$ rpki-client -vvf rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft File: aK5b6xu35ELO4KfgFAKf9y49tB8.mft (raw, json) Hash identifier: mcksPT5mOfaXx5pR2Hc7MVtJDUDj1B2SLozqivSa2hk= Subject key identifier: C9:1E:CB:C1:11:8D:D0:A1:6E:EC:8B:07:19:C8:5D:03:89:DF:6C:27 Authority key identifier: 68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F Certificate issuer: /CN=A91104C9/serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F Certificate serial: 0B36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft Manifest number: 0B2F Signing time: Sat 18 May 2024 19:47:01 +0000 Manifest this update: Sat 18 May 2024 19:47:00 +0000 Manifest next update: Sat 25 May 2024 19:47:00 +0000 Files and hashes: 1: aK5b6xu35ELO4KfgFAKf9y49tB8.crl (hash: j7ml1SHPt22VpXKkgozXo/Wiccfowx5WU/exudVFCn8=) 2: 67C8016414C911EA8E5F806EC4F9AE02.roa (hash: QeHsfY5WhAijOkle+jmUqSPieMF/TxmiBkLuPQiEvfY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2870 (0xb36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104C9/serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F Validity Not Before: May 18 19:47:00 2024 GMT Not After : May 25 19:47:00 2024 GMT Subject: CN=664905b4-73ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:07:d5:8d:06:57:d5:15:41:9b:ff:2f:8e:5e: 58:50:09:c7:e6:79:f5:5b:8f:20:ba:55:a7:e0:9b: 18:df:97:4a:da:5e:34:87:34:3d:e4:ca:e0:14:b1: ce:a4:04:92:74:90:b7:f3:5e:a3:ef:6b:20:fa:e9: 8e:b2:23:0e:14:af:21:6a:3a:af:5f:9f:16:6e:fb: 4d:2e:a3:5f:4e:fa:0c:f2:ee:ba:99:6a:14:45:0c: 58:d3:7c:27:52:5c:80:9e:6d:74:bf:19:42:f1:77: 67:2d:af:a3:7c:85:a8:ee:42:ab:1f:ab:c8:fe:c2: b7:02:70:e4:66:9e:f7:bc:d8:0a:01:30:77:0d:31: 1b:7a:03:65:87:ea:75:0e:ef:c2:fc:29:b1:d8:97: 05:17:97:96:0a:ce:74:7a:d5:f2:38:31:96:23:6f: 92:a3:c2:9e:1f:49:7b:bf:f6:30:8b:e1:ba:7a:e1: d1:1f:03:44:9d:01:b2:b5:f6:31:7f:fe:f1:dc:33: 92:d9:37:97:9e:f6:b2:b2:fb:fa:d2:67:b5:35:8a: 9e:0f:fd:03:57:c4:dc:67:19:6b:e1:67:2e:44:cb: 30:70:9d:27:3d:da:7e:0c:bf:4f:30:b4:97:c1:d2: 8d:ec:8a:3b:01:99:17:0d:d0:38:1a:41:ec:17:42: f2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:1E:CB:C1:11:8D:D0:A1:6E:EC:8B:07:19:C8:5D:03:89:DF:6C:27 X509v3 Authority Key Identifier: keyid:68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:8e:90:de:29:be:cf:b7:11:8f:47:61:54:f4:3e:ce:e5:50: b1:96:eb:22:e7:9c:64:c9:48:70:2c:cb:f8:c2:e5:46:dd:34: 60:63:fe:24:d5:88:0d:f7:44:0c:d7:a8:fa:8b:d8:11:5a:7d: ab:54:85:11:a1:f5:5a:20:a4:b6:91:4f:e2:54:10:ac:4a:59: 78:1c:09:f0:e7:f4:7c:82:1e:d5:42:ae:dc:85:cc:25:ab:58: 56:e3:c2:67:88:0b:a9:bf:63:d5:2d:0c:23:6c:b8:4b:a6:d4: 31:fd:2a:40:f7:e4:d6:84:77:f5:1c:2f:cd:a7:80:82:29:cf: ee:68:29:9e:09:ac:b9:b7:86:be:66:3c:96:d6:f7:02:f2:c1: 08:63:f0:d1:b0:8e:fc:d4:9b:ed:7a:41:57:23:4f:db:25:0b: c3:bd:89:6c:67:6e:ef:7e:74:44:6a:f2:83:86:3e:f0:cf:5d: 75:c3:c7:09:b9:82:40:d0:eb:bd:02:c3:66:06:03:1a:46:86: 30:7a:fb:e1:48:0b:97:fd:48:79:33:4e:b0:23:6f:30:32:bc: b7:df:88:3c:33:54:ca:41:36:3a:9a:5c:63:3b:2d:a3:1e:f2: 1d:2f:ff:cd:6d:4d:80:a6:bc:43:ae:e8:a4:24:ba:a7:20:b5: 2b:31:f4:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QzkxMTAvBgNVBAUTKDY4QUU1QkVCMUJCN0U0NDJDRUUwQTdFMDE0MDI5RkY3 MkUzREI0MUYwHhcNMjQwNTE4MTk0NzAwWhcNMjQwNTI1MTk0NzAwWjAYMRYwFAYD VQQDEw02NjQ5MDViNC03M2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wfVjQZX1RVBm/8vjl5YUAnH5nn1W48gulWn4JsY35dK2l40hzQ95MrgFLHO pASSdJC3816j72sg+umOsiMOFK8hajqvX58WbvtNLqNfTvoM8u66mWoURQxY03wn UlyAnm10vxlC8XdnLa+jfIWo7kKrH6vI/sK3AnDkZp73vNgKATB3DTEbegNlh+p1 Du/C/Cmx2JcFF5eWCs50etXyODGWI2+So8KeH0l7v/Ywi+G6euHRHwNEnQGytfYx f/7x3DOS2TeXnvaysvv60me1NYqeD/0DV8TcZxlr4WcuRMswcJ0nPdp+DL9PMLSX wdKN7Io7AZkXDdA4GkHsF0Ly6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkey8ER jdChbuyLBxnIXQOJ32wnMB8GA1UdIwQYMBaAFGiuW+sbt+RCzuCn4BQCn/cuPbQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRDOS8yQUE4QjM4ODE0 QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVFTE80S2ZnRkFLZjl5NDl0 QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLNWI2eHUzNUVMTzRLZmdGQUtmOXk0OXRCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRDOS8yQUE4QjM4ODE0QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVF TE80S2ZnRkFLZjl5NDl0QjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6jpDeKb7PtxGPR2FU9D7O5VCxlusi55xkyUhwLMv4wuVG3TRgY/4k 1YgN90QM16j6i9gRWn2rVIURofVaIKS2kU/iVBCsSll4HAnw5/R8gh7VQq7chcwl q1hW48JniAupv2PVLQwjbLhLptQx/SpA9+TWhHf1HC/Np4CCKc/uaCmeCay5t4a+ ZjyW1vcC8sEIY/DRsI781JvtekFXI0/bJQvDvYlsZ27vfnREavKDhj7wz111w8cJ uYJA0Ou9AsNmBgMaRoYwevvhSAuX/Uh5M06wI28wMry334g8M1TKQTY6mlxjOy2j HvIdL//NbU2AprxDruikJLqnILUrMfQJ -----END CERTIFICATE-----Generated at Sat May 18 21:31:24 2024 by rpki-client on console-ams.rpki-client.org