$ rpki-client -vvf rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft File: yhlef9JZjYWjbJnsSBs1dMBuOxc.mft (raw, json) Hash identifier: WHIweDzZL+m+sXUrF08X0rNOyGmDmYZ9mzDW1KwWZHw= Subject key identifier: 38:19:21:FF:8D:42:C8:9B:C8:5D:0E:F4:9E:5B:7A:E8:95:D2:6E:D8 Authority key identifier: CA:19:5E:7F:D2:59:8D:85:A3:6C:99:EC:48:1B:35:74:C0:6E:3B:17 Certificate issuer: /CN=A919DA63/serialNumber=CA195E7FD2598D85A36C99EC481B3574C06E3B17 Certificate serial: 0734 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhlef9JZjYWjbJnsSBs1dMBuOxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft Manifest number: 0730 Signing time: Thu 02 May 2024 22:35:44 +0000 Manifest this update: Thu 02 May 2024 22:35:44 +0000 Manifest next update: Thu 09 May 2024 22:35:44 +0000 Files and hashes: 1: yhlef9JZjYWjbJnsSBs1dMBuOxc.crl (hash: 904FxRvCyzEYT6B3gJc7fYfS/Xw261fEuXH088tKNdI=) 2: B65C355AE1E411EAAD5D8545C4F9AE02.roa (hash: WaVflJkdp5p+sU2iLFDzrE5EbzZ3FIUHzUY1/HhDAYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.crl rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhlef9JZjYWjbJnsSBs1dMBuOxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DA63/serialNumber=CA195E7FD2598D85A36C99EC481B3574C06E3B17 Validity Not Before: May 2 22:35:44 2024 GMT Not After : May 9 22:35:44 2024 GMT Subject: CN=66341540-e885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8a:36:16:70:0a:c6:a5:fc:25:c6:63:32:7f: 8f:f4:f7:5b:ca:cc:51:d5:dd:d9:a1:ae:f4:f9:03: 95:9a:94:41:3c:6a:6a:5a:f6:9a:41:81:c5:3f:68: 62:fe:9c:c7:e0:a6:39:30:43:63:4a:62:7d:9c:b3: b0:dd:62:40:53:ed:52:b0:e2:e6:5b:f8:a5:7e:fc: 7d:09:3c:77:7c:ba:45:76:46:5d:94:65:f3:35:5a: 59:d4:eb:2f:f8:e7:1f:ac:3f:72:f3:12:33:4a:38: 9f:df:a8:8a:2d:63:0e:25:ad:99:12:16:30:b3:c1: 72:72:e5:3e:7c:63:cb:65:06:6e:cd:16:b4:ea:ad: d1:1a:8c:21:ff:e4:fe:65:03:b7:07:0f:9b:fd:3c: 02:59:a4:0d:42:57:08:e7:05:cf:e5:a7:37:d7:2e: 5d:f4:71:50:05:8f:88:b9:99:c9:7f:85:b8:9d:d5: c8:e7:33:68:73:40:09:c3:6c:a8:b9:bb:2e:d8:f9: 2d:97:38:03:7d:42:18:9e:0d:0e:7f:f4:b7:98:c7: e3:f7:51:0b:86:f3:61:67:4d:9d:be:12:0a:23:af: ca:ee:74:d4:79:82:30:21:24:10:5b:78:56:5a:14: 0e:c0:58:d8:64:0b:d5:18:db:da:84:2f:bf:e8:0f: 6c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:19:21:FF:8D:42:C8:9B:C8:5D:0E:F4:9E:5B:7A:E8:95:D2:6E:D8 X509v3 Authority Key Identifier: keyid:CA:19:5E:7F:D2:59:8D:85:A3:6C:99:EC:48:1B:35:74:C0:6E:3B:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhlef9JZjYWjbJnsSBs1dMBuOxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:1e:7b:d9:56:4d:3d:c2:38:15:c9:42:06:d5:da:52:a2:b1: 20:e2:3e:90:3f:48:22:d7:c7:fb:17:49:f1:03:42:df:f5:07: 82:98:32:27:e7:c3:d0:81:e7:90:30:ba:04:2c:01:c7:ba:dd: 53:4c:41:d0:67:c2:c6:47:2d:95:71:96:55:83:79:5e:98:af: 8f:1f:63:44:e2:73:61:3d:bd:1f:d5:9c:eb:b9:36:56:ed:f5: bb:21:b7:c9:13:49:45:e9:6b:9d:88:e3:50:7a:de:9b:0c:b7: 10:d2:6a:ca:4e:18:66:91:19:a1:15:6b:28:53:5d:72:78:57: 5d:00:fc:36:2d:62:f3:64:d4:8c:a7:0f:f9:0a:49:56:25:91: 44:3c:af:38:f8:6f:df:64:86:2b:15:c6:6f:3b:10:a1:cf:f8: 68:91:0e:ec:8e:f7:16:c1:cd:34:24:e2:4f:08:d9:8b:dc:d6: 60:fb:8d:21:83:08:ca:dd:c6:38:dc:dc:ba:d1:14:29:d6:d3: 36:26:cc:a6:13:d8:cc:bb:d9:43:00:49:50:4b:d1:8e:a3:22: 1f:fa:01:ca:7a:a7:17:7e:02:63:a1:5f:6c:bc:e8:a3:80:3b: a8:2c:5c:f6:ba:2b:84:22:1b:63:48:15:7b:fc:85:d0:50:a0: 36:ce:a0:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURBNjMxMTAvBgNVBAUTKENBMTk1RTdGRDI1OThEODVBMzZDOTlFQzQ4MUIzNTc0 QzA2RTNCMTcwHhcNMjQwNTAyMjIzNTQ0WhcNMjQwNTA5MjIzNTQ0WjAYMRYwFAYD VQQDEw02NjM0MTU0MC1lODg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoo2FnAKxqX8JcZjMn+P9PdbysxR1d3Zoa70+QOVmpRBPGpqWvaaQYHFP2hi /pzH4KY5MENjSmJ9nLOw3WJAU+1SsOLmW/ilfvx9CTx3fLpFdkZdlGXzNVpZ1Osv +OcfrD9y8xIzSjif36iKLWMOJa2ZEhYws8FycuU+fGPLZQZuzRa06q3RGowh/+T+ ZQO3Bw+b/TwCWaQNQlcI5wXP5ac31y5d9HFQBY+IuZnJf4W4ndXI5zNoc0AJw2yo ubsu2PktlzgDfUIYng0Of/S3mMfj91ELhvNhZ02dvhIKI6/K7nTUeYIwISQQW3hW WhQOwFjYZAvVGNvahC+/6A9sCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgZIf+N QsibyF0O9J5beuiV0m7YMB8GA1UdIwQYMBaAFMoZXn/SWY2Fo2yZ7EgbNXTAbjsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REE2My8wMUJGN0JFRUUx RTMxMUVBQjQ5N0REMjhDNEY5QUUwMi95aGxlZjlKWmpZV2piSm5zU0JzMWRNQnVP eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lobGVmOUpaallXamJKbnNTQnMxZE1CdU94Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REE2My8wMUJGN0JFRUUxRTMxMUVBQjQ5N0REMjhDNEY5QUUwMi95aGxlZjlKWmpZ V2piSm5zU0JzMWRNQnVPeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQHnvZVk09wjgVyUIG1dpSorEg4j6QP0gi18f7F0nxA0Lf9QeCmDIn 58PQgeeQMLoELAHHut1TTEHQZ8LGRy2VcZZVg3lemK+PH2NE4nNhPb0f1ZzruTZW 7fW7IbfJE0lF6WudiONQet6bDLcQ0mrKThhmkRmhFWsoU11yeFddAPw2LWLzZNSM pw/5CklWJZFEPK84+G/fZIYrFcZvOxChz/hokQ7sjvcWwc00JOJPCNmL3NZg+40h gwjK3cY43Ny60RQp1tM2JsymE9jMu9lDAElQS9GOoyIf+gHKeqcXfgJjoV9svOij gDuoLFz2uiuEIhtjSBV7/IXQUKA2zqCx -----END CERTIFICATE-----Generated at Thu May 2 23:19:02 2024 by rpki-client on console-ams.rpki-client.org