$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft File: yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft (raw, json) Hash identifier: D/BhnU2kTZ9ZTnygLblZETHjb/wvs1uXzGHETrPrwD4= Subject key identifier: F0:DC:96:B9:7E:21:2D:E9:2B:93:23:2E:B5:88:AD:F0:FA:0E:E4:E2 Authority key identifier: C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54 Certificate issuer: /CN=A91B49F2/serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54 Certificate serial: 0D7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft Manifest number: 0D6C Signing time: Wed 08 May 2024 18:43:39 +0000 Manifest this update: Wed 08 May 2024 18:43:39 +0000 Manifest next update: Wed 15 May 2024 18:43:39 +0000 Files and hashes: 1: yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl (hash: qR4k05sy151/4VE1AYUqnxLkaIuxMdJ+qrfRhQKiDlE=) 2: BB0AA59C0A3D11EB82ECEA4BC4F9AE02.roa (hash: vDPTpSGs9ZOjYuc7NUWTQuudWGkrqoK2aHeKLNNMSkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3452 (0xd7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2/serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54 Validity Not Before: May 8 18:43:39 2024 GMT Not After : May 15 18:43:39 2024 GMT Subject: CN=663bc7db-4909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:07:7c:39:e5:b8:d0:40:ee:2b:59:a8:3e:dd: 01:69:32:ad:95:4e:24:df:aa:dd:8b:d1:8d:1c:eb: 19:ae:c4:22:5c:d4:e7:8e:de:cf:34:e9:62:a6:59: ad:a8:33:6d:a6:0c:39:dc:d8:31:79:70:be:71:58: ee:ca:bb:55:a9:d6:16:c4:34:6c:24:43:9b:65:ae: d7:17:48:37:df:88:1a:f2:d8:03:de:67:f4:be:37: ca:c5:b1:fa:09:b4:f2:48:c7:2a:c6:9b:19:8f:d5: ef:1a:73:c6:db:87:b9:3e:c0:f9:33:d7:6e:30:6d: 94:35:f2:89:9c:a7:3a:13:3d:ed:8d:a1:3c:94:91: 21:fd:97:b8:47:d5:f3:dd:0e:ae:8a:a3:6b:da:b5: 64:d1:2b:f5:45:3e:e4:24:36:bd:c4:f6:6d:93:22: 92:ac:79:8f:4c:81:84:4d:08:73:b8:79:88:38:cc: 8e:f9:f9:df:63:87:f8:7a:c5:f9:f0:bd:d6:96:22: 0c:52:4f:d8:97:00:ff:17:4c:f5:d6:4a:a2:0c:80: 0e:5b:cc:0b:06:f2:1e:2e:92:b4:22:66:6f:78:00: 74:04:28:f2:e4:a3:ce:a1:97:37:5a:1c:01:8c:50: 90:a8:10:e2:19:c5:a5:de:08:b9:43:7b:ee:d6:3f: 93:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DC:96:B9:7E:21:2D:E9:2B:93:23:2E:B5:88:AD:F0:FA:0E:E4:E2 X509v3 Authority Key Identifier: keyid:C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:0f:b2:81:6c:8e:76:6c:6b:a6:48:32:59:c0:7a:78:bf:21: b2:0b:b4:d9:77:5f:91:b5:8f:56:92:4c:36:fd:43:61:f6:81: cd:a7:77:c8:f3:ef:9b:c0:b0:5d:27:d3:78:61:5e:90:e6:ce: d0:a7:43:47:fb:75:19:cd:94:73:2b:e2:a2:fb:d1:30:c0:9f: 0b:73:35:74:55:d0:c6:f2:a1:dc:6c:fe:7e:0a:05:0c:ea:e0: 3a:13:d8:99:cf:c1:e3:4f:2a:71:35:42:29:5b:78:d7:cf:bb: 90:11:b1:e0:1f:01:83:03:03:6d:35:7d:15:ed:a5:ea:ec:5b: 4c:e2:a4:49:dd:c2:2e:bc:92:79:c6:69:ab:f2:01:3a:02:d6: 44:88:da:bb:49:30:2c:f5:33:7d:44:e1:5e:53:88:39:3e:1c: ed:b0:7e:b3:8f:70:a4:0f:aa:41:df:8f:62:7e:b1:a9:b5:6b: ac:63:6d:5c:49:1e:98:84:40:bf:e8:1c:79:19:2e:5e:b5:5f: 1b:49:0e:ce:f5:a2:61:73:5e:48:f3:29:cd:fb:c1:49:ee:9c: 3b:ed:3a:b0:89:7c:e9:6d:40:36:7e:1b:27:20:a5:d9:4b:66: 3a:77:b8:6b:02:ff:60:79:f0:74:ce:60:5d:c6:8c:f7:1d:bc: 5e:41:7d:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKEM4NzNCQjYxMEI5MTNDM0VDREM3MDhBMjY1QTc0QjEx NDFBNzZGNTQwHhcNMjQwNTA4MTg0MzM5WhcNMjQwNTE1MTg0MzM5WjAYMRYwFAYD VQQDEw02NjNiYzdkYi00OTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywd8OeW40EDuK1moPt0BaTKtlU4k36rdi9GNHOsZrsQiXNTnjt7PNOliplmt qDNtpgw53NgxeXC+cVjuyrtVqdYWxDRsJEObZa7XF0g334ga8tgD3mf0vjfKxbH6 CbTySMcqxpsZj9XvGnPG24e5PsD5M9duMG2UNfKJnKc6Ez3tjaE8lJEh/Ze4R9Xz 3Q6uiqNr2rVk0Sv1RT7kJDa9xPZtkyKSrHmPTIGETQhzuHmIOMyO+fnfY4f4esX5 8L3WliIMUk/YlwD/F0z11kqiDIAOW8wLBvIeLpK0ImZveAB0BCjy5KPOoZc3WhwB jFCQqBDiGcWl3gi5Q3vu1j+TfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDclrl+ IS3pK5MjLrWIrfD6DuTiMB8GA1UdIwQYMBaAFMhzu2ELkTw+zccIomWnSxFBp29U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi84MkU0QzJBMEE2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi95SE83WVF1UlBEN054d2lpWmFkTEVVR25i MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lITzdZUXVSUEQ3Tnh3aWlaYWRMRVVHbmIxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlGMi84MkU0QzJBMEE2RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi95SE83WVF1UlBE N054d2lpWmFkTEVVR25iMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjD7KBbI52bGumSDJZwHp4vyGyC7TZd1+RtY9Wkkw2/UNh9oHNp3fI 8++bwLBdJ9N4YV6Q5s7Qp0NH+3UZzZRzK+Ki+9EwwJ8LczV0VdDG8qHcbP5+CgUM 6uA6E9iZz8HjTypxNUIpW3jXz7uQEbHgHwGDAwNtNX0V7aXq7FtM4qRJ3cIuvJJ5 xmmr8gE6AtZEiNq7STAs9TN9ROFeU4g5PhztsH6zj3CkD6pB349ifrGptWusY21c SR6YhEC/6Bx5GS5etV8bSQ7O9aJhc15I8ynN+8FJ7pw77TqwiXzpbUA2fhsnIKXZ S2Y6d7hrAv9gefB0zmBdxoz3HbxeQX2p -----END CERTIFICATE-----Generated at Wed May 8 21:04:02 2024 by rpki-client on console-fra.rpki-client.org