$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft File: y78mA3JNeFZrHBLDLVxIH10w8fI.mft (raw, json) Hash identifier: x1QyKxCNOYPI41cGGg+9e8T9KAYCj686x8obmSWYP5o= Subject key identifier: A9:8D:E4:12:3B:08:41:64:06:99:30:A2:CE:73:2C:5C:3D:3E:C0:33 Authority key identifier: CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2 Certificate issuer: /CN=A91B7700/serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2 Certificate serial: 02A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft Manifest number: 02A3 Signing time: Fri 03 May 2024 03:40:59 +0000 Manifest this update: Fri 03 May 2024 03:40:58 +0000 Manifest next update: Fri 10 May 2024 03:40:58 +0000 Files and hashes: 1: y78mA3JNeFZrHBLDLVxIH10w8fI.crl (hash: AD1R+tXkGDy93qVBwwpK6MggpTsrW7sWqX9Nd8+clOA=) 2: 93D60566AE5B11ECB19C1569C4F9AE02.roa (hash: LVhjsTYeCulnXQHh7qFg+wUpE6//HvxdYydl/7lKNG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.crl rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7700/serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2 Validity Not Before: May 3 03:40:58 2024 GMT Not After : May 10 03:40:58 2024 GMT Subject: CN=66345ccb-5003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5a:08:02:d7:02:16:9f:3e:ca:11:14:44:a7: 73:ce:e4:7f:3a:07:47:b9:35:6e:7e:66:d1:11:04: 1d:8d:7d:c5:f6:04:b5:bd:6d:ad:ee:61:1c:ca:82: a8:29:5b:40:5b:09:66:28:32:8f:59:07:45:95:16: b0:f0:b1:9c:82:56:43:4c:8c:6e:c1:ef:0a:8e:50: 87:dc:81:59:f4:32:cc:b5:b1:21:1c:d0:bb:54:28: 55:b5:be:35:48:9d:89:71:04:df:65:a6:8d:95:b2: 7c:39:70:7f:a2:18:75:44:a1:0f:eb:9e:e3:44:27: 92:52:a5:a3:2a:e1:63:b8:51:f8:39:84:a3:c9:aa: a3:1d:37:5d:1a:c5:ff:c1:39:48:61:fc:8d:ad:31: 45:e8:50:b6:ba:12:21:3f:e6:b4:63:9d:d4:4d:bf: 4d:ff:50:af:d9:a2:00:28:e5:6d:c6:fb:e8:98:98: 5d:94:78:15:ec:8d:1f:c6:97:6d:1e:e2:1b:bd:fd: bb:f9:62:95:14:45:97:b9:f1:09:b5:67:db:9b:ca: 2a:0c:f2:59:9b:98:4d:50:9c:28:71:2d:1e:2b:30: 68:f6:31:79:88:86:59:c5:17:99:45:ac:b3:c1:14: 15:64:47:85:e2:f0:de:fc:9c:4b:68:1f:04:68:d6: c8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:8D:E4:12:3B:08:41:64:06:99:30:A2:CE:73:2C:5C:3D:3E:C0:33 X509v3 Authority Key Identifier: keyid:CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:52:6d:e7:95:c1:b4:88:d9:94:3e:ba:57:87:fb:9c:70:89: bb:e6:88:df:c7:6c:b0:ee:71:ba:54:52:95:0f:d2:bf:c3:b1: 32:a6:e5:fe:c3:f7:60:a1:6f:96:4c:80:04:12:bc:68:1b:a7: d5:c4:cf:ed:07:fc:d2:6f:b0:ea:07:6a:e8:ad:71:d4:c3:95: 89:b3:9f:90:a0:1a:5e:92:c2:c3:e9:50:39:65:94:d3:84:5d: d9:2f:2d:59:7c:cd:dd:64:ba:a6:66:0c:13:93:b5:40:18:75: c5:3f:4d:66:cf:cb:0b:fe:6d:f8:60:02:59:d9:97:44:5b:a4: 95:16:88:17:ff:f6:30:b4:d3:2b:42:f7:40:e6:5c:a0:c5:42: db:68:03:21:15:12:76:88:6a:84:df:d2:60:3f:02:e6:33:f6: 89:34:d4:3e:f3:2b:c6:52:ed:e1:b4:2b:87:80:1a:1f:30:5d: 24:8a:05:85:93:59:5e:b0:b7:cf:27:aa:fa:8b:d6:e7:3d:94: 74:56:9c:68:a3:72:0f:04:7e:30:bc:55:28:31:96:1e:90:c1: c1:b2:cc:d8:1a:d9:3b:c2:fb:9a:fa:21:de:98:01:db:b2:5c: d7:aa:41:24:8f:a3:44:b8:69:c6:f6:53:57:8a:97:11:f9:0f: 13:07:a3:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3MDAxMTAvBgNVBAUTKENCQkYyNjAzNzI0RDc4NTY2QjFDMTJDMzJENUM0ODFG NUQzMEYxRjIwHhcNMjQwNTAzMDM0MDU4WhcNMjQwNTEwMDM0MDU4WjAYMRYwFAYD VQQDEw02NjM0NWNjYi01MDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzloIAtcCFp8+yhEURKdzzuR/OgdHuTVufmbREQQdjX3F9gS1vW2t7mEcyoKo KVtAWwlmKDKPWQdFlRaw8LGcglZDTIxuwe8KjlCH3IFZ9DLMtbEhHNC7VChVtb41 SJ2JcQTfZaaNlbJ8OXB/ohh1RKEP657jRCeSUqWjKuFjuFH4OYSjyaqjHTddGsX/ wTlIYfyNrTFF6FC2uhIhP+a0Y53UTb9N/1Cv2aIAKOVtxvvomJhdlHgV7I0fxpdt HuIbvf27+WKVFEWXufEJtWfbm8oqDPJZm5hNUJwocS0eKzBo9jF5iIZZxReZRayz wRQVZEeF4vDe/JxLaB8EaNbIOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmN5BI7 CEFkBpkwos5zLFw9PsAzMB8GA1UdIwQYMBaAFMu/JgNyTXhWaxwSwy1cSB9dMPHy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzcwMC9DQ0RCRjRGMEFF NTcxMUVDQjRBMURBNjRDNEY5QUUwMi95NzhtQTNKTmVGWnJIQkxETFZ4SUgxMHc4 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3OG1BM0pOZUZackhCTERMVnhJSDEwdzhmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzcwMC9DQ0RCRjRGMEFFNTcxMUVDQjRBMURBNjRDNEY5QUUwMi95NzhtQTNKTmVG WnJIQkxETFZ4SUgxMHc4ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgUm3nlcG0iNmUPrpXh/uccIm75ojfx2yw7nG6VFKVD9K/w7EypuX+ w/dgoW+WTIAEErxoG6fVxM/tB/zSb7DqB2rorXHUw5WJs5+QoBpeksLD6VA5ZZTT hF3ZLy1ZfM3dZLqmZgwTk7VAGHXFP01mz8sL/m34YAJZ2ZdEW6SVFogX//YwtNMr QvdA5lygxULbaAMhFRJ2iGqE39JgPwLmM/aJNNQ+8yvGUu3htCuHgBofMF0kigWF k1lesLfPJ6r6i9bnPZR0Vpxoo3IPBH4wvFUoMZYekMHBsszYGtk7wvua+iHemAHb slzXqkEkj6NEuGnG9lNXipcR+Q8TB6Nq -----END CERTIFICATE-----Generated at Fri May 3 04:45:25 2024 by rpki-client on console-fra.rpki-client.org