$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: 4rtGIs2T+DJZoHNmLIpxJlMyZVxDrGbvukn900dH0d0= Subject key identifier: DB:C1:4E:87:B3:34:DB:15:1A:79:BE:31:FE:7F:64:81:D0:15:14:75 Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: F7 Signing time: Sun 19 May 2024 05:42:15 +0000 Manifest this update: Sun 19 May 2024 05:42:14 +0000 Manifest next update: Sun 26 May 2024 05:42:14 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: r6IxKkChUKl4pfB9FVl1fC6vA0bGt/X0E9CWfiTi92A=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: YbwTtGWJeYjG6oJrdkEQP9KA0MKZtNBoCHNM8wViENY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: May 19 05:42:14 2024 GMT Not After : May 26 05:42:14 2024 GMT Subject: CN=66499136-b91b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:74:32:6c:1e:f3:98:4e:35:0e:e2:cb:77:70: 38:57:7a:05:b5:a4:6f:88:67:67:ef:b9:68:be:67: f1:e0:83:3f:18:5a:0f:67:c3:02:56:23:d0:6a:2f: 93:9f:bb:60:d7:1b:86:6a:4e:57:66:35:3d:62:35: 1f:d4:6e:52:da:e6:72:d1:1b:29:8e:51:8c:f4:cb: 95:02:75:bf:39:62:68:46:d5:7f:aa:2b:5c:c9:2b: da:30:74:26:bc:e1:9a:ca:c7:a9:c0:5f:c9:6c:c7: 80:f9:31:b5:c4:73:5c:3e:11:a8:b9:4a:d2:4f:4a: ec:6c:f0:ee:52:fe:43:8b:bc:f2:f9:4e:22:fb:fe: da:f7:d3:be:ff:8e:61:40:3d:c0:16:54:b1:f7:e7: 8b:a4:32:5b:45:58:07:bb:f4:bc:15:57:bc:cc:d8: 6c:48:0e:01:20:0d:ea:27:5b:70:fd:da:cb:29:f0: ee:87:d2:8f:57:25:fb:2d:1e:85:e7:30:b6:91:40: 5e:e4:28:15:06:f9:52:90:1e:f4:9c:06:b8:15:98: da:8a:71:35:47:4c:f7:41:d2:7f:01:9b:27:0d:e4: 0b:61:bf:dd:a7:86:d2:80:45:b8:04:a9:a4:8c:27: a7:7e:47:77:b2:20:ba:32:93:39:3d:98:56:f7:d0: 56:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:C1:4E:87:B3:34:DB:15:1A:79:BE:31:FE:7F:64:81:D0:15:14:75 X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:1b:6e:2a:fc:43:b1:3f:17:7a:91:1f:b7:b3:6d:57:20:dc: 70:27:25:22:2c:fa:c1:08:a6:3e:17:56:28:2e:a9:ea:5a:fe: 08:8d:36:bf:ba:76:1e:78:04:aa:11:0b:11:1d:ee:af:42:26: 81:43:2a:7c:c9:ef:27:32:eb:3b:34:34:7e:15:25:aa:e7:77: 8d:b2:fb:46:d1:11:97:aa:3c:fe:91:3d:76:8c:77:2e:f4:48: f0:31:e2:0e:aa:15:a3:1b:87:ee:73:cf:42:97:c4:c1:bd:de: 3c:4f:2c:9f:43:86:83:8c:a4:73:c7:f4:12:c6:35:bd:18:53: 23:b7:72:49:7d:60:09:16:d6:a5:20:0a:eb:fe:f6:f0:a3:1e: 43:1b:13:7d:f8:83:45:3c:8e:95:04:16:c8:cd:71:9a:cc:2b: 9c:dc:ec:06:60:db:bc:1f:91:97:cb:cd:1c:c0:e1:9a:75:55: 4e:12:82:5b:b1:b2:e9:54:7b:f8:5b:23:69:c4:1b:7c:ab:32: 36:d3:66:fe:73:82:4d:04:eb:39:18:2d:1f:4d:48:ad:48:c9: d5:8c:27:e9:ab:a4:25:35:65:cc:5d:22:c0:8d:c1:75:84:9d: 3d:f3:c3:43:75:50:ef:b0:73:ef:67:d1:01:df:06:a2:71:a7: 77:f5:e0:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjQwNTE5MDU0MjE0WhcNMjQwNTI2MDU0MjE0WjAYMRYwFAYD VQQDEw02NjQ5OTEzNi1iOTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3QybB7zmE41DuLLd3A4V3oFtaRviGdn77lovmfx4IM/GFoPZ8MCViPQai+T n7tg1xuGak5XZjU9YjUf1G5S2uZy0RspjlGM9MuVAnW/OWJoRtV/qitcySvaMHQm vOGaysepwF/JbMeA+TG1xHNcPhGouUrST0rsbPDuUv5Di7zy+U4i+/7a99O+/45h QD3AFlSx9+eLpDJbRVgHu/S8FVe8zNhsSA4BIA3qJ1tw/drLKfDuh9KPVyX7LR6F 5zC2kUBe5CgVBvlSkB70nAa4FZjainE1R0z3QdJ/AZsnDeQLYb/dp4bSgEW4BKmk jCenfkd3siC6MpM5PZhW99BWIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvBToez NNsVGnm+Mf5/ZIHQFRR1MB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyG24q/EOxPxd6kR+3s21XINxwJyUiLPrBCKY+F1YoLqnqWv4IjTa/ unYeeASqEQsRHe6vQiaBQyp8ye8nMus7NDR+FSWq53eNsvtG0RGXqjz+kT12jHcu 9EjwMeIOqhWjG4fuc89Cl8TBvd48TyyfQ4aDjKRzx/QSxjW9GFMjt3JJfWAJFtal IArr/vbwox5DGxN9+INFPI6VBBbIzXGazCuc3OwGYNu8H5GXy80cwOGadVVOEoJb sbLpVHv4WyNpxBt8qzI202b+c4JNBOs5GC0fTUitSMnVjCfpq6QlNWXMXSLAjcF1 hJ0988NDdVDvsHPvZ9EB3waicad39eDf -----END CERTIFICATE-----Generated at Sun May 19 06:14:36 2024 by rpki-client on console-ams.rpki-client.org