$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: TUNEKIe2SkkFTSrhhTta2hIP4q2Y3iQqp5I75uk6zVs= Subject key identifier: A1:65:1E:E0:7D:B0:E5:DA:1A:AD:36:E3:C4:50:41:67:56:03:D2:B4 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: 13 Signing time: Wed 15 May 2024 08:57:36 +0000 Manifest this update: Wed 15 May 2024 08:57:35 +0000 Manifest next update: Wed 22 May 2024 08:57:35 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: QqeYiVQOAYLtOEl7pcBTeNUOPYX80wI0Vk9rVV4YCic=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 1mGAGUdcHgzIXHfMP/sj7r20tyRJ1V+9II4lN7eXdqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: May 15 08:57:35 2024 GMT Not After : May 22 08:57:35 2024 GMT Subject: CN=66447900-139a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cf:77:2a:e3:78:43:b1:b9:66:50:59:f5:b5: f0:c0:f6:62:22:27:b1:ea:b7:2a:2d:29:c6:35:6e: 61:e6:fb:f2:9f:84:41:bf:ac:0c:cf:43:e5:94:66: 5b:58:9a:34:1a:71:52:58:6a:d0:91:9f:ee:aa:74: b3:c5:b1:45:29:d0:01:e9:d6:37:a6:41:25:34:33: e6:92:a4:ad:da:b1:fc:22:21:00:72:dc:0d:f4:43: 08:87:44:55:f3:39:63:61:cc:9a:0b:ca:cd:35:3e: 75:ad:4a:57:11:3c:ca:cf:89:72:ad:24:84:4c:71: 2a:2f:7a:05:03:73:d3:5d:33:d1:c5:d7:9f:e2:45: 9d:eb:a9:21:eb:3b:25:c0:91:94:28:42:9f:91:53: c6:87:76:4e:d1:57:b2:ac:33:ce:6c:f5:0d:1c:29: d3:a0:bd:84:d4:8a:ef:4a:fd:93:5d:e7:ac:65:f8: 65:a6:bc:d3:65:48:a2:ca:e9:7d:83:ee:f0:ee:f0: 24:3f:b3:15:0e:c0:0d:5e:7a:44:97:f3:9d:ef:1a: 58:a1:5f:26:bf:7d:fc:90:4a:31:d1:ec:62:3d:79: 2a:94:80:26:de:f6:f0:f5:ab:68:4a:91:25:b5:e5: 16:89:a7:2b:2b:a1:9a:c8:55:08:3d:33:92:37:7a: 68:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:65:1E:E0:7D:B0:E5:DA:1A:AD:36:E3:C4:50:41:67:56:03:D2:B4 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:80:33:4d:7b:fc:28:31:00:f3:bc:a3:21:24:84:47:59:9a: 07:c1:3b:f6:2a:d8:e6:37:a8:36:cd:05:b8:a1:1c:67:cf:ca: fb:cf:2b:87:a1:88:ab:d9:cc:cf:54:c3:d8:a2:67:e6:38:da: f3:ed:0f:63:01:e4:97:7d:0a:44:b8:90:2d:51:05:c5:e3:06: 7e:dd:9d:c9:c5:26:37:42:a5:be:a7:b2:b5:f9:a5:4a:ab:68: be:79:c2:fa:21:fc:26:89:cf:21:51:84:66:5f:d7:79:ad:5a: 57:11:ca:bd:1d:cf:22:89:de:3a:3e:e9:b6:be:21:83:f2:44: 07:27:c6:39:c9:8b:c7:45:15:b9:be:de:e2:22:5f:13:9e:2e: df:42:52:1d:ec:68:da:d6:d8:b8:85:2d:30:d8:4c:f7:70:c9: 67:ad:6d:80:17:47:9d:b2:c2:49:8a:39:01:9e:20:9a:73:5d: 5d:2a:8c:36:87:51:25:67:a1:e9:dc:4a:fe:fb:2b:a8:f0:78: b4:78:0c:db:d1:0b:39:dc:c1:2d:31:34:6a:1f:e4:6c:b5:29: f9:b5:da:4a:2d:da:b0:f7:62:06:49:f7:54:3a:71:a2:2f:fe: d2:6d:e0:75:32:1e:a9:33:9a:00:f4:07:fa:a1:6d:6d:d6:55: 96:b8:a9:ba -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzQ1OTExMC8GA1UEBRMoQzgyMTUwNDlBNUVDMTEzNjVGQjY3NDBCODIxNzA2NzYy NjgwQUQxNzAeFw0yNDA1MTUwODU3MzVaFw0yNDA1MjIwODU3MzVaMBgxFjAUBgNV BAMTDTY2NDQ3OTAwLTEzOWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwz3cq43hDsblmUFn1tfDA9mIiJ7HqtyotKcY1bmHm+/KfhEG/rAzPQ+WUZltY mjQacVJYatCRn+6qdLPFsUUp0AHp1jemQSU0M+aSpK3asfwiIQBy3A30QwiHRFXz OWNhzJoLys01PnWtSlcRPMrPiXKtJIRMcSovegUDc9NdM9HF15/iRZ3rqSHrOyXA kZQoQp+RU8aHdk7RV7KsM85s9Q0cKdOgvYTUiu9K/ZNd56xl+GWmvNNlSKLK6X2D 7vDu8CQ/sxUOwA1eekSX853vGlihXya/ffyQSjHR7GI9eSqUgCbe9vD1q2hKkSW1 5RaJpysroZrIVQg9M5I3emhVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoWUe4H2w 5doarTbjxFBBZ1YD0rQwHwYDVR0jBBgwFoAUyCFQSaXsETZftnQLghcGdiaArRcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDNDU5L0E5MzUwN0JDRjZE NTExRUVCODc4M0MxRUM0RjlBRTAyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJS Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUNGUVNhWHNFVFpmdG5RTGdoY0dkaWFBclJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD NDU5L0E5MzUwN0JDRjZENTExRUVCODc4M0MxRUM0RjlBRTAyL3lDRlFTYVhzRVRa ZnRuUUxnaGNHZGlhQXJSYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC2AM017/CgxAPO8oyEkhEdZmgfBO/Yq2OY3qDbNBbihHGfPyvvPK4eh iKvZzM9Uw9iiZ+Y42vPtD2MB5Jd9CkS4kC1RBcXjBn7dncnFJjdCpb6nsrX5pUqr aL55wvoh/CaJzyFRhGZf13mtWlcRyr0dzyKJ3jo+6ba+IYPyRAcnxjnJi8dFFbm+ 3uIiXxOeLt9CUh3saNrW2LiFLTDYTPdwyWetbYAXR52ywkmKOQGeIJpzXV0qjDaH USVnoencSv77K6jweLR4DNvRCzncwS0xNGof5Gy1Kfm12kot2rD3YgZJ91Q6caIv /tJt4HUyHqkzmgD0B/qhbW3WVZa4qbo= -----END CERTIFICATE-----Generated at Wed May 15 09:28:17 2024 by rpki-client on console-fra.rpki-client.org