$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft File: YOVPYFHttB6nqVCJbNm71nASDWM.mft (raw, json) Hash identifier: yzesCMs8FL1BViPfo6ZdUXVczI2wCPkDfLVjdg6b6SI= Subject key identifier: 87:81:CB:74:2A:A9:2C:AE:E6:33:A5:0A:98:C3:24:E8:61:08:4F:26 Authority key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 Certificate issuer: /CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft Manifest number: 12 Signing time: Fri 17 May 2024 08:56:19 +0000 Manifest this update: Fri 17 May 2024 08:56:18 +0000 Manifest next update: Fri 24 May 2024 08:56:18 +0000 Files and hashes: 1: YOVPYFHttB6nqVCJbNm71nASDWM.crl (hash: Eev4gOmPfthIv6fWu6hukAIZ1i4vQuGArNMudKYHaDc=) 2: 99AA3580F88611EE8E9B3E71C4F9AE02.roa (hash: Y7kMM1dM1beBmLLZbOfmY+in4AMcumHFmTxJNOq/occ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Validity Not Before: May 17 08:56:18 2024 GMT Not After : May 24 08:56:18 2024 GMT Subject: CN=66471bb2-0d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:61:a8:48:2d:f9:10:f0:b6:b1:16:03:18:b6: 90:0a:04:42:e1:da:4c:b8:6b:f0:47:61:c2:d5:43: 05:11:25:d1:e2:09:eb:8a:bb:4f:df:b3:e8:5c:9e: 01:04:cf:cd:14:f9:c5:94:46:f6:32:5c:65:2e:ab: a9:bb:e2:cf:bf:e5:f0:d9:52:fb:cb:d0:40:d9:74: 5e:16:ef:57:94:9e:7e:49:05:8b:59:d7:f1:c6:6f: 92:80:ca:3f:35:6b:da:a3:a4:30:a9:5f:59:56:e5: 18:91:68:0e:e5:f8:c9:d2:91:f6:9d:eb:b7:bf:39: 41:84:0d:22:f5:35:30:b3:4f:79:56:89:ca:f3:d2: e5:1e:e6:3e:fe:8a:07:10:9e:b9:7a:b8:9c:ca:f1: 9e:f4:d9:98:5a:a0:c9:ca:43:e1:c6:ed:ab:48:a2: 7a:1c:5f:0f:ec:7a:fe:6e:61:16:af:89:8d:d0:59: c9:fb:5d:2a:30:63:3c:a2:88:7e:a4:a4:64:12:65: 18:cf:f5:57:ca:4f:7d:8b:8b:ff:b9:49:c2:bc:73: b9:c2:c0:00:12:84:a8:f6:06:e2:ad:f7:ae:cd:66: b4:a5:12:f4:91:84:02:e7:b4:79:09:ef:90:64:5a: 0e:9a:89:de:a2:ed:29:26:20:7b:6e:82:ad:a2:d4: e3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:81:CB:74:2A:A9:2C:AE:E6:33:A5:0A:98:C3:24:E8:61:08:4F:26 X509v3 Authority Key Identifier: keyid:60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:6e:8b:43:a7:54:b2:5a:67:97:e4:e0:e3:ff:10:d3:0b:bb: 44:68:70:e5:57:06:d7:89:41:66:d2:da:a7:3d:8b:28:eb:46: 5c:3a:89:9a:51:5e:75:37:bc:bd:cf:e9:b9:28:0c:74:32:19: f9:b8:61:6e:16:d5:e0:94:67:42:f0:a4:36:b2:2e:2d:19:f8: 16:37:df:9a:8f:e9:bf:db:8d:b3:f7:a6:b8:76:16:d4:57:33: 48:f6:19:7c:36:de:cb:92:bc:fa:65:9d:87:93:41:88:96:13: b9:c2:84:df:b3:43:f7:43:7b:9b:09:6f:93:c7:bf:2b:2e:4e: d7:b0:8c:b8:58:71:2b:5b:06:8d:45:57:38:02:ca:c8:75:c6: a2:bf:d3:56:9f:dc:cb:9b:39:98:b5:81:7f:2b:aa:3d:c2:cd: 3b:af:41:1e:fd:f9:af:17:1f:c5:9f:3d:e5:ee:60:65:4e:09: 0f:19:6e:75:22:d8:b8:5c:c0:4a:9f:d0:e8:ae:3a:15:26:0d: ef:1d:81:0f:80:a7:cd:07:74:d7:76:d6:3b:f0:67:f9:ef:7c: f5:07:da:39:50:63:dd:62:85:1a:7b:82:7a:12:f8:f4:8d:59: 96:4f:f5:93:a3:bb:c0:87:34:3d:30:21:95:50:97:80:67:46: da:99:9d:74 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Rjg5QTExMC8GA1UEBRMoNjBFNTRGNjA1MUVEQjQxRUE3QTk1MDg5NkNEOUJCRDY3 MDEyMEQ2MzAeFw0yNDA1MTcwODU2MThaFw0yNDA1MjQwODU2MThaMBgxFjAUBgNV BAMTDTY2NDcxYmIyLTBkOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNYahILfkQ8LaxFgMYtpAKBELh2ky4a/BHYcLVQwURJdHiCeuKu0/fs+hcngEE z80U+cWURvYyXGUuq6m74s+/5fDZUvvL0EDZdF4W71eUnn5JBYtZ1/HGb5KAyj81 a9qjpDCpX1lW5RiRaA7l+MnSkfad67e/OUGEDSL1NTCzT3lWicrz0uUe5j7+igcQ nrl6uJzK8Z702ZhaoMnKQ+HG7atIonocXw/sev5uYRaviY3QWcn7XSowYzyiiH6k pGQSZRjP9VfKT32Li/+5ScK8c7nCwAAShKj2BuKt967NZrSlEvSRhALntHkJ75Bk Wg6aid6i7SkmIHtugq2i1ONdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUh4HLdCqp LK7mM6UKmMMk6GEITyYwHwYDVR0jBBgwFoAUYOVPYFHttB6nqVCJbNm71nASDWMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGODlBLzhDNzA0NzQ0Rjg4 NDExRUVBN0IzQTc1MEM0RjlBRTAyL1lPVlBZRkh0dEI2bnFWQ0piTm03MW5BU0RX TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWU9WUFlGSHR0QjZucVZDSmJObTcxbkFTRFdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG ODlBLzhDNzA0NzQ0Rjg4NDExRUVBN0IzQTc1MEM0RjlBRTAyL1lPVlBZRkh0dEI2 bnFWQ0piTm03MW5BU0RXTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACZui0OnVLJaZ5fk4OP/ENMLu0RocOVXBteJQWbS2qc9iyjrRlw6iZpR XnU3vL3P6bkoDHQyGfm4YW4W1eCUZ0LwpDayLi0Z+BY335qP6b/bjbP3prh2FtRX M0j2GXw23suSvPplnYeTQYiWE7nChN+zQ/dDe5sJb5PHvysuTtewjLhYcStbBo1F VzgCysh1xqK/01af3MubOZi1gX8rqj3CzTuvQR79+a8XH8WfPeXuYGVOCQ8ZbnUi 2LhcwEqf0OiuOhUmDe8dgQ+Ap80HdNd21jvwZ/nvfPUH2jlQY91ihRp7gnoS+PSN WZZP9ZOju8CHND0wIZVQl4BnRtqZnXQ= -----END CERTIFICATE-----Generated at Fri May 17 10:59:15 2024 by rpki-client on console-ams.rpki-client.org