz4w8SqEGSmo74 uFHU8WAMAgDHW17FM84zkVdKxV+9eM4JwLXQDtnT+t3LZQlVJL2AUZAe6pZXLKRF TED6CuP00EIXsBu9mX1McQUwzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3K9GOX cBcV2aSsDWfFppXE+QhAMB8GA1UdIwQYMBaAFGLPthDpZQ/jyAArxhe3BXJNKgLd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjFCMS9BMEYwQURGMEIy NTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQtUElBQ3ZHRjdjRmNrMHFB dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzLTJFT2xsRC1QSUFDdkdGN2NGY2swcUF0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjFCMS9BMEYwQURGMEIyNTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQt UElBQ3ZHRjdjRmNrMHFBdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAclCGr55zklVN2hYEya7CxTCtxCcO201jOmrgcrKla//rLZkYOdRpa ithfN72BvR0FKtg7nA9Ck8mGAzt8O8NX8pU377dkxF9L6yQObF5NRAswNtBuk/a+ a1BppFpNeWm7YeweNHuutQCQM86Hp64/RFYNR2pXr3tga+zrKZ+mcG0u3YEmYM/F hUyDMxY7TzHfpkWDb9O7Ze1Xy7/9/NbdLF7tcnZzFe/a4y5nQrUMU4+a9r3SmI1H pRyJYmLwIhLdazO2aobCO4Ir10hKVJ62IxafPGpA/6XU0mO51JmcHYyNmY2TS1YR jHMpkHr9QTY3nTUpw5sWlO/MmRtFNIm5 -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:13 2024 by rpki-client on console-ams.rpki-client.org