$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft File: yKkupf322jjqQIWq7lWnJIzTTzo.mft (raw, json) Hash identifier: s80XmFJ8XD4CscmGYYz3KOzNdsCm9RJ9Us529aUO95o= Subject key identifier: 4D:A5:1A:B8:13:C1:60:5E:92:0C:09:AB:A2:0C:87:02:7A:3A:32:06 Authority key identifier: C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A Certificate issuer: /CN=A91B3E17/serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft Manifest number: 0220 Signing time: Fri 03 May 2024 04:11:05 +0000 Manifest this update: Fri 03 May 2024 04:11:04 +0000 Manifest next update: Fri 10 May 2024 04:11:04 +0000 Files and hashes: 1: yKkupf322jjqQIWq7lWnJIzTTzo.crl (hash: 5ryW76NV7CVXHe/KZ1k2dL6plKJQi+99T320HZQDQ2I=) 2: 3166C07AE16C11ECB2629D1AC4F9AE02.roa (hash: 5HeQjUddVlUYpXJizX31EU4mHLeHBhXjUJazCJXsOvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3E17/serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Validity Not Before: May 3 04:11:04 2024 GMT Not After : May 10 04:11:04 2024 GMT Subject: CN=663463d9-a127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:02:e1:9a:4e:37:4c:ef:e0:68:62:bf:42:a6: d5:cb:d5:e6:39:05:e2:a8:02:22:8b:07:91:89:75: 63:c2:05:7c:b6:cc:86:8b:3d:16:6e:58:03:c2:51: 77:31:11:f6:4c:b9:cf:88:77:32:30:c1:38:13:34: 1b:2f:e3:ce:78:e3:dc:fd:0a:6d:df:8b:75:23:cc: 68:1b:83:34:54:79:6e:2d:79:65:2d:58:96:62:15: 75:d3:72:94:63:38:cd:13:44:9d:00:a8:5c:dd:e9: c2:65:79:1f:45:28:c8:f9:e9:1a:db:1c:9b:0c:6a: 62:44:80:f0:f5:e3:b7:7e:5f:d0:3c:20:ff:d8:91: a5:37:60:82:e6:21:7e:df:86:da:c4:ff:22:3a:7e: c4:0b:90:27:38:b7:44:be:a0:64:a6:c6:66:c7:06: 91:76:d7:7d:8a:d1:cb:71:58:1a:2c:75:a0:22:9c: e0:3a:a3:67:aa:66:29:1a:f8:24:c9:72:1b:03:3b: 08:52:24:55:79:1b:78:6d:4b:cc:81:9e:ab:29:23: 15:e7:6b:47:44:99:8c:b4:f7:00:6a:c3:3d:0d:15: ca:48:72:d0:f9:e8:85:48:0f:cc:ad:bc:0a:4e:fb: 4e:dc:d1:bd:59:3e:24:af:34:1a:11:e8:79:66:c6: d6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:A5:1A:B8:13:C1:60:5E:92:0C:09:AB:A2:0C:87:02:7A:3A:32:06 X509v3 Authority Key Identifier: keyid:C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:8d:e6:da:a9:6f:a8:92:23:93:e5:8f:dd:dd:ea:18:15:10: df:5f:05:b0:b8:5b:b7:09:f5:f2:b4:da:66:40:0b:aa:3f:22: 3e:e2:ec:cc:9c:c4:dc:98:e0:79:b5:6e:ef:94:b0:31:cc:db: 52:5a:7c:ad:04:2c:5e:8e:84:c2:45:d5:ea:ba:e7:57:77:18: 69:21:87:14:7c:56:83:6d:3a:1a:fa:21:21:34:ec:c8:8c:4e: e1:67:e3:e7:6d:0c:83:d9:1a:e0:ac:cd:6e:3c:fd:95:e7:5a: b2:b5:df:ec:59:eb:1c:61:9e:2e:e8:5f:27:f9:d3:bb:2e:79: 7f:e8:3c:e4:3d:77:f7:13:97:c3:07:24:b6:a1:aa:2d:67:a6: ab:76:e0:a5:45:ef:77:46:91:b0:d8:73:ae:4f:e8:fc:aa:9b: eb:a0:f0:5f:8c:ce:0e:af:73:fc:11:d9:ae:ba:37:17:2d:c1: d2:7a:9f:59:c0:a1:c2:bf:e3:c1:32:f6:af:69:3a:ac:c0:97: ef:97:6e:1f:de:cf:35:c4:55:96:a2:34:83:27:11:38:45:91: 93:02:f5:21:4d:62:81:d4:2c:a0:d7:8c:4f:1e:ae:34:9f:99: 11:87:d4:f0:c5:96:3e:d9:b8:c5:ae:03:57:6a:b7:c9:2d:9e: d3:15:72:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNFMTcxMTAvBgNVBAUTKEM4QTkyRUE1RkRGNkRBMzhFQTQwODVBQUVFNTVBNzI0 OENEMzRGM0EwHhcNMjQwNTAzMDQxMTA0WhcNMjQwNTEwMDQxMTA0WjAYMRYwFAYD VQQDEw02NjM0NjNkOS1hMTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ALhmk43TO/gaGK/QqbVy9XmOQXiqAIiiweRiXVjwgV8tsyGiz0WblgDwlF3 MRH2TLnPiHcyMME4EzQbL+POeOPc/Qpt34t1I8xoG4M0VHluLXllLViWYhV103KU YzjNE0SdAKhc3enCZXkfRSjI+eka2xybDGpiRIDw9eO3fl/QPCD/2JGlN2CC5iF+ 34baxP8iOn7EC5AnOLdEvqBkpsZmxwaRdtd9itHLcVgaLHWgIpzgOqNnqmYpGvgk yXIbAzsIUiRVeRt4bUvMgZ6rKSMV52tHRJmMtPcAasM9DRXKSHLQ+eiFSA/MrbwK TvtO3NG9WT4krzQaEeh5ZsbWBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2lGrgT wWBekgwJq6IMhwJ6OjIGMB8GA1UdIwQYMBaAFMipLqX99to46kCFqu5VpySM0086 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0UxNy85MjBDNUVDQUUx NjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJqanFRSVdxN2xXbkpJelRU em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lLa3VwZjMyMmpqcVFJV3E3bFduSkl6VFR6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0UxNy85MjBDNUVDQUUxNjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJq anFRSVdxN2xXbkpJelRUem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVjebaqW+okiOT5Y/d3eoYFRDfXwWwuFu3CfXytNpmQAuqPyI+4uzM nMTcmOB5tW7vlLAxzNtSWnytBCxejoTCRdXquudXdxhpIYcUfFaDbToa+iEhNOzI jE7hZ+PnbQyD2RrgrM1uPP2V51qytd/sWescYZ4u6F8n+dO7Lnl/6DzkPXf3E5fD ByS2oaotZ6arduClRe93RpGw2HOuT+j8qpvroPBfjM4Or3P8EdmuujcXLcHSep9Z wKHCv+PBMvavaTqswJfvl24f3s81xFWWojSDJxE4RZGTAvUhTWKB1Cyg14xPHq40 n5kRh9TwxZY+2bjFrgNXarfJLZ7TFXKN -----END CERTIFICATE-----Generated at Fri May 3 05:32:35 2024 by rpki-client on console-ams.rpki-client.org