$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: APzg+KoQ3TaT19nS63SAtm/kW4eyQM8ewoGQydKR4us= Subject key identifier: 5E:5F:B7:00:93:27:AB:68:EA:A9:D7:93:DA:F9:0A:0F:06:87:21:2B Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 04ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 04D8 Signing time: Sat 27 Apr 2024 01:23:51 +0000 Manifest this update: Sat 27 Apr 2024 01:23:50 +0000 Manifest next update: Sat 04 May 2024 01:23:50 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: nviAQSRfIOGz3vVZK2WfmhjKibErpVoKpxq9irBgAiQ=) 2: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: ei7I36a/n68cmPMmbMaIHsQLIaODPqloNYHBMw6AioQ=) 3: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (hash: iS2kCadt9EPztCML62YjpO3iZQeKW9op8orLhEYixVE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 01:23:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1261 (0x4ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Apr 27 01:23:50 2024 GMT Not After : May 4 01:23:50 2024 GMT Subject: CN=662c53a7-b654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f8:23:0e:65:04:d2:21:ad:99:eb:77:fa:38: 4d:32:1a:9d:5f:64:ea:06:9c:71:c9:08:90:b3:17: ba:36:75:d5:ef:b4:9b:09:ca:e4:9e:9f:dc:58:0d: 10:7e:ee:e9:69:e6:9a:0e:63:33:81:cc:9e:38:91: 54:a7:be:35:d6:14:d6:e9:2c:c9:1e:55:f7:f4:32: 86:71:e1:71:4c:15:7f:6f:af:fe:8f:84:0d:a1:4e: d5:c8:18:bd:15:18:79:c3:25:c4:f0:bc:00:01:90: 86:a3:ef:c6:f1:8f:c7:e4:fd:3d:05:d6:93:02:a0: 8d:eb:ec:37:46:37:ab:e0:8a:8f:a5:12:eb:cc:6a: ac:40:69:35:ed:0b:81:e7:32:ef:a1:cb:54:76:5f: 26:21:8d:f9:42:79:f9:5e:ca:2b:ae:57:8e:d7:3b: 1b:3f:72:05:7f:37:52:14:6c:fc:f6:7d:b2:cd:2b: dc:92:49:d7:0c:35:1b:05:24:a2:b8:ac:bd:33:d3: 97:8b:1e:71:e6:c2:50:40:1f:c6:42:e0:ea:1d:d9: a2:3b:6c:07:6b:c7:e9:b1:d4:22:a9:a5:20:da:5e: c4:41:5b:0d:58:d7:87:c4:53:b2:b7:b2:8e:39:e7: bc:8a:89:e3:16:b2:ed:87:c1:64:26:e5:69:94:c5: c0:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:5F:B7:00:93:27:AB:68:EA:A9:D7:93:DA:F9:0A:0F:06:87:21:2B X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:73:f5:23:4a:df:b6:a9:88:63:bc:c7:a6:8b:8e:cc:42:6d: 17:ea:d1:17:37:26:7f:7e:43:f1:a2:9b:65:6b:4d:84:26:ef: 27:07:f7:f8:ca:10:57:8e:c8:0f:fe:0b:a9:95:93:ed:9d:61: 72:e1:7c:a3:39:0d:26:07:74:db:ba:b6:6f:d7:46:6f:db:7c: 67:81:6a:2d:6d:b8:89:3f:4d:e1:50:81:b6:7e:aa:93:4f:13: 27:82:0a:6d:7d:2c:96:f6:8c:c6:7a:b3:6f:0a:8e:3b:93:98: 07:b4:41:2f:73:7b:fd:48:39:c8:11:54:da:57:b6:e0:b1:cd: 08:1e:b2:ca:fd:cc:db:ca:91:7a:e4:a6:9e:98:6b:d3:20:20: b2:5e:27:35:d9:2f:2b:ea:a6:0c:73:14:62:c2:cf:70:0e:7e: 89:dc:dc:40:5d:ef:61:56:91:ed:82:63:1e:8a:5e:2e:ed:67: 22:a3:9f:ee:2f:83:09:26:65:f5:b6:70:59:46:67:da:6f:fa: 81:6f:fd:d3:5f:90:62:48:a3:7c:13:0d:81:62:25:81:ec:50: c8:4a:66:a3:e5:b4:61:40:4d:ca:2e:d5:93:84:6a:8d:01:16: ce:23:93:1d:90:09:58:94:4c:33:97:de:54:7e:45:94:41:c6: c0:e9:52:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjQwNDI3MDEyMzUwWhcNMjQwNTA0MDEyMzUwWjAYMRYwFAYD VQQDEw02NjJjNTNhNy1iNjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPgjDmUE0iGtmet3+jhNMhqdX2TqBpxxyQiQsxe6NnXV77SbCcrknp/cWA0Q fu7paeaaDmMzgcyeOJFUp7411hTW6SzJHlX39DKGceFxTBV/b6/+j4QNoU7VyBi9 FRh5wyXE8LwAAZCGo+/G8Y/H5P09BdaTAqCN6+w3Rjer4IqPpRLrzGqsQGk17QuB 5zLvoctUdl8mIY35Qnn5XsorrleO1zsbP3IFfzdSFGz89n2yzSvckknXDDUbBSSi uKy9M9OXix5x5sJQQB/GQuDqHdmiO2wHa8fpsdQiqaUg2l7EQVsNWNeHxFOyt7KO Oee8ionjFrLth8FkJuVplMXABwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5ftwCT J6to6qnXk9r5Cg8GhyErMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxc/UjSt+2qYhjvMemi47MQm0X6tEXNyZ/fkPxoptla02EJu8nB/f4 yhBXjsgP/guplZPtnWFy4XyjOQ0mB3TburZv10Zv23xngWotbbiJP03hUIG2fqqT TxMnggptfSyW9ozGerNvCo47k5gHtEEvc3v9SDnIEVTaV7bgsc0IHrLK/czbypF6 5KaemGvTICCyXic12S8r6qYMcxRiws9wDn6J3NxAXe9hVpHtgmMeil4u7Wcio5/u L4MJJmX1tnBZRmfab/qBb/3TX5BiSKN8Ew2BYiWB7FDISmaj5bRhQE3KLtWThGqN ARbOI5MdkAlYlEwzl95UfkWUQcbA6VJX -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:48 2024 by rpki-client on console-ams.rpki-client.org