$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft File: yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft (raw, json) Hash identifier: WumjWymuLiB66Sn5KpgvNO2ExkKMm4rlkzkuFfjeMbc= Subject key identifier: A3:AE:1D:8E:89:82:F8:71:39:BD:34:C5:25:6A:0D:81:13:8A:DB:95 Authority key identifier: CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D Certificate issuer: /CN=A91DE352/serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Certificate serial: 0461 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft Manifest number: 045D Signing time: Sun 19 May 2024 01:49:51 +0000 Manifest this update: Sun 19 May 2024 01:49:51 +0000 Manifest next update: Sun 26 May 2024 01:49:51 +0000 Files and hashes: 1: yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl (hash: HY/emEd1bqi4MnAkd6/7go5M7chUeb+EDcGS/9uA8yI=) 2: F1C77A3C73E711ECA415F87FC4F9AE02.roa (hash: icMuekPT+somvjnbTIYNPF5q9vOtLMQKPg3cRa6WorY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1121 (0x461) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE352/serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Validity Not Before: May 19 01:49:51 2024 GMT Not After : May 26 01:49:51 2024 GMT Subject: CN=66495abf-5071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a1:83:6c:90:30:17:dc:3f:50:53:5c:0a:c1: f0:0e:b9:2e:c1:fd:8f:0b:01:f9:a7:c3:f0:11:77: fd:23:91:3b:69:59:80:a1:48:92:d0:11:e0:42:90: 6f:18:3b:a6:03:a1:ea:27:b6:c8:c0:d5:da:97:c1: cb:14:bc:ba:02:1d:ad:6d:ca:58:41:03:2d:3f:5d: e4:c3:49:42:9c:80:d5:52:ee:30:2f:c7:ca:cd:23: 9d:25:2f:15:ff:71:a8:ce:99:83:8b:ed:3e:11:21: f8:a5:67:a6:fa:fd:c1:dd:81:d3:44:92:f0:1b:18: e8:33:b2:b7:4a:34:02:88:82:ac:fa:72:ad:a8:38: 32:6b:38:f7:15:41:d0:f3:64:1f:f5:27:81:06:1a: fd:a4:e2:6f:d3:32:a9:e3:4b:27:b2:e5:aa:1e:08: 8d:ba:67:5b:91:74:9e:8e:a2:e7:c4:14:1d:65:d2: 73:0d:e7:49:ec:ac:4d:6e:f4:39:f6:26:57:d1:0f: 7b:6f:3d:91:cc:04:59:db:e1:e4:b7:6d:78:4d:08: 2c:6f:12:08:96:c0:ff:98:fa:82:6c:25:ec:cb:0d: 4a:45:23:64:89:ca:f8:8b:cd:03:92:c7:d5:97:a2: 01:2c:ba:06:90:e3:ee:c7:5f:a2:41:bb:6f:89:0a: 91:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:AE:1D:8E:89:82:F8:71:39:BD:34:C5:25:6A:0D:81:13:8A:DB:95 X509v3 Authority Key Identifier: keyid:CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:ef:f3:72:5b:80:fe:79:f6:c7:3c:1f:8e:c1:e3:26:4f:02: 1c:b3:04:06:b4:d0:41:86:36:a0:19:33:31:19:87:22:e1:4c: 27:5f:ec:17:4e:87:b2:a0:28:ef:1c:18:8a:48:91:74:97:fd: 85:21:16:de:c2:d9:16:74:8d:5d:18:0b:b0:0a:7f:12:80:c6: c5:74:a9:8b:52:64:2f:05:39:46:57:2f:82:1c:e1:6e:54:11: d5:74:4e:95:19:80:20:ad:d4:2e:64:89:c3:8d:fb:52:84:39: d5:d3:f4:7e:60:c7:81:fd:27:e5:89:54:29:45:82:f9:82:cb: 13:88:3f:bf:9f:65:4b:bb:d8:ca:88:6c:84:41:e8:18:8f:32: ab:ac:09:01:30:b2:49:fd:f1:46:05:1b:83:bc:77:be:87:3a: 1a:70:d9:f5:23:23:57:aa:36:02:08:46:d0:87:1a:2e:e3:06: a1:5a:51:ae:71:cc:0a:ea:5c:67:65:8a:27:cd:b2:19:cb:e4: 1b:92:53:90:d9:90:38:ed:3c:59:2e:47:49:53:97:c4:5e:6f: 90:13:14:59:c5:39:3f:28:62:c0:a9:ea:26:9b:32:52:5a:ad: 34:54:f8:98:77:b0:a7:a8:94:1f:0c:d7:d4:a6:06:d2:64:9e: ed:0b:56:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzNTIxMTAvBgNVBAUTKENBQTZFQjk5QjNGRTBFRkI2NUQzOEYxNUIyQUFFNERD MzlEQUIzMUQwHhcNMjQwNTE5MDE0OTUxWhcNMjQwNTI2MDE0OTUxWjAYMRYwFAYD VQQDEw02NjQ5NWFiZi01MDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoqGDbJAwF9w/UFNcCsHwDrkuwf2PCwH5p8PwEXf9I5E7aVmAoUiS0BHgQpBv GDumA6HqJ7bIwNXal8HLFLy6Ah2tbcpYQQMtP13kw0lCnIDVUu4wL8fKzSOdJS8V /3GozpmDi+0+ESH4pWem+v3B3YHTRJLwGxjoM7K3SjQCiIKs+nKtqDgyazj3FUHQ 82Qf9SeBBhr9pOJv0zKp40snsuWqHgiNumdbkXSejqLnxBQdZdJzDedJ7KxNbvQ5 9iZX0Q97bz2RzARZ2+Hkt214TQgsbxIIlsD/mPqCbCXsyw1KRSNkicr4i80DksfV l6IBLLoGkOPux1+iQbtviQqR1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKOuHY6J gvhxOb00xSVqDYETituVMB8GA1UdIwQYMBaAFMqm65mz/g77ZdOPFbKq5Nw52rMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTM1Mi9DOEUyMkU4QTAx MTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2dGwwNDhWc3FyazNEbmFz eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxYnJtYlAtRHZ0bDA0OFZzcXJrM0RuYXN4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTM1Mi9DOEUyMkU4QTAxMTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2 dGwwNDhWc3FyazNEbmFzeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL7/NyW4D+efbHPB+OweMmTwIcswQGtNBBhjagGTMxGYci4UwnX+wX ToeyoCjvHBiKSJF0l/2FIRbewtkWdI1dGAuwCn8SgMbFdKmLUmQvBTlGVy+CHOFu VBHVdE6VGYAgrdQuZInDjftShDnV0/R+YMeB/SfliVQpRYL5gssTiD+/n2VLu9jK iGyEQegYjzKrrAkBMLJJ/fFGBRuDvHe+hzoacNn1IyNXqjYCCEbQhxou4wahWlGu ccwK6lxnZYonzbIZy+QbklOQ2ZA47TxZLkdJU5fEXm+QExRZxTk/KGLAqeommzJS Wq00VPiYd7CnqJQfDNfUpgbSZJ7tC1YD -----END CERTIFICATE-----Generated at Sun May 19 02:59:15 2024 by rpki-client on console-ams.rpki-client.org