$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: uxoPCyU/ilwrwz1ywAujZIhpNw07+CJrNvDOJEqxWls= Subject key identifier: 51:24:FB:01:46:A5:4B:25:3B:22:44:C0:61:83:41:28:95:D1:74:48 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: C1 Signing time: Wed 01 May 2024 06:41:02 +0000 Manifest this update: Wed 01 May 2024 06:41:01 +0000 Manifest next update: Wed 08 May 2024 06:41:01 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: +h/+/KOqIDTbJkRnH9Y1bYGx48VjcyMm6dV/1qycjd0=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: TdhZIYOqiSxv9GOoUzAaigjvIFJrtJpP2QczwEIQ1mA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: May 1 06:41:01 2024 GMT Not After : May 8 06:41:01 2024 GMT Subject: CN=6631e3fe-b2d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b8:9a:5b:07:1c:18:99:4b:7e:2b:54:42:34: 36:d1:72:14:b3:d4:12:23:d1:d0:72:66:70:9f:02: b9:6b:4b:7b:d1:ef:80:86:61:3d:1c:5e:a0:42:70: 24:b2:cd:80:79:a1:73:cd:41:a5:c4:7a:74:37:d2: e1:90:b2:a3:73:67:49:5f:58:04:2e:02:80:15:69: b8:88:00:4b:f9:56:b1:b6:6b:31:54:cb:ad:92:19: 28:16:8a:f5:5d:eb:43:98:2e:cd:54:40:12:7f:d0: d8:4b:77:5b:a1:93:91:f0:ea:35:6d:6a:71:bf:e6: 09:a2:1c:60:bf:06:02:41:f6:21:67:6c:40:e7:ad: c9:ea:24:d8:9a:f8:2b:a7:4a:02:16:23:cb:52:12: 82:3b:cf:db:87:d4:90:e2:29:d8:60:31:0b:2f:16: b3:69:b6:d0:51:e8:23:03:d2:93:e0:aa:75:d6:08: f7:f5:8b:d3:09:ad:0a:1f:ee:02:b8:99:46:ee:1e: 92:1e:46:b2:19:96:4c:4d:5f:d8:cf:a8:1c:ee:75: 34:79:46:7c:f3:55:f4:8a:64:de:d7:91:35:59:4c: 10:50:70:b3:9d:8f:d0:a5:af:75:25:9f:59:04:8d: 22:42:09:f6:ad:ec:35:92:53:b6:ac:d0:e0:e2:49: 6d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:24:FB:01:46:A5:4B:25:3B:22:44:C0:61:83:41:28:95:D1:74:48 X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:36:04:c6:96:8e:a8:25:a0:e4:18:d9:63:f8:b7:5a:fb:9a: cb:d8:e2:2e:ca:fd:6b:18:30:dc:da:8d:4e:cd:ba:f4:8c:e3: 29:55:61:07:ee:7b:70:12:ab:a1:a1:1b:30:10:3e:c5:06:0d: a1:e0:83:29:57:ef:e9:b2:45:56:59:9a:d9:5d:a4:2c:b6:14: cc:99:7c:1c:7d:78:6e:0f:93:75:43:e5:2c:41:bd:58:66:f8: f3:1f:06:0b:85:ca:a0:de:e8:f1:a8:35:3b:fd:b5:04:d0:34: 57:f0:62:a4:c6:2f:ec:c4:2f:5f:ad:fc:23:f4:4d:5f:fe:0c: 80:ad:74:ef:44:c9:94:f5:46:86:71:68:14:ad:98:74:56:4b: 86:f8:0a:3e:50:bc:7b:bd:14:e1:86:12:f8:67:ad:d3:57:34: 07:42:81:6f:bb:ab:4d:19:4c:9f:2d:4e:93:5c:52:c1:e4:00: 1f:5b:f6:6f:43:41:d3:a2:93:cf:2b:c3:5a:7b:08:7b:26:d3: 40:7d:df:fc:e8:6f:9e:cc:c3:8f:ea:c0:39:36:cb:8d:66:49: 13:bd:1f:62:08:d0:98:9e:ec:83:31:db:5e:02:08:ca:44:57: 36:4a:83:e8:73:a0:8c:0b:bb:1d:37:3d:7a:7f:34:b1:a1:49: c5:49:28:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjQwNTAxMDY0MTAxWhcNMjQwNTA4MDY0MTAxWjAYMRYwFAYD VQQDEw02NjMxZTNmZS1iMmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4biaWwccGJlLfitUQjQ20XIUs9QSI9HQcmZwnwK5a0t70e+AhmE9HF6gQnAk ss2AeaFzzUGlxHp0N9LhkLKjc2dJX1gELgKAFWm4iABL+VaxtmsxVMutkhkoFor1 XetDmC7NVEASf9DYS3dboZOR8Oo1bWpxv+YJohxgvwYCQfYhZ2xA563J6iTYmvgr p0oCFiPLUhKCO8/bh9SQ4inYYDELLxazabbQUegjA9KT4Kp11gj39YvTCa0KH+4C uJlG7h6SHkayGZZMTV/Yz6gc7nU0eUZ881X0imTe15E1WUwQUHCznY/Qpa91JZ9Z BI0iQgn2rew1klO2rNDg4kltPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEk+wFG pUslOyJEwGGDQSiV0XRIMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3NgTGlo6oJaDkGNlj+Lda+5rL2OIuyv1rGDDc2o1Ozbr0jOMpVWEH 7ntwEquhoRswED7FBg2h4IMpV+/pskVWWZrZXaQsthTMmXwcfXhuD5N1Q+UsQb1Y ZvjzHwYLhcqg3ujxqDU7/bUE0DRX8GKkxi/sxC9frfwj9E1f/gyArXTvRMmU9UaG cWgUrZh0VkuG+Ao+ULx7vRThhhL4Z63TVzQHQoFvu6tNGUyfLU6TXFLB5AAfW/Zv Q0HTopPPK8Naewh7JtNAfd/86G+ezMOP6sA5NsuNZkkTvR9iCNCYnuyDMdteAgjK RFc2SoPoc6CMC7sdNz16fzSxoUnFSSg/ -----END CERTIFICATE-----Generated at Wed May 1 07:55:43 2024 by rpki-client on console-fra.rpki-client.org