$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft File: -Y6-IGkPLysjShVIfdCVIfPUdTw.mft (raw, json) Hash identifier: vt/DUqWQOkiKHLHEkP+uhaQzRzX1Y5F/meEcO6/oCWM= Subject key identifier: 94:20:95:9C:93:A5:96:4A:E9:F3:82:12:20:91:D6:4E:A1:32:00:57 Authority key identifier: F9:8E:BE:20:69:0F:2F:2B:23:4A:15:48:7D:D0:95:21:F3:D4:75:3C Certificate issuer: /CN=A91BCC44/serialNumber=F98EBE20690F2F2B234A15487DD09521F3D4753C Certificate serial: 0A22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft Manifest number: 0A1C Signing time: Fri 26 Apr 2024 20:34:05 +0000 Manifest this update: Fri 26 Apr 2024 20:34:03 +0000 Manifest next update: Fri 03 May 2024 20:34:03 +0000 Files and hashes: 1: -Y6-IGkPLysjShVIfdCVIfPUdTw.crl (hash: cxsGV/XtnHfWNrFj/pysz2TgH9BbSAsYgns5fHa8Ja4=) 2: B69F45F6480C11EAA7171874C4F9AE02.roa (hash: sHAaO7xcMRnAefggiAO9NIlqTNGd1VBO4+XdHoCcPBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.crl rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 20:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2594 (0xa22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCC44/serialNumber=F98EBE20690F2F2B234A15487DD09521F3D4753C Validity Not Before: Apr 26 20:34:03 2024 GMT Not After : May 3 20:34:03 2024 GMT Subject: CN=662c0fbc-d93f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:29:a1:b9:c7:82:a9:f5:ad:58:5b:51:73:85: a0:11:50:66:85:1b:6f:58:d7:43:5e:58:27:bc:1b: bd:f9:ce:e9:35:10:73:8f:93:50:17:79:f6:4d:e3: ed:e6:c1:38:ae:95:3f:5b:0c:f4:b3:6d:bd:79:02: 15:d2:d2:8c:2e:14:62:cd:09:e5:a9:67:74:a2:de: 45:b7:7c:15:62:5d:8e:bd:e9:24:4f:ec:4b:60:b4: fd:dc:23:a5:ee:9b:3f:e9:ae:1d:5e:76:9c:b1:16: 50:29:60:55:29:4c:00:94:21:da:ea:1a:d3:98:40: d2:71:b9:9e:14:ad:2c:fa:15:ca:a4:45:a6:9b:25: 19:f8:59:eb:13:03:ff:72:bc:0c:70:dd:58:a4:5f: c7:74:3f:04:13:0f:99:35:1a:e7:c5:75:0f:26:65: a7:7b:5d:19:dc:91:3c:24:b2:ab:b1:3e:68:e3:20: ab:dc:75:18:93:3a:4d:30:e6:0a:4e:b9:73:5e:f9: ba:44:3a:99:26:68:27:b4:29:80:32:b7:2c:78:73: d1:d6:28:b0:4b:77:4b:9f:29:86:b3:d3:b2:fb:5b: aa:48:e9:d7:a9:a7:b4:78:2e:7c:b0:98:39:2f:41: a8:f2:21:08:0f:63:3f:2d:44:bf:de:a0:c0:83:ea: 0c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:20:95:9C:93:A5:96:4A:E9:F3:82:12:20:91:D6:4E:A1:32:00:57 X509v3 Authority Key Identifier: keyid:F9:8E:BE:20:69:0F:2F:2B:23:4A:15:48:7D:D0:95:21:F3:D4:75:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:a6:d5:f3:a0:fe:99:c4:11:af:34:fb:ef:95:03:21:02:0e: 73:91:3f:3e:6b:a8:1c:b2:a1:19:fe:bd:59:68:98:2a:cd:01: a2:a1:57:2a:ba:cd:94:a3:d6:a3:d0:68:d7:15:a6:4c:53:01: 9a:3b:73:a0:9f:6e:2d:97:d5:a6:12:a0:9d:66:15:4c:8e:11: 62:ae:bc:42:31:1d:fc:ad:6a:d5:47:50:3b:22:94:ba:99:8e: 6d:49:e8:1c:90:2e:bc:89:c5:b9:4c:a1:c4:ce:51:4e:56:c7: c3:ec:07:f6:19:e8:9a:1b:fc:35:8d:9d:a6:f5:c4:81:b0:49: b4:3a:d2:47:2a:4f:16:c2:95:74:fa:2e:5d:b8:c9:18:78:0e: 18:93:3f:05:53:75:a3:d2:10:0b:25:28:08:6c:c5:64:dd:77: 39:14:93:8e:10:83:db:7c:dc:6c:f2:04:41:06:e8:2a:b9:19: 6c:bd:79:0d:13:d8:f3:83:59:d6:84:dd:03:1e:f0:e3:c9:51: 2d:78:5e:6e:59:74:ae:f7:80:b1:ec:f0:32:16:ea:4b:37:ac: 04:0f:5b:84:f2:ff:d3:dd:27:0d:99:d7:2b:08:1d:09:91:48: 54:5a:ad:08:3f:85:2f:7c:09:e2:12:78:72:84:32:f6:7f:71: 4b:f9:09:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNDNDQxMTAvBgNVBAUTKEY5OEVCRTIwNjkwRjJGMkIyMzRBMTU0ODdERDA5NTIx RjNENDc1M0MwHhcNMjQwNDI2MjAzNDAzWhcNMjQwNTAzMjAzNDAzWjAYMRYwFAYD VQQDEw02NjJjMGZiYy1kOTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCmhuceCqfWtWFtRc4WgEVBmhRtvWNdDXlgnvBu9+c7pNRBzj5NQF3n2TePt 5sE4rpU/Wwz0s229eQIV0tKMLhRizQnlqWd0ot5Ft3wVYl2OvekkT+xLYLT93COl 7ps/6a4dXnacsRZQKWBVKUwAlCHa6hrTmEDScbmeFK0s+hXKpEWmmyUZ+FnrEwP/ crwMcN1YpF/HdD8EEw+ZNRrnxXUPJmWne10Z3JE8JLKrsT5o4yCr3HUYkzpNMOYK TrlzXvm6RDqZJmgntCmAMrcseHPR1iiwS3dLnymGs9Oy+1uqSOnXqae0eC58sJg5 L0Go8iEID2M/LUS/3qDAg+oMnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQglZyT pZZK6fOCEiCR1k6hMgBXMB8GA1UdIwQYMBaAFPmOviBpDy8rI0oVSH3QlSHz1HU8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0M0NC9DMTYwRkNBQzQ4 MEExMUVBOTgxMTkwNkRDNEY5QUUwMi8tWTYtSUdrUEx5c2pTaFZJZmRDVklmUFVk VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ZNi1JR2tQTHlzalNoVklmZENWSWZQVWRUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0M0NC9DMTYwRkNBQzQ4MEExMUVBOTgxMTkwNkRDNEY5QUUwMi8tWTYtSUdrUEx5 c2pTaFZJZmRDVklmUFVkVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaptXzoP6ZxBGvNPvvlQMhAg5zkT8+a6gcsqEZ/r1ZaJgqzQGioVcq us2Uo9aj0GjXFaZMUwGaO3Ogn24tl9WmEqCdZhVMjhFirrxCMR38rWrVR1A7IpS6 mY5tSegckC68icW5TKHEzlFOVsfD7Af2GeiaG/w1jZ2m9cSBsEm0OtJHKk8WwpV0 +i5duMkYeA4Ykz8FU3Wj0hALJSgIbMVk3Xc5FJOOEIPbfNxs8gRBBugquRlsvXkN E9jzg1nWhN0DHvDjyVEteF5uWXSu94Cx7PAyFupLN6wED1uE8v/T3ScNmdcrCB0J kUhUWq0IP4UvfAniEnhyhDL2f3FL+QkL -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:21 2024 by rpki-client on console-ams.rpki-client.org