$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft File: W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft (raw, json) Hash identifier: Y11zb4nikyKPHO2qcq5ZD+Vp+6kwtgiS0jDyBWjJDYc= Subject key identifier: 7A:C1:2A:62:B8:55:C0:5A:07:BB:DA:F1:DA:5B:C8:2D:6E:94:AF:C1 Authority key identifier: 5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C Certificate issuer: /CN=A91D1E29/serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C Certificate serial: 0804 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft Manifest number: 07FF Signing time: Sat 04 May 2024 22:03:24 +0000 Manifest this update: Sat 04 May 2024 22:03:24 +0000 Manifest next update: Sat 11 May 2024 22:03:24 +0000 Files and hashes: 1: W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl (hash: KSeKiR5IsA8DTZoVMZu630fd5PsNVl576tFkNM0q5Uk=) 2: 108B7DAAB2A711EAABBE8663C4F9AE02.roa (hash: YA4GLUdsIaWbGiBm3KmTSbRFQ2G7IxEvDdxZRgo0HEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2052 (0x804) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E29/serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C Validity Not Before: May 4 22:03:24 2024 GMT Not After : May 11 22:03:24 2024 GMT Subject: CN=6636b0ac-a1bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2e:f6:6a:61:a9:d0:d1:9f:3b:cc:94:ec:eb: 90:e9:4e:98:4b:8d:db:1c:3c:aa:6d:a8:56:87:1e: dd:a5:ac:03:12:e1:1a:57:d4:d4:56:ee:e7:ba:0a: d1:3f:07:cb:27:32:9b:8b:6b:a8:0c:93:23:12:ca: f1:be:f9:60:7c:cf:c5:94:a0:bf:5b:4f:92:11:c8: ac:1b:94:ad:5e:b1:9c:41:64:1a:e8:8c:66:a6:9f: 72:5b:0f:a5:c9:c8:c7:0d:b0:1c:6f:8d:85:6a:55: af:87:67:a4:9b:b3:76:38:65:ec:af:b8:a8:30:e7: 02:f5:18:35:50:ce:74:7f:2f:90:51:c9:b6:89:75: c2:1e:9f:9d:09:b7:5a:62:65:ed:9a:ae:5d:26:30: 4d:e2:56:df:f6:5f:e8:98:ce:f1:0c:c5:b2:fe:cc: 8e:3b:0b:21:0f:68:fa:64:19:b7:7b:f0:71:15:2b: b7:98:24:16:a9:54:e6:f3:85:54:f1:e8:b8:cb:ea: eb:db:a2:d1:bb:3f:63:37:80:9b:a7:41:1d:09:6c: 37:89:4e:fa:97:12:8b:11:06:df:f2:cf:ef:b2:6b: 21:09:05:15:6a:a0:a8:6c:37:e9:f1:1e:a6:4b:68: a7:18:37:03:1c:9c:0e:99:e2:5a:53:6a:a4:b9:ed: 75:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C1:2A:62:B8:55:C0:5A:07:BB:DA:F1:DA:5B:C8:2D:6E:94:AF:C1 X509v3 Authority Key Identifier: keyid:5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:ca:9c:b0:3e:95:d9:03:51:3f:33:11:0d:6b:95:25:5c:5f: fc:82:35:59:04:ee:06:4c:cc:f1:df:94:c6:50:25:ec:13:dc: 1c:d5:5f:c5:e6:03:67:38:cf:cd:0d:45:be:3a:b3:05:57:60: a5:61:f9:9b:e1:b5:36:4d:75:89:44:aa:0a:3f:68:30:57:88: 1b:5b:7d:f0:24:5e:60:5d:15:77:64:44:4f:e8:a9:a6:2f:fe: a1:21:0c:98:b0:72:b9:79:26:62:33:1d:2a:4c:82:3c:37:a3: 40:51:63:f9:8b:92:7d:98:e5:e3:ba:57:47:78:d2:6f:ad:f3: 03:24:22:03:1f:19:cd:28:d9:40:7a:b5:a0:8e:8c:83:b5:48: 2a:a6:2e:d7:27:d1:eb:07:8a:22:2e:30:5a:60:ad:81:67:dc: 59:83:4b:8d:64:fe:55:5e:28:72:ad:73:e4:db:c1:e0:e7:30: 6a:06:3b:23:77:9c:c3:ca:df:13:bd:a3:19:8f:6d:02:f4:0a: 00:c5:f4:c5:c4:02:c7:dd:2b:1e:a7:27:0f:86:33:10:26:4d: e3:aa:14:dc:64:d1:3a:50:4c:e3:0b:4d:32:a6:1c:d8:04:9e: 60:41:45:da:21:08:5f:c7:a2:56:99:96:6f:fc:1c:35:38:53: f0:67:57:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFMjkxMTAvBgNVBAUTKDVCRjYyNDM5OTBBOTQ2NEM4NUI3ODIzREI0MjZFMkFC OTY3MjBBM0MwHhcNMjQwNTA0MjIwMzI0WhcNMjQwNTExMjIwMzI0WjAYMRYwFAYD VQQDEw02NjM2YjBhYy1hMWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxS72amGp0NGfO8yU7OuQ6U6YS43bHDyqbahWhx7dpawDEuEaV9TUVu7nugrR PwfLJzKbi2uoDJMjEsrxvvlgfM/FlKC/W0+SEcisG5StXrGcQWQa6Ixmpp9yWw+l ycjHDbAcb42FalWvh2ekm7N2OGXsr7ioMOcC9Rg1UM50fy+QUcm2iXXCHp+dCbda YmXtmq5dJjBN4lbf9l/omM7xDMWy/syOOwshD2j6ZBm3e/BxFSu3mCQWqVTm84VU 8ei4y+rr26LRuz9jN4Cbp0EdCWw3iU76lxKLEQbf8s/vsmshCQUVaqCobDfp8R6m S2inGDcDHJwOmeJaU2qkue11ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrBKmK4 VcBaB7va8dpbyC1ulK/BMB8GA1UdIwQYMBaAFFv2JDmQqUZMhbeCPbQm4quWcgo8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUUyOS9ERDEzRjhGMEIy OUYxMUVBOTM4MEMwNEJDNEY5QUUwMi9XX1lrT1pDcFJreUZ0NEk5dENiaXE1WnlD ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dfWWtPWkNwUmt5RnQ0STl0Q2JpcTVaeUNqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUUyOS9ERDEzRjhGMEIyOUYxMUVBOTM4MEMwNEJDNEY5QUUwMi9XX1lrT1pDcFJr eUZ0NEk5dENiaXE1WnlDancubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcypywPpXZA1E/MxENa5UlXF/8gjVZBO4GTMzx35TGUCXsE9wc1V/F 5gNnOM/NDUW+OrMFV2ClYfmb4bU2TXWJRKoKP2gwV4gbW33wJF5gXRV3ZERP6Kmm L/6hIQyYsHK5eSZiMx0qTII8N6NAUWP5i5J9mOXjuldHeNJvrfMDJCIDHxnNKNlA erWgjoyDtUgqpi7XJ9HrB4oiLjBaYK2BZ9xZg0uNZP5VXihyrXPk28Hg5zBqBjsj d5zDyt8TvaMZj20C9AoAxfTFxALH3SsepycPhjMQJk3jqhTcZNE6UEzjC00yphzY BJ5gQUXaIQhfx6JWmZZv/Bw1OFPwZ1di -----END CERTIFICATE-----Generated at Sun May 5 00:14:46 2024 by rpki-client on console-ams.rpki-client.org