$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft File: ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft (raw, json) Hash identifier: NBUqnTT43SogfxgnB8zZECjoUVYZPFXokjb6ip5NmqY= Subject key identifier: E8:FA:AB:E1:A6:55:F9:FC:00:67:13:D3:47:53:99:37:29:B4:3E:80 Authority key identifier: C9:27:7F:02:9C:15:B3:37:95:36:66:F7:4B:9C:7E:6C:B3:90:7F:44 Certificate issuer: /CN=A91F0DAC/serialNumber=C9277F029C15B337953666F74B9C7E6CB3907F44 Certificate serial: 0F57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft Manifest number: 0F3C Signing time: Sun 02 Jun 2024 18:26:34 +0000 Manifest this update: Sun 02 Jun 2024 18:26:33 +0000 Manifest next update: Sun 09 Jun 2024 18:26:33 +0000 Files and hashes: 1: ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl (hash: lATHLB4WUQSLYSwD3rqTY/HsMEnQDFy/20sxX+Ay+I4=) 2: BD1534BA46D211ECAF5C2743C4F9AE02.roa (hash: xF3fHzk9DYd6EdsAu+WdSTL9IPm2n5TpZO4+qLqe2Lw=) 3: 3C544C9446CD11EC988AFB65C4F9AE02.roa (hash: VdyuTMaP6//q4tcIEz/grf0oQM0ocoBS0ZkNz5cZyC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 18:23:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3927 (0xf57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0DAC/serialNumber=C9277F029C15B337953666F74B9C7E6CB3907F44 Validity Not Before: Jun 2 18:26:33 2024 GMT Not After : Jun 9 18:26:33 2024 GMT Subject: CN=665cb959-b354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4e:8f:7b:46:48:15:9e:e5:cb:d7:41:2b:6c: 5b:9e:0c:4c:f3:2a:d8:9e:1f:fd:0a:4c:71:30:16: d4:fe:f5:62:22:04:24:f9:73:dc:b1:45:82:24:2a: 4a:f7:b8:ba:78:ba:80:e6:ce:9e:49:99:c3:9e:99: 7e:7f:72:ef:da:ce:7d:77:de:6b:82:94:0e:c0:6f: 84:aa:0e:0a:56:d5:3e:aa:18:47:02:b7:66:f5:55: a9:0d:1d:ee:5f:8b:90:2c:f9:c4:28:0f:88:eb:8a: 0d:a3:93:f5:c0:71:e5:2c:1a:74:86:f6:7c:1e:35: bf:fd:d0:ab:e5:af:22:41:51:8e:31:5b:4c:a2:2a: 06:b9:96:5c:c3:83:27:52:3e:ad:91:7f:32:51:31: ee:3f:82:d8:94:25:0f:79:1f:ac:51:37:66:a5:95: cc:94:82:1e:f1:0e:8d:04:70:35:c8:6f:a6:d5:5d: f7:c3:5e:3b:7d:93:2c:b9:ab:43:dd:b0:d7:4c:47: 62:cd:6a:f5:dc:43:2c:59:1a:a2:c6:bf:2d:77:11: b0:80:a8:58:0e:2a:d0:38:a9:23:e1:8a:11:e5:d4: cf:b5:f5:de:dd:cb:66:73:00:c5:84:da:83:2b:09: 5e:99:f1:a9:15:06:a4:97:81:4c:45:b8:35:e3:14: 13:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:FA:AB:E1:A6:55:F9:FC:00:67:13:D3:47:53:99:37:29:B4:3E:80 X509v3 Authority Key Identifier: keyid:C9:27:7F:02:9C:15:B3:37:95:36:66:F7:4B:9C:7E:6C:B3:90:7F:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:f6:5e:3c:5c:b9:75:e3:0f:d3:8f:aa:d7:cc:fc:39:76:6b: 48:d1:af:c9:2e:57:95:77:06:51:fb:b9:ee:6a:99:3a:d3:c4: 36:e0:88:bf:41:d7:e0:ef:0d:48:d6:c0:85:84:3f:20:c7:84: 99:71:7a:ad:70:b8:66:ab:8d:d4:a5:1d:fe:06:46:41:32:9a: c6:14:3c:15:9b:9e:de:c2:ac:48:c6:68:af:39:71:a4:d6:bb: 55:b3:d2:93:d2:0b:1c:c4:48:3b:8f:8f:08:40:af:5a:96:7d: 27:f0:f6:7f:3d:92:e5:3a:46:a6:0a:22:84:f8:59:ac:70:c8: 3e:31:91:8d:5a:c9:57:11:e4:9c:20:a5:91:ff:09:42:ea:57: 54:12:fc:c0:cc:8a:b3:9e:eb:70:59:ea:de:ad:10:77:b3:7d: a8:99:20:81:e6:25:93:b6:51:03:dc:52:e5:e6:25:55:c8:7f: 9c:44:8d:b4:c5:b9:cf:08:d8:a0:b9:0f:e0:1a:bd:df:41:7a: 83:73:af:1c:60:43:42:73:1b:2f:7a:9f:cf:ed:e3:0b:f2:0b: ca:b9:dc:8e:4d:ce:cd:2f:84:d4:41:f5:e2:b4:2d:59:8d:89: ce:bd:4f:d9:8c:17:bb:50:f1:53:5c:88:f4:de:22:98:13:5f: ea:11:eb:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEQUMxMTAvBgNVBAUTKEM5Mjc3RjAyOUMxNUIzMzc5NTM2NjZGNzRCOUM3RTZD QjM5MDdGNDQwHhcNMjQwNjAyMTgyNjMzWhcNMjQwNjA5MTgyNjMzWjAYMRYwFAYD VQQDEw02NjVjYjk1OS1iMzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArk6Pe0ZIFZ7ly9dBK2xbngxM8yrYnh/9CkxxMBbU/vViIgQk+XPcsUWCJCpK 97i6eLqA5s6eSZnDnpl+f3Lv2s59d95rgpQOwG+Eqg4KVtU+qhhHArdm9VWpDR3u X4uQLPnEKA+I64oNo5P1wHHlLBp0hvZ8HjW//dCr5a8iQVGOMVtMoioGuZZcw4Mn Uj6tkX8yUTHuP4LYlCUPeR+sUTdmpZXMlIIe8Q6NBHA1yG+m1V33w147fZMsuatD 3bDXTEdizWr13EMsWRqixr8tdxGwgKhYDirQOKkj4YoR5dTPtfXe3ctmcwDFhNqD KwlemfGpFQakl4FMRbg14xQToQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOj6q+Gm Vfn8AGcT00dTmTcptD6AMB8GA1UdIwQYMBaAFMknfwKcFbM3lTZm90ucfmyzkH9E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMERBQy8wQ0UxOTY0RTRG Q0ExMUU5QjM4QkEyMkJDNEY5QUUwMi95U2RfQXB3VnN6ZVZObWIzUzV4LWJMT1Fm MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTZF9BcHdWc3plVk5tYjNTNXgtYkxPUWYwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MERBQy8wQ0UxOTY0RTRGQ0ExMUU5QjM4QkEyMkJDNEY5QUUwMi95U2RfQXB3VnN6 ZVZObWIzUzV4LWJMT1FmMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD9l48XLl14w/Tj6rXzPw5dmtI0a/JLleVdwZR+7nuapk608Q24Ii/ Qdfg7w1I1sCFhD8gx4SZcXqtcLhmq43UpR3+BkZBMprGFDwVm57ewqxIxmivOXGk 1rtVs9KT0gscxEg7j48IQK9aln0n8PZ/PZLlOkamCiKE+FmscMg+MZGNWslXEeSc IKWR/wlC6ldUEvzAzIqznutwWererRB3s32omSCB5iWTtlED3FLl5iVVyH+cRI20 xbnPCNiguQ/gGr3fQXqDc68cYENCcxsvep/P7eML8gvKudyOTc7NL4TUQfXitC1Z jYnOvU/ZjBe7UPFTXIj03iKYE1/qEesr -----END CERTIFICATE-----Generated at Sun Jun 2 19:20:01 2024 by rpki-client on console-fra.rpki-client.org