$ rpki-client -vvf rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft File: jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft (raw, json) Hash identifier: ddIOjWTpOVpM+7GHI93hbjewMgd3co5tcocmCjd/HNk= Subject key identifier: 6D:4D:82:13:C2:41:0D:9E:B7:5E:BF:56:98:09:F8:08:74:DF:0E:33 Authority key identifier: 8D:47:3B:CC:57:C3:F2:AE:4E:87:48:ED:EF:D3:D2:81:7C:20:65:66 Certificate issuer: /CN=A91190A9/serialNumber=8D473BCC57C3F2AE4E8748EDEFD3D2817C206566 Certificate serial: 0A54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft Manifest number: 0A4F Signing time: Fri 31 May 2024 21:04:08 +0000 Manifest this update: Fri 31 May 2024 21:04:07 +0000 Manifest next update: Fri 07 Jun 2024 21:04:07 +0000 Files and hashes: 1: jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl (hash: Zw9kdPpWt4mBm1kTBy5VFqrLqTBjQGGWtk0pzhzJyq4=) 2: 344C54A441B811EAA856BE49C4F9AE02.roa (hash: b20F/IW7G7sucRCi5wupfsa4Ia7n6wWVWzttBKzRHqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2644 (0xa54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190A9/serialNumber=8D473BCC57C3F2AE4E8748EDEFD3D2817C206566 Validity Not Before: May 31 21:04:07 2024 GMT Not After : Jun 7 21:04:07 2024 GMT Subject: CN=665a3b48-332c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d1:f2:40:15:63:c7:a3:87:0c:45:a9:05:3d: c0:40:1d:df:70:38:a9:73:25:65:8b:02:79:95:62: f4:ba:b6:82:1b:72:1f:1c:3c:3f:c1:9a:69:40:06: b2:86:1f:91:0e:f9:aa:cf:0c:1e:cf:35:17:aa:f7: fb:b8:e5:92:85:f6:3b:c7:59:73:17:57:67:41:1a: 32:32:26:14:17:84:05:73:8f:04:36:81:11:81:d2: e6:14:c3:47:26:5a:e2:be:b1:73:ee:22:32:7d:b2: d8:91:bc:2c:83:77:20:d3:f7:4f:1c:cb:ef:ad:7d: 7b:bd:75:fb:1c:0e:fe:a9:84:ea:93:4b:9b:dc:57: d3:c1:82:71:59:bf:18:b2:0c:f5:f9:cd:af:bf:ef: 76:6b:21:8d:f0:9a:c3:56:94:25:8b:02:a5:3f:11: 7f:5d:a0:a5:64:c0:94:86:84:10:58:34:3c:6e:5a: 69:2d:92:d5:03:21:d7:a1:cf:5d:04:20:6c:54:3c: 70:0f:7f:24:9c:ce:ef:13:13:bb:87:af:30:70:98: fd:9a:3b:4a:da:fb:48:79:d3:75:3c:d7:19:ef:e6: 6d:47:d4:22:b2:10:40:d8:ba:7c:ba:d6:33:96:d7: e1:c7:31:9b:ec:77:91:52:67:ec:1a:c5:59:80:1a: 91:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:4D:82:13:C2:41:0D:9E:B7:5E:BF:56:98:09:F8:08:74:DF:0E:33 X509v3 Authority Key Identifier: keyid:8D:47:3B:CC:57:C3:F2:AE:4E:87:48:ED:EF:D3:D2:81:7C:20:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:f4:a0:d8:a9:fb:09:c5:f8:66:a1:27:1d:c9:69:9c:ca:88: 38:57:90:03:fb:48:e9:07:f6:b0:24:72:ef:f9:3c:97:0c:ac: ad:f7:0d:78:cc:89:e3:be:03:14:8c:1d:69:ed:5a:5c:bc:10: 1f:73:13:7c:ff:f2:cb:e9:44:56:35:fe:8b:02:b1:30:f2:d7: c7:a5:f2:39:40:f0:dc:55:6c:94:b5:f1:2e:41:5f:38:05:08: a5:20:c5:02:5d:dd:fe:b0:aa:5a:56:d1:12:83:d3:82:3d:14: 6f:ac:e5:38:e8:cb:af:7e:23:17:bc:05:1f:93:0c:84:b0:2c: 49:5a:8f:57:dd:cc:36:41:a8:d5:f8:34:ab:08:50:cc:b1:9c: 62:dc:9a:83:c9:3f:60:d6:aa:c9:d2:10:5a:62:3b:dc:7e:a2: 47:4f:e3:e4:ac:8a:72:19:4e:e7:20:bb:9b:c1:cf:aa:99:df: f8:6f:1c:5c:43:9c:29:96:44:f4:e0:87:60:5a:66:0b:68:a6: 27:4d:76:c0:aa:9c:8a:95:2a:d9:c8:e7:7a:32:17:af:60:59: 39:bd:22:23:33:6f:eb:37:17:5a:56:1b:ac:1b:83:4e:c8:6e: 9c:e4:89:e8:e0:4e:18:7a:71:d7:22:2f:3f:44:2e:3e:52:f8: 71:5c:21:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQTkxMTAvBgNVBAUTKDhENDczQkNDNTdDM0YyQUU0RTg3NDhFREVGRDNEMjgx N0MyMDY1NjYwHhcNMjQwNTMxMjEwNDA3WhcNMjQwNjA3MjEwNDA3WjAYMRYwFAYD VQQDEw02NjVhM2I0OC0zMzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdHyQBVjx6OHDEWpBT3AQB3fcDipcyVliwJ5lWL0uraCG3IfHDw/wZppQAay hh+RDvmqzwwezzUXqvf7uOWShfY7x1lzF1dnQRoyMiYUF4QFc48ENoERgdLmFMNH JlrivrFz7iIyfbLYkbwsg3cg0/dPHMvvrX17vXX7HA7+qYTqk0ub3FfTwYJxWb8Y sgz1+c2vv+92ayGN8JrDVpQliwKlPxF/XaClZMCUhoQQWDQ8blppLZLVAyHXoc9d BCBsVDxwD38knM7vExO7h68wcJj9mjtK2vtIedN1PNcZ7+ZtR9QishBA2Lp8utYz ltfhxzGb7HeRUmfsGsVZgBqRawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1NghPC QQ2et16/VpgJ+Ah03w4zMB8GA1UdIwQYMBaAFI1HO8xXw/KuTodI7e/T0oF8IGVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBBOS9BOTc0MDQ5QTQx QjYxMUVBQkYzM0I4NDZDNEY5QUUwMi9qVWM3ekZmRDhxNU9oMGp0NzlQU2dYd2da V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVYzd6RmZEOHE1T2gwanQ3OVBTZ1h3Z1pXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTBBOS9BOTc0MDQ5QTQxQjYxMUVBQkYzM0I4NDZDNEY5QUUwMi9qVWM3ekZmRDhx NU9oMGp0NzlQU2dYd2daV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd9KDYqfsJxfhmoScdyWmcyog4V5AD+0jpB/awJHLv+TyXDKyt9w14 zInjvgMUjB1p7VpcvBAfcxN8//LL6URWNf6LArEw8tfHpfI5QPDcVWyUtfEuQV84 BQilIMUCXd3+sKpaVtESg9OCPRRvrOU46MuvfiMXvAUfkwyEsCxJWo9X3cw2QajV +DSrCFDMsZxi3JqDyT9g1qrJ0hBaYjvcfqJHT+PkrIpyGU7nILubwc+qmd/4bxxc Q5wplkT04IdgWmYLaKYnTXbAqpyKlSrZyOd6MhevYFk5vSIjM2/rNxdaVhusG4NO yG6c5Ino4E4YenHXIi8/RC4+UvhxXCFt -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:08 2024 by rpki-client on console-ams.rpki-client.org