$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft File: Y04osQAuVW6OsU-VPq1jttZ3WAk.mft (raw, json) Hash identifier: i5rcl2T7tEKyh52/EfITFrFkdOMCG28oGg2h03nOIW0= Subject key identifier: C7:01:DB:6C:C2:FE:1C:8C:4B:EB:FA:E6:95:FB:47:44:CA:74:E0:5D Authority key identifier: 63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 Certificate issuer: /CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft Manifest number: 8F Signing time: Wed 15 May 2024 07:21:52 +0000 Manifest this update: Wed 15 May 2024 07:21:52 +0000 Manifest next update: Wed 22 May 2024 07:21:52 +0000 Files and hashes: 1: Y04osQAuVW6OsU-VPq1jttZ3WAk.crl (hash: m4J2xfFIoloXUXJPvXQhsFfADBsutfl7Y0LyAPHuf8I=) 2: F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa (hash: txFXdabrwb9rotse9oV5dX9NAzYwQjuUobWlYcV7Wo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:21:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Validity Not Before: May 15 07:21:52 2024 GMT Not After : May 22 07:21:52 2024 GMT Subject: CN=66446290-dd06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ac:49:79:06:54:f2:15:90:80:c6:c7:b7:f8: 80:14:12:c6:99:21:35:da:b3:14:ca:6c:3b:91:10: 71:98:b8:4a:0f:bc:1a:0d:00:7a:0e:e0:6f:2d:86: ff:d9:09:e5:92:fd:e6:3e:88:dd:f0:9d:ab:b1:7e: 12:57:4b:7d:43:04:dd:08:e2:94:c9:41:d2:b9:e7: bb:49:84:36:36:f0:8a:d5:e7:84:97:95:01:51:39: e1:d2:b3:56:88:62:c0:88:02:bf:0d:5a:05:c2:65: 35:5c:fc:e5:9f:c4:65:ce:bd:1f:15:6a:82:8c:6d: 1c:06:f4:13:d3:f4:06:7a:0e:c4:ed:0d:46:f4:cb: b4:60:8b:50:13:67:a3:ca:95:5a:15:70:2c:e0:48: a6:5b:52:fc:ff:cb:06:3d:04:b9:ec:ad:95:e4:d8: 45:1e:ff:3b:fd:30:b2:9f:02:98:b0:ee:07:23:60: 02:2b:3c:4a:8b:9f:7f:24:5d:aa:51:dc:04:67:ba: 7f:f7:18:f4:57:fb:e1:b5:e6:0e:dc:f4:69:44:fd: 6d:eb:d6:67:2a:a1:c7:a1:8c:1f:b7:e3:0f:5e:3c: 27:73:bd:99:45:8a:f0:6f:8a:25:cc:d9:72:5e:d6: eb:48:0b:9f:46:59:30:72:06:e9:ec:3b:12:c5:f5: 4a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:01:DB:6C:C2:FE:1C:8C:4B:EB:FA:E6:95:FB:47:44:CA:74:E0:5D X509v3 Authority Key Identifier: keyid:63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:68:7e:25:e8:e3:8f:eb:5f:f3:e1:d3:4f:5c:57:3a:34:25: 53:5d:fd:63:6b:c3:8b:90:78:cd:4a:1c:65:2f:b4:3c:a1:82: f9:03:57:33:60:f8:ed:ab:3d:18:a1:16:3c:3e:e2:e8:2c:61: 1e:92:f9:ec:9b:91:ba:bd:76:33:ab:9e:fa:e0:57:cf:9a:8b: d3:00:f1:a6:08:87:e5:2e:a9:4c:79:a4:c2:37:c8:22:9a:2d: b7:72:f2:4c:3b:4d:ae:d0:aa:c2:c0:3c:a8:e5:3c:bf:6d:36: 60:bc:3d:f0:2c:0e:8f:d9:cb:c5:93:c8:ff:14:f4:6e:09:87: e6:7e:4e:31:8c:ed:4c:a3:b9:98:76:10:da:15:33:40:ba:5d: 9a:e5:97:b7:c0:10:46:8b:83:af:4c:c6:be:65:c5:4c:91:a0: 12:a8:41:43:43:d4:b7:8f:2b:c2:10:67:f2:39:d3:ba:18:02: 56:d2:54:10:9f:70:cd:32:2b:ed:fc:7a:1e:67:6e:ca:fa:d4: 6e:eb:39:2e:f5:5f:5a:8c:73:61:12:f9:49:86:bd:76:ff:77: 1b:bf:7d:32:6c:fc:d4:7a:38:75:9a:45:f0:eb:38:e6:ed:13: f9:8d:e5:13:d1:22:bf:1a:e9:31:a1:e1:30:58:96:b2:bb:b2: 3c:fe:d6:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKDYzNEUyOEIxMDAyRTU1NkU4RUIxNEY5NTNFQUQ2M0I2 RDY3NzU4MDkwHhcNMjQwNTE1MDcyMTUyWhcNMjQwNTIyMDcyMTUyWjAYMRYwFAYD VQQDEw02NjQ0NjI5MC1kZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4axJeQZU8hWQgMbHt/iAFBLGmSE12rMUymw7kRBxmLhKD7waDQB6DuBvLYb/ 2Qnlkv3mPojd8J2rsX4SV0t9QwTdCOKUyUHSuee7SYQ2NvCK1eeEl5UBUTnh0rNW iGLAiAK/DVoFwmU1XPzln8Rlzr0fFWqCjG0cBvQT0/QGeg7E7Q1G9Mu0YItQE2ej ypVaFXAs4EimW1L8/8sGPQS57K2V5NhFHv87/TCynwKYsO4HI2ACKzxKi59/JF2q UdwEZ7p/9xj0V/vhteYO3PRpRP1t69ZnKqHHoYwft+MPXjwnc72ZRYrwb4olzNly XtbrSAufRlkwcgbp7DsSxfVKwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcB22zC /hyMS+v65pX7R0TKdOBdMB8GA1UdIwQYMBaAFGNOKLEALlVujrFPlT6tY7bWd1gJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BRDI1ODg5MDU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZXNk9zVS1WUHExanR0WjNX QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwNG9zUUF1Vlc2T3NVLVZQcTFqdHRaM1dBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BRDI1ODg5MDU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZX Nk9zVS1WUHExanR0WjNXQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMaH4l6OOP61/z4dNPXFc6NCVTXf1ja8OLkHjNShxlL7Q8oYL5A1cz YPjtqz0YoRY8PuLoLGEekvnsm5G6vXYzq5764FfPmovTAPGmCIflLqlMeaTCN8gi mi23cvJMO02u0KrCwDyo5Ty/bTZgvD3wLA6P2cvFk8j/FPRuCYfmfk4xjO1Mo7mY dhDaFTNAul2a5Ze3wBBGi4OvTMa+ZcVMkaASqEFDQ9S3jyvCEGfyOdO6GAJW0lQQ n3DNMivt/HoeZ27K+tRu6zku9V9ajHNhEvlJhr12/3cbv30ybPzUejh1mkXw6zjm 7RP5jeUT0SK/GukxoeEwWJayu7I8/tZx -----END CERTIFICATE-----Generated at Wed May 15 09:04:41 2024 by rpki-client on console-ams.rpki-client.org