$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: vbM8Kc73sFrP8Jgxi/JBsdvq1iWpdGb/227avrc//dI= Subject key identifier: C1:9C:A3:31:5E:8C:64:A5:FE:88:E8:4F:91:26:62:D4:46:DD:59:FB Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: F2 Signing time: Sat 25 May 2024 06:05:13 +0000 Manifest this update: Sat 25 May 2024 06:05:13 +0000 Manifest next update: Sat 01 Jun 2024 06:05:13 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: 8QVf+l+WsQkyYXCt+L1RYAbvL8gZfKhzGI1x4J3RY9A=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: VONiHwejXacpBeR7rVkbydMQIhwSgiZRwegZVDVvf5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 06:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: May 25 06:05:13 2024 GMT Not After : Jun 1 06:05:13 2024 GMT Subject: CN=66517f99-cf97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:30:07:c3:ab:ad:6d:c1:3e:a8:72:00:22:22: 69:17:1b:6c:3a:65:db:cd:ed:17:a3:3f:f3:ea:e5: a4:c9:04:3d:43:15:11:af:cc:dd:a3:ba:90:07:bd: 61:f7:aa:ca:8b:2d:7f:25:bd:00:d2:7e:fa:ad:99: f9:99:07:c7:07:3b:ce:e4:b3:35:5e:47:40:74:2d: f2:f6:bc:f1:3d:bf:b7:8d:a1:37:1e:eb:8c:3e:90: 1f:5b:30:ce:cd:71:f2:d3:0a:36:2d:3f:c2:53:c7: c3:29:e7:08:4b:9a:0a:21:2a:d4:38:2f:ce:e5:be: a8:53:4b:9d:5f:5e:1e:eb:a5:0c:bc:c3:a1:86:20: ff:d4:f4:0f:fb:49:91:5c:a6:34:6f:93:f0:a2:08: 47:b7:c9:ff:08:ad:1f:80:de:bc:56:b6:44:db:43: 84:24:a5:d3:04:c1:bd:c6:c0:0e:88:79:3d:9b:5c: 2f:a9:34:ec:85:df:0a:21:e9:26:e5:b7:3d:be:a4: 72:ae:fd:11:84:dd:da:56:c6:45:80:26:d3:36:e2: ec:d3:a6:f7:c8:64:1c:cc:b0:37:31:58:b2:30:17: 51:9a:10:aa:4a:5f:91:0e:3a:4e:0c:9d:0f:0f:f4: c9:af:73:e2:01:07:64:30:da:6c:42:2d:7e:81:f3: 78:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:9C:A3:31:5E:8C:64:A5:FE:88:E8:4F:91:26:62:D4:46:DD:59:FB X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:fc:32:39:e2:e4:ea:9d:1c:62:14:1d:9a:20:9b:e4:31:ea: f2:7f:65:5b:d8:9c:82:9f:27:64:87:ae:8e:e6:b6:c8:66:c6: 9e:10:a4:80:70:a1:1f:55:2d:21:60:2b:f0:f1:6e:fd:fc:10: af:9f:e2:a0:46:2d:ba:a7:33:88:16:c5:8e:f5:14:ea:55:63: d0:a4:84:42:5d:00:43:d1:8a:3d:36:d8:43:3c:04:92:e2:04: 42:8a:d4:ae:a3:b2:12:31:bd:0a:04:dc:28:de:ca:f4:d3:19: 49:4e:39:e1:0e:0c:58:57:cb:9c:e5:b2:d5:21:56:c7:0f:a6: ce:fb:f4:73:a3:e0:2f:88:ca:02:1f:6c:3b:3e:92:b2:74:b8: f5:51:52:84:6b:90:09:a1:35:62:cc:90:44:9c:e6:08:84:83: fb:12:42:d7:55:14:5f:e2:81:56:ca:6b:be:7a:a4:ff:16:16: 77:82:d0:5d:40:7e:fc:b3:00:55:ef:43:40:ec:05:fa:45:1f: 88:10:4d:92:3a:74:bc:ca:03:91:11:65:b3:aa:18:98:50:8c: a8:9b:51:45:98:62:4d:27:c9:40:a9:c1:17:c2:06:c9:02:55: 6f:15:0d:ce:8f:ca:87:9e:c8:1d:70:88:9d:2f:f9:f2:fe:c1: ae:14:a1:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjQwNTI1MDYwNTEzWhcNMjQwNjAxMDYwNTEzWjAYMRYwFAYD VQQDEw02NjUxN2Y5OS1jZjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzAHw6utbcE+qHIAIiJpFxtsOmXbze0Xoz/z6uWkyQQ9QxURr8zdo7qQB71h 96rKiy1/Jb0A0n76rZn5mQfHBzvO5LM1XkdAdC3y9rzxPb+3jaE3HuuMPpAfWzDO zXHy0wo2LT/CU8fDKecIS5oKISrUOC/O5b6oU0udX14e66UMvMOhhiD/1PQP+0mR XKY0b5PwoghHt8n/CK0fgN68VrZE20OEJKXTBMG9xsAOiHk9m1wvqTTshd8KIekm 5bc9vqRyrv0RhN3aVsZFgCbTNuLs06b3yGQczLA3MViyMBdRmhCqSl+RDjpODJ0P D/TJr3PiAQdkMNpsQi1+gfN4+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGcozFe jGSl/ojoT5EmYtRG3Vn7MB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC/DI54uTqnRxiFB2aIJvkMeryf2Vb2JyCnydkh66O5rbIZsaeEKSA cKEfVS0hYCvw8W79/BCvn+KgRi26pzOIFsWO9RTqVWPQpIRCXQBD0Yo9NthDPASS 4gRCitSuo7ISMb0KBNwo3sr00xlJTjnhDgxYV8uc5bLVIVbHD6bO+/Rzo+AviMoC H2w7PpKydLj1UVKEa5AJoTVizJBEnOYIhIP7EkLXVRRf4oFWymu+eqT/FhZ3gtBd QH78swBV70NA7AX6RR+IEE2SOnS8ygOREWWzqhiYUIyom1FFmGJNJ8lAqcEXwgbJ AlVvFQ3Oj8qHnsgdcIidL/ny/sGuFKHv -----END CERTIFICATE-----Generated at Sat May 25 07:03:51 2024 by rpki-client on console-fra.rpki-client.org