$ rpki-client -vvf rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft File: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft (raw, json) Hash identifier: ndYR4R8UFOo5x1MjmHoxNe+8O97Nrp+EjjtqrE8wri4= Subject key identifier: E2:B8:DC:FF:55:95:1C:6E:D5:66:51:FE:5E:AE:BE:ED:17:2D:3D:C5 Authority key identifier: D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 Certificate issuer: /CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft Manifest number: 12 Signing time: Fri 17 May 2024 08:56:09 +0000 Manifest this update: Fri 17 May 2024 08:56:09 +0000 Manifest next update: Fri 24 May 2024 08:56:09 +0000 Files and hashes: 1: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl (hash: EBQzdGsWq0MZ3cVPXrK3XeVAmfIyulR6b9qmnddtAJE=) 2: D3ADEFE2F7F011EEB3618A2CC4F9AE02.roa (hash: W2Z0TL/1HC8+aj77AxzpaO0eIUfZzfdghUr4klZBZ40=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Validity Not Before: May 17 08:56:09 2024 GMT Not After : May 24 08:56:09 2024 GMT Subject: CN=66471ba9-780c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5a:06:b8:f3:64:31:cc:e9:e9:07:a9:a8:5a: 45:38:d8:f1:72:c6:49:d8:89:87:b2:d8:44:a2:19: b1:5a:ba:49:43:38:9d:9a:86:4f:01:b0:62:59:d7: b8:11:9f:b6:13:de:30:80:44:5b:ae:30:69:60:37: 8c:f2:1e:fb:1f:8a:6b:b2:76:ac:16:93:4a:ec:d5: 1f:85:4e:1f:26:ae:87:82:e1:65:86:a7:bc:3c:6c: 95:df:d9:ad:22:83:c8:e7:bf:6e:1c:ca:43:62:04: 63:18:2c:53:a6:9b:6e:09:91:50:bb:67:32:e5:25: 46:ca:dc:a5:6f:45:f6:58:b7:fc:8e:08:c5:3f:69: 33:55:5b:f0:34:75:29:0b:bb:9c:86:cb:b2:d5:52: fe:9c:2c:51:7d:ae:ab:42:98:98:ec:88:d4:ef:19: c0:31:78:5d:2c:15:31:ac:ff:35:fa:d3:05:42:0b: bb:37:d1:ea:e4:ba:00:50:84:87:12:fd:62:c3:52: 42:51:90:f0:f7:4c:96:b8:fb:9f:3e:cc:3b:25:62: 94:4a:8c:87:45:1d:c5:ca:30:41:5b:5e:4b:8d:cc: 30:57:1d:0d:84:98:22:5a:69:78:52:d1:2a:0e:df: 79:c8:73:ff:a1:2a:da:4f:a2:75:88:2b:ef:26:29: 86:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:B8:DC:FF:55:95:1C:6E:D5:66:51:FE:5E:AE:BE:ED:17:2D:3D:C5 X509v3 Authority Key Identifier: keyid:D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:f4:1d:cb:09:77:9e:55:8b:57:59:01:98:1e:f9:81:e0:27: f3:be:c0:1a:fa:c9:57:ef:ec:6f:65:f2:13:f6:14:a8:62:f4: c1:27:54:cc:64:10:b4:d6:d5:f3:bc:bd:43:3b:86:0c:ae:cd: e8:28:78:6f:73:2a:bd:a1:92:46:92:8b:e5:ce:af:63:18:13: 7a:ae:a1:07:29:f0:9a:a8:b1:fa:64:c1:d9:49:9c:83:36:81: 1b:a4:c4:fa:b9:d8:a8:53:87:0e:97:b9:ee:a6:4b:43:10:a1: 42:a5:44:a8:2f:e6:ab:b9:14:af:75:ae:4e:68:25:6a:90:b4: 15:75:49:fa:ac:54:f0:50:8b:af:e1:73:a8:ef:ff:49:bd:83: a6:66:b0:27:c5:e8:0b:67:0f:4d:da:06:9e:3d:bb:fb:28:e6: 57:db:25:50:0b:5f:dc:9a:d3:ca:16:d9:51:68:86:69:99:02: 0d:a3:2c:f7:7a:d7:44:96:1e:d5:e8:ce:7c:13:a7:cd:b5:dc: 94:55:ed:23:05:9d:30:a8:52:91:4c:00:aa:65:aa:18:8f:64: 5f:4f:43:d9:a4:18:b3:71:24:1d:15:19:32:98:81:c3:7f:db: c3:b1:2e:38:d6:09:52:b6:9c:a6:65:f3:6e:53:b9:65:9a:5e: b4:67:b4:fc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB ODIyRjExMC8GA1UEBRMoRDk4NzJDMTkzRTE4REMxNTFGRTNFRjlFMjlBRkU4MzEy MUIyNEQxMDAeFw0yNDA1MTcwODU2MDlaFw0yNDA1MjQwODU2MDlaMBgxFjAUBgNV BAMTDTY2NDcxYmE5LTc4MGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGWga482QxzOnpB6moWkU42PFyxknYiYey2ESiGbFauklDOJ2ahk8BsGJZ17gR n7YT3jCARFuuMGlgN4zyHvsfimuydqwWk0rs1R+FTh8mroeC4WWGp7w8bJXf2a0i g8jnv24cykNiBGMYLFOmm24JkVC7ZzLlJUbK3KVvRfZYt/yOCMU/aTNVW/A0dSkL u5yGy7LVUv6cLFF9rqtCmJjsiNTvGcAxeF0sFTGs/zX60wVCC7s30erkugBQhIcS /WLDUkJRkPD3TJa4+58+zDslYpRKjIdFHcXKMEFbXkuNzDBXHQ2EmCJaaXhS0SoO 33nIc/+hKtpPonWIK+8mKYbBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4rjc/1WV HG7VZlH+Xq6+7RctPcUwHwYDVR0jBBgwFoAU2YcsGT4Y3BUf4++eKa/oMSGyTRAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4MjJGLzU4NDJEMzA0RjdG MDExRUU5OEM4QzkyQkM0RjlBRTAyLzJZY3NHVDRZM0JVZjQtLWVLYV9vTVNHeVRS QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlljc0dUNFkzQlVmNC0tZUthX29NU0d5VFJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4 MjJGLzU4NDJEMzA0RjdGMDExRUU5OEM4QzkyQkM0RjlBRTAyLzJZY3NHVDRZM0JV ZjQtLWVLYV9vTVNHeVRSQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB/0HcsJd55Vi1dZAZge+YHgJ/O+wBr6yVfv7G9l8hP2FKhi9MEnVMxk ELTW1fO8vUM7hgyuzegoeG9zKr2hkkaSi+XOr2MYE3quoQcp8JqosfpkwdlJnIM2 gRukxPq52KhThw6Xue6mS0MQoUKlRKgv5qu5FK91rk5oJWqQtBV1SfqsVPBQi6/h c6jv/0m9g6ZmsCfF6AtnD03aBp49u/so5lfbJVALX9ya08oW2VFohmmZAg2jLPd6 10SWHtXoznwTp8213JRV7SMFnTCoUpFMAKplqhiPZF9PQ9mkGLNxJB0VGTKYgcN/ 28OxLjjWCVK2nKZl825TuWWaXrRntPw= -----END CERTIFICATE-----Generated at Fri May 17 10:10:52 2024 by rpki-client on console-fra.rpki-client.org