$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft File: y2yF51LVad_PHekEycvnHkg-9fI.mft (raw, json) Hash identifier: UP4V1qD3r4j6f87rpKqMUMaSLGK5t31CMC8sh34wJCg= Subject key identifier: 5A:6E:5E:ED:87:45:72:CC:69:CF:CF:F7:D9:00:9E:0F:80:DC:A1:10 Authority key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 Certificate issuer: /CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Certificate serial: 0409 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft Manifest number: 0404 Signing time: Sun 05 May 2024 02:17:20 +0000 Manifest this update: Sun 05 May 2024 02:17:20 +0000 Manifest next update: Sun 12 May 2024 02:17:20 +0000 Files and hashes: 1: y2yF51LVad_PHekEycvnHkg-9fI.crl (hash: cpnnBdJiZOhWNKG9qlxnKnKzQ4NF8ijdRSb171yg2cg=) 2: B0A2E01225C411EC88466E59C4F9AE02.roa (hash: I+piLjYGGw6+AkIXPcBrTAOQrjo0ool2PDn7pB5uc1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1033 (0x409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Validity Not Before: May 5 02:17:20 2024 GMT Not After : May 12 02:17:20 2024 GMT Subject: CN=6636ec30-5af5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:60:ab:ab:84:98:64:3f:a1:13:52:d0:4d:14: b2:bb:bd:f0:a9:fa:c2:c5:b8:6a:e7:2a:73:ba:20: 7a:e3:c4:31:9b:30:ec:0b:dd:60:d9:69:6e:f6:a3: da:be:5f:d7:a3:99:7e:37:56:b1:cd:bc:e8:e6:58: ca:d9:73:39:2a:d8:47:23:4f:e8:3b:8a:ac:a1:d7: 30:98:8e:da:2d:40:38:6c:68:1e:5c:3c:aa:4a:7f: a0:38:2b:d3:d1:0b:69:32:67:fe:38:26:c7:aa:29: b9:8d:01:27:c1:b1:9f:59:b6:20:60:5c:6d:0d:2a: b9:dd:93:76:67:89:36:dc:d8:4a:6a:c2:44:e9:b2: 5c:42:21:f6:53:78:96:8e:7d:ae:d1:61:e6:56:49: 34:bb:81:bb:51:90:f9:10:61:c6:b4:5f:ea:f2:9a: b9:6a:0c:0c:34:0d:89:2c:cd:b3:74:37:89:a6:8f: c9:82:dc:cc:10:01:41:c1:11:0d:52:33:1c:49:fd: b3:ea:50:88:6f:8c:95:53:be:08:d6:2d:51:b2:b7: 45:27:03:e9:95:cc:83:26:2d:92:e6:2b:5b:74:c6: 35:a1:8c:45:f0:f4:d6:f7:54:91:bc:ed:88:6c:ee: 24:f3:c0:04:8d:4a:4d:a6:1c:47:b9:47:4c:17:bf: ac:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:6E:5E:ED:87:45:72:CC:69:CF:CF:F7:D9:00:9E:0F:80:DC:A1:10 X509v3 Authority Key Identifier: keyid:CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:8c:28:11:83:5f:d7:cc:f3:39:3b:fa:9f:74:6b:89:ac:93: 25:64:2a:8a:84:9f:32:ed:73:88:11:ae:b9:66:a6:06:97:d1: 91:5e:3d:51:cd:74:dd:60:a7:85:dc:af:eb:0b:7e:c6:08:ea: 16:69:aa:55:f5:86:fc:3b:a9:09:eb:66:d2:c8:a9:c8:b4:82: a3:5a:4e:f3:fb:0b:61:06:d5:68:3b:5a:8e:4e:45:5d:b8:02: ba:42:0a:3b:20:6a:35:2b:ab:99:66:f7:87:96:cd:4b:4f:e0: d0:2c:83:fe:1b:b8:51:fc:b8:83:d6:7e:1e:87:cf:93:81:de: 29:f6:3e:ef:b5:82:1c:96:d5:f3:ce:59:4d:d7:77:d9:b6:64: 61:60:f7:1c:ca:56:ce:32:13:9f:aa:ee:f9:25:45:92:c6:23: 3b:63:dc:86:a4:d8:f2:f1:d9:10:32:cb:df:1b:22:ac:25:90: 3b:90:cd:22:56:c5:7f:85:a1:8f:4b:b7:14:e7:dd:eb:76:e4: a1:e6:b8:6c:86:63:64:42:9d:36:c0:60:d7:04:bf:a6:d9:3b: 0d:9b:fd:e4:75:9a:23:3e:f9:49:b1:45:6e:04:ee:c8:5d:f7: 3c:ca:b2:7c:12:ed:0b:28:ed:0c:0b:95:d9:eb:a1:5d:7b:da: cd:e5:b1:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKENCNkM4NUU3NTJENTY5REZDRjFERTkwNEM5Q0JFNzFF NDgzRUY1RjIwHhcNMjQwNTA1MDIxNzIwWhcNMjQwNTEyMDIxNzIwWjAYMRYwFAYD VQQDEw02NjM2ZWMzMC01YWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmCrq4SYZD+hE1LQTRSyu73wqfrCxbhq5ypzuiB648QxmzDsC91g2Wlu9qPa vl/Xo5l+N1axzbzo5ljK2XM5KthHI0/oO4qsodcwmI7aLUA4bGgeXDyqSn+gOCvT 0QtpMmf+OCbHqim5jQEnwbGfWbYgYFxtDSq53ZN2Z4k23NhKasJE6bJcQiH2U3iW jn2u0WHmVkk0u4G7UZD5EGHGtF/q8pq5agwMNA2JLM2zdDeJpo/JgtzMEAFBwREN UjMcSf2z6lCIb4yVU74I1i1RsrdFJwPplcyDJi2S5itbdMY1oYxF8PTW91SRvO2I bO4k88AEjUpNphxHuUdMF7+srwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpuXu2H RXLMac/P99kAng+A3KEQMB8GA1UdIwQYMBaAFMtshedS1Wnfzx3pBMnL5x5IPvXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS9CQjUzMjNFODI1 QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFkX1BIZWtFeWN2bkhrZy05 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyeUY1MUxWYWRfUEhla0V5Y3ZuSGtnLTlmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS9CQjUzMjNFODI1QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFk X1BIZWtFeWN2bkhrZy05ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCjCgRg1/XzPM5O/qfdGuJrJMlZCqKhJ8y7XOIEa65ZqYGl9GRXj1R zXTdYKeF3K/rC37GCOoWaapV9Yb8O6kJ62bSyKnItIKjWk7z+wthBtVoO1qOTkVd uAK6Qgo7IGo1K6uZZveHls1LT+DQLIP+G7hR/LiD1n4eh8+Tgd4p9j7vtYIcltXz zllN13fZtmRhYPccylbOMhOfqu75JUWSxiM7Y9yGpNjy8dkQMsvfGyKsJZA7kM0i VsV/haGPS7cU593rduSh5rhshmNkQp02wGDXBL+m2TsNm/3kdZojPvlJsUVuBO7I Xfc8yrJ8Eu0LKO0MC5XZ66Fde9rN5bFR -----END CERTIFICATE-----Generated at Sun May 5 03:09:56 2024 by rpki-client on console-ams.rpki-client.org