$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft File: Y3kC4bqWiB1HLuyt-kW1V348HDE.mft (raw, json) Hash identifier: 0asilQD6B2VOlBEHThiPDQdOVXCpzWisBseT4gJKnmk= Subject key identifier: 32:36:C3:1D:1D:1C:4B:3C:3F:90:D0:01:16:A1:B2:F3:A2:49:96:21 Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft Manifest number: 5B Signing time: Wed 15 May 2024 07:50:08 +0000 Manifest this update: Wed 15 May 2024 07:50:08 +0000 Manifest next update: Wed 22 May 2024 07:50:08 +0000 Files and hashes: 1: Y3kC4bqWiB1HLuyt-kW1V348HDE.crl (hash: 5IMMjUr3TdFx5+uIZIowtIz2aCCKimZVArnOcWbeqPc=) 2: FF1FE402898011EEB3403779C4F9AE02.roa (hash: mgOPaRRwFXzAst0ljMiYc+D8an6Y3Tl3mAV8plK7S+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Validity Not Before: May 15 07:50:08 2024 GMT Not After : May 22 07:50:08 2024 GMT Subject: CN=66446930-c80b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:92:72:57:06:4e:f1:8f:c0:15:18:ce:f6:e8: 1d:ec:64:3e:c1:ec:fe:f9:84:6f:f0:4b:9f:98:f2: 9d:f4:26:e8:e7:94:16:7a:81:f0:d7:51:17:d1:69: 73:1e:56:cc:cb:a8:3b:75:14:34:ba:fd:be:19:61: 36:d6:43:2a:fb:82:55:71:27:d4:4e:82:8a:d9:3d: e3:11:86:5e:f7:a3:c3:33:10:3a:e4:b4:61:6a:e1: 5c:6d:56:ab:a1:2d:20:da:01:e0:b1:da:98:4f:2b: 0b:51:4a:11:ef:cf:b6:0e:1b:2d:a6:34:b6:2f:08: ac:7b:75:75:61:e0:73:69:57:ce:5f:e9:e3:f6:ae: a7:31:2b:71:db:09:63:f3:9a:01:07:d3:f6:a2:eb: d6:11:85:32:64:ec:37:a4:fa:40:b1:ae:22:dd:70: 3f:91:a0:4c:1b:fe:97:64:3c:c9:44:f6:d2:88:66: e7:0a:5d:f7:1c:f3:fa:92:5e:d0:63:bd:04:07:99: 88:c7:bd:8d:7f:5e:b0:f6:2f:d4:ec:88:a8:d3:db: 44:f4:e4:5e:13:b5:bd:7b:47:ec:5f:2c:85:d9:ee: b1:2e:6f:24:99:bf:e7:12:4b:86:20:47:2f:f3:da: cc:64:20:5c:ed:9a:26:df:8e:40:7c:a1:a2:a9:87: 11:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:36:C3:1D:1D:1C:4B:3C:3F:90:D0:01:16:A1:B2:F3:A2:49:96:21 X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:d3:54:52:8c:0e:07:45:1f:47:b0:a5:f3:35:12:8b:7e:8f: 8d:4a:46:40:76:5e:7b:59:dd:f8:da:9b:d7:41:fe:b4:46:4a: 53:d5:8a:e8:3c:0f:fa:e4:22:17:a0:2b:c5:e8:d3:e2:90:59: 5a:d5:81:b6:3e:30:d1:1a:f8:be:a4:0d:f1:a9:b2:bc:87:b2: 94:23:5d:81:70:67:96:62:6c:a7:8c:30:e8:89:d7:10:7a:bb: 91:e9:67:06:95:95:7d:42:ee:5a:90:b1:50:be:bc:16:82:4b: ef:ff:bc:2b:c1:4e:59:cc:94:2f:b0:6e:b2:2c:35:d7:09:d1: 61:05:5e:ac:ee:bb:6a:d5:0d:ac:1d:80:a8:f7:33:fb:0e:4b: 81:ea:03:4c:5b:c6:c8:85:25:22:64:7d:81:62:08:42:b3:04: 7d:1e:b9:88:23:69:51:c7:bb:fc:b3:bd:fb:c4:5b:01:60:eb: 28:68:1a:01:fa:5c:62:c1:be:c9:84:28:a7:e9:73:51:94:6b: 55:d8:f1:05:ea:bc:00:3f:fb:ca:30:45:51:4c:a2:40:94:a2: 59:86:f9:88:42:ac:82:b7:88:42:07:d0:0f:bc:72:21:4a:a9: 39:5d:b2:62:cc:43:63:6b:6c:0c:c0:1c:91:98:90:04:e4:94: f5:6e:ca:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTUyNDExMC8GA1UEBRMoNjM3OTAyRTFCQTk2ODgxRDQ3MkVFQ0FERkE0NUI1NTc3 RTNDMUMzMTAeFw0yNDA1MTUwNzUwMDhaFw0yNDA1MjIwNzUwMDhaMBgxFjAUBgNV BAMTDTY2NDQ2OTMwLWM4MGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRknJXBk7xj8AVGM726B3sZD7B7P75hG/wS5+Y8p30JujnlBZ6gfDXURfRaXMe VszLqDt1FDS6/b4ZYTbWQyr7glVxJ9ROgorZPeMRhl73o8MzEDrktGFq4VxtVquh LSDaAeCx2phPKwtRShHvz7YOGy2mNLYvCKx7dXVh4HNpV85f6eP2rqcxK3HbCWPz mgEH0/ai69YRhTJk7Dek+kCxriLdcD+RoEwb/pdkPMlE9tKIZucKXfcc8/qSXtBj vQQHmYjHvY1/XrD2L9TsiKjT20T05F4Ttb17R+xfLIXZ7rEubySZv+cSS4YgRy/z 2sxkIFztmibfjkB8oaKphxGHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMjbDHR0c Szw/kNABFqGy86JJliEwHwYDVR0jBBgwFoAUY3kC4bqWiB1HLuyt+kW1V348HDEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFNTI0LzBDMkMyQkQ2ODhD NTExRUVBODMxMUM3MUM0RjlBRTAyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhE RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTNrQzRicVdpQjFITHV5dC1rVzFWMzQ4SERFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF NTI0LzBDMkMyQkQ2ODhDNTExRUVBODMxMUM3MUM0RjlBRTAyL1kza0M0YnFXaUIx SEx1eXQta1cxVjM0OEhERS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIPTVFKMDgdFH0ewpfM1Eot+j41KRkB2XntZ3fjam9dB/rRGSlPViug8 D/rkIhegK8Xo0+KQWVrVgbY+MNEa+L6kDfGpsryHspQjXYFwZ5ZibKeMMOiJ1xB6 u5HpZwaVlX1C7lqQsVC+vBaCS+//vCvBTlnMlC+wbrIsNdcJ0WEFXqzuu2rVDawd gKj3M/sOS4HqA0xbxsiFJSJkfYFiCEKzBH0euYgjaVHHu/yzvfvEWwFg6yhoGgH6 XGLBvsmEKKfpc1GUa1XY8QXqvAA/+8owRVFMokCUolmG+YhCrIK3iEIH0A+8ciFK qTldsmLMQ2NrbAzAHJGYkATklPVuyuQ= -----END CERTIFICATE-----Generated at Wed May 15 09:28:16 2024 by rpki-client on console-fra.rpki-client.org