$ rpki-client -vvf rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft File: ybTeSHSWW_87LwRxASJXfm2bHRQ.mft (raw, json) Hash identifier: Yx2s/O1aYhIObT/gDkB0xF+FaGDJqDtj92JBhPYBwQc= Subject key identifier: 28:FB:F8:B9:4A:24:ED:93:8D:38:BE:00:CA:95:0C:8A:F2:4B:C9:35 Authority key identifier: C9:B4:DE:48:74:96:5B:FF:3B:2F:04:71:01:22:57:7E:6D:9B:1D:14 Certificate issuer: /CN=A91B166D/serialNumber=C9B4DE4874965BFF3B2F04710122577E6D9B1D14 Certificate serial: 0B14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybTeSHSWW_87LwRxASJXfm2bHRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft Manifest number: 0B0B Signing time: Tue 30 Apr 2024 20:13:09 +0000 Manifest this update: Tue 30 Apr 2024 20:13:09 +0000 Manifest next update: Tue 07 May 2024 20:13:09 +0000 Files and hashes: 1: ybTeSHSWW_87LwRxASJXfm2bHRQ.crl (hash: LPtCp2s2/2Xqa8z7p7o2AQyCsxaIIMRSTjS1AFMkMw0=) 2: AA378BD6405111ECB91F2A37C4F9AE02.roa (hash: OZYL23mGG9CPsVcj8UrHa3HS/iPUrNbOkuZRw+Rgyck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.crl rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybTeSHSWW_87LwRxASJXfm2bHRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:13:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2836 (0xb14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B166D/serialNumber=C9B4DE4874965BFF3B2F04710122577E6D9B1D14 Validity Not Before: Apr 30 20:13:09 2024 GMT Not After : May 7 20:13:09 2024 GMT Subject: CN=663150d5-689b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:54:0c:e1:76:ad:70:0e:16:c5:b8:58:52:82: 91:d3:a1:2d:15:ca:2e:9b:1b:ae:4c:22:dc:64:11: 7a:cd:26:1f:e3:41:3a:41:cd:f5:6d:9e:b3:a7:d5: 4a:67:d9:03:c2:80:b2:3c:04:41:64:11:e1:6f:07: 8a:3c:57:77:23:e8:eb:f2:17:e7:67:95:e7:38:75: d8:0c:bc:b7:22:50:65:51:6a:f2:17:7d:ff:01:3b: f6:18:ef:6e:f6:e0:81:b0:a1:2b:3a:b0:6d:92:11: 31:a6:67:78:43:3e:0b:2d:f8:5b:c5:f8:5e:39:d2: 49:32:1b:bd:2b:7b:6f:fe:c2:2e:90:2f:dd:30:3d: 82:92:0d:23:65:bb:b4:cb:72:b2:f9:61:ba:ec:98: 7a:be:78:fb:29:e6:24:e4:59:d4:cf:f0:6b:e1:5e: db:78:bf:d8:69:bd:92:4f:09:d8:33:c7:77:a6:80: b8:40:a2:88:b7:c5:70:2b:2d:ea:b8:5a:d4:6e:06: ab:8c:cf:d7:b3:fb:48:4b:e0:cc:18:fc:ff:ff:2e: fb:29:e6:4c:ee:03:8d:64:3e:b6:c8:00:d0:30:24: f8:b9:9e:84:18:94:7a:f7:0b:6d:d6:4a:94:55:d1: fa:61:89:d2:7d:bd:bd:cd:0a:e1:df:8c:e0:fd:eb: 21:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:FB:F8:B9:4A:24:ED:93:8D:38:BE:00:CA:95:0C:8A:F2:4B:C9:35 X509v3 Authority Key Identifier: keyid:C9:B4:DE:48:74:96:5B:FF:3B:2F:04:71:01:22:57:7E:6D:9B:1D:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybTeSHSWW_87LwRxASJXfm2bHRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:02:cb:dd:74:10:29:fd:1a:5f:07:17:ee:25:6d:b8:c5:6f: a5:e2:27:00:94:3d:80:69:02:6d:2a:41:ce:a0:da:67:3a:30: e0:a1:9a:f0:a2:46:21:c1:55:bd:f8:df:0a:d9:0c:47:3a:9b: 7c:45:30:cd:f8:d5:f3:56:cc:c0:a6:44:a2:5e:69:d6:45:3d: ab:92:fb:c3:d3:9c:db:18:f8:18:12:22:c4:95:eb:ac:37:07: bb:6f:8e:82:f4:cd:3a:53:08:17:47:33:63:b9:aa:0d:fc:bf: 21:2f:0d:06:dc:19:3f:bc:53:94:d0:b4:35:07:45:97:74:8e: 20:aa:ed:9f:dd:44:b8:ac:c6:7c:a7:e9:0d:bb:79:89:2a:80: 05:98:09:63:0d:83:ad:1e:1f:72:db:9a:8c:8b:cd:d0:b4:86: 15:6e:ef:39:fc:2f:b4:3a:0c:e5:48:a4:3a:14:d3:ed:d6:0b: 96:bc:ff:bc:46:10:6e:c9:20:b6:78:2e:a0:a8:89:c1:e6:3b: 3b:b3:a7:74:d1:7d:89:26:59:65:0f:f8:c8:f2:40:d7:11:48: 9f:7a:5d:e3:a3:2b:3c:a7:19:16:6c:57:d6:1b:da:c7:28:d2: 50:a3:89:87:ab:0d:a3:a2:d2:c5:5d:0b:5b:47:94:6b:91:86: 11:7d:5c:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE2NkQxMTAvBgNVBAUTKEM5QjRERTQ4NzQ5NjVCRkYzQjJGMDQ3MTAxMjI1NzdF NkQ5QjFEMTQwHhcNMjQwNDMwMjAxMzA5WhcNMjQwNTA3MjAxMzA5WjAYMRYwFAYD VQQDEw02NjMxNTBkNS02ODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlQM4XatcA4WxbhYUoKR06EtFcoumxuuTCLcZBF6zSYf40E6Qc31bZ6zp9VK Z9kDwoCyPARBZBHhbweKPFd3I+jr8hfnZ5XnOHXYDLy3IlBlUWryF33/ATv2GO9u 9uCBsKErOrBtkhExpmd4Qz4LLfhbxfheOdJJMhu9K3tv/sIukC/dMD2Ckg0jZbu0 y3Ky+WG67Jh6vnj7KeYk5FnUz/Br4V7beL/Yab2STwnYM8d3poC4QKKIt8VwKy3q uFrUbgarjM/Xs/tIS+DMGPz//y77KeZM7gONZD62yADQMCT4uZ6EGJR69wtt1kqU VdH6YYnSfb29zQrh34zg/eshxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCj7+LlK JO2TjTi+AMqVDIryS8k1MB8GA1UdIwQYMBaAFMm03kh0llv/Oy8EcQEiV35tmx0U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTY2RC8yRTc2MjM1ODFC MUExMUVBOTczODlGNzdDNEY5QUUwMi95YlRlU0hTV1dfODdMd1J4QVNKWGZtMmJI UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3liVGVTSFNXV184N0x3UnhBU0pYZm0yYkhSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTY2RC8yRTc2MjM1ODFCMUExMUVBOTczODlGNzdDNEY5QUUwMi95YlRlU0hTV1df ODdMd1J4QVNKWGZtMmJIUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABAsvddBAp/RpfBxfuJW24xW+l4icAlD2AaQJtKkHOoNpnOjDgoZrw okYhwVW9+N8K2QxHOpt8RTDN+NXzVszApkSiXmnWRT2rkvvD05zbGPgYEiLEleus Nwe7b46C9M06UwgXRzNjuaoN/L8hLw0G3Bk/vFOU0LQ1B0WXdI4gqu2f3US4rMZ8 p+kNu3mJKoAFmAljDYOtHh9y25qMi83QtIYVbu85/C+0OgzlSKQ6FNPt1guWvP+8 RhBuySC2eC6gqInB5js7s6d00X2JJlllD/jI8kDXEUifel3joys8pxkWbFfWG9rH KNJQo4mHqw2jotLFXQtbR5RrkYYRfVyT -----END CERTIFICATE-----Generated at Tue Apr 30 21:38:04 2024 by rpki-client on console-fra.rpki-client.org