$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: OD8gVSA1tR09qnGXezF9xzKk88W0noG5mvBgo92itWo= Subject key identifier: FB:A0:62:3C:5A:06:8F:04:C8:FD:C8:A2:AC:D3:24:B2:03:B7:E6:0B Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 024F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 0FD8 Signing time: Sat 18 May 2024 18:33:20 +0000 Manifest this update: Sat 18 May 2024 18:33:20 +0000 Manifest next update: Sat 25 May 2024 18:33:20 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: OUW+BD+sfMnFTa4akUb8oxqBhyd5q87PsY+ts0GXdTc=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: I6dKEsr0XquVk+g4ftlgsCXZuAsReZBSv18mG+lwUIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: May 18 18:33:20 2024 GMT Not After : May 25 18:33:20 2024 GMT Subject: CN=6648f470-5b6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b2:a0:36:31:f3:e0:f6:d1:a0:f9:f6:20:6d: 8b:c0:68:d5:19:d6:7d:90:05:b7:9b:6b:d7:6e:01: c5:a0:db:b9:e8:0e:ba:28:59:c9:c2:ca:e1:42:21: 18:70:14:d1:67:32:a7:fc:83:d5:a9:4b:04:a3:9e: f9:34:fd:dd:ea:57:66:e6:10:b8:44:b6:d8:7e:33: d2:f1:69:b8:b3:6d:08:e8:1d:a2:39:04:65:95:b5: 68:6d:4f:46:e9:86:19:58:df:d3:50:82:cf:c2:5c: f0:85:ee:1d:b9:e3:fc:1e:2f:bb:fe:11:ad:f1:ec: 60:99:d8:59:d2:f7:a4:46:75:87:51:2d:a0:4d:ca: 21:e8:ff:53:10:a3:4f:e9:32:0c:e9:50:40:60:d5: af:b0:53:1b:76:13:f0:58:a9:4d:8b:78:e6:e6:53: 7b:7e:80:96:7e:6b:56:2e:44:90:22:40:72:ab:26: 42:59:a5:3a:b0:56:63:73:a0:cb:83:1b:a5:80:6c: bb:a5:1b:07:fa:78:55:48:91:0d:0c:c1:7d:c9:a5: 72:86:cd:60:0b:c4:93:b5:33:fa:cc:8c:58:0d:7c: 52:9b:13:46:17:7a:54:44:40:08:18:98:ec:59:50: 08:e0:bb:1d:22:bd:94:b0:7a:d4:98:f7:75:60:87: c8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A0:62:3C:5A:06:8F:04:C8:FD:C8:A2:AC:D3:24:B2:03:B7:E6:0B X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:cb:98:bb:0b:f7:23:ea:df:a2:99:45:bc:78:5e:4f:9b:00: f4:07:c7:3d:63:25:5c:cf:85:dc:af:03:61:02:ee:53:8f:a9: c3:62:20:dd:2e:f8:fc:be:9e:2e:26:34:f5:9d:48:91:54:84: 5d:18:50:a2:3a:0e:24:62:42:ab:2e:92:a0:0d:75:52:44:eb: 8a:1d:9a:38:45:af:6d:77:8a:4a:d5:d0:3d:6e:b0:12:5d:e1: 85:6f:3a:8f:13:49:41:3e:5f:bc:e5:df:d6:fb:fb:a7:69:74: 83:ac:64:a1:45:3f:70:ba:1b:3b:5e:e8:a5:8f:d4:9b:7a:74: 65:23:51:bc:36:34:44:70:0d:ea:86:be:53:be:43:ca:51:85: dc:7b:d2:97:64:7e:ac:97:eb:32:ff:1b:0f:88:d9:8e:39:3f: bf:ad:87:67:12:89:79:3b:44:bf:37:06:c2:7c:f3:1c:9e:f1: e0:39:ed:0a:eb:bd:cb:e6:b0:c7:7a:d7:31:70:36:3a:b2:c9: 26:51:20:a2:a3:3e:af:1a:6c:b5:10:de:8b:1f:76:a5:6e:35: 4e:ff:5c:18:9f:fd:e9:4d:5f:1f:bf:b8:4f:5e:83:48:71:f8: cb:cd:69:2d:69:12:c6:03:2e:19:2e:1f:37:4f:b5:bf:fc:57: c3:48:f1:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjQwNTE4MTgzMzIwWhcNMjQwNTI1MTgzMzIwWjAYMRYwFAYD VQQDEw02NjQ4ZjQ3MC01YjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbKgNjHz4PbRoPn2IG2LwGjVGdZ9kAW3m2vXbgHFoNu56A66KFnJwsrhQiEY cBTRZzKn/IPVqUsEo575NP3d6ldm5hC4RLbYfjPS8Wm4s20I6B2iOQRllbVobU9G 6YYZWN/TUILPwlzwhe4dueP8Hi+7/hGt8exgmdhZ0vekRnWHUS2gTcoh6P9TEKNP 6TIM6VBAYNWvsFMbdhPwWKlNi3jm5lN7foCWfmtWLkSQIkByqyZCWaU6sFZjc6DL gxulgGy7pRsH+nhVSJENDMF9yaVyhs1gC8STtTP6zIxYDXxSmxNGF3pUREAIGJjs WVAI4LsdIr2UsHrUmPd1YIfI6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPugYjxa Bo8EyP3IoqzTJLIDt+YLMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBky5i7C/cj6t+imUW8eF5PmwD0B8c9YyVcz4XcrwNhAu5Tj6nDYiDd Lvj8vp4uJjT1nUiRVIRdGFCiOg4kYkKrLpKgDXVSROuKHZo4Ra9td4pK1dA9brAS XeGFbzqPE0lBPl+85d/W+/unaXSDrGShRT9wuhs7Xuilj9SbenRlI1G8NjREcA3q hr5TvkPKUYXce9KXZH6sl+sy/xsPiNmOOT+/rYdnEol5O0S/NwbCfPMcnvHgOe0K 673L5rDHetcxcDY6sskmUSCioz6vGmy1EN6LH3albjVO/1wYn/3pTV8fv7hPXoNI cfjLzWktaRLGAy4ZLh83T7W//FfDSPEL -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org