$ rpki-client -vvf rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft File: sYTDX2rtv7hd2kET8nUuDInKOpA.mft (raw, json) Hash identifier: el6N+XdcPom9gIgB+9m8Do/mxwbWsrf+H30y9QHjDQ0= Subject key identifier: AC:D1:33:06:C9:60:9C:AC:5C:17:F1:B9:C3:E4:8A:79:95:80:FB:CD Authority key identifier: B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 Certificate issuer: /CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Certificate serial: 0A26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft Manifest number: 0A20 Signing time: Thu 02 May 2024 20:41:55 +0000 Manifest this update: Thu 02 May 2024 20:41:54 +0000 Manifest next update: Thu 09 May 2024 20:41:54 +0000 Files and hashes: 1: sYTDX2rtv7hd2kET8nUuDInKOpA.crl (hash: ihXhy36FSefwge//817ikj2i+srTIhZwJ90o91ptFWs=) 2: F9D16F1CC7D811EDB42DFF20C4F9AE02.roa (hash: oo4Z2IzwnZrGrJi36X5QXi5JdjWdK/gLBgNaCY2IPBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2598 (0xa26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Validity Not Before: May 2 20:41:54 2024 GMT Not After : May 9 20:41:54 2024 GMT Subject: CN=6633fa92-1455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0d:50:56:0f:9a:99:76:72:03:3a:b7:a7:fb: f0:39:a1:fd:cd:c8:b1:42:9e:72:f1:88:90:18:90: 00:85:78:5b:c0:c2:b0:87:a3:7f:ee:a3:48:12:87: 56:50:bf:f5:e5:6f:e3:56:ec:af:a2:41:6d:d7:0a: e0:8c:06:87:36:f4:c4:76:90:22:3c:f0:8c:6e:7d: e0:eb:b3:ab:19:5b:71:b2:0f:9a:d9:07:62:d9:99: 83:3f:15:3f:47:a4:5c:5a:8c:1b:2e:73:cf:5e:85: c4:7f:06:c1:ee:ad:ca:64:46:32:02:3f:26:5c:87: 1c:4e:6c:14:93:b2:46:36:82:76:7a:3a:83:10:d7: 7d:30:40:ae:34:1d:9a:80:49:26:b7:72:e9:17:37: 92:15:85:9a:35:4d:e0:e6:70:7c:2a:62:c9:79:a8: 4c:ad:89:d1:4b:ff:b2:29:4d:a2:d5:07:4a:95:cd: e4:9c:d5:4b:c7:e0:d6:f5:f4:91:90:af:ae:ab:d0: 91:05:cb:f9:c0:5f:f5:84:4b:24:1f:17:25:3c:ba: 76:c9:7d:9b:d4:0b:aa:fd:aa:a8:ea:d4:df:0a:f2: c4:52:b8:aa:5b:03:11:0e:f9:87:72:37:7b:33:2c: e0:b4:24:be:dc:37:dd:66:86:db:3c:88:e5:85:fd: f8:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D1:33:06:C9:60:9C:AC:5C:17:F1:B9:C3:E4:8A:79:95:80:FB:CD X509v3 Authority Key Identifier: keyid:B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:d8:b4:bf:7c:32:35:83:1f:41:02:f8:eb:3d:f3:ab:89:6b: a9:1b:22:90:68:b1:1f:ef:a0:00:a6:b2:12:76:0c:5b:d7:14: e0:27:bd:03:ee:ba:f6:9d:51:e3:85:b7:04:d0:76:b4:23:5a: 02:41:fc:dd:a3:51:ff:3f:c7:6e:ad:7e:46:bf:47:77:0c:74: 3c:3d:6f:72:fd:0f:a6:4e:88:45:8a:9a:b3:ff:cb:04:58:2d: c7:1e:60:68:1e:48:95:82:fb:6d:65:5e:44:34:ab:44:be:8e: 47:cb:e5:8e:84:12:c2:74:3e:c3:7b:f8:a1:0b:fa:0e:6c:e0: 8d:d6:d4:3d:24:c1:f9:39:4a:63:fb:5f:d7:96:53:25:52:b1: 36:3d:df:12:c7:2d:a5:0c:0f:ba:cb:dd:3d:ef:cd:b2:2b:2d: ce:a3:35:64:40:a5:93:16:c1:14:cf:7f:5a:9a:1e:2a:20:55: 42:85:7f:1d:dc:ab:1d:ef:d5:df:70:0e:6e:0f:75:8c:0f:3b: 6d:55:0f:09:28:01:b9:d0:0c:2c:1c:46:ea:6e:eb:c4:3d:89: 0a:c0:06:0b:ec:71:63:9b:99:56:85:9c:ab:a3:11:e7:89:b4: c7:b5:7f:db:80:d6:3e:ff:e5:b5:0a:8f:c8:ff:57:55:3a:1b: 46:14:5f:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg4RjQxMTAvBgNVBAUTKEIxODRDMzVGNkFFREJGQjg1RERBNDExM0YyNzUyRTBD ODlDQTNBOTAwHhcNMjQwNTAyMjA0MTU0WhcNMjQwNTA5MjA0MTU0WjAYMRYwFAYD VQQDEw02NjMzZmE5Mi0xNDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzA1QVg+amXZyAzq3p/vwOaH9zcixQp5y8YiQGJAAhXhbwMKwh6N/7qNIEodW UL/15W/jVuyvokFt1wrgjAaHNvTEdpAiPPCMbn3g67OrGVtxsg+a2Qdi2ZmDPxU/ R6RcWowbLnPPXoXEfwbB7q3KZEYyAj8mXIccTmwUk7JGNoJ2ejqDENd9MECuNB2a gEkmt3LpFzeSFYWaNU3g5nB8KmLJeahMrYnRS/+yKU2i1QdKlc3knNVLx+DW9fSR kK+uq9CRBcv5wF/1hEskHxclPLp2yX2b1Auq/aqo6tTfCvLEUriqWwMRDvmHcjd7 MyzgtCS+3DfdZobbPIjlhf34CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzRMwbJ YJysXBfxucPkinmVgPvNMB8GA1UdIwQYMBaAFLGEw19q7b+4XdpBE/J1LgyJyjqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODhGNC8wN0FFNzdDQzQ4 Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3aGQya0VUOG5VdURJbktP cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZVERYMnJ0djdoZDJrRVQ4blV1REluS09wQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODhGNC8wN0FFNzdDQzQ4Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3 aGQya0VUOG5VdURJbktPcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa2LS/fDI1gx9BAvjrPfOriWupGyKQaLEf76AAprISdgxb1xTgJ70D 7rr2nVHjhbcE0Ha0I1oCQfzdo1H/P8durX5Gv0d3DHQ8PW9y/Q+mTohFipqz/8sE WC3HHmBoHkiVgvttZV5ENKtEvo5Hy+WOhBLCdD7De/ihC/oObOCN1tQ9JMH5OUpj +1/XllMlUrE2Pd8Sxy2lDA+6y909782yKy3OozVkQKWTFsEUz39amh4qIFVChX8d 3Ksd79XfcA5uD3WMDzttVQ8JKAG50AwsHEbqbuvEPYkKwAYL7HFjm5lWhZyroxHn ibTHtX/bgNY+/+W1Co/I/1dVOhtGFF99 -----END CERTIFICATE-----Generated at Thu May 2 22:13:25 2024 by rpki-client on console-fra.rpki-client.org