$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft File: 1Ycen8b73n3HG36JXIoEw9ACHYU.mft (raw, json) Hash identifier: r7UU9WTGFKJvx1kFF+kC5Pp3NdAyRjxDnoheVOJbCIs= Subject key identifier: 94:02:5F:F6:EE:A1:3F:8B:21:6C:12:3F:F7:D2:5D:F6:57:C6:5E:07 Authority key identifier: D5:87:1E:9F:C6:FB:DE:7D:C7:1B:7E:89:5C:8A:04:C3:D0:02:1D:85 Certificate issuer: /CN=A91F8A49/serialNumber=D5871E9FC6FBDE7DC71B7E895C8A04C3D0021D85 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft Manifest number: 87 Signing time: Wed 15 May 2024 07:13:07 +0000 Manifest this update: Wed 15 May 2024 07:13:07 +0000 Manifest next update: Wed 22 May 2024 07:13:07 +0000 Files and hashes: 1: 1Ycen8b73n3HG36JXIoEw9ACHYU.crl (hash: bot2NYEfYPEL4yMFLPiKAhzAdx2y9KMDQ3MV1+/fW1Y=) 2: B78CCA4E4C5711EE9FE2EA35C4F9AE02.roa (hash: KhB6nDRjxiARxeV5hELlMRp9BJkBhRrn2BQg6Mw4jbM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.crl rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8A49/serialNumber=D5871E9FC6FBDE7DC71B7E895C8A04C3D0021D85 Validity Not Before: May 15 07:13:07 2024 GMT Not After : May 22 07:13:07 2024 GMT Subject: CN=66446083-e6a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2c:e2:88:a4:fd:50:b3:77:46:53:de:ec:6d: 5f:da:1d:6b:3b:e6:07:97:f4:18:2e:3b:25:a8:84: 49:63:9b:05:3b:fc:08:00:97:b6:5f:f7:a5:5c:05: db:2c:53:b0:e9:6d:a0:35:b1:a8:80:08:88:6c:15: 2d:c9:30:5e:4e:aa:e2:ed:81:dd:1c:fa:3e:07:f9: 28:e4:b2:a3:8b:8b:2c:c4:50:ed:12:85:d7:a1:0f: 82:70:c5:ae:21:ed:98:de:b5:e7:03:fe:be:77:44: ae:3b:cc:22:70:a5:bc:87:24:f2:4d:b2:e1:7e:fa: 64:17:37:53:5a:38:3d:f8:0e:f2:8e:6b:16:81:b1: 95:d5:4b:ce:15:46:e7:a5:dd:fc:6c:43:c2:f1:cc: 45:6f:32:78:ad:42:55:c4:35:88:bd:ea:52:a8:a3: fe:74:d4:52:b0:1b:13:cd:20:0a:cb:81:6a:e8:30: a7:2f:ed:2f:e8:b4:21:90:9e:43:c6:71:28:e6:9e: a0:71:a5:ed:e4:06:e1:af:71:4b:6e:e6:62:bc:b9: 6c:b8:57:1c:3c:02:60:94:fe:c6:37:82:be:ca:4e: 93:da:f2:91:1c:87:40:24:30:4b:5e:5c:27:d4:0d: 1f:82:a1:cc:25:ec:f1:de:92:40:60:fc:b7:cf:23: b7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:02:5F:F6:EE:A1:3F:8B:21:6C:12:3F:F7:D2:5D:F6:57:C6:5E:07 X509v3 Authority Key Identifier: keyid:D5:87:1E:9F:C6:FB:DE:7D:C7:1B:7E:89:5C:8A:04:C3:D0:02:1D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:10:00:0b:48:26:3b:6a:f6:6e:ae:d5:aa:95:67:aa:f4:c6: 39:c9:15:1a:e7:bb:1c:dc:8b:60:b4:81:4e:90:52:1b:3c:64: 0b:ac:ba:fa:d3:ba:2b:94:80:7b:aa:0e:50:8b:84:11:6a:45: 04:06:b1:43:f0:c6:99:6d:15:e9:4e:09:62:e3:cc:12:60:04: d0:21:32:8e:59:9b:4f:8b:76:ed:cf:0f:ae:da:dd:6d:c3:4b: aa:15:18:0a:5c:16:5f:24:f7:a4:0b:a9:aa:06:5d:d5:9d:d7: 2c:a8:94:22:1b:50:1f:24:ba:09:20:7a:c3:87:49:17:c9:52: 15:42:3c:02:67:8f:78:fb:b4:84:83:c8:00:4c:6e:f0:50:d3: bd:72:dc:e4:2a:d8:be:6d:f7:8a:e8:57:02:69:da:a1:bf:db: 87:dd:8a:57:6f:5b:e8:ee:dd:5e:6a:5c:a0:91:d2:be:c3:79: bb:38:80:e1:f4:37:31:95:0b:14:7e:52:84:71:60:69:07:1c: fd:79:56:b7:b5:a3:0d:51:ac:61:54:90:00:b7:d9:65:a2:ad: 49:7b:7f:b0:78:38:44:fa:d9:73:0a:80:0e:33:b0:26:bf:80: 5b:d3:4b:8f:7a:ef:7a:23:a3:98:72:d8:2f:bc:57:7c:49:a7: 00:48:e1:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBNDkxMTAvBgNVBAUTKEQ1ODcxRTlGQzZGQkRFN0RDNzFCN0U4OTVDOEEwNEMz RDAwMjFEODUwHhcNMjQwNTE1MDcxMzA3WhcNMjQwNTIyMDcxMzA3WjAYMRYwFAYD VQQDEw02NjQ0NjA4My1lNmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySziiKT9ULN3RlPe7G1f2h1rO+YHl/QYLjslqIRJY5sFO/wIAJe2X/elXAXb LFOw6W2gNbGogAiIbBUtyTBeTqri7YHdHPo+B/ko5LKji4ssxFDtEoXXoQ+CcMWu Ie2Y3rXnA/6+d0SuO8wicKW8hyTyTbLhfvpkFzdTWjg9+A7yjmsWgbGV1UvOFUbn pd38bEPC8cxFbzJ4rUJVxDWIvepSqKP+dNRSsBsTzSAKy4Fq6DCnL+0v6LQhkJ5D xnEo5p6gcaXt5Abhr3FLbuZivLlsuFccPAJglP7GN4K+yk6T2vKRHIdAJDBLXlwn 1A0fgqHMJezx3pJAYPy3zyO3TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQCX/bu oT+LIWwSP/fSXfZXxl4HMB8GA1UdIwQYMBaAFNWHHp/G+959xxt+iVyKBMPQAh2F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEE0OS80N0QwNDQ2NDQ3 QjcxMUVFOEEwQTlDNDNDNEY5QUUwMi8xWWNlbjhiNzNuM0hHMzZKWElvRXc5QUNI WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFZY2VuOGI3M24zSEczNkpYSW9FdzlBQ0hZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEE0OS80N0QwNDQ2NDQ3QjcxMUVFOEEwQTlDNDNDNEY5QUUwMi8xWWNlbjhiNzNu M0hHMzZKWElvRXc5QUNIWVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxEAALSCY7avZurtWqlWeq9MY5yRUa57sc3ItgtIFOkFIbPGQLrLr6 07orlIB7qg5Qi4QRakUEBrFD8MaZbRXpTgli48wSYATQITKOWZtPi3btzw+u2t1t w0uqFRgKXBZfJPekC6mqBl3VndcsqJQiG1AfJLoJIHrDh0kXyVIVQjwCZ494+7SE g8gATG7wUNO9ctzkKti+bfeK6FcCadqhv9uH3YpXb1vo7t1ealygkdK+w3m7OIDh 9DcxlQsUflKEcWBpBxz9eVa3taMNUaxhVJAAt9lloq1Je3+weDhE+tlzCoAOM7Am v4Bb00uPeu96I6OYctgvvFd8SacASOHK -----END CERTIFICATE-----Generated at Wed May 15 09:04:46 2024 by rpki-client on console-ams.rpki-client.org