$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: oIAe+BmYvnzNbeFtG2qQj7zIxtNUY5GqKvrLMJxtauY= Subject key identifier: 29:52:90:28:E9:47:92:C2:39:75:03:13:CA:68:D4:8A:27:AE:DF:DB Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 03C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 03B0 Signing time: Fri 03 May 2024 02:36:23 +0000 Manifest this update: Fri 03 May 2024 02:36:23 +0000 Manifest next update: Fri 10 May 2024 02:36:23 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: IUzGF9d0Cfj8ZDegpx3PMxTAJqgDHcaX0+b+YPlpHvs=) 2: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: betDDbeXOnYNscx7FdIZNi0kV6efDf1qXna22XtHg74=) 3: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: IAzgo9+pKej315oJ75vMX2pf5my9/tSTBhhc4Qasw+g=) 4: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: RaP7msz1kW/YAYAo/0oBq3yYISTDQ+ePYkHx0T8Jrfw=) 5: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: 5ik2V3fpyHLxOTIDTs4AqmZY+YmJCIitGt1+b7bH5fU=) 6: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: FQ+fRqR/UsaUvYzEF/0X3CUOi1fWkGBVnjU3jp4LUsY=) 7: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: kz1MrkZk8NcbY7byvwJtyN+an+xnb/IWd+chkZEyI8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 963 (0x3c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: May 3 02:36:23 2024 GMT Not After : May 10 02:36:23 2024 GMT Subject: CN=66344da7-590a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2a:10:b2:f3:fa:bc:b6:7a:b9:58:66:22:39: 57:75:26:89:09:78:67:45:4a:2a:2d:0c:0b:59:89: 07:62:10:b0:52:fe:55:27:64:4d:22:38:1a:55:54: 66:4c:18:c4:d7:e8:33:8a:67:42:a1:5f:d0:72:ee: 77:db:43:8a:75:52:9c:11:0b:ad:57:b6:40:65:05: 34:24:4f:69:41:74:bf:99:28:2f:2f:59:6a:9b:8b: 8f:5f:6a:f2:1f:80:52:62:5c:0b:36:6e:f6:71:49: 72:e6:86:6c:e6:8e:28:d6:82:57:72:64:59:f2:24: 4e:89:d8:3e:0a:3c:c4:03:2f:63:59:eb:45:6d:56: 7a:31:30:af:6c:b6:54:28:fe:60:a0:2a:51:3d:5b: e5:56:37:83:b2:c7:79:57:d4:f6:eb:a4:e8:cc:6b: ef:33:47:b3:aa:a6:e7:33:cd:5b:f9:56:d2:9b:22: 61:0d:4f:48:fb:fc:d4:45:a3:d2:30:a4:97:85:35: 0b:d1:1c:24:8c:2f:ec:36:cc:68:71:1a:1a:dd:dd: 49:cc:ff:12:a9:49:1f:d4:ee:93:a5:61:87:84:74: 69:ff:80:73:b1:9c:0b:a2:fd:64:9c:3e:18:e5:7a: e8:22:be:8a:f1:ee:9e:16:04:36:35:92:de:00:b1: 51:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:52:90:28:E9:47:92:C2:39:75:03:13:CA:68:D4:8A:27:AE:DF:DB X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:2a:a7:b5:74:12:3d:a7:e0:cf:33:be:e4:66:9d:f4:f4:a7: 04:79:a5:f9:2c:a3:9d:60:ab:4a:15:88:0a:81:ca:80:e5:94: e0:dd:5e:f6:bb:5c:a1:6a:97:59:44:95:1b:78:77:6a:8a:a7: 08:32:d4:75:7d:fb:00:41:fe:79:42:fc:62:f0:d2:a7:e5:93: fa:b1:b1:9a:9a:41:5a:a4:c6:78:f6:50:6d:c4:c2:f3:2e:b8: 91:d5:8c:0c:d5:56:45:d5:e1:8c:4b:b7:99:fd:ee:c3:61:cb: 29:41:9e:95:f7:d6:8b:60:d7:2c:af:56:79:da:f9:14:52:6d: 52:99:ff:63:f1:33:7b:b4:8c:4a:34:4a:83:34:b5:81:73:ec: f1:c4:72:c8:8a:52:07:69:95:74:33:72:91:35:e4:c8:e9:98: ab:e7:cc:5b:54:8f:5a:33:ab:92:33:75:7f:d6:4e:75:6d:17: d3:57:45:4b:80:8c:31:3c:00:5e:96:39:b5:d5:69:74:19:6c: ea:c2:46:a8:2a:e2:e1:80:7d:ba:db:72:98:28:c8:06:1a:7b: 1f:4c:67:c4:22:79:75:3f:8a:7d:50:71:ea:6b:3b:22:bb:a3: c9:07:91:af:9d:de:ec:e2:59:33:8a:88:47:fb:bd:98:5a:6b: 9d:73:86:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjQwNTAzMDIzNjIzWhcNMjQwNTEwMDIzNjIzWjAYMRYwFAYD VQQDEw02NjM0NGRhNy01OTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCoQsvP6vLZ6uVhmIjlXdSaJCXhnRUoqLQwLWYkHYhCwUv5VJ2RNIjgaVVRm TBjE1+gzimdCoV/Qcu5320OKdVKcEQutV7ZAZQU0JE9pQXS/mSgvL1lqm4uPX2ry H4BSYlwLNm72cUly5oZs5o4o1oJXcmRZ8iROidg+CjzEAy9jWetFbVZ6MTCvbLZU KP5goCpRPVvlVjeDssd5V9T266TozGvvM0ezqqbnM81b+VbSmyJhDU9I+/zURaPS MKSXhTUL0RwkjC/sNsxocRoa3d1JzP8SqUkf1O6TpWGHhHRp/4BzsZwLov1knD4Y 5XroIr6K8e6eFgQ2NZLeALFRWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClSkCjp R5LCOXUDE8po1Ionrt/bMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfKqe1dBI9p+DPM77kZp309KcEeaX5LKOdYKtKFYgKgcqA5ZTg3V72 u1yhapdZRJUbeHdqiqcIMtR1ffsAQf55Qvxi8NKn5ZP6sbGamkFapMZ49lBtxMLz LriR1YwM1VZF1eGMS7eZ/e7DYcspQZ6V99aLYNcsr1Z52vkUUm1Smf9j8TN7tIxK NEqDNLWBc+zxxHLIilIHaZV0M3KRNeTI6Zir58xbVI9aM6uSM3V/1k51bRfTV0VL gIwxPABeljm11Wl0GWzqwkaoKuLhgH2623KYKMgGGnsfTGfEInl1P4p9UHHqazsi u6PJB5Gvnd7s4lkziohH+72YWmudc4aB -----END CERTIFICATE-----Generated at Fri May 3 03:10:55 2024 by rpki-client on console-ams.rpki-client.org