$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft File: Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft (raw, json) Hash identifier: wWLH+wVUgcziETMzw0a4x6KNBlj+B2BqZfMuCqu08qU= Subject key identifier: ED:C7:34:BF:46:72:E5:7A:8E:97:8E:B1:BD:46:80:E8:C0:6C:4B:9F Authority key identifier: 63:EB:A4:85:02:51:13:40:B8:25:26:1D:5E:C2:0A:91:27:AF:29:5E Certificate issuer: /CN=A91F7315/serialNumber=63EBA48502511340B825261D5EC20A9127AF295E Certificate serial: 0A93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft Manifest number: 1222 Signing time: Thu 02 May 2024 20:19:43 +0000 Manifest this update: Thu 02 May 2024 20:19:42 +0000 Manifest next update: Thu 09 May 2024 20:19:42 +0000 Files and hashes: 1: Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl (hash: fPp742hq4fMZUPl2pD2xV7JYugD2IS/XS+ZrvdicMBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2707 (0xa93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315/serialNumber=63EBA48502511340B825261D5EC20A9127AF295E Validity Not Before: May 2 20:19:42 2024 GMT Not After : May 9 20:19:42 2024 GMT Subject: CN=6633f55e-e879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d9:8e:9c:a6:b7:2a:59:83:40:f0:42:a1:53: 47:3d:c0:26:10:34:d7:11:7c:87:47:7d:33:d6:47: 4b:e7:a9:90:a6:b7:3e:08:8b:f1:08:e9:a9:40:46: 2f:c2:69:7a:8b:ec:16:e5:07:df:82:8b:52:26:7b: e1:37:1c:b0:6a:89:07:f1:55:44:ac:82:88:2d:d5: 16:02:46:af:8b:c7:05:39:9c:e0:12:bb:38:9f:17: 81:32:ce:83:c2:26:20:f6:9a:20:2f:23:8c:b4:07: 15:26:4e:03:35:62:c1:53:c5:46:3e:a7:aa:31:6f: 9f:b7:1c:03:0a:90:22:8e:dd:da:86:cb:2e:4c:1f: ce:a7:3b:da:83:d8:70:7e:2a:73:fa:9e:6f:93:fa: f0:58:3d:04:da:c1:64:a8:b9:f8:93:1e:89:9b:0c: b9:19:20:36:d3:06:41:69:9c:0d:63:74:78:8f:cf: 8c:25:8d:81:e4:a2:3c:a4:12:66:8e:30:ab:c7:80: 8a:f1:52:75:15:8a:28:a2:a2:08:7f:76:18:aa:69: c6:90:a0:91:2c:c4:e0:b8:ec:00:ca:dc:9d:2f:d0: 76:fe:61:4b:a1:82:40:ce:dd:94:83:bf:90:e9:11: 0d:b6:9a:c0:9a:22:3d:a4:a2:02:60:8f:cb:ea:51: d9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:C7:34:BF:46:72:E5:7A:8E:97:8E:B1:BD:46:80:E8:C0:6C:4B:9F X509v3 Authority Key Identifier: keyid:63:EB:A4:85:02:51:13:40:B8:25:26:1D:5E:C2:0A:91:27:AF:29:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:6f:2a:63:be:c0:11:1f:46:b8:22:f2:79:c0:5f:14:6e:3b: 69:e7:01:c1:8d:98:08:93:16:19:f4:48:57:5d:be:4b:f4:62: 30:10:50:2b:a9:58:bf:10:f8:88:57:cf:f1:6a:61:35:89:d7: 43:ae:c5:3d:ea:15:4e:cf:d1:86:78:80:c2:02:46:73:24:2c: b8:19:12:a0:3b:51:f2:0f:b0:45:25:44:cb:b6:30:42:c5:fd: fb:4c:41:63:27:2c:ed:c0:34:c1:1c:ae:07:40:1d:91:19:91: d0:c1:cb:32:ae:b8:43:2b:46:c7:61:fd:bc:7b:73:65:7c:8f: a9:0e:a7:74:7c:a5:33:cb:15:5e:50:d3:f4:b8:ea:50:d5:21: ef:49:7f:47:01:24:13:41:bc:61:03:e7:f4:a5:f4:1d:7e:c1: c6:f6:5a:e1:7c:ae:e9:a6:23:de:33:5b:86:1b:f7:8d:45:c2: b3:00:82:72:f9:86:00:2a:6e:ec:2d:57:e8:f4:e6:50:de:ea: 93:1c:b2:3b:fe:14:b2:38:eb:3c:45:d2:62:03:cf:a7:dd:af: 7d:76:dd:a7:5c:c5:86:50:14:3c:cb:ae:59:67:a5:26:35:5b: 61:52:2a:05:d2:cf:93:45:85:7e:76:d0:ac:5b:23:89:20:e1: 64:97:c0:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKDYzRUJBNDg1MDI1MTEzNDBCODI1MjYxRDVFQzIwQTkx MjdBRjI5NUUwHhcNMjQwNTAyMjAxOTQyWhcNMjQwNTA5MjAxOTQyWjAYMRYwFAYD VQQDEw02NjMzZjU1ZS1lODc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNmOnKa3KlmDQPBCoVNHPcAmEDTXEXyHR30z1kdL56mQprc+CIvxCOmpQEYv wml6i+wW5QffgotSJnvhNxywaokH8VVErIKILdUWAkavi8cFOZzgErs4nxeBMs6D wiYg9pogLyOMtAcVJk4DNWLBU8VGPqeqMW+ftxwDCpAijt3ahssuTB/Opzvag9hw fipz+p5vk/rwWD0E2sFkqLn4kx6Jmwy5GSA20wZBaZwNY3R4j8+MJY2B5KI8pBJm jjCrx4CK8VJ1FYoooqIIf3YYqmnGkKCRLMTguOwAytydL9B2/mFLoYJAzt2Ug7+Q 6RENtprAmiI9pKICYI/L6lHZ2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3HNL9G cuV6jpeOsb1GgOjAbEufMB8GA1UdIwQYMBaAFGPrpIUCURNAuCUmHV7CCpEnryle MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi9ZLXVraFFKUkUwQzRKU1lkWHNJS2tTZXZL VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktdWtoUUpSRTBDNEpTWWRYc0lLa1NldktWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi9ZLXVraFFKUkUw QzRKU1lkWHNJS2tTZXZLVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqbypjvsARH0a4IvJ5wF8Ubjtp5wHBjZgIkxYZ9EhXXb5L9GIwEFAr qVi/EPiIV8/xamE1iddDrsU96hVOz9GGeIDCAkZzJCy4GRKgO1HyD7BFJUTLtjBC xf37TEFjJyztwDTBHK4HQB2RGZHQwcsyrrhDK0bHYf28e3NlfI+pDqd0fKUzyxVe UNP0uOpQ1SHvSX9HASQTQbxhA+f0pfQdfsHG9lrhfK7ppiPeM1uGG/eNRcKzAIJy +YYAKm7sLVfo9OZQ3uqTHLI7/hSyOOs8RdJiA8+n3a99dt2nXMWGUBQ8y65ZZ6Um NVthUioF0s+TRYV+dtCsWyOJIOFkl8Df -----END CERTIFICATE-----Generated at Thu May 2 22:28:59 2024 by rpki-client on console-ams.rpki-client.org