$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: p2zegtxkydGXUwJll8t0+d22R1CiGeDt2k21rdowxkg= Subject key identifier: 22:5F:6C:47:5B:D7:FE:F5:5B:8B:BE:16:76:42:C4:FC:D6:BC:C4:17 Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 03C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 03C6 Signing time: Wed 01 May 2024 02:41:57 +0000 Manifest this update: Wed 01 May 2024 02:41:57 +0000 Manifest next update: Wed 08 May 2024 02:41:57 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: tk0W8bXY547C7+X7xicN+HG18C2qylo4ELFHjeG32qE=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: 4tA4qoDdoOVKwdkSvB7F8+cRC0ox1Y1iSU6OwyReKas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 967 (0x3c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: May 1 02:41:57 2024 GMT Not After : May 8 02:41:57 2024 GMT Subject: CN=6631abf5-8916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8b:84:ab:8f:82:c1:58:34:2f:b9:aa:04:31: b7:b5:bc:02:08:83:e7:c1:6d:83:c5:c0:8e:2c:10: a6:2b:9d:26:ce:4d:85:bc:33:81:83:b6:37:8e:76: 64:55:4a:44:22:c1:6e:87:f4:fe:a5:e7:b6:54:89: d5:81:6b:6f:34:e4:1d:18:42:8b:68:5e:69:02:8b: 17:3f:b0:e7:7c:71:0d:c1:87:1d:21:93:9c:0c:ff: 78:8f:30:23:b3:79:64:ad:92:77:1e:31:12:d4:71: 76:04:2c:8d:3b:e6:02:59:0f:f2:17:b3:4c:db:55: 0e:8a:6d:e7:d1:bb:89:f6:16:4d:1d:2e:fa:2e:d3: 75:ae:36:f6:47:38:e5:f7:65:9e:10:d7:05:49:aa: 7d:c0:50:4a:23:8e:38:0a:4f:1c:25:0e:28:71:cb: b2:96:27:13:bc:b8:6e:8d:c5:a0:9f:ce:de:35:4d: 8d:24:8d:c8:b6:34:2a:12:2f:e5:a2:09:5a:58:31: de:ea:ec:17:2c:71:21:b9:81:2d:d9:46:8c:c6:5b: 74:01:a2:87:7c:07:22:29:89:79:21:46:c1:20:ba: cb:8a:00:27:5f:e1:9c:6e:90:73:d1:ab:6b:f7:57: e1:8c:0d:d1:92:15:76:06:c1:d7:4a:f4:4e:ff:f2: 3e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:5F:6C:47:5B:D7:FE:F5:5B:8B:BE:16:76:42:C4:FC:D6:BC:C4:17 X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:a0:c6:7c:8c:fc:fe:c9:9e:f7:28:96:19:a1:62:6f:f1:bf: 30:b3:fd:2b:19:0a:20:a0:62:0d:a8:d8:40:b6:a2:4a:75:c3: 6b:62:27:a6:18:cc:8c:80:c8:ab:c4:66:2b:ac:da:36:06:40: fb:25:3f:8d:60:1b:1a:d9:82:a1:0d:58:f3:83:cb:36:7a:30: 6c:59:70:98:f0:29:cc:c4:6f:d7:fe:34:a4:e4:b7:89:51:2a: 78:7a:46:f5:86:29:0a:35:f6:21:51:c4:c5:a4:36:76:3e:08: 30:eb:98:31:67:91:74:19:e5:fd:6c:5f:2c:f8:37:24:41:37: 5a:3c:05:50:bb:31:09:0b:a8:a6:23:32:bd:3c:b0:f2:4d:a4: a8:05:c2:b4:5d:06:60:ab:a8:3e:87:89:34:a4:64:56:49:e1: f3:83:c4:48:6c:96:cc:d3:d4:57:01:e7:17:fb:9d:9d:4b:08: 1c:e7:77:1a:08:b8:f2:cc:a2:19:8d:30:0a:c9:5a:eb:37:51: c9:6c:52:e1:0c:f8:ad:8e:31:72:e2:78:dc:ab:91:59:f3:9c: ab:0e:f6:0b:1d:3c:13:dd:84:80:45:4e:af:46:18:27:df:51: c8:6f:62:21:42:88:87:e2:38:ae:44:25:85:09:4e:6f:ce:54: 28:92:4a:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjQwNTAxMDI0MTU3WhcNMjQwNTA4MDI0MTU3WjAYMRYwFAYD VQQDEw02NjMxYWJmNS04OTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4uEq4+CwVg0L7mqBDG3tbwCCIPnwW2DxcCOLBCmK50mzk2FvDOBg7Y3jnZk VUpEIsFuh/T+pee2VInVgWtvNOQdGEKLaF5pAosXP7DnfHENwYcdIZOcDP94jzAj s3lkrZJ3HjES1HF2BCyNO+YCWQ/yF7NM21UOim3n0buJ9hZNHS76LtN1rjb2Rzjl 92WeENcFSap9wFBKI444Ck8cJQ4occuylicTvLhujcWgn87eNU2NJI3ItjQqEi/l oglaWDHe6uwXLHEhuYEt2UaMxlt0AaKHfAciKYl5IUbBILrLigAnX+GcbpBz0atr 91fhjA3RkhV2BsHXSvRO//I+CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJfbEdb 1/71W4u+FnZCxPzWvMQXMB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARoMZ8jPz+yZ73KJYZoWJv8b8ws/0rGQogoGINqNhAtqJKdcNrYiem GMyMgMirxGYrrNo2BkD7JT+NYBsa2YKhDVjzg8s2ejBsWXCY8CnMxG/X/jSk5LeJ USp4ekb1hikKNfYhUcTFpDZ2Pggw65gxZ5F0GeX9bF8s+DckQTdaPAVQuzEJC6im IzK9PLDyTaSoBcK0XQZgq6g+h4k0pGRWSeHzg8RIbJbM09RXAecX+52dSwgc53ca CLjyzKIZjTAKyVrrN1HJbFLhDPitjjFy4njcq5FZ85yrDvYLHTwT3YSARU6vRhgn 31HIb2IhQoiH4jiuRCWFCU5vzlQokkrS -----END CERTIFICATE-----Generated at Wed May 1 04:49:26 2024 by rpki-client on console-ams.rpki-client.org