$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: mOZge5NnVZfo0NL7dt0tC076Z+oq2QWQeCkqy89sAvc= Subject key identifier: 8C:69:0B:A4:8B:A5:4A:11:EA:60:8A:42:99:BB:6D:F6:F2:10:E1:51 Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 024F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 024C Signing time: Tue 07 May 2024 03:55:25 +0000 Manifest this update: Tue 07 May 2024 03:55:25 +0000 Manifest next update: Tue 14 May 2024 03:55:25 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: hgwkL4zVZEzlVY841f35CkNxwnRyHlMZD1wjpTMJrxc=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: RCfV8bIqd1stwpdUL12hC5tiTbZoC58Zty/Kc7NRaGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 03:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: May 7 03:55:25 2024 GMT Not After : May 14 03:55:25 2024 GMT Subject: CN=6639a62d-a9d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c5:b8:23:dc:c9:a3:ec:55:49:0f:ea:1b:bd: c7:ad:66:b8:0f:ea:2f:24:5f:db:13:5b:79:41:e4: 61:20:74:c4:3b:b9:b5:43:86:c5:48:72:a6:10:eb: d1:c8:05:77:a5:53:b9:bb:18:f6:04:88:5e:0f:ed: 39:2a:ea:51:3d:0f:04:3a:e1:98:cd:5a:62:59:e3: f0:13:4b:9d:fd:0e:6e:15:08:c5:8a:20:92:2f:e7: 50:61:df:0b:c7:b8:91:37:00:b5:b0:16:a5:cc:fb: ab:8d:d6:3b:c7:ca:5a:b2:d1:32:45:64:40:a0:42: 05:33:f2:d0:d9:70:3d:00:75:0a:27:98:0e:ba:8b: 87:ad:52:17:be:e7:ee:02:86:85:72:23:09:95:a1: c1:66:bb:83:f6:21:18:0f:a5:14:18:06:fd:6a:a7: fb:0d:f8:41:c4:cb:b4:87:57:79:72:dd:54:28:a9: 56:20:fe:14:0c:97:d6:97:f2:4b:a8:30:a7:0f:fd: c5:32:f9:d3:c9:d8:7d:7d:64:55:1d:44:ad:fd:d7: c4:b2:ca:d2:76:4d:93:48:96:1d:a7:9b:92:f4:f5: e9:69:08:ed:22:ca:93:e7:96:95:b7:23:4e:d7:f6: 60:0e:3e:3e:f7:f5:fd:1a:62:4c:dd:8d:62:f8:2a: 90:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:69:0B:A4:8B:A5:4A:11:EA:60:8A:42:99:BB:6D:F6:F2:10:E1:51 X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:7c:c3:aa:e3:c1:75:48:6e:ca:c7:1d:40:83:53:49:cb:9a: 80:a5:2e:45:00:13:2e:30:1d:08:e4:6e:0c:6a:98:95:e8:76: 8f:9c:9f:eb:07:32:c1:4e:f3:71:8c:77:f2:83:96:05:8e:8f: bb:5e:53:36:37:ce:cd:a9:78:0a:f2:c1:e1:cd:36:0d:61:09: 4d:f1:d3:a0:0c:ed:81:42:f6:e4:c2:37:84:bd:9a:a5:20:eb: a1:9b:2a:44:ef:41:f2:35:f1:97:66:7f:62:e7:25:ec:06:ab: 31:3c:02:ae:bd:2e:b5:34:0d:d5:ee:7c:d7:55:2f:21:91:07: 5f:43:ee:53:35:85:cd:bf:48:26:0f:fd:08:74:de:5d:c0:bf: b3:c4:d7:ff:2f:37:84:8b:a1:eb:5e:34:25:4d:4d:48:c4:87: d9:00:02:0a:76:84:25:1d:2d:c0:5f:52:74:b6:7e:db:1b:43: 7f:b7:eb:d8:21:3c:88:b7:6a:c9:5d:f5:b1:37:15:05:01:16: 99:a5:88:ae:97:be:b3:82:6f:45:77:ed:ec:82:5b:9c:17:6f: 9c:86:f2:9b:44:91:98:96:68:aa:28:9f:b5:70:db:bd:40:48: 2c:28:7a:d8:11:51:61:70:81:aa:a4:da:f8:0e:f2:5f:de:95: 20:34:07:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjQwNTA3MDM1NTI1WhcNMjQwNTE0MDM1NTI1WjAYMRYwFAYD VQQDEw02NjM5YTYyZC1hOWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MW4I9zJo+xVSQ/qG73HrWa4D+ovJF/bE1t5QeRhIHTEO7m1Q4bFSHKmEOvR yAV3pVO5uxj2BIheD+05KupRPQ8EOuGYzVpiWePwE0ud/Q5uFQjFiiCSL+dQYd8L x7iRNwC1sBalzPurjdY7x8pastEyRWRAoEIFM/LQ2XA9AHUKJ5gOuouHrVIXvufu AoaFciMJlaHBZruD9iEYD6UUGAb9aqf7DfhBxMu0h1d5ct1UKKlWIP4UDJfWl/JL qDCnD/3FMvnTydh9fWRVHUSt/dfEssrSdk2TSJYdp5uS9PXpaQjtIsqT55aVtyNO 1/ZgDj4+9/X9GmJM3Y1i+CqQ2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxpC6SL pUoR6mCKQpm7bfbyEOFRMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlfMOq48F1SG7Kxx1Ag1NJy5qApS5FABMuMB0I5G4MapiV6HaPnJ/r BzLBTvNxjHfyg5YFjo+7XlM2N87NqXgK8sHhzTYNYQlN8dOgDO2BQvbkwjeEvZql IOuhmypE70HyNfGXZn9i5yXsBqsxPAKuvS61NA3V7nzXVS8hkQdfQ+5TNYXNv0gm D/0IdN5dwL+zxNf/LzeEi6HrXjQlTU1IxIfZAAIKdoQlHS3AX1J0tn7bG0N/t+vY ITyIt2rJXfWxNxUFARaZpYiul76zgm9Fd+3sglucF2+chvKbRJGYlmiqKJ+1cNu9 QEgsKHrYEVFhcIGqpNr4DvJf3pUgNAeZ -----END CERTIFICATE-----Generated at Tue May 7 04:35:43 2024 by rpki-client on console-ams.rpki-client.org