$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft File: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft (raw, json) Hash identifier: 07YwM3XetbAfq3KgTIHLpN4bpHG+AI4MQHwRGRPXKlY= Subject key identifier: 4C:9F:BA:CE:BF:13:23:E3:08:F5:0E:81:53:77:3F:7B:88:6E:DA:D9 Authority key identifier: 62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE Certificate issuer: /CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Certificate serial: 0BA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft Manifest number: 0B9A Signing time: Tue 30 Apr 2024 19:34:22 +0000 Manifest this update: Tue 30 Apr 2024 19:34:22 +0000 Manifest next update: Tue 07 May 2024 19:34:22 +0000 Files and hashes: 1: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl (hash: BM6CRcryCRdI8bRjLGtHMfr7DQEJ+8ugKaeMi3hHVlo=) 2: BE8369D6053711EA9A24E761C4F9AE02.roa (hash: XxAe1LiLKzhQdzJO3Lo5T8NSvmoTjAF2Km8r6YlmsIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:34:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2983 (0xba7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Validity Not Before: Apr 30 19:34:22 2024 GMT Not After : May 7 19:34:22 2024 GMT Subject: CN=663147be-d8c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:65:a0:43:6c:ac:6d:e1:6d:4e:ea:c1:a3:be: c6:7c:bd:41:4b:26:bf:bf:2f:a8:5f:c7:31:2e:68: 98:e0:7e:a0:fe:87:0c:39:b3:3b:bf:00:79:13:9d: d7:af:30:99:27:76:10:c9:2f:49:73:d2:f5:1d:a9: cd:fe:64:48:6e:7c:c3:57:68:05:ef:77:ee:57:ac: 8f:7a:23:54:52:61:49:cb:e7:58:5a:a9:7e:51:ca: 22:f7:5f:26:8d:5a:b1:e7:09:27:d3:92:d4:02:85: f1:88:82:fa:22:27:61:a3:ce:31:d4:2f:c6:aa:cf: ad:00:71:06:7a:de:f4:5e:be:fd:f1:09:74:21:01: 2d:dc:32:d1:24:84:58:3a:5e:15:1f:d3:6b:77:99: 81:7c:64:87:fa:9f:6d:00:12:b3:2e:f7:2c:b3:fe: 88:53:ab:6f:ca:fa:7c:d3:02:94:1d:33:f5:37:10: 56:78:2e:1f:cf:11:7c:cf:11:e5:0a:42:84:77:39: c6:49:fa:d7:7d:6c:a8:b8:08:a9:ba:33:34:35:13: 5e:fb:4a:ef:81:14:4f:3a:38:5e:ac:96:1a:4b:0e: 86:63:55:22:a1:7e:03:1c:c7:a3:3b:ff:54:a6:09: bb:16:62:ba:92:9c:d0:85:2c:b0:bc:42:5f:aa:5a: a9:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:9F:BA:CE:BF:13:23:E3:08:F5:0E:81:53:77:3F:7B:88:6E:DA:D9 X509v3 Authority Key Identifier: keyid:62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:49:74:5f:2c:cc:63:b7:d6:02:19:5f:16:76:96:6e:47:ac: 4a:f1:bd:de:cc:1f:77:7e:3f:41:4c:b6:33:08:86:64:46:5a: 7b:f3:32:a0:b7:67:6d:05:79:b2:05:12:9f:88:a4:5d:21:47: e8:a7:dd:35:f8:33:55:63:8a:06:2e:1a:c7:b8:3d:88:81:43: ab:c5:a6:a2:4c:af:5b:8f:31:8c:f5:e2:30:bd:0e:ba:98:80: 54:a4:ec:ec:f9:5e:74:af:98:06:f5:e9:cb:46:5c:73:f6:62: 4e:b0:75:aa:e7:a2:8a:dc:93:c9:34:75:06:4f:d3:98:74:55: d4:cb:0f:2a:a9:5c:0e:30:e5:b5:c7:5c:eb:f0:b9:5a:a8:6b: 77:72:ad:60:de:4d:78:4f:df:ca:16:ee:9b:07:2f:ca:63:ce: d3:c2:66:eb:87:a5:c2:18:6f:63:81:0e:37:b4:3d:f5:c2:a0: ea:7a:63:83:b2:6f:d7:ca:af:f8:5c:ce:7c:1d:8f:6d:46:a8: 56:01:94:74:29:69:35:c9:b6:e9:66:de:29:49:bb:fc:a2:9a: 29:db:03:32:11:36:43:d0:08:be:9e:37:fa:20:85:d5:e0:54: 13:22:cf:9e:f5:9f:db:69:7d:65:5d:6f:d4:29:66:9c:53:21: 68:c5:43:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0NkIxMTAvBgNVBAUTKDYyMkVFNzU0MzZENkYyRjM5RkIyM0QyQ0VCMjIzMzcx ODQ1NzNERkUwHhcNMjQwNDMwMTkzNDIyWhcNMjQwNTA3MTkzNDIyWjAYMRYwFAYD VQQDEw02NjMxNDdiZS1kOGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02WgQ2ysbeFtTurBo77GfL1BSya/vy+oX8cxLmiY4H6g/ocMObM7vwB5E53X rzCZJ3YQyS9Jc9L1HanN/mRIbnzDV2gF73fuV6yPeiNUUmFJy+dYWql+Ucoi918m jVqx5wkn05LUAoXxiIL6Iidho84x1C/Gqs+tAHEGet70Xr798Ql0IQEt3DLRJIRY Ol4VH9Nrd5mBfGSH+p9tABKzLvcss/6IU6tvyvp80wKUHTP1NxBWeC4fzxF8zxHl CkKEdznGSfrXfWyouAipujM0NRNe+0rvgRRPOjherJYaSw6GY1UioX4DHMejO/9U pgm7FmK6kpzQhSywvEJfqlqpiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyfus6/ EyPjCPUOgVN3P3uIbtrZMB8GA1UdIwQYMBaAFGIu51Q21vLzn7I9LOsiM3GEVz3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjQ2Qi80OTMxRUU0NjAw N0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2T2ZzajBzNnlJemNZUlhQ ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpN25WRGJXOHZPZnNqMHM2eUl6Y1lSWFBmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjQ2Qi80OTMxRUU0NjAwN0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2 T2ZzajBzNnlJemNZUlhQZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeSXRfLMxjt9YCGV8WdpZuR6xK8b3ezB93fj9BTLYzCIZkRlp78zKg t2dtBXmyBRKfiKRdIUfop901+DNVY4oGLhrHuD2IgUOrxaaiTK9bjzGM9eIwvQ66 mIBUpOzs+V50r5gG9enLRlxz9mJOsHWq56KK3JPJNHUGT9OYdFXUyw8qqVwOMOW1 x1zr8LlaqGt3cq1g3k14T9/KFu6bBy/KY87Twmbrh6XCGG9jgQ43tD31wqDqemOD sm/Xyq/4XM58HY9tRqhWAZR0KWk1ybbpZt4pSbv8opop2wMyETZD0Ai+njf6IIXV 4FQTIs+e9Z/baX1lXW/UKWacUyFoxUNZ -----END CERTIFICATE-----Generated at Tue Apr 30 21:38:08 2024 by rpki-client on console-fra.rpki-client.org