$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: JROS+aO2XUJzppEdAjpBz6q/MsvuZDzkZxzr8S/1dBI= Subject key identifier: 11:8A:A3:00:86:89:AF:15:C8:3D:8C:D7:EB:82:35:48:FD:99:E6:61 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 094E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0944 Signing time: Sat 04 May 2024 21:16:11 +0000 Manifest this update: Sat 04 May 2024 21:16:11 +0000 Manifest next update: Sat 11 May 2024 21:16:11 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: +LmRmh68mpV1upuMFp/5BJ28OfgUh8UhVVfJ6GAapt0=) 2: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: Ps9MJyIGPdd10OsB8MEoWJPewnLOmiN38spNkATkPVk=) 3: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: aLKJokhc0gupZJEY7cb/cJD+rTWt6t1y2yUST44VQeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2382 (0x94e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: May 4 21:16:11 2024 GMT Not After : May 11 21:16:11 2024 GMT Subject: CN=6636a59b-d9d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b4:43:21:4a:4b:c6:37:09:32:2c:3e:9b:84: 62:ba:be:ee:cd:f8:3e:99:44:c3:59:ec:4b:f9:d2: f3:e5:d1:75:40:ce:6c:7b:7b:24:b2:a7:4c:73:6d: b1:5b:41:c8:19:e4:b0:11:40:c6:b6:f7:de:8c:4e: 9e:44:fb:2f:37:76:be:0d:ad:da:b4:c7:ad:a3:4f: 62:d5:5a:4a:04:ba:68:70:47:0e:ed:70:c0:ce:29: c0:d7:0e:3e:2d:87:1e:02:95:35:f8:a8:67:29:f0: 8e:d0:ad:b8:2c:d2:ae:74:59:ca:33:93:e5:8f:fd: c5:56:ef:43:d5:75:c6:5d:32:5a:08:6c:c8:3d:d5: eb:d4:df:ff:5c:5f:5c:7c:b7:8e:74:cd:11:b6:ee: bc:d6:41:b0:02:f9:b8:f5:e9:e8:6d:4f:03:42:ca: 1d:c4:e9:02:8d:1a:44:de:09:0e:1e:02:9a:ae:48: 49:a4:2e:a8:52:61:6a:71:f2:af:1e:3d:cc:bf:07: 65:84:cd:39:3d:70:b5:58:72:13:e4:d6:78:12:19: 55:fe:10:a8:83:9f:8c:dc:90:2d:52:8a:47:3b:ce: 6e:89:ef:9a:17:10:16:02:ee:b6:eb:71:58:b7:94: 4f:4d:ea:a3:72:e1:18:7b:62:be:b3:44:7c:f5:d6: f0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:8A:A3:00:86:89:AF:15:C8:3D:8C:D7:EB:82:35:48:FD:99:E6:61 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:69:2a:d4:d1:25:80:41:38:0d:55:40:09:83:6a:9d:b7:3b: 3d:46:89:7e:fd:d8:23:75:90:b6:d7:11:6c:ef:7c:9e:ce:56: 2b:19:b8:d2:4d:0b:67:b1:af:70:dd:ff:46:65:e8:04:2e:0b: 5d:25:9b:51:7c:f7:20:72:88:59:f1:e3:69:81:06:e7:55:f5: ae:ad:dc:df:fc:2c:dc:0c:88:a9:3e:04:c5:44:ba:b7:b1:95: dd:61:d8:b7:ec:2e:f8:5d:9a:ad:a9:8a:69:4f:56:ba:24:ba: 63:f7:3d:3f:68:7e:d1:4f:2c:2f:93:09:b2:09:a5:d3:c7:3a: 0e:e2:bd:34:13:b2:e6:a1:44:8b:09:55:f2:03:be:03:ed:80: e0:57:33:d3:91:f7:15:6a:b8:6f:62:6a:c1:38:78:6a:b1:d8: 42:8a:92:d7:a9:48:a0:1d:a8:dd:17:f3:63:4b:15:6f:3b:4c: e4:f5:b1:91:88:b9:5a:e0:ca:0e:1b:f2:44:6f:b4:1c:07:bb: 82:6b:fc:24:50:d0:73:f9:3b:eb:e9:da:e6:0d:79:79:79:9f: 45:df:69:a8:9b:cb:bf:3e:4f:d5:cf:09:d7:5e:af:bf:46:2c: 96:3a:e9:e4:75:e1:d1:3c:0d:16:00:4a:1f:96:eb:17:28:12: 34:05:33:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjQwNTA0MjExNjExWhcNMjQwNTExMjExNjExWjAYMRYwFAYD VQQDEw02NjM2YTU5Yi1kOWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6LRDIUpLxjcJMiw+m4Riur7uzfg+mUTDWexL+dLz5dF1QM5se3sksqdMc22x W0HIGeSwEUDGtvfejE6eRPsvN3a+Da3atMeto09i1VpKBLpocEcO7XDAzinA1w4+ LYceApU1+KhnKfCO0K24LNKudFnKM5Plj/3FVu9D1XXGXTJaCGzIPdXr1N//XF9c fLeOdM0Rtu681kGwAvm49enobU8DQsodxOkCjRpE3gkOHgKarkhJpC6oUmFqcfKv Hj3MvwdlhM05PXC1WHIT5NZ4EhlV/hCog5+M3JAtUopHO85uie+aFxAWAu6263FY t5RPTeqjcuEYe2K+s0R89dbwnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGKowCG ia8VyD2M1+uCNUj9meZhMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPaSrU0SWAQTgNVUAJg2qdtzs9Rol+/dgjdZC21xFs73yezlYrGbjS TQtnsa9w3f9GZegELgtdJZtRfPcgcohZ8eNpgQbnVfWurdzf/CzcDIipPgTFRLq3 sZXdYdi37C74XZqtqYppT1a6JLpj9z0/aH7RTywvkwmyCaXTxzoO4r00E7LmoUSL CVXyA74D7YDgVzPTkfcVarhvYmrBOHhqsdhCipLXqUigHajdF/NjSxVvO0zk9bGR iLla4MoOG/JEb7QcB7uCa/wkUNBz+Tvr6drmDXl5eZ9F32mom8u/Pk/VzwnXXq+/ RiyWOunkdeHRPA0WAEoflusXKBI0BTNG -----END CERTIFICATE-----Generated at Sun May 5 00:12:32 2024 by rpki-client on console-fra.rpki-client.org