$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.mft File: ySmS1w7OQRpiVb9AueCkUhSUQA0.mft (raw, json) Hash identifier: K1VKF2RIA4jujU5qBYXhYQxGjwOx5WjhTsfz4WJhKh4= Subject key identifier: 23:A3:76:F8:4A:74:E0:C4:05:F5:B7:BD:A6:34:4E:4C:32:F5:5B:39 Authority key identifier: C9:29:92:D7:0E:CE:41:1A:62:55:BF:40:B9:E0:A4:52:14:94:40:0D Certificate issuer: /CN=A91C4102/serialNumber=C92992D70ECE411A6255BF40B9E0A4521494400D Certificate serial: 098B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySmS1w7OQRpiVb9AueCkUhSUQA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.mft Manifest number: 1043 Signing time: Tue 30 Apr 2024 21:15:40 +0000 Manifest this update: Tue 30 Apr 2024 21:15:39 +0000 Manifest next update: Tue 07 May 2024 21:15:39 +0000 Files and hashes: 1: ySmS1w7OQRpiVb9AueCkUhSUQA0.crl (hash: /MUjVEnwizhATmyDt5TdsauMjHb7RPqKUK9i1MdgJWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.crl rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySmS1w7OQRpiVb9AueCkUhSUQA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2443 (0x98b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4102/serialNumber=C92992D70ECE411A6255BF40B9E0A4521494400D Validity Not Before: Apr 30 21:15:39 2024 GMT Not After : May 7 21:15:39 2024 GMT Subject: CN=66315f7c-86a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d4:af:f3:d2:b9:bc:36:4f:cb:4d:03:f2:1f: ba:b0:ff:4e:57:6c:fb:d7:e6:6b:38:a4:3f:c3:0c: 31:d5:fb:b9:99:a5:9b:3a:61:67:42:38:5a:cb:a0: c8:28:bc:20:48:34:97:3a:8d:6f:42:2b:a5:2d:d1: 87:1a:9a:16:8f:5f:56:12:21:e5:24:dd:40:39:3b: 17:7f:98:c5:00:84:fa:0f:c0:f6:f5:15:26:66:83: b6:05:53:bd:c5:20:54:f0:e2:c0:89:f4:8f:a4:15: d9:0c:b2:15:bc:dd:a2:ec:44:4b:9f:e4:cf:ab:5a: 74:b7:8a:7b:01:9f:b3:af:7a:65:ab:09:a3:4c:20: ea:04:b0:8c:b2:13:22:f2:d0:e1:9d:60:d6:8a:0e: 49:11:02:c8:9b:93:c0:a3:eb:63:a8:d7:e3:0c:93: a9:97:01:9c:75:2c:86:3a:82:d4:49:0b:a2:6a:cf: aa:f1:69:e6:5f:42:10:0b:ad:5c:13:a5:6a:96:c5: 28:38:de:57:5a:49:3c:59:d2:48:d1:a0:8a:57:bf: d5:b5:66:b9:12:ba:f8:b8:64:45:80:72:0a:ec:40: 82:c6:e4:8f:59:3f:93:fc:7f:af:05:04:3d:ae:cb: 79:c4:7d:db:76:d5:8a:1c:4b:69:f7:6f:be:92:65: cd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:A3:76:F8:4A:74:E0:C4:05:F5:B7:BD:A6:34:4E:4C:32:F5:5B:39 X509v3 Authority Key Identifier: keyid:C9:29:92:D7:0E:CE:41:1A:62:55:BF:40:B9:E0:A4:52:14:94:40:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySmS1w7OQRpiVb9AueCkUhSUQA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:53:97:1b:24:fd:88:a6:49:22:e5:30:15:48:e0:1b:7c:3d: 83:c4:a7:27:13:70:f4:d6:d2:f4:a5:d2:06:43:17:27:62:bc: 78:a2:8f:aa:f9:46:2d:41:a1:98:30:cb:6d:56:7d:5f:2b:73: 02:00:e7:54:df:3b:bd:e4:d8:ff:1b:75:a7:83:54:b4:f8:c6: c4:31:c3:04:22:07:8a:3f:1b:76:98:6b:11:c2:db:ba:f2:3f: b0:96:ec:cd:a2:96:a8:f5:13:44:38:4f:06:ca:c4:96:47:16: c9:45:8f:3b:b9:14:15:71:af:8d:d8:14:d3:61:8e:3d:ea:9b: 83:5c:17:a7:cc:dd:41:49:51:27:f2:6f:c8:25:26:4e:d3:e2: 93:e2:36:83:67:a2:54:5d:0f:ab:ed:c9:9c:2a:bb:5d:68:69: c7:03:be:d2:da:8a:6d:4b:bb:98:d9:f4:2c:7f:47:20:ff:c8: 7c:f2:7b:96:fd:0a:a3:33:2b:8b:e6:a5:9a:d5:55:5c:87:ea: 0a:1f:f6:af:9b:46:b2:a5:78:77:f6:e1:c4:26:70:b0:54:42: a1:74:f6:07:c2:0a:72:fd:cf:08:37:ac:20:b7:92:97:24:46: d0:37:db:57:b3:5f:16:33:e1:ab:cf:53:55:dc:b2:b3:0e:de: dc:c0:9f:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQxMDIxMTAvBgNVBAUTKEM5Mjk5MkQ3MEVDRTQxMUE2MjU1QkY0MEI5RTBBNDUy MTQ5NDQwMEQwHhcNMjQwNDMwMjExNTM5WhcNMjQwNTA3MjExNTM5WjAYMRYwFAYD VQQDEw02NjMxNWY3Yy04NmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6NSv89K5vDZPy00D8h+6sP9OV2z71+ZrOKQ/wwwx1fu5maWbOmFnQjhay6DI KLwgSDSXOo1vQiulLdGHGpoWj19WEiHlJN1AOTsXf5jFAIT6D8D29RUmZoO2BVO9 xSBU8OLAifSPpBXZDLIVvN2i7ERLn+TPq1p0t4p7AZ+zr3plqwmjTCDqBLCMshMi 8tDhnWDWig5JEQLIm5PAo+tjqNfjDJOplwGcdSyGOoLUSQuias+q8WnmX0IQC61c E6VqlsUoON5XWkk8WdJI0aCKV7/VtWa5Err4uGRFgHIK7ECCxuSPWT+T/H+vBQQ9 rst5xH3bdtWKHEtp92++kmXN/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOjdvhK dODEBfW3vaY0Tkwy9Vs5MB8GA1UdIwQYMBaAFMkpktcOzkEaYlW/QLngpFIUlEAN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDEwMi9CNzhBQTdGNDY1 NEQxMUVBODZFNTAxN0ZDNEY5QUUwMi95U21TMXc3T1FScGlWYjlBdWVDa1VoU1VR QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTbVMxdzdPUVJwaVZiOUF1ZUNrVWhTVVFBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDEwMi9CNzhBQTdGNDY1NEQxMUVBODZFNTAxN0ZDNEY5QUUwMi95U21TMXc3T1FS cGlWYjlBdWVDa1VoU1VRQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfU5cbJP2Ipkki5TAVSOAbfD2DxKcnE3D01tL0pdIGQxcnYrx4oo+q +UYtQaGYMMttVn1fK3MCAOdU3zu95Nj/G3Wng1S0+MbEMcMEIgeKPxt2mGsRwtu6 8j+wluzNopao9RNEOE8GysSWRxbJRY87uRQVca+N2BTTYY496puDXBenzN1BSVEn 8m/IJSZO0+KT4jaDZ6JUXQ+r7cmcKrtdaGnHA77S2optS7uY2fQsf0cg/8h88nuW /QqjMyuL5qWa1VVch+oKH/avm0aypXh39uHEJnCwVEKhdPYHwgpy/c8IN6wgt5KX JEbQN9tXs18WM+Grz1NV3LKzDt7cwJ+q -----END CERTIFICATE-----Generated at Tue Apr 30 22:56:18 2024 by rpki-client on console-fra.rpki-client.org