$ rpki-client -vvf rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.mft File: FFSOcJSeUF-LqKU5HkZuHpnTtyc.mft (raw, json) Hash identifier: CxkvV3iBgVhNN1OrCrRUWCSmQfjF3tbYxRJ0fvajBCA= Subject key identifier: 09:AF:A9:49:C4:FF:72:0D:7F:A5:A4:CE:11:90:C4:8D:2D:2F:40:8C Authority key identifier: 14:54:8E:70:94:9E:50:5F:8B:A8:A5:39:1E:46:6E:1E:99:D3:B7:27 Certificate issuer: /CN=A91193C1/serialNumber=14548E70949E505F8BA8A5391E466E1E99D3B727 Certificate serial: 045E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFSOcJSeUF-LqKU5HkZuHpnTtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.mft Manifest number: 0456 Signing time: Sun 19 May 2024 01:52:15 +0000 Manifest this update: Sun 19 May 2024 01:52:15 +0000 Manifest next update: Sun 26 May 2024 01:52:15 +0000 Files and hashes: 1: FFSOcJSeUF-LqKU5HkZuHpnTtyc.crl (hash: WIdnh/KztKrmMdb20dsqt8xyVtkKqKDxQeBz/YSPCe0=) 2: C8900982059611ECB2896C55C4F9AE02.roa (hash: bIMYMjOpvGyj0B6cZVHQ4lY8ZhaqHOmnJbG7zwxui+E=) 3: 86CCE406CF2611ED8AA9236BC4F9AE02.roa (hash: C3Z+vF7HoXMnTdVUm9DKjUuSYSfQfKGMp1K856t1zp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.crl rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFSOcJSeUF-LqKU5HkZuHpnTtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1118 (0x45e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91193C1/serialNumber=14548E70949E505F8BA8A5391E466E1E99D3B727 Validity Not Before: May 19 01:52:15 2024 GMT Not After : May 26 01:52:15 2024 GMT Subject: CN=66495b4f-662a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:53:ca:ad:65:d8:c2:6b:1c:5b:f1:9b:50:59: 65:a1:fd:cd:ae:81:aa:62:5b:3d:ed:34:81:ca:46: 1e:cb:b4:2c:ad:c9:a9:af:c6:fa:84:fe:e2:ee:19: 68:54:93:e1:c8:6c:b0:b2:92:ff:57:9e:3f:20:9b: 7f:ee:3e:70:99:02:fc:6e:4f:e0:3e:76:74:b6:f0: 72:d2:88:e2:b4:be:30:08:b0:86:4e:3f:10:68:f9: 4f:97:bf:54:0a:3d:18:f4:43:2b:c9:2d:b9:fc:5c: 53:f0:30:89:ff:73:dd:50:54:e2:a9:75:6d:df:58: e1:09:36:03:03:64:56:eb:93:46:de:76:2d:93:a9: bf:27:87:c4:b3:04:07:62:da:1b:15:a7:25:8b:7e: b0:cf:0a:b8:bb:bd:bf:c0:0a:10:bb:7c:93:26:d5: 1d:64:5a:c2:3d:48:5a:bd:c9:a4:9e:fb:9b:61:9d: e8:0b:48:9b:90:82:f0:f6:c0:eb:e3:40:fd:12:4c: 40:92:f0:5f:0c:f5:f7:07:bf:de:64:b4:82:f0:1c: c9:d5:4e:ee:bf:cb:3a:e9:48:08:c5:ba:c9:b3:de: 0d:d0:19:e4:a1:3e:a6:66:72:ab:cb:8d:c3:5d:61: 4c:de:61:1f:14:ea:13:15:8f:cd:d0:00:9f:f3:45: 32:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:AF:A9:49:C4:FF:72:0D:7F:A5:A4:CE:11:90:C4:8D:2D:2F:40:8C X509v3 Authority Key Identifier: keyid:14:54:8E:70:94:9E:50:5F:8B:A8:A5:39:1E:46:6E:1E:99:D3:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFSOcJSeUF-LqKU5HkZuHpnTtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:a2:f0:eb:e0:7a:6b:ae:85:40:20:c3:4f:ac:7b:0b:96:c7: 88:c7:d6:35:73:af:4d:23:2f:0a:21:f4:95:6e:ae:45:0a:a3: af:93:2e:58:f7:2d:ab:fe:60:64:c6:a0:af:c1:5b:64:20:c6: c6:b1:81:1c:3d:ec:bb:48:60:be:91:9f:63:74:a5:bd:e7:03: 1d:78:a9:06:97:b9:e3:69:25:43:f0:59:a2:03:4d:dd:b7:36: 04:8c:a7:21:e3:4a:f2:54:05:2a:7b:23:c5:3c:cd:e9:b5:07: 2b:7a:0a:7f:2d:3f:90:8a:93:22:15:25:ba:6f:66:2b:0d:05: 7b:8b:fa:12:07:8d:59:9f:62:34:7d:91:33:ee:eb:09:8d:55: 88:32:45:68:85:55:3a:7d:a6:02:32:c1:38:ff:71:66:8a:d5: 2a:4c:01:5e:b2:b9:be:da:dd:93:e2:ef:66:81:d2:63:e2:33: 3c:4d:02:b0:f0:3f:2e:44:fa:25:57:d9:55:07:39:7a:82:d3: 56:c3:93:12:11:76:2b:4b:56:b6:bf:12:ed:ad:36:bd:47:c2: 5a:26:dd:3a:ba:6e:c8:da:8c:f6:22:15:73:22:91:8b:0b:02: 9a:e1:76:10:2e:83:cc:5e:b8:5f:be:f0:a5:3c:2d:cb:46:d1: 01:10:9c:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzQzExMTAvBgNVBAUTKDE0NTQ4RTcwOTQ5RTUwNUY4QkE4QTUzOTFFNDY2RTFF OTlEM0I3MjcwHhcNMjQwNTE5MDE1MjE1WhcNMjQwNTI2MDE1MjE1WjAYMRYwFAYD VQQDEw02NjQ5NWI0Zi02NjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FPKrWXYwmscW/GbUFllof3NroGqYls97TSBykYey7Qsrcmpr8b6hP7i7hlo VJPhyGywspL/V54/IJt/7j5wmQL8bk/gPnZ0tvBy0ojitL4wCLCGTj8QaPlPl79U Cj0Y9EMryS25/FxT8DCJ/3PdUFTiqXVt31jhCTYDA2RW65NG3nYtk6m/J4fEswQH YtobFacli36wzwq4u72/wAoQu3yTJtUdZFrCPUhavcmknvubYZ3oC0ibkILw9sDr 40D9EkxAkvBfDPX3B7/eZLSC8BzJ1U7uv8s66UgIxbrJs94N0BnkoT6mZnKry43D XWFM3mEfFOoTFY/N0ACf80UyhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmvqUnE /3INf6WkzhGQxI0tL0CMMB8GA1UdIwQYMBaAFBRUjnCUnlBfi6ilOR5Gbh6Z07cn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTNDMS83MzZFM0I0ODA1 OTMxMUVDODkyMUVEODVDNEY5QUUwMi9GRlNPY0pTZVVGLUxxS1U1SGtadUhwblR0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGU09jSlNlVUYtTHFLVTVIa1p1SHBuVHR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTNDMS83MzZFM0I0ODA1OTMxMUVDODkyMUVEODVDNEY5QUUwMi9GRlNPY0pTZVVG LUxxS1U1SGtadUhwblR0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMovDr4HprroVAIMNPrHsLlseIx9Y1c69NIy8KIfSVbq5FCqOvky5Y 9y2r/mBkxqCvwVtkIMbGsYEcPey7SGC+kZ9jdKW95wMdeKkGl7njaSVD8FmiA03d tzYEjKch40ryVAUqeyPFPM3ptQcregp/LT+QipMiFSW6b2YrDQV7i/oSB41Zn2I0 fZEz7usJjVWIMkVohVU6faYCMsE4/3FmitUqTAFesrm+2t2T4u9mgdJj4jM8TQKw 8D8uRPolV9lVBzl6gtNWw5MSEXYrS1a2vxLtrTa9R8JaJt06um7I2oz2IhVzIpGL CwKa4XYQLoPMXrhfvvClPC3LRtEBEJyu -----END CERTIFICATE-----Generated at Sun May 19 02:59:04 2024 by rpki-client on console-ams.rpki-client.org