$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft File: 3YoriGVMM2b_5_z2VWqXhgAqpls.mft (raw, json) Hash identifier: dKoTHVFfbCVYW4hFmE3WQ8W2zpZAR8sEIRGuQo7YYKE= Subject key identifier: 4E:E7:5A:F0:C7:CC:AB:17:FF:34:F5:30:91:BA:3C:2A:9F:6A:CC:73 Authority key identifier: DD:8A:2B:88:65:4C:33:66:FF:E7:FC:F6:55:6A:97:86:00:2A:A6:5B Certificate issuer: /CN=A91CFAB9/serialNumber=DD8A2B88654C3366FFE7FCF6556A9786002AA65B Certificate serial: 02DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft Manifest number: 02D3 Signing time: Sun 05 May 2024 03:34:17 +0000 Manifest this update: Sun 05 May 2024 03:34:17 +0000 Manifest next update: Sun 12 May 2024 03:34:17 +0000 Files and hashes: 1: 3YoriGVMM2b_5_z2VWqXhgAqpls.crl (hash: kYCX0eyZojJBgJMFqLQ84YEaI8IYRWlMMwZEFnS+/p4=) 2: 596CCC4E9F1911EC8FDFEA7DC4F9AE02.roa (hash: ninl9qaRwReMJ+VyWpCOBcznoKGFRI4XnhBOBj8GIYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 730 (0x2da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9/serialNumber=DD8A2B88654C3366FFE7FCF6556A9786002AA65B Validity Not Before: May 5 03:34:17 2024 GMT Not After : May 12 03:34:17 2024 GMT Subject: CN=6636fe39-7de0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e4:2c:27:29:6b:17:f2:9e:a6:dd:69:4f:37: 60:39:fb:e0:e4:6e:bb:5c:6a:d4:3d:1e:63:cf:03: 32:ae:51:6e:91:a8:78:c7:6e:1f:47:95:19:96:66: ba:9f:4f:06:0b:80:2b:de:58:64:a9:9f:64:88:f1: e2:bf:6e:6c:97:9e:52:92:a6:cb:71:48:79:ae:e0: fd:88:75:28:da:89:c6:84:a1:0e:8e:06:4e:fa:71: ab:02:73:32:a4:f9:b7:07:17:16:14:66:fc:c8:15: 22:5c:12:58:bc:cd:c5:8b:b6:f7:07:b3:3d:6a:b2: 71:5c:32:9d:ec:74:0e:8d:ec:2d:38:32:f9:79:14: d5:48:db:e9:b9:ce:9c:d1:90:bd:cf:ff:b5:f4:34: c1:91:01:f5:17:05:89:5f:33:8f:bd:e0:94:ff:f9: 6c:3b:a3:10:d6:87:34:4c:13:a8:d3:dc:3d:69:a5: fd:c2:d1:d5:79:79:cd:4d:ec:5f:bd:2d:ed:8e:5b: 23:2e:9d:ad:87:1d:09:3c:de:c8:9d:5f:75:bd:f5: 32:b3:68:d4:1f:f5:5f:50:40:63:0e:8f:24:13:ee: c5:f3:24:8a:09:b4:22:75:71:2d:f9:30:4b:43:b0: 03:5e:41:7b:7e:5a:8e:33:0f:73:bc:c6:0c:d5:8a: 85:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E7:5A:F0:C7:CC:AB:17:FF:34:F5:30:91:BA:3C:2A:9F:6A:CC:73 X509v3 Authority Key Identifier: keyid:DD:8A:2B:88:65:4C:33:66:FF:E7:FC:F6:55:6A:97:86:00:2A:A6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:3d:8f:1e:a3:e5:9e:b6:80:e5:de:be:9f:96:53:96:f2:fc: e6:76:30:42:2a:29:2b:5b:f8:c7:f8:60:a5:65:45:d3:f0:04: a3:ce:7f:33:2f:1e:20:9b:dd:a2:67:9b:53:8b:fb:e1:99:60: 39:39:6a:dc:b0:7b:1f:99:ce:67:0a:df:fc:44:d9:ae:f9:cc: 79:c7:62:98:ff:f7:e7:c7:06:5e:9a:29:67:91:2e:7d:3f:1d: ba:03:36:bc:07:74:d6:f2:4c:6f:ca:e0:85:cb:41:14:c6:3f: dc:07:68:69:1a:4e:06:ef:fb:f4:75:b9:f8:b3:ad:cb:32:39: 4a:1d:58:6c:3a:b9:24:66:6a:0f:c3:3b:0a:2b:6a:fd:83:35: 9f:46:a0:75:40:87:70:fe:25:54:cd:66:40:53:11:c2:87:83: b3:cf:95:e5:3c:b3:9b:f1:1e:fe:9d:dc:15:7b:11:25:2f:b3: 46:c5:d5:d6:54:70:18:9e:06:b3:1f:34:d3:91:ff:9d:33:eb: 9a:1d:01:d3:bf:bb:35:a2:ab:d5:4c:26:0b:9e:a2:a2:c0:3d: 47:3b:61:ee:76:a8:6f:d0:df:fd:f2:88:09:4a:bd:9c:ba:1f: ba:09:24:8b:20:f7:c4:dd:6b:7c:e5:6f:01:90:4a:fc:91:08: 04:e8:1e:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKEREOEEyQjg4NjU0QzMzNjZGRkU3RkNGNjU1NkE5Nzg2 MDAyQUE2NUIwHhcNMjQwNTA1MDMzNDE3WhcNMjQwNTEyMDMzNDE3WjAYMRYwFAYD VQQDEw02NjM2ZmUzOS03ZGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OQsJylrF/Kept1pTzdgOfvg5G67XGrUPR5jzwMyrlFukah4x24fR5UZlma6 n08GC4Ar3lhkqZ9kiPHiv25sl55SkqbLcUh5ruD9iHUo2onGhKEOjgZO+nGrAnMy pPm3BxcWFGb8yBUiXBJYvM3Fi7b3B7M9arJxXDKd7HQOjewtODL5eRTVSNvpuc6c 0ZC9z/+19DTBkQH1FwWJXzOPveCU//lsO6MQ1oc0TBOo09w9aaX9wtHVeXnNTexf vS3tjlsjLp2thx0JPN7InV91vfUys2jUH/VfUEBjDo8kE+7F8ySKCbQidXEt+TBL Q7ADXkF7flqOMw9zvMYM1YqFKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7nWvDH zKsX/zT1MJG6PCqfasxzMB8GA1UdIwQYMBaAFN2KK4hlTDNm/+f89lVql4YAKqZb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS9FODUzMzgyQzlG MTMxMUVDOUU0NUQ1NzJDNEY5QUUwMi8zWW9yaUdWTU0yYl81X3oyVldxWGhnQXFw bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZb3JpR1ZNTTJiXzVfejJWV3FYaGdBcXBscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS9FODUzMzgyQzlGMTMxMUVDOUU0NUQ1NzJDNEY5QUUwMi8zWW9yaUdWTU0y Yl81X3oyVldxWGhnQXFwbHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqPY8eo+WetoDl3r6fllOW8vzmdjBCKikrW/jH+GClZUXT8ASjzn8z Lx4gm92iZ5tTi/vhmWA5OWrcsHsfmc5nCt/8RNmu+cx5x2KY//fnxwZemilnkS59 Px26Aza8B3TW8kxvyuCFy0EUxj/cB2hpGk4G7/v0dbn4s63LMjlKHVhsOrkkZmoP wzsKK2r9gzWfRqB1QIdw/iVUzWZAUxHCh4Ozz5XlPLOb8R7+ndwVexElL7NGxdXW VHAYngazHzTTkf+dM+uaHQHTv7s1oqvVTCYLnqKiwD1HO2Hudqhv0N/98ogJSr2c uh+6CSSLIPfE3Wt85W8BkEr8kQgE6B77 -----END CERTIFICATE-----Generated at Sun May 5 04:34:56 2024 by rpki-client on console-fra.rpki-client.org