$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft File: y1IFTj13aOoWtrColMdzon3qkho.mft (raw, json) Hash identifier: SZ1pzJymfRwkopM6FsAIDNyh0eN29wDfV4tJXbmL+UA= Subject key identifier: 20:73:8C:DC:42:F1:A2:88:D3:03:7C:F1:23:C5:46:8A:4E:61:78:74 Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A Certificate issuer: /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Certificate serial: 0B2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft Manifest number: 0B24 Signing time: Tue 30 Apr 2024 20:08:46 +0000 Manifest this update: Tue 30 Apr 2024 20:08:45 +0000 Manifest next update: Tue 07 May 2024 20:08:45 +0000 Files and hashes: 1: y1IFTj13aOoWtrColMdzon3qkho.crl (hash: DpVYv0yd4oDk4lheFpU+JPc6sVMPIVw/pwglyFvfyGQ=) 2: 65866C4815D111EABE986319C4F9AE02.roa (hash: bE3U6nrCmV5LZYyjfhqmrx0+q5PYDYCOOXB/IfjAEuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2859 (0xb2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Validity Not Before: Apr 30 20:08:45 2024 GMT Not After : May 7 20:08:45 2024 GMT Subject: CN=66314fce-ee5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:57:ee:ba:c6:19:e5:94:d3:b7:f4:f9:e1:d0: b5:4a:1b:46:0b:98:0e:44:5a:c0:85:f1:f2:ff:63: 11:b9:7d:95:00:6d:e2:54:45:88:ab:92:95:fc:09: da:f6:82:08:32:ea:f4:c4:b8:37:65:ac:e0:b2:1f: 72:18:a0:47:54:e2:28:e9:61:64:c4:f5:00:ed:57: 53:b0:89:a9:0d:5e:6e:3f:55:44:05:20:02:dc:c2: 7f:49:8b:31:dc:05:8a:cc:6d:21:76:68:14:08:70: 72:c3:3a:17:5e:e0:90:9e:7d:52:91:ba:68:5b:f0: 7b:6e:a8:27:6c:e0:27:93:ba:dc:e2:17:6f:9e:a0: 32:49:16:75:26:b1:16:89:92:0e:c4:68:07:10:74: e5:a8:63:53:97:38:2d:9d:7d:c8:a1:69:41:44:d5: 07:19:b8:6d:1a:1e:b8:66:ca:bc:f6:56:f4:89:35: f5:28:04:bf:68:c4:c6:dd:e0:b7:a4:c3:9a:b8:b9: 64:9d:74:01:b9:51:70:fe:03:0d:f6:61:44:87:51: 68:84:89:b2:d6:f6:ed:65:00:dd:c1:c2:2b:2f:56: 70:92:1e:cb:d3:2c:67:93:7a:24:92:91:0b:91:fe: 8b:bd:f8:8f:3f:e8:87:d4:73:bc:51:30:65:cd:3c: a1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:73:8C:DC:42:F1:A2:88:D3:03:7C:F1:23:C5:46:8A:4E:61:78:74 X509v3 Authority Key Identifier: keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:03:2c:39:84:ca:aa:e7:14:22:af:b2:70:54:ec:27:ba:c4: ee:60:cd:af:b6:43:87:fc:53:8c:df:91:47:6e:17:2a:ed:89: 62:13:50:78:e5:5e:55:89:45:86:bf:b2:fc:fd:3b:9f:c6:19: 39:13:59:27:ad:eb:78:76:b2:74:20:e1:db:3b:46:06:86:7e: 6d:79:0f:36:9f:ea:0a:74:61:82:b4:bc:26:65:0a:b9:d3:8d: de:5f:44:71:3d:43:21:5c:71:a0:82:94:7e:81:28:9f:cc:6d: 60:0f:d8:09:ae:43:0a:62:ad:77:df:ac:c1:bf:a8:11:5e:54: 4e:9e:37:59:04:ff:11:12:89:bf:59:75:09:dd:5b:33:67:96: ca:2e:f5:e7:9b:ba:33:02:65:15:09:1b:1b:23:20:38:6a:bc: a7:2f:11:54:7f:7f:56:ce:ff:7f:e2:ba:d0:b2:0e:27:29:c4: 6d:60:7a:ce:01:91:c8:2f:e1:79:06:25:75:46:b2:e5:88:cc: 50:89:e6:99:97:50:a3:1d:1d:36:45:62:01:cd:c1:8f:6e:f0: ee:23:c8:76:f3:b9:8d:79:57:af:52:b3:bf:cf:19:95:c1:e0: f7:d7:d2:34:75:26:82:23:43:ca:89:5f:40:3e:92:53:d3:fc: d2:ff:26:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI2QUMxMTAvBgNVBAUTKENCNTIwNTRFM0Q3NzY4RUExNkI2QjBBODk0Qzc3M0Ey N0RFQTkyMUEwHhcNMjQwNDMwMjAwODQ1WhcNMjQwNTA3MjAwODQ1WjAYMRYwFAYD VQQDEw02NjMxNGZjZS1lZTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1fuusYZ5ZTTt/T54dC1ShtGC5gORFrAhfHy/2MRuX2VAG3iVEWIq5KV/Ana 9oIIMur0xLg3Zazgsh9yGKBHVOIo6WFkxPUA7VdTsImpDV5uP1VEBSAC3MJ/SYsx 3AWKzG0hdmgUCHBywzoXXuCQnn1SkbpoW/B7bqgnbOAnk7rc4hdvnqAySRZ1JrEW iZIOxGgHEHTlqGNTlzgtnX3IoWlBRNUHGbhtGh64Zsq89lb0iTX1KAS/aMTG3eC3 pMOauLlknXQBuVFw/gMN9mFEh1FohImy1vbtZQDdwcIrL1Zwkh7L0yxnk3okkpEL kf6LvfiPP+iH1HO8UTBlzTyhywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBzjNxC 8aKI0wN88SPFRopOYXh0MB8GA1UdIwQYMBaAFMtSBU49d2jqFrawqJTHc6J96pIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjZBQy9EN0U5OEE2RTE1 RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FPb1d0ckNvbE1kem9uM3Fr aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxSUZUajEzYU9vV3RyQ29sTWR6b24zcWtoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjZBQy9EN0U5OEE2RTE1RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FP b1d0ckNvbE1kem9uM3FraG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMAyw5hMqq5xQir7JwVOwnusTuYM2vtkOH/FOM35FHbhcq7YliE1B4 5V5ViUWGv7L8/Tufxhk5E1knret4drJ0IOHbO0YGhn5teQ82n+oKdGGCtLwmZQq5 043eX0RxPUMhXHGggpR+gSifzG1gD9gJrkMKYq1336zBv6gRXlROnjdZBP8REom/ WXUJ3VszZ5bKLvXnm7ozAmUVCRsbIyA4arynLxFUf39Wzv9/4rrQsg4nKcRtYHrO AZHIL+F5BiV1RrLliMxQieaZl1CjHR02RWIBzcGPbvDuI8h287mNeVevUrO/zxmV weD319I0dSaCI0PKiV9APpJT0/zS/yZc -----END CERTIFICATE-----Generated at Tue Apr 30 21:38:08 2024 by rpki-client on console-fra.rpki-client.org