$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft File: YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft (raw, json) Hash identifier: RQjxEg6huu5BH10J79nxlUGTlVnS8IwUqOG+kpH34R8= Subject key identifier: 22:60:DB:13:D5:66:73:4C:70:29:F6:B7:D6:01:8B:F3:B5:51:C1:0E Authority key identifier: 60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04 Certificate issuer: /CN=A91BBED0/serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft Manifest number: 67 Signing time: Wed 15 May 2024 07:41:32 +0000 Manifest this update: Wed 15 May 2024 07:41:32 +0000 Manifest next update: Wed 22 May 2024 07:41:32 +0000 Files and hashes: 1: YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl (hash: uDfMPcMGKV0BTGsu5+I55qPyrZHLa3jIfFLHGCXWoIg=) 2: E8E76DFA77E111EEAD38F454C4F9AE02.roa (hash: wanxQuepEX9qREaCj7GWSWXPUE4lDbzB2fvKKRpsz60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:41:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBED0/serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204 Validity Not Before: May 15 07:41:32 2024 GMT Not After : May 22 07:41:32 2024 GMT Subject: CN=6644672c-5aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ec:a7:1a:15:96:64:f7:26:9d:9c:bf:cf:82: 56:61:3f:dc:ab:0c:49:0b:32:d5:af:36:64:62:b8: 29:1b:a0:25:22:51:b6:87:08:72:d7:67:c1:08:b3: cb:32:27:69:3e:69:2f:b4:18:b3:69:bf:12:e7:3b: ea:85:47:3c:00:8f:ee:10:29:53:84:29:9b:b8:b2: 9d:34:e8:ac:a1:64:eb:5f:60:73:b3:34:92:fe:e2: 12:3d:34:e2:be:8e:71:71:f6:75:e0:54:b2:29:1a: fd:55:a3:2d:ce:c9:3c:44:a3:3b:fe:32:46:73:31: cd:95:ac:d8:e5:f3:c3:56:dd:96:74:a6:4b:9e:05: f5:7c:1a:be:c4:64:20:25:ee:fb:75:72:c7:10:f4: bb:e8:b6:f7:31:84:78:0d:ba:73:5d:15:14:ae:cf: eb:d9:39:c7:64:b4:75:2b:97:d3:98:db:3b:bf:47: fe:98:65:68:22:de:9e:0b:54:95:f0:e0:21:04:47: b5:1e:03:32:7a:aa:93:38:82:d3:e8:4a:6d:dc:f2: 4c:6b:26:38:12:43:b7:d6:1c:06:75:70:5b:fc:94: 98:36:2c:c4:81:86:ae:f6:93:75:7f:c5:e2:90:0c: 7e:c8:a0:74:da:07:b9:a1:60:f8:7e:26:d3:39:4f: a1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:60:DB:13:D5:66:73:4C:70:29:F6:B7:D6:01:8B:F3:B5:51:C1:0E X509v3 Authority Key Identifier: keyid:60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:9b:8d:c1:8f:f2:dd:8e:6d:55:f2:83:f6:70:7a:07:57:ab: 53:6e:55:6b:b9:60:c3:44:2b:6b:55:8a:67:03:8b:66:d5:18: f5:4f:6f:1f:eb:22:a3:f7:40:33:48:16:2d:0e:b6:a8:a3:0d: 4c:a9:bb:8a:ff:1f:d6:22:26:76:c1:7a:f3:7f:49:0d:57:67: 29:1d:a4:bd:16:07:24:ec:72:ec:10:1a:3d:96:d3:5e:f2:50: 5b:9d:84:68:b9:38:58:29:7e:74:e8:a8:47:24:62:28:40:44: c4:94:f2:42:d9:76:39:f0:e1:a6:63:3b:53:04:2e:dd:96:60: 26:f6:21:06:84:62:e1:30:ff:98:50:00:28:18:08:29:68:2b: c9:9b:33:1d:fe:3e:7b:4b:b9:d4:14:a3:16:83:96:f3:32:c6: f1:d2:91:9a:fc:8d:9c:4f:1e:e6:b2:83:25:d7:a7:5c:20:96: 46:c5:14:21:fe:ff:2c:72:5a:6f:1f:33:c5:cd:82:51:9e:f1: a8:55:30:c5:55:2e:ab:67:f6:b8:13:3c:77:db:64:70:c4:e1: d4:8a:b8:49:7f:a2:45:d4:57:a1:06:a3:f9:23:b9:6f:4a:1b: 12:44:5d:c8:b0:2e:93:f6:d7:27:27:f7:75:e0:3f:57:09:50: 86:f8:ee:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QkVEMDExMC8GA1UEBRMoNjA5RkVDMjU5NDM4MEZDNzYzOTY5NDE3M0MzQ0ZFNUYy QjU5NjIwNDAeFw0yNDA1MTUwNzQxMzJaFw0yNDA1MjIwNzQxMzJaMBgxFjAUBgNV BAMTDTY2NDQ2NzJjLTVhYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/7KcaFZZk9yadnL/PglZhP9yrDEkLMtWvNmRiuCkboCUiUbaHCHLXZ8EIs8sy J2k+aS+0GLNpvxLnO+qFRzwAj+4QKVOEKZu4sp006KyhZOtfYHOzNJL+4hI9NOK+ jnFx9nXgVLIpGv1Voy3OyTxEozv+MkZzMc2VrNjl88NW3ZZ0pkueBfV8Gr7EZCAl 7vt1cscQ9LvotvcxhHgNunNdFRSuz+vZOcdktHUrl9OY2zu/R/6YZWgi3p4LVJXw 4CEER7UeAzJ6qpM4gtPoSm3c8kxrJjgSQ7fWHAZ1cFv8lJg2LMSBhq72k3V/xeKQ DH7IoHTaB7mhYPh+JtM5T6GvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUImDbE9Vm c0xwKfa31gGL87VRwQ4wHwYDVR0jBBgwFoAUYJ/sJZQ4D8djlpQXPDz+XytZYgQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCRUQwLzRDMTdBMDRFNzdF MTExRUVBQjRBRUY1M0M0RjlBRTAyL1lKX3NKWlE0RDhkamxwUVhQRHotWHl0Wlln US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWUpfc0paUTREOGRqbHBRWFBEei1YeXRaWWdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC RUQwLzRDMTdBMDRFNzdFMTExRUVBQjRBRUY1M0M0RjlBRTAyL1lKX3NKWlE0RDhk amxwUVhQRHotWHl0WllnUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE6bjcGP8t2ObVXyg/ZwegdXq1NuVWu5YMNEK2tVimcDi2bVGPVPbx/r IqP3QDNIFi0OtqijDUypu4r/H9YiJnbBevN/SQ1XZykdpL0WByTscuwQGj2W017y UFudhGi5OFgpfnToqEckYihARMSU8kLZdjnw4aZjO1MELt2WYCb2IQaEYuEw/5hQ ACgYCCloK8mbMx3+PntLudQUoxaDlvMyxvHSkZr8jZxPHuaygyXXp1wglkbFFCH+ /yxyWm8fM8XNglGe8ahVMMVVLqtn9rgTPHfbZHDE4dSKuEl/okXUV6EGo/kjuW9K GxJEXciwLpP21ycn93XgP1cJUIb47nE= -----END CERTIFICATE-----Generated at Wed May 15 09:04:44 2024 by rpki-client on console-ams.rpki-client.org