$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft File: Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft (raw, json) Hash identifier: fXqwvEjbEENYCrCQaQrCrlUBFLRqkYRXsgP17qDqDuM= Subject key identifier: 8A:73:49:17:EE:03:D3:6D:9C:EB:C5:82:CF:16:07:43:75:78:FE:13 Authority key identifier: 63:FA:F4:D2:3E:68:3E:93:F6:07:63:0D:DF:FD:4B:1A:F6:33:3F:00 Certificate issuer: /CN=A91AB238/serialNumber=63FAF4D23E683E93F607630DDFFD4B1AF6333F00 Certificate serial: 06F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft Manifest number: 06EF Signing time: Tue 30 Apr 2024 23:06:41 +0000 Manifest this update: Tue 30 Apr 2024 23:06:41 +0000 Manifest next update: Tue 07 May 2024 23:06:41 +0000 Files and hashes: 1: Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl (hash: w6T3wwWqATnEpN1PpImqkXDjIbev1llxcf9cQt+qYo0=) 2: 7634D328351411EBBF864670C4F9AE02.roa (hash: jVmN0CKLArscoHsAhAFo836CBYIKEy/lsmnR5TEYR0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1783 (0x6f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB238/serialNumber=63FAF4D23E683E93F607630DDFFD4B1AF6333F00 Validity Not Before: Apr 30 23:06:41 2024 GMT Not After : May 7 23:06:41 2024 GMT Subject: CN=66317981-7e6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:19:c6:ec:3f:f1:8d:46:a3:dc:0d:69:84:3d: 1f:30:c8:0b:9d:23:2c:05:35:88:23:9a:88:2a:53: 20:2a:cc:e3:07:a0:18:9d:50:2c:7f:43:79:06:6d: a0:bd:53:ed:a0:42:8d:de:60:ad:06:3a:74:d3:31: 57:22:4e:32:55:bc:2a:1e:9b:42:83:9a:1d:a0:09: 86:f9:44:91:6d:33:7a:b6:dc:54:70:14:7d:d1:66: f0:51:ca:dd:67:d8:48:19:56:78:d3:51:77:1e:f6: 2f:d2:d4:eb:39:34:d5:7c:de:98:ec:3d:c8:a5:e0: 1f:45:71:8d:8a:37:54:8c:a2:c2:bd:e0:16:a3:96: 7c:d9:c8:e0:b0:2a:e0:cf:f1:4a:f7:b7:c1:0c:47: a2:3f:ec:70:17:10:a8:b5:77:58:e8:f2:a9:79:cb: 84:3a:43:64:65:4a:8f:e3:35:c8:fa:d1:8b:f7:bc: ef:0e:a6:bd:0b:64:fd:7f:80:d1:53:f7:32:1d:a1: 5a:a0:91:93:3a:76:ad:04:6b:85:6d:b5:b6:d2:b1: 23:f6:47:56:17:3c:21:96:fb:5c:d2:48:ce:23:92: 60:e8:ef:03:03:06:13:84:eb:8b:cf:cd:16:ee:47: d2:94:a5:b2:c3:a6:f5:bd:33:10:88:86:0c:fe:2f: f9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:73:49:17:EE:03:D3:6D:9C:EB:C5:82:CF:16:07:43:75:78:FE:13 X509v3 Authority Key Identifier: keyid:63:FA:F4:D2:3E:68:3E:93:F6:07:63:0D:DF:FD:4B:1A:F6:33:3F:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:5e:ae:6d:85:8c:0a:fc:0c:a8:f9:59:82:1e:22:69:2f:28: 04:72:6d:f2:ad:88:8e:09:5c:26:c8:ac:f6:ac:cf:96:86:35: de:4a:9d:64:29:93:fd:8b:88:cd:e0:b1:70:db:77:69:37:ac: e9:d1:62:19:2d:5c:28:1e:68:48:77:ec:c3:33:b8:85:20:e9: c9:85:ed:47:61:00:31:f1:12:21:8e:e4:47:66:6f:ca:4c:c3: 00:36:0b:17:05:fb:5c:18:7d:a7:68:81:18:38:7e:75:5d:75: 90:e3:72:a5:0d:f0:af:74:3d:7d:38:1a:0a:c5:e5:94:58:cd: e9:02:86:02:24:71:a6:5a:4b:23:e7:cc:6d:20:7f:72:51:c6: e0:5e:84:8b:0f:55:44:bd:2d:bd:51:61:74:97:23:99:33:31: da:4c:35:3c:26:1e:1b:e7:44:0d:91:dc:fc:5e:e5:7d:cb:20: 6d:48:fb:bf:49:57:2f:cf:a3:b9:2f:f5:45:52:fe:4d:09:16: 8b:9d:ed:46:21:33:27:0f:d6:14:a3:23:60:da:7b:81:05:c6: 03:9a:08:e1:cd:0a:84:d8:d3:33:03:a2:c0:3c:a6:8a:97:d5: ba:7b:63:7b:f6:e5:e5:bc:36:26:2a:7d:ab:2a:64:7c:62:29: ac:ee:50:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMzgxMTAvBgNVBAUTKDYzRkFGNEQyM0U2ODNFOTNGNjA3NjMwRERGRkQ0QjFB RjYzMzNGMDAwHhcNMjQwNDMwMjMwNjQxWhcNMjQwNTA3MjMwNjQxWjAYMRYwFAYD VQQDEw02NjMxNzk4MS03ZTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhnG7D/xjUaj3A1phD0fMMgLnSMsBTWII5qIKlMgKszjB6AYnVAsf0N5Bm2g vVPtoEKN3mCtBjp00zFXIk4yVbwqHptCg5odoAmG+USRbTN6ttxUcBR90WbwUcrd Z9hIGVZ401F3HvYv0tTrOTTVfN6Y7D3IpeAfRXGNijdUjKLCveAWo5Z82cjgsCrg z/FK97fBDEeiP+xwFxCotXdY6PKpecuEOkNkZUqP4zXI+tGL97zvDqa9C2T9f4DR U/cyHaFaoJGTOnatBGuFbbW20rEj9kdWFzwhlvtc0kjOI5Jg6O8DAwYThOuLz80W 7kfSlKWyw6b1vTMQiIYM/i/5TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpzSRfu A9NtnOvFgs8WB0N1eP4TMB8GA1UdIwQYMBaAFGP69NI+aD6T9gdjDd/9Sxr2Mz8A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIzOC84QzdBMzM2OEZE RkExMUVBOTNBQUZGMEFDNEY5QUUwMi9ZX3IwMGo1b1BwUDJCMk1OM18xTEd2WXpQ d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lfcjAwajVvUHBQMkIyTU4zXzFMR3ZZelB3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjIzOC84QzdBMzM2OEZERkExMUVBOTNBQUZGMEFDNEY5QUUwMi9ZX3IwMGo1b1Bw UDJCMk1OM18xTEd2WXpQd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCXq5thYwK/Ayo+VmCHiJpLygEcm3yrYiOCVwmyKz2rM+WhjXeSp1k KZP9i4jN4LFw23dpN6zp0WIZLVwoHmhId+zDM7iFIOnJhe1HYQAx8RIhjuRHZm/K TMMANgsXBftcGH2naIEYOH51XXWQ43KlDfCvdD19OBoKxeWUWM3pAoYCJHGmWksj 58xtIH9yUcbgXoSLD1VEvS29UWF0lyOZMzHaTDU8Jh4b50QNkdz8XuV9yyBtSPu/ SVcvz6O5L/VFUv5NCRaLne1GITMnD9YUoyNg2nuBBcYDmgjhzQqE2NMzA6LAPKaK l9W6e2N79uXlvDYmKn2rKmR8Yims7lAp -----END CERTIFICATE-----Generated at Tue Apr 30 23:52:30 2024 by rpki-client on console-ams.rpki-client.org