$ rpki-client -vvf rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft File: YmEJu-zJi6UufzmbgJYtOv5astQ.mft (raw, json) Hash identifier: UuOpp1bEdl7HlYVJiUQ2iCweZwJM9ZX+nCP2JSf7K0M= Subject key identifier: AC:84:C8:C3:A5:79:D8:34:DA:0A:D6:C0:AB:D2:DF:65:D4:48:B6:2A Authority key identifier: 62:61:09:BB:EC:C9:8B:A5:2E:7F:39:9B:80:96:2D:3A:FE:5A:B2:D4 Certificate issuer: /CN=A91D50A2/serialNumber=626109BBECC98BA52E7F399B80962D3AFE5AB2D4 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft Manifest number: 2C Signing time: Wed 15 May 2024 08:36:10 +0000 Manifest this update: Wed 15 May 2024 08:36:10 +0000 Manifest next update: Wed 22 May 2024 08:36:10 +0000 Files and hashes: 1: YmEJu-zJi6UufzmbgJYtOv5astQ.crl (hash: DHFpaScQ68sNKoxmLHAJxSoMP5WmLK82MY46yZGetxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.crl rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D50A2/serialNumber=626109BBECC98BA52E7F399B80962D3AFE5AB2D4 Validity Not Before: May 15 08:36:10 2024 GMT Not After : May 22 08:36:10 2024 GMT Subject: CN=664473fa-d886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:63:24:d0:c4:8c:d8:c8:cc:fe:62:3b:a3:d3: 36:74:17:16:f5:9d:b2:b5:06:5a:7f:38:6d:b9:c1: c3:ea:5b:71:d6:78:fd:ac:5c:73:2b:c6:06:04:b2: 9e:3a:d3:fa:14:51:fa:e3:d0:5c:46:42:82:5f:10: c1:fa:b0:cb:6c:77:c9:42:c8:92:c7:9a:85:1a:52: 5f:84:4a:3a:3e:58:09:96:a8:ec:5d:5e:fa:59:ce: db:36:af:a2:58:df:04:0e:94:61:d0:eb:f3:cf:6f: 4a:e6:8f:eb:ea:1a:11:60:28:a6:1b:f4:3b:04:75: b6:40:6e:60:b4:1e:1b:6c:ef:65:dc:ca:e1:35:5f: 2b:a6:1f:7b:65:d4:fd:4e:8a:9d:16:0c:2b:19:0f: d0:61:75:3e:5e:3a:d1:7f:81:00:b2:f0:17:11:c6: 6f:c1:d9:b8:da:d6:67:a9:bf:e0:4c:3c:27:98:7c: 69:a5:52:db:9a:ae:90:24:fe:e2:1e:f5:5e:9c:41: f0:4e:ba:7a:13:f2:6c:3c:b0:f2:81:2b:e2:9e:74: f1:d9:e5:1d:02:c7:fe:18:3e:e1:ea:9c:8a:c8:de: f7:ea:29:70:0d:ea:0f:f9:12:85:53:5a:5d:79:14: ff:62:d8:21:0c:de:5f:d3:a8:3a:50:69:49:96:df: 42:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:84:C8:C3:A5:79:D8:34:DA:0A:D6:C0:AB:D2:DF:65:D4:48:B6:2A X509v3 Authority Key Identifier: keyid:62:61:09:BB:EC:C9:8B:A5:2E:7F:39:9B:80:96:2D:3A:FE:5A:B2:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:fd:6f:4d:65:ea:39:34:f7:08:47:8b:cb:b8:53:f0:a0:c2: 51:00:ea:79:03:b9:ed:29:1d:94:eb:5a:20:03:86:7a:e5:4a: 45:14:ed:d8:ac:26:60:90:c7:a1:11:25:51:cd:40:cd:79:fb: a7:89:9c:51:5b:29:a0:c1:a5:56:3f:05:49:01:a1:f7:3a:b7: 1e:74:ea:9e:6b:bc:ff:1a:b3:ec:1f:45:08:da:75:26:b5:88: e4:14:25:1a:69:fb:27:bb:7d:15:33:44:40:42:0c:0f:46:73: 95:38:09:31:07:e2:7b:b2:ed:80:00:3a:14:47:8d:4e:1c:82: f6:46:2e:f2:fc:80:e0:18:a2:ac:42:fb:85:6d:32:a8:47:88: c2:1c:20:cc:7f:6a:cf:50:0c:a4:e5:d1:78:1f:e8:02:b7:f1: 3c:54:7e:22:c4:f9:67:69:a2:d4:68:1f:30:b6:86:f4:26:6c: 9a:39:e1:da:43:c6:da:cf:b3:39:46:50:3f:a2:3e:7f:b3:85: 11:39:1a:f8:9b:69:8e:e5:2e:1a:89:08:83:77:a5:fc:84:c0: 70:3c:f6:95:56:26:a0:3e:09:b5:d9:19:0c:ab:3f:f6:d8:ee: 6c:dc:56:d6:58:6f:80:3c:16:bb:57:04:ca:c8:e0:3e:87:47: 80:3e:b7:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NTBBMjExMC8GA1UEBRMoNjI2MTA5QkJFQ0M5OEJBNTJFN0YzOTlCODA5NjJEM0FG RTVBQjJENDAeFw0yNDA1MTUwODM2MTBaFw0yNDA1MjIwODM2MTBaMBgxFjAUBgNV BAMTDTY2NDQ3M2ZhLWQ4ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsYyTQxIzYyMz+Yjuj0zZ0Fxb1nbK1Blp/OG25wcPqW3HWeP2sXHMrxgYEsp46 0/oUUfrj0FxGQoJfEMH6sMtsd8lCyJLHmoUaUl+ESjo+WAmWqOxdXvpZzts2r6JY 3wQOlGHQ6/PPb0rmj+vqGhFgKKYb9DsEdbZAbmC0Hhts72XcyuE1XyumH3tl1P1O ip0WDCsZD9BhdT5eOtF/gQCy8BcRxm/B2bja1mepv+BMPCeYfGmlUtuarpAk/uIe 9V6cQfBOunoT8mw8sPKBK+KedPHZ5R0Cx/4YPuHqnIrI3vfqKXAN6g/5EoVTWl15 FP9i2CEM3l/TqDpQaUmW30I5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrITIw6V5 2DTaCtbAq9LfZdRItiowHwYDVR0jBBgwFoAUYmEJu+zJi6UufzmbgJYtOv5astQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ1MEEyL0VFMzFEODc0RDAy NzExRUVCRjVCNjkzQ0M0RjlBRTAyL1ltRUp1LXpKaTZVdWZ6bWJnSll0T3Y1YXN0 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWW1FSnUtekppNlV1ZnptYmdKWXRPdjVhc3RRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ1 MEEyL0VFMzFEODc0RDAyNzExRUVCRjVCNjkzQ0M0RjlBRTAyL1ltRUp1LXpKaTZV dWZ6bWJnSll0T3Y1YXN0US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGv9b01l6jk09whHi8u4U/CgwlEA6nkDue0pHZTrWiADhnrlSkUU7dis JmCQx6ERJVHNQM15+6eJnFFbKaDBpVY/BUkBofc6tx506p5rvP8as+wfRQjadSa1 iOQUJRpp+ye7fRUzREBCDA9Gc5U4CTEH4nuy7YAAOhRHjU4cgvZGLvL8gOAYoqxC +4VtMqhHiMIcIMx/as9QDKTl0Xgf6AK38TxUfiLE+WdpotRoHzC2hvQmbJo54dpD xtrPszlGUD+iPn+zhRE5GvibaY7lLhqJCIN3pfyEwHA89pVWJqA+CbXZGQyrP/bY 7mzcVtZYb4A8FrtXBMrI4D6HR4A+t2M= -----END CERTIFICATE-----Generated at Wed May 15 09:28:16 2024 by rpki-client on console-fra.rpki-client.org