$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft File: Yb6mqjOAZskOtcsyQAxq52BciKQ.mft (raw, json) Hash identifier: fGN8FNB9O8ulwgISqQwSB2qJCq9yGN/Ua6D6a2d2CVM= Subject key identifier: D7:F6:29:7A:1F:B4:33:47:A9:A6:EF:1E:D0:CC:C7:AA:42:1C:F6:9F Authority key identifier: 61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 Certificate issuer: /CN=A91FA52B/serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Certificate serial: 0ED4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft Manifest number: 0ECF Signing time: Thu 02 May 2024 18:22:18 +0000 Manifest this update: Thu 02 May 2024 18:22:17 +0000 Manifest next update: Thu 09 May 2024 18:22:17 +0000 Files and hashes: 1: Yb6mqjOAZskOtcsyQAxq52BciKQ.crl (hash: bxmE9ui42EHl5nxZIeqFF4CJvd3SLr9cAR/Ie8AV8X0=) 2: ECB38BAA5C3211E9816E7981C4F9AE02.roa (hash: tQay/1IIjyjhGFgszdIHK7lqLCoSvvImW0gVqEUp1Jo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3796 (0xed4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA52B/serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Validity Not Before: May 2 18:22:17 2024 GMT Not After : May 9 18:22:17 2024 GMT Subject: CN=6633d9da-96ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ba:94:e4:fd:f5:17:d0:a3:8c:2a:d3:7d:2d: da:e9:53:3f:25:f9:0a:30:75:3a:55:b6:da:73:1b: bf:4c:47:4b:30:4d:50:60:83:f8:ea:2f:3b:fd:4b: e4:90:64:36:0f:fa:47:7c:9f:98:7c:34:c2:4a:a4: 80:24:75:9b:52:8f:2c:0d:d5:1c:ab:b3:8b:c4:42: 84:e6:ef:f5:9f:ee:b9:6f:de:59:81:31:1d:9f:e8: e5:e0:e2:db:ed:b4:8d:d4:32:2f:81:51:22:a0:de: 1a:08:f5:b9:59:86:a2:b1:7b:72:8e:f4:55:70:3d: 9b:17:ab:c4:24:e4:2e:ef:d9:86:9d:e1:08:6b:03: e3:6f:d8:9b:ce:80:b5:46:f3:a1:a6:d1:ce:96:5e: b4:4f:45:98:d1:de:1b:38:68:b2:66:49:a0:ed:40: 68:26:7e:8d:e6:4d:4c:b2:1d:3b:33:87:8a:dd:ab: cd:9b:e2:dc:af:f3:90:2f:fd:82:1e:d8:ac:a6:17: 7d:7d:b2:20:c5:d0:86:12:2c:d3:d2:b3:1c:45:c4: c7:d0:3e:f6:8c:c8:25:cf:2e:61:b2:df:51:ae:59: e2:e0:15:30:3c:6d:78:65:90:2f:36:d1:fa:e2:12: 02:90:94:34:c9:55:68:77:ce:53:f9:31:9e:b1:e2: c3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:F6:29:7A:1F:B4:33:47:A9:A6:EF:1E:D0:CC:C7:AA:42:1C:F6:9F X509v3 Authority Key Identifier: keyid:61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:4d:a7:b7:c4:f6:28:bd:b8:21:c6:d8:ae:3a:53:8f:72:ff: 00:b9:f2:45:db:44:a5:83:96:d4:ec:98:78:c4:e4:4d:47:1e: 30:57:df:8e:c0:4d:c2:9b:c9:54:c1:82:b6:44:7f:df:cb:f1: 3b:13:2a:6e:08:6e:f4:d5:d5:e4:bc:5d:a7:62:1e:86:24:4d: 19:4b:1d:98:9a:0e:d1:78:1c:1d:fc:25:4d:aa:65:3b:88:40: 58:ef:50:87:e8:8c:83:63:00:e1:3c:c8:71:f2:cc:c7:cd:dd: dc:85:ad:5e:e5:e6:77:2f:53:61:36:11:11:38:f8:81:74:ea: c7:81:77:57:4f:e1:9d:75:85:3c:57:37:b5:e3:08:85:c9:b4: d4:b3:6d:1a:a5:75:a9:f2:aa:9b:7e:5a:f9:2e:64:71:29:a3: 77:48:bf:03:15:be:37:db:93:88:4d:41:5f:b0:1b:b6:b7:99: 3a:03:29:f2:22:6a:28:33:fb:93:ed:d1:da:ae:a1:b2:99:3b: af:56:4d:3f:9d:76:f1:75:c2:99:c8:63:81:9f:3a:82:97:35: 41:60:04:d8:65:a2:06:3c:94:ff:0d:86:f6:74:96:18:a5:c4: 37:95:63:8d:e5:44:f1:76:d3:14:90:b3:84:65:4b:37:48:c8: 6b:42:65:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1MkIxMTAvBgNVBAUTKDYxQkVBNkFBMzM4MDY2QzkwRUI1Q0IzMjQwMEM2QUU3 NjA1Qzg4QTQwHhcNMjQwNTAyMTgyMjE3WhcNMjQwNTA5MTgyMjE3WjAYMRYwFAYD VQQDEw02NjMzZDlkYS05NmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLqU5P31F9CjjCrTfS3a6VM/JfkKMHU6Vbbacxu/TEdLME1QYIP46i87/Uvk kGQ2D/pHfJ+YfDTCSqSAJHWbUo8sDdUcq7OLxEKE5u/1n+65b95ZgTEdn+jl4OLb 7bSN1DIvgVEioN4aCPW5WYaisXtyjvRVcD2bF6vEJOQu79mGneEIawPjb9ibzoC1 RvOhptHOll60T0WY0d4bOGiyZkmg7UBoJn6N5k1Msh07M4eK3avNm+Lcr/OQL/2C Htisphd9fbIgxdCGEizT0rMcRcTH0D72jMglzy5hst9Rrlni4BUwPG14ZZAvNtH6 4hICkJQ0yVVod85T+TGeseLD9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNf2KXof tDNHqabvHtDMx6pCHPafMB8GA1UdIwQYMBaAFGG+pqozgGbJDrXLMkAMaudgXIik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTUyQi8yOENCRkIxNDVD MzIxMUU5QUI2MjQ1ODBDNEY5QUUwMi9ZYjZtcWpPQVpza090Y3N5UUF4cTUyQmNp S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liNm1xak9BWnNrT3Rjc3lRQXhxNTJCY2lLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTUyQi8yOENCRkIxNDVDMzIxMUU5QUI2MjQ1ODBDNEY5QUUwMi9ZYjZtcWpPQVpz a090Y3N5UUF4cTUyQmNpS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3Tae3xPYovbghxtiuOlOPcv8AufJF20Slg5bU7Jh4xORNRx4wV9+O wE3Cm8lUwYK2RH/fy/E7EypuCG701dXkvF2nYh6GJE0ZSx2Ymg7ReBwd/CVNqmU7 iEBY71CH6IyDYwDhPMhx8szHzd3cha1e5eZ3L1NhNhEROPiBdOrHgXdXT+GddYU8 Vze14wiFybTUs20apXWp8qqbflr5LmRxKaN3SL8DFb4325OITUFfsBu2t5k6Ayny ImooM/uT7dHarqGymTuvVk0/nXbxdcKZyGOBnzqClzVBYATYZaIGPJT/DYb2dJYY pcQ3lWON5UTxdtMUkLOEZUs3SMhrQmVD -----END CERTIFICATE-----Generated at Thu May 2 20:05:01 2024 by rpki-client on console-ams.rpki-client.org