$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft File: YN1l7H9y62x9qLk3BuLTug8GW_w.mft (raw, json) Hash identifier: tCUx+0ZbPfdgtHXdVeeUVmSIadSjiMSkmOWux5WQKMY= Subject key identifier: 3D:27:94:38:54:48:42:F3:FD:69:E2:9B:3A:01:D9:D5:89:68:1E:9B Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 199D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft Manifest number: 1990 Signing time: Mon 06 May 2024 16:54:18 +0000 Manifest this update: Mon 06 May 2024 16:54:18 +0000 Manifest next update: Mon 13 May 2024 16:54:18 +0000 Files and hashes: 1: YN1l7H9y62x9qLk3BuLTug8GW_w.crl (hash: hJXhgxvQp6SAgQvhSYIuL93V44y7Jk8P8/YTszVrQcY=) 2: D75BE71A410511E7970A2A5FC4F9AE02.roa (hash: bo/SZs4FQGVCgHbfJ/qOcN+amQtsXWeV9LBgPktlbik=) 3: 91CB97905BD211EBA9178181C4F9AE02.roa (hash: XfRW9hpvnBY9LTBMASrvKe5ewyj8spWmKtOVyqPmD0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6557 (0x199d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: May 6 16:54:18 2024 GMT Not After : May 13 16:54:18 2024 GMT Subject: CN=66390b3a-1cb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1c:00:74:30:3e:8e:c8:09:5e:bc:bf:25:5d: 5d:b7:69:b8:9d:98:1d:c8:a0:11:82:c2:63:0a:49: 6a:7c:f5:0a:e3:a2:ed:88:ba:83:65:da:df:9b:e6: 04:14:7f:04:2f:7c:82:81:07:6c:9b:2c:75:6e:a5: 67:9d:1d:27:48:f9:d3:8a:4e:49:c7:34:f5:71:35: 74:79:99:fc:94:18:f0:ce:a5:21:5b:13:11:0c:15: 16:f1:5b:aa:ee:99:80:1a:cb:33:09:cc:24:09:96: fe:c8:e2:f4:5c:0f:0e:2a:3d:fe:86:ee:d4:68:60: 7d:70:57:8a:1b:24:20:25:d0:bb:f9:32:02:52:4d: d3:26:56:16:71:1c:0e:82:33:be:5a:f2:72:9e:8f: 07:72:79:19:81:cb:2b:b0:67:30:02:3f:0a:aa:b3: 2b:ff:61:60:5b:1d:0f:56:2d:71:a6:31:15:54:29: 78:3a:85:19:22:d2:17:65:34:04:89:5e:67:e1:1b: 02:a7:cd:4b:99:3a:61:e6:9b:66:d6:20:d5:6c:0f: db:97:3d:96:6a:de:5f:9b:e9:fa:00:ad:6a:9e:91: 10:cd:c9:d8:fd:6e:a7:d3:67:74:7f:50:0a:49:15: f9:ad:89:63:51:1f:9a:00:36:b9:9a:7f:e6:f0:bd: 4d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:27:94:38:54:48:42:F3:FD:69:E2:9B:3A:01:D9:D5:89:68:1E:9B X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:b8:b5:a6:40:2c:fa:26:c0:21:21:13:70:7c:b9:3f:93:9a: 45:2d:b7:bb:78:9c:b4:43:47:a4:e5:50:e4:4c:db:5e:67:de: 21:d8:82:bf:98:b6:c4:01:eb:18:db:f0:a2:d0:53:fb:28:a5: 68:d2:bb:48:30:ba:db:71:ef:0b:90:7c:8f:61:27:cd:94:02: 79:c7:75:c7:07:11:28:68:f9:d0:7d:d3:d9:c8:c0:ba:f8:5d: b8:fc:0e:05:84:96:cd:45:60:dc:9d:e4:4a:fb:df:88:af:58: f6:d3:8a:f0:ad:55:07:f2:a6:f7:2f:26:05:be:af:8c:49:96: 0f:8f:ab:d1:64:b5:f0:a3:89:82:c1:cb:79:81:69:8d:94:de: d3:78:db:a0:00:37:94:b3:e0:2a:db:0b:52:24:9e:16:5f:50: d1:90:00:b7:3f:68:8e:5b:c3:16:a4:e5:1d:28:0f:04:e8:28: 4b:23:c4:33:f3:81:38:29:a7:50:f2:fb:2d:23:ef:10:6c:27: 2b:6c:a8:96:b5:5f:30:87:9e:a1:5c:25:36:bf:87:26:7a:ac: 50:17:0f:ab:79:82:0a:d7:29:4c:9a:67:e3:1b:fe:66:a7:f3: af:cf:4f:24:ad:77:1d:3c:6f:06:2b:b1:2b:6c:87:c1:42:77: 26:26:0c:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjQwNTA2MTY1NDE4WhcNMjQwNTEzMTY1NDE4WjAYMRYwFAYD VQQDEw02NjM5MGIzYS0xY2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBwAdDA+jsgJXry/JV1dt2m4nZgdyKARgsJjCklqfPUK46LtiLqDZdrfm+YE FH8EL3yCgQdsmyx1bqVnnR0nSPnTik5JxzT1cTV0eZn8lBjwzqUhWxMRDBUW8Vuq 7pmAGsszCcwkCZb+yOL0XA8OKj3+hu7UaGB9cFeKGyQgJdC7+TICUk3TJlYWcRwO gjO+WvJyno8HcnkZgcsrsGcwAj8KqrMr/2FgWx0PVi1xpjEVVCl4OoUZItIXZTQE iV5n4RsCp81LmTph5ptm1iDVbA/blz2Wat5fm+n6AK1qnpEQzcnY/W6n02d0f1AK SRX5rYljUR+aADa5mn/m8L1NDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0nlDhU SELz/WnimzoB2dWJaB6bMB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI2NC9DNThENkZGQTQxMDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYy eDlxTGszQnVMVHVnOEdXX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnuLWmQCz6JsAhIRNwfLk/k5pFLbe7eJy0Q0ek5VDkTNteZ94h2IK/ mLbEAesY2/Ci0FP7KKVo0rtIMLrbce8LkHyPYSfNlAJ5x3XHBxEoaPnQfdPZyMC6 +F24/A4FhJbNRWDcneRK+9+Ir1j204rwrVUH8qb3LyYFvq+MSZYPj6vRZLXwo4mC wct5gWmNlN7TeNugADeUs+Aq2wtSJJ4WX1DRkAC3P2iOW8MWpOUdKA8E6ChLI8Qz 84E4KadQ8vstI+8QbCcrbKiWtV8wh56hXCU2v4cmeqxQFw+reYIK1ylMmmfjG/5m p/Ovz08krXcdPG8GK7ErbIfBQncmJgz6 -----END CERTIFICATE-----Generated at Mon May 6 17:36:17 2024 by rpki-client on console-fra.rpki-client.org