$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: DYSCJmHgZYFb/qcUHuL9BdKFRMCPLo9Ni0gpkwP+BX0= Subject key identifier: 29:AE:52:50:01:7A:C0:F4:49:AD:8C:04:E1:03:ED:EF:06:77:96:3D Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 010C Signing time: Wed 01 May 2024 05:43:00 +0000 Manifest this update: Wed 01 May 2024 05:43:00 +0000 Manifest next update: Wed 08 May 2024 05:43:00 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: eTUXgKUCE/MIvMu2OhNTAsv2xaw1p1wRMmXOgZGkQvE=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: y/IwpYsi2Z5dT1V+QwVkRLz8/ghSFTIgN1Zav/eXCj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: May 1 05:43:00 2024 GMT Not After : May 8 05:43:00 2024 GMT Subject: CN=6631d664-d613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4d:cb:d8:d1:79:9a:ee:2f:b3:d8:bc:d4:ac: 49:3f:59:c4:9d:cd:87:e1:9e:9c:3c:8d:c5:e6:d3: 5f:10:0a:70:58:19:48:49:4f:98:be:07:8b:bd:50: 03:0f:6f:b9:d9:0d:fb:cc:fc:eb:d2:64:79:dd:9c: c6:af:0a:c0:9b:47:a4:8d:af:15:ad:de:89:9a:ca: 4e:a0:43:b7:47:f0:91:cd:fa:2c:73:73:ca:ba:a4: 3b:cd:03:7c:ac:09:4f:50:9c:36:43:6a:a0:69:51: 52:8c:29:20:19:a0:1f:7b:44:b6:16:81:ae:10:db: 22:15:4b:40:42:d0:72:cd:39:c9:b3:41:e8:fc:d9: af:1f:d9:9c:6e:2a:a7:32:8b:b6:30:d7:b8:15:f6: c5:af:43:0a:e1:eb:97:d2:cb:65:1d:68:44:2f:de: 5f:6f:30:73:5e:e5:46:f6:f8:d5:d7:f1:9a:11:22: fb:da:69:bf:72:e1:1e:6d:0d:f2:3f:ce:d7:5c:51: cf:ec:8f:89:d5:c8:eb:c4:41:b1:3b:5e:77:9e:7e: 09:37:8c:d0:75:9e:c0:ac:dc:a0:29:39:96:e8:61: 1e:06:cd:2a:2f:97:6e:99:e9:e8:7c:86:17:7a:ab: de:5a:ba:2b:e9:55:c2:6c:fd:98:f6:dd:2f:6f:61: 99:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:AE:52:50:01:7A:C0:F4:49:AD:8C:04:E1:03:ED:EF:06:77:96:3D X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:fb:5f:84:13:d0:03:e4:9e:59:66:b4:80:c4:b8:55:82:ba: 3e:55:cb:d9:b2:06:37:d3:b2:8a:0e:22:b8:12:2c:ac:61:6b: 84:74:9b:0d:1b:f7:1f:f4:8b:71:62:cd:95:a6:a7:9d:da:0f: 0a:d8:9b:0b:24:db:c0:da:c1:b0:79:47:40:8e:86:81:ba:37: 2e:a3:3b:25:9a:d8:4e:3a:1c:db:cd:2f:ce:c8:f1:7e:43:46: 47:5d:61:2e:da:e3:db:50:0c:e7:8e:4b:1c:e2:7e:48:13:bf: c5:2b:0a:9c:5f:ad:13:c6:7a:e6:6b:6d:1a:1b:ea:12:43:cb: 52:91:64:7b:c7:66:16:18:d3:6e:49:5e:9d:dd:6c:02:ce:9a: 5a:2b:05:61:cd:cf:29:2e:f3:ed:50:c9:f4:d3:20:a2:4f:13: 7f:77:e2:eb:47:9a:90:47:54:21:5c:10:88:ea:da:e1:11:bd: a6:c0:3d:90:75:92:42:0b:0f:7f:17:2d:98:19:4e:80:85:63: ae:cf:c9:31:0d:9c:87:87:1b:cb:1e:a0:07:cd:21:53:37:7b: da:f6:30:f9:e2:6f:b7:96:1a:38:df:75:0f:da:4f:17:7e:73: 69:3d:9e:0a:b9:e1:d3:54:47:fb:fb:ea:1a:56:0f:40:d9:68: 2e:99:3a:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjQwNTAxMDU0MzAwWhcNMjQwNTA4MDU0MzAwWjAYMRYwFAYD VQQDEw02NjMxZDY2NC1kNjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqk3L2NF5mu4vs9i81KxJP1nEnc2H4Z6cPI3F5tNfEApwWBlISU+YvgeLvVAD D2+52Q37zPzr0mR53ZzGrwrAm0ekja8Vrd6JmspOoEO3R/CRzfosc3PKuqQ7zQN8 rAlPUJw2Q2qgaVFSjCkgGaAfe0S2FoGuENsiFUtAQtByzTnJs0Ho/NmvH9mcbiqn Mou2MNe4FfbFr0MK4euX0stlHWhEL95fbzBzXuVG9vjV1/GaESL72mm/cuEebQ3y P87XXFHP7I+J1cjrxEGxO153nn4JN4zQdZ7ArNygKTmW6GEeBs0qL5dumenofIYX eqveWror6VXCbP2Y9t0vb2GZ4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCmuUlAB esD0Sa2MBOED7e8Gd5Y9MB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP+1+EE9AD5J5ZZrSAxLhVgro+VcvZsgY307KKDiK4EiysYWuEdJsN G/cf9ItxYs2Vpqed2g8K2JsLJNvA2sGweUdAjoaBujcuozslmthOOhzbzS/OyPF+ Q0ZHXWEu2uPbUAznjksc4n5IE7/FKwqcX60Txnrma20aG+oSQ8tSkWR7x2YWGNNu SV6d3WwCzppaKwVhzc8pLvPtUMn00yCiTxN/d+LrR5qQR1QhXBCI6trhEb2mwD2Q dZJCCw9/Fy2YGU6AhWOuz8kxDZyHhxvLHqAHzSFTN3va9jD54m+3lho433UP2k8X fnNpPZ4KueHTVEf7++oaVg9A2WgumTq7 -----END CERTIFICATE-----Generated at Wed May 1 06:34:04 2024 by rpki-client on console-ams.rpki-client.org