$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft File: YLrcBCw3e4bA3J7riVEnJc4-IzY.mft (raw, json) Hash identifier: zvzqdr216lk4Wr8+VePM1D3cG/C7Sbp4G/MivKb1iII= Subject key identifier: 1A:CC:6C:2E:32:8A:D0:00:FA:38:48:CB:00:02:59:F8:58:FD:BC:9F Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft Manifest number: 0107 Signing time: Mon 29 Apr 2024 05:24:29 +0000 Manifest this update: Mon 29 Apr 2024 05:24:29 +0000 Manifest next update: Mon 06 May 2024 05:24:29 +0000 Files and hashes: 1: YLrcBCw3e4bA3J7riVEnJc4-IzY.crl (hash: +hupIs3iZofBGw+PqP/1xNUlP1jEddRNA31Ri1kIdGQ=) 2: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (hash: KyJK9T3ePPU2nyDMiWpfHVl65dIpgfxV39oqdgnNreQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: Apr 29 05:24:29 2024 GMT Not After : May 6 05:24:29 2024 GMT Subject: CN=662f2f0d-8658 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ca:ef:fa:26:4c:6c:dc:12:db:3f:85:16:f8: 77:fb:ce:13:85:20:84:da:b5:44:cc:43:db:d7:4e: 47:17:13:ec:70:f7:be:c0:8f:e9:db:8e:ef:0a:19: 4c:1e:60:63:a2:7a:4d:dc:e1:0c:f7:62:01:59:6e: ed:e7:09:3b:03:d8:4d:f1:1b:84:35:f9:37:f4:0f: 35:4f:bd:ec:21:68:ee:25:3d:0b:cf:89:14:e6:1a: b6:34:e0:9b:1d:ad:34:05:72:f3:3e:28:2e:cf:4a: 0f:f0:4f:26:09:cf:cb:b6:d9:24:b0:ba:91:22:8b: 15:42:33:b3:ac:48:ef:af:c0:7d:d0:56:17:a2:14: 6c:e6:9a:ea:52:86:05:36:e1:4e:cb:ea:2a:50:23: 3f:06:6a:ba:d1:c7:64:1e:05:47:c5:65:30:13:f9: 5b:35:a3:a7:93:96:03:95:60:97:e9:6b:88:da:6f: 0f:be:00:17:53:5e:64:3c:bb:54:0a:d7:77:1f:97: ad:d1:0c:85:6a:09:a6:92:11:84:57:3e:7e:7a:11: a8:a7:1d:ee:ce:09:cd:73:67:a3:fa:85:8e:5c:66: ad:c0:e9:bb:c7:e2:11:36:8e:7b:9e:33:23:e2:b0: 67:24:1d:11:6b:92:a9:25:70:5e:86:1c:50:ae:cf: af:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:CC:6C:2E:32:8A:D0:00:FA:38:48:CB:00:02:59:F8:58:FD:BC:9F X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:f0:34:ff:df:ac:28:d7:05:13:f2:2d:90:7e:e0:d7:36:a3: f4:21:bc:26:c6:6b:0c:16:2c:97:4e:e1:21:59:32:12:79:3f: 83:f2:cd:b7:9d:ed:7b:3f:cd:50:fc:4e:bd:62:24:99:6a:22: 9e:07:12:8f:f0:ad:79:bf:27:24:d7:30:3b:94:43:64:5d:d0: 33:df:24:12:c2:c5:07:6f:bc:21:9a:8d:54:9b:62:90:f5:aa: 3e:69:b0:a4:f6:53:d9:e3:c2:1e:ec:38:ee:d8:43:c8:97:0a: e8:a0:c4:2c:92:d0:ff:82:2a:ad:d3:25:1e:df:95:46:50:79: 5a:aa:b5:5b:9b:a3:6f:e5:08:0d:0c:aa:d1:7d:f8:62:a5:0e: bf:56:94:63:d6:df:f9:c1:76:c8:8c:f4:b4:d4:63:93:79:42: 60:b9:65:88:f9:34:9e:f4:3d:93:db:1a:6f:6f:10:a0:96:75: e7:54:f7:82:2a:41:4c:95:5a:1e:71:9a:2e:24:9c:d2:8c:76: 45:d8:ae:aa:6e:25:e7:57:c2:02:a6:15:da:46:dc:2e:86:4d: ad:c3:77:48:e6:17:02:7e:d1:18:5e:57:e9:99:3d:8f:c6:ae: ff:8d:6c:9b:b5:dd:b6:ed:ed:74:4e:21:58:3d:cd:21:69:0e: ed:69:ee:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjQwNDI5MDUyNDI5WhcNMjQwNTA2MDUyNDI5WjAYMRYwFAYD VQQDEw02NjJmMmYwZC04NjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA78rv+iZMbNwS2z+FFvh3+84ThSCE2rVEzEPb105HFxPscPe+wI/p247vChlM HmBjonpN3OEM92IBWW7t5wk7A9hN8RuENfk39A81T73sIWjuJT0Lz4kU5hq2NOCb Ha00BXLzPiguz0oP8E8mCc/LttkksLqRIosVQjOzrEjvr8B90FYXohRs5prqUoYF NuFOy+oqUCM/Bmq60cdkHgVHxWUwE/lbNaOnk5YDlWCX6WuI2m8PvgAXU15kPLtU Ctd3H5et0QyFagmmkhGEVz5+ehGopx3uzgnNc2ej+oWOXGatwOm7x+IRNo57njMj 4rBnJB0Ra5KpJXBehhxQrs+v9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrMbC4y itAA+jhIywACWfhY/byfMB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8yQzc1RkVDODdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0 YkEzSjdyaVZFbkpjNC1JelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt8DT/36wo1wUT8i2QfuDXNqP0IbwmxmsMFiyXTuEhWTISeT+D8s23 ne17P81Q/E69YiSZaiKeBxKP8K15vyck1zA7lENkXdAz3yQSwsUHb7whmo1Um2KQ 9ao+abCk9lPZ48Ie7Dju2EPIlwrooMQsktD/giqt0yUe35VGUHlaqrVbm6Nv5QgN DKrRffhipQ6/VpRj1t/5wXbIjPS01GOTeUJguWWI+TSe9D2T2xpvbxCglnXnVPeC KkFMlVoecZouJJzSjHZF2K6qbiXnV8ICphXaRtwuhk2tw3dI5hcCftEYXlfpmT2P xq7/jWybtd227e10TiFYPc0haQ7tae4R -----END CERTIFICATE-----Generated at Mon Apr 29 06:21:36 2024 by rpki-client on console-fra.rpki-client.org