$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft File: YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft (raw, json) Hash identifier: zJW59hILJBrZPBUwuGluKVhqEdrn3GMtAAoyXFTCo6o= Subject key identifier: 86:E4:35:0E:38:74:42:08:9F:94:9B:7E:1B:41:3E:43:B2:F6:C0:40 Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft Manifest number: 2F Signing time: Wed 15 May 2024 08:34:32 +0000 Manifest this update: Wed 15 May 2024 08:34:31 +0000 Manifest next update: Wed 22 May 2024 08:34:31 +0000 Files and hashes: 1: YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl (hash: xbuxtfYlPIDzYXnBwiK/2zZoOwgJ7ikYFwjaaVbNm/c=) 2: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (hash: Vhc0oBsN9e1AmTssIF1IG416RW4yliZF1kVCc1MWbp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Validity Not Before: May 15 08:34:31 2024 GMT Not After : May 22 08:34:31 2024 GMT Subject: CN=66447397-ad83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ab:ee:02:a8:e5:45:7b:4b:d8:29:2d:5a:e9: db:ba:98:eb:98:2d:6a:66:b2:71:18:9d:b6:f6:4d: ef:06:20:5d:28:5d:00:03:d8:33:31:32:3f:c7:49: 5d:03:56:29:ed:e2:7f:95:4c:f1:ad:eb:0d:16:85: 34:b0:23:d7:02:a6:61:48:70:98:1a:48:7d:08:3e: b6:22:f8:d8:f9:5b:29:6d:41:f5:19:05:2f:fe:ae: b3:72:30:0b:cb:da:e3:77:a9:db:8d:9a:5e:32:12: 6a:e5:45:9d:2c:67:20:ea:b4:ae:b6:94:9e:bc:52: c5:2e:ae:59:28:0e:b0:64:cf:8a:78:0a:b7:85:cf: 23:17:cb:36:25:72:8f:ec:4c:5f:4e:c6:19:c7:62: 60:25:56:d4:d8:e6:cc:9e:aa:c0:5b:f3:9b:b8:45: d4:22:fc:e6:e1:d2:59:12:89:24:90:79:5e:20:67: fa:7f:e8:46:0a:c4:2e:24:f2:3e:d1:f2:aa:61:4d: 86:33:bd:83:07:da:2c:46:87:73:60:f7:49:e2:70: c4:4c:a2:50:ff:e0:27:2f:8c:53:e3:6a:ca:9c:2a: 63:36:2a:25:35:b0:4b:4d:38:25:5b:e2:10:b1:04: b2:d3:df:d3:a1:1f:ee:9b:60:58:de:62:a0:61:da: 61:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E4:35:0E:38:74:42:08:9F:94:9B:7E:1B:41:3E:43:B2:F6:C0:40 X509v3 Authority Key Identifier: keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:da:d4:38:76:d4:c9:25:bc:74:8e:2b:7b:f0:eb:d5:f7:58: 3e:74:42:6a:a5:87:cb:51:81:07:52:28:5d:49:e1:9d:4b:f8: 7f:54:94:6f:95:19:4a:f1:b0:cb:f4:e5:42:5f:e4:df:fb:e4: c6:2f:31:50:f5:ac:ea:11:bc:1d:6d:70:a4:98:1c:95:98:91: 9a:a0:3b:54:11:d5:ff:72:6c:99:d9:2c:35:c3:50:97:a2:81: 2e:91:c3:00:ab:43:f7:99:df:1d:89:47:90:ff:dd:1f:19:59: d8:1c:32:6b:a9:23:c8:9a:e5:ed:a7:5f:7c:7a:0c:0e:e3:e0: 5d:e1:e7:38:55:37:47:74:71:cc:c7:fb:86:c2:f9:83:c2:81: 8c:6b:4b:91:be:47:00:b1:73:0b:59:fd:bf:43:8b:f8:d3:4d: d8:63:88:d2:d5:9f:75:24:42:25:d1:a0:52:50:f8:8f:22:03: 17:95:a0:9a:a3:a2:4f:2c:c3:8c:17:12:6b:e4:65:0d:3d:4c: cb:4a:08:dd:cb:75:92:d4:9a:5a:08:85:99:ea:46:ae:55:9d: 6d:67:ad:1e:45:8c:77:b1:dd:22:ae:8c:4d:d2:94:bd:38:50: 10:3f:fd:42:14:65:af:6b:e7:42:52:37:a9:5c:a8:00:c3:62: 86:3a:de:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MUNBQTExMC8GA1UEBRMoNjE3RjA1NEUzQ0U0NTFFMEMzRTdGNDQ2REQwOUY3ODY0 NjUyQjY1NjAeFw0yNDA1MTUwODM0MzFaFw0yNDA1MjIwODM0MzFaMBgxFjAUBgNV BAMTDTY2NDQ3Mzk3LWFkODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4q+4CqOVFe0vYKS1a6du6mOuYLWpmsnEYnbb2Te8GIF0oXQAD2DMxMj/HSV0D Vint4n+VTPGt6w0WhTSwI9cCpmFIcJgaSH0IPrYi+Nj5WyltQfUZBS/+rrNyMAvL 2uN3qduNml4yEmrlRZ0sZyDqtK62lJ68UsUurlkoDrBkz4p4CreFzyMXyzYlco/s TF9OxhnHYmAlVtTY5syeqsBb85u4RdQi/Obh0lkSiSSQeV4gZ/p/6EYKxC4k8j7R 8qphTYYzvYMH2ixGh3Ng90nicMRMolD/4CcvjFPjasqcKmM2KiU1sEtNOCVb4hCx BLLT39OhH+6bYFjeYqBh2mHfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhuQ1Djh0 QgiflJt+G0E+Q7L2wEAwHwYDVR0jBBgwFoAUYX8FTjzkUeDD5/RG3Qn3hkZStlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExQ0FBLzhFMjc1QTFFQ0U0 QTExRUU4REU5RTUxRkM0RjlBRTAyL1lYOEZUanprVWVERDVfUkczUW4zaGtaU3Rs WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVg4RlRqemtVZURENV9SRzNRbjNoa1pTdGxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx Q0FBLzhFMjc1QTFFQ0U0QTExRUU4REU5RTUxRkM0RjlBRTAyL1lYOEZUanprVWVE RDVfUkczUW4zaGtaU3RsWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABPa1Dh21MklvHSOK3vw69X3WD50Qmqlh8tRgQdSKF1J4Z1L+H9UlG+V GUrxsMv05UJf5N/75MYvMVD1rOoRvB1tcKSYHJWYkZqgO1QR1f9ybJnZLDXDUJei gS6RwwCrQ/eZ3x2JR5D/3R8ZWdgcMmupI8ia5e2nX3x6DA7j4F3h5zhVN0d0cczH +4bC+YPCgYxrS5G+RwCxcwtZ/b9Di/jTTdhjiNLVn3UkQiXRoFJQ+I8iAxeVoJqj ok8sw4wXEmvkZQ09TMtKCN3LdZLUmloIhZnqRq5VnW1nrR5FjHex3SKujE3SlL04 UBA//UIUZa9r50JSN6lcqADDYoY63rY= -----END CERTIFICATE-----Generated at Wed May 15 09:28:12 2024 by rpki-client on console-fra.rpki-client.org