$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft File: 7yfjyfFbWDsVypzMPJBdIpzi8NA.mft (raw, json) Hash identifier: hwfk4OF6cdMneVniYyplYKeaFmtW/yhYMse128TGduM= Subject key identifier: E4:C1:ED:9A:74:E2:2C:11:5E:B0:19:4F:A8:1A:61:B8:7D:B0:04:AF Authority key identifier: EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0 Certificate issuer: /CN=A91C1814/serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0 Certificate serial: 0511 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft Manifest number: 050D Signing time: Fri 03 May 2024 01:15:01 +0000 Manifest this update: Fri 03 May 2024 01:15:01 +0000 Manifest next update: Fri 10 May 2024 01:15:01 +0000 Files and hashes: 1: 7yfjyfFbWDsVypzMPJBdIpzi8NA.crl (hash: Awn0HBWyDt04S1Kan6YAGDIC6D0lqJS2rWz3uPhGFrw=) 2: 38378A3EBA3411EBB94A527CC4F9AE02.roa (hash: Qq4r6tfxWlCBFxRmTUBo8YQTZX8r+LS9wYAcWz832T4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1297 (0x511) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1814/serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0 Validity Not Before: May 3 01:15:01 2024 GMT Not After : May 10 01:15:01 2024 GMT Subject: CN=66343a95-8a2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:76:fa:f1:f9:ec:95:bc:9d:e4:1a:c2:2c:f8: 74:64:8b:4d:8c:2a:b1:17:23:68:1e:32:7a:42:f0: 78:8e:d5:5a:f0:b2:46:0d:f3:e7:de:56:a0:2d:65: 8d:48:cc:a3:4d:75:cb:2c:46:60:a1:ee:4e:f8:ff: b5:1f:2f:ea:f3:b4:c4:7f:0a:a8:67:7a:5e:74:ad: eb:cb:32:bc:3c:33:54:41:d6:a6:b7:2c:f6:ef:e5: 79:d5:ee:d1:9b:52:8b:8f:f0:c2:bf:62:dc:30:8e: 9a:46:2f:35:da:d5:ce:28:fd:e9:d3:79:57:1d:1c: d2:61:37:5a:1a:9f:c5:03:35:87:df:f5:a7:80:97: 2f:4c:f1:bf:40:85:4d:55:ba:e1:aa:1c:42:02:a9: 32:14:57:4b:4a:f7:c0:dc:6d:d3:27:0a:53:10:68: 60:3b:7d:a1:3d:47:4e:43:cf:b9:8a:87:e5:f8:cd: 1f:e4:52:ab:63:98:18:f8:d4:8a:79:f7:47:c1:fd: c3:d3:30:e6:54:98:61:65:00:39:ce:bb:ee:52:31: d5:87:80:62:1d:47:64:47:2c:f5:c8:1e:d4:07:45: 95:54:0e:bf:97:42:54:a3:34:28:a3:8f:85:f4:21: d7:a7:87:38:c9:ff:99:50:63:81:d2:16:87:4b:b3: d7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C1:ED:9A:74:E2:2C:11:5E:B0:19:4F:A8:1A:61:B8:7D:B0:04:AF X509v3 Authority Key Identifier: keyid:EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:fc:54:50:2e:20:7b:3f:4e:63:aa:73:f9:da:9b:00:a0:de: 36:bf:bb:da:89:ef:f1:ad:f6:04:95:66:8b:bd:b6:27:17:43: 65:dd:e0:65:30:a6:8e:1a:dc:a3:1d:26:1b:17:cc:bb:87:94: 2f:62:2e:18:0f:1c:b7:83:91:2a:26:e0:b1:0b:22:cb:6f:19: 24:2d:70:db:b2:86:c0:ef:8e:6a:7c:7d:dc:a7:b8:85:aa:53: ef:bb:c8:f6:d7:c1:56:2d:f5:f2:cf:4b:15:fc:bf:75:ac:58: f8:bb:d6:fe:79:dd:79:e4:df:b5:b3:5d:c5:9d:78:8f:7b:ad: 39:a2:00:c9:14:dc:52:de:0e:dd:dc:54:f8:0b:8b:92:10:78: 35:3a:40:78:61:82:c8:a7:2e:d5:d7:4e:31:24:ab:a6:50:44: c8:c7:e9:aa:df:79:76:ae:21:ee:c2:77:ef:45:96:5a:ab:d8: 6a:f0:99:4e:08:e4:61:89:38:91:19:34:28:d2:1b:dd:9a:a2: 96:0a:de:d3:d1:d5:2a:ce:12:69:1a:75:70:a9:14:f2:94:19: fb:46:42:c3:d8:6e:4b:02:33:2d:18:a3:dc:b3:ae:f2:e6:ff: 85:48:a9:5d:43:69:09:08:30:ee:90:a3:71:e3:05:a3:11:44: 93:bb:a6:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE4MTQxMTAvBgNVBAUTKEVGMjdFM0M5RjE1QjU4M0IxNUNBOUNDQzNDOTA1RDIy OUNFMkYwRDAwHhcNMjQwNTAzMDExNTAxWhcNMjQwNTEwMDExNTAxWjAYMRYwFAYD VQQDEw02NjM0M2E5NS04YTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHb68fnslbyd5BrCLPh0ZItNjCqxFyNoHjJ6QvB4jtVa8LJGDfPn3lagLWWN SMyjTXXLLEZgoe5O+P+1Hy/q87TEfwqoZ3pedK3ryzK8PDNUQdamtyz27+V51e7R m1KLj/DCv2LcMI6aRi812tXOKP3p03lXHRzSYTdaGp/FAzWH3/WngJcvTPG/QIVN VbrhqhxCAqkyFFdLSvfA3G3TJwpTEGhgO32hPUdOQ8+5iofl+M0f5FKrY5gY+NSK efdHwf3D0zDmVJhhZQA5zrvuUjHVh4BiHUdkRyz1yB7UB0WVVA6/l0JUozQoo4+F 9CHXp4c4yf+ZUGOB0haHS7PXLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTB7Zp0 4iwRXrAZT6gaYbh9sASvMB8GA1UdIwQYMBaAFO8n48nxW1g7FcqczDyQXSKc4vDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTgxNC9GM0M4NTM5RUJB MzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldEc1Z5cHpNUEpCZElwemk4 TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd5Zmp5ZkZiV0RzVnlwek1QSkJkSXB6aThOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTgxNC9GM0M4NTM5RUJBMzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldE c1Z5cHpNUEpCZElwemk4TkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX/FRQLiB7P05jqnP52psAoN42v7vaie/xrfYElWaLvbYnF0Nl3eBl MKaOGtyjHSYbF8y7h5QvYi4YDxy3g5EqJuCxCyLLbxkkLXDbsobA745qfH3cp7iF qlPvu8j218FWLfXyz0sV/L91rFj4u9b+ed155N+1s13FnXiPe605ogDJFNxS3g7d 3FT4C4uSEHg1OkB4YYLIpy7V104xJKumUETIx+mq33l2riHuwnfvRZZaq9hq8JlO CORhiTiRGTQo0hvdmqKWCt7T0dUqzhJpGnVwqRTylBn7RkLD2G5LAjMtGKPcs67y 5v+FSKldQ2kJCDDukKNx4wWjEUSTu6Y4 -----END CERTIFICATE-----Generated at Fri May 3 03:10:56 2024 by rpki-client on console-ams.rpki-client.org