$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft File: yOujNL19pukuZ8QIvQN4e66uDK0.mft (raw, json) Hash identifier: acAXqF8hmVi32J3P4jhs+SIlfF1PHC/mYtc8/UzRBjU= Subject key identifier: E5:7B:88:B8:5F:9D:34:BB:43:1B:63:4A:85:D9:4C:5D:86:73:A3:8F Authority key identifier: C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD Certificate issuer: /CN=A91CFE07/serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Certificate serial: 0C98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft Manifest number: 0C86 Signing time: Tue 30 Apr 2024 19:09:35 +0000 Manifest this update: Tue 30 Apr 2024 19:09:35 +0000 Manifest next update: Tue 07 May 2024 19:09:34 +0000 Files and hashes: 1: yOujNL19pukuZ8QIvQN4e66uDK0.crl (hash: /1iPWr62ubsl90nUFrK1MMdPGhlguW+EnlIlVJbqO88=) 2: A95EC0B2C9FA11EBB7F2E749C4F9AE02.roa (hash: OnFCf8eAnEgvVp62T6YJKDeJaAnBLzi/6x3jgrk0jAY=) 3: A82C70A4C9FA11EBB7F2E749C4F9AE02.roa (hash: 2IL0VUXtbh4m28fX/DagcqnHyL8duadfYRBEM0Zd8j8=) 4: 226B7BC2AAC611EE9F22785DC4F9AE02.roa (hash: DWpmw7E9f8wB56ox5ZKO+BfCAC2t1e6DSbrfkrwOp6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:09:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3224 (0xc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFE07/serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Validity Not Before: Apr 30 19:09:35 2024 GMT Not After : May 7 19:09:34 2024 GMT Subject: CN=663141ef-9614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:eb:80:db:1c:19:0e:ac:ff:5e:9b:95:7d:f1: 1d:65:10:85:bf:c2:34:04:1e:7c:4b:59:62:f9:58: 5f:28:fc:bf:76:cf:09:23:61:bc:6c:5b:7d:35:ec: 65:94:3f:e3:7c:1c:1b:73:cd:63:9f:6e:bc:c2:3d: 57:9e:19:c4:d6:5f:20:87:32:8a:59:7a:e6:1b:e8: 7d:37:c2:f7:3b:36:57:08:ff:df:88:72:dd:7d:d9: 37:b9:ff:45:c2:0d:da:9a:f9:32:64:5e:4a:f1:c2: ee:6c:de:1b:e7:a0:29:58:c1:8b:6d:28:03:95:cd: 67:a6:ef:18:37:b3:a8:ea:44:3f:d4:3e:53:67:44: 3e:ae:27:1a:3f:2b:97:1c:f1:59:e5:14:25:21:3e: ca:a0:14:15:57:67:06:8b:3a:f5:52:ae:43:7e:4b: 7a:74:e1:08:5e:60:92:af:65:0c:ba:b3:89:d5:74: e5:b6:3d:af:64:e5:0e:99:2f:32:b7:ea:09:f5:8b: 9d:a1:64:12:5a:3b:2c:d7:23:48:4b:80:8d:be:99: 27:bc:eb:42:b8:41:80:f4:44:ae:d9:b6:e0:70:c4: c6:a9:39:5c:40:65:e6:c9:cd:47:5f:63:ad:57:d9: e4:00:3b:ed:f1:e8:d3:1d:e3:2b:38:ce:47:28:3b: 25:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:7B:88:B8:5F:9D:34:BB:43:1B:63:4A:85:D9:4C:5D:86:73:A3:8F X509v3 Authority Key Identifier: keyid:C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:62:09:3f:65:11:fe:32:92:8a:dc:5f:9c:0b:e7:64:4f:da: a9:1a:c2:41:4c:a3:f5:32:f0:17:21:0c:1c:7b:af:45:de:09: 9f:53:c5:b3:0b:19:95:68:15:e6:7e:03:27:5a:77:5f:ba:7b: 00:60:41:7f:32:87:f8:dd:08:73:46:a9:2d:ca:91:f6:e9:d2: ac:c2:d4:e1:31:ae:60:35:a4:d3:a9:53:ef:61:b6:2d:7b:b8: de:51:85:4d:fb:4c:a1:6b:db:05:c3:38:f0:db:16:72:9a:26: 8a:9f:f5:22:32:7c:0e:d3:0c:11:44:71:99:0e:4a:c9:24:4b: 97:99:70:c4:36:10:51:66:ba:ed:2f:11:e7:46:93:4c:26:56: 34:73:fb:ec:f3:ca:0f:3b:7a:e9:4e:98:6d:14:a3:cb:8b:d9: 6d:03:16:4a:40:0c:93:e5:a2:2e:bf:94:02:5a:fd:2a:7a:2b: 73:6a:06:92:9a:d5:2b:4b:33:15:34:f8:ef:07:be:8c:7d:44: e3:e6:04:ca:8b:2c:11:5a:47:6d:96:11:0e:8d:f9:ee:11:7a: f0:0b:d9:ea:5d:02:e7:5f:ef:94:27:01:85:2f:a3:48:00:7c: 22:83:56:6b:26:34:84:93:d9:e3:dd:f8:6a:80:33:e9:a0:66: 48:9b:ed:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZFMDcxMTAvBgNVBAUTKEM4RUJBMzM0QkQ3REE2RTkyRTY3QzQwOEJEMDM3ODdC QUVBRTBDQUQwHhcNMjQwNDMwMTkwOTM1WhcNMjQwNTA3MTkwOTM0WjAYMRYwFAYD VQQDEw02NjMxNDFlZi05NjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OuA2xwZDqz/XpuVffEdZRCFv8I0BB58S1li+VhfKPy/ds8JI2G8bFt9Nexl lD/jfBwbc81jn268wj1XnhnE1l8ghzKKWXrmG+h9N8L3OzZXCP/fiHLdfdk3uf9F wg3amvkyZF5K8cLubN4b56ApWMGLbSgDlc1npu8YN7Oo6kQ/1D5TZ0Q+ricaPyuX HPFZ5RQlIT7KoBQVV2cGizr1Uq5Dfkt6dOEIXmCSr2UMurOJ1XTltj2vZOUOmS8y t+oJ9YudoWQSWjss1yNIS4CNvpknvOtCuEGA9ESu2bbgcMTGqTlcQGXmyc1HX2Ot V9nkADvt8ejTHeMrOM5HKDslXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOV7iLhf nTS7QxtjSoXZTF2Gc6OPMB8GA1UdIwQYMBaAFMjrozS9fabpLmfECL0DeHuurgyt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkUwNy85NjJDNEI3RUQy QkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1a3VaOFFJdlFONGU2NnVE SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPdWpOTDE5cHVrdVo4UUl2UU40ZTY2dURLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkUwNy85NjJDNEI3RUQyQkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1 a3VaOFFJdlFONGU2NnVESzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEYgk/ZRH+MpKK3F+cC+dkT9qpGsJBTKP1MvAXIQwce69F3gmfU8Wz CxmVaBXmfgMnWndfunsAYEF/Mof43QhzRqktypH26dKswtThMa5gNaTTqVPvYbYt e7jeUYVN+0yha9sFwzjw2xZymiaKn/UiMnwO0wwRRHGZDkrJJEuXmXDENhBRZrrt LxHnRpNMJlY0c/vs88oPO3rpTphtFKPLi9ltAxZKQAyT5aIuv5QCWv0qeitzagaS mtUrSzMVNPjvB76MfUTj5gTKiywRWkdtlhEOjfnuEXrwC9nqXQLnX++UJwGFL6NI AHwig1ZrJjSEk9nj3fhqgDPpoGZIm+1i -----END CERTIFICATE-----Generated at Tue Apr 30 21:59:07 2024 by rpki-client on console-ams.rpki-client.org