$ rpki-client -vvf rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft File: C9q2CGF_PDGDxHD05hmyeV91w4k.mft (raw, json) Hash identifier: Aw3Wy/MzS+MOpBZQa6eIiHkVEg5PgLL0UQQzVxQN3mk= Subject key identifier: A4:39:58:48:4C:E1:A8:B5:E4:97:CB:62:6B:08:2A:12:1B:B9:FA:84 Authority key identifier: 0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 Certificate issuer: /CN=A91326B3/serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft Manifest number: 23 Signing time: Sun 19 May 2024 08:36:48 +0000 Manifest this update: Sun 19 May 2024 08:36:48 +0000 Manifest next update: Sun 26 May 2024 08:36:48 +0000 Files and hashes: 1: C9q2CGF_PDGDxHD05hmyeV91w4k.crl (hash: /hnQcVy1WCdCiCnzL7Y8kKiGUONrTkJdWfZnJnuxduI=) 2: E3ABAA7AE69211EEB34D4B6AC4F9AE02.roa (hash: h90BBjk+wVdlnYl+Atga4udJJhr99T+PLr3O9ucXhDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91326B3/serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Validity Not Before: May 19 08:36:48 2024 GMT Not After : May 26 08:36:48 2024 GMT Subject: CN=6649ba20-0473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a4:b2:20:bf:8a:0d:6e:4d:50:6e:c0:90:a6: fa:96:a4:fe:eb:d2:74:59:dc:1d:1c:95:6b:27:9d: ba:2f:78:4e:65:63:92:5b:50:b6:a7:9a:5f:05:d7: 0d:fb:d8:ec:11:3d:fa:11:63:7b:bc:54:36:76:38: 42:7b:2b:0d:bd:e8:83:06:86:1a:8d:a4:fe:d2:f0: 24:97:16:11:0e:b8:5c:f9:d5:f2:b9:49:e6:46:87: 03:9a:98:25:fb:a4:eb:9a:1a:a8:17:ac:e7:e2:6e: cd:0c:31:f5:89:b7:e7:30:a4:1c:98:b7:00:48:db: 31:2f:c6:55:6e:2a:c7:66:df:eb:75:9a:36:39:9a: 0a:da:b5:b3:7b:c3:fa:a2:d8:d5:bf:ed:b3:a5:3d: 61:10:e5:50:38:32:71:bc:08:ac:ff:8f:8f:6f:02: 90:bf:82:f3:29:f8:5d:2f:b9:67:f7:96:2d:8f:7e: 61:e6:22:84:a4:a9:68:33:f9:29:eb:ce:d5:d9:64: 92:95:d7:d5:e9:c5:94:1b:3a:bd:e2:5f:67:7f:31: 9a:1b:14:cb:c6:66:58:53:79:bc:bb:85:39:8d:a7: e5:df:6f:54:cc:9b:e9:ea:90:b0:00:b6:de:6d:00: c5:07:ca:81:6e:83:ba:34:c1:d4:f5:a8:63:2b:e4: 61:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:39:58:48:4C:E1:A8:B5:E4:97:CB:62:6B:08:2A:12:1B:B9:FA:84 X509v3 Authority Key Identifier: keyid:0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:96:1d:d1:a0:20:e8:a5:3c:1f:13:4e:92:f5:b2:39:a9:87: cd:57:56:71:67:81:af:08:23:fc:d8:b2:a6:aa:67:7d:39:05: 4e:44:c5:98:59:84:ba:df:dc:aa:db:0f:5d:0f:27:06:d1:7c: b7:a9:9f:fd:ac:db:fd:4b:33:07:a4:27:43:1b:6a:50:03:f6: b0:91:ae:65:9f:c9:6b:bc:5e:45:16:99:cf:e8:35:3d:ff:5f: 1d:51:63:16:e5:d6:e3:ab:da:db:c5:ac:42:8d:0a:07:5c:77: 8a:a3:54:b5:4c:94:e7:b4:22:c6:d0:d7:3a:f7:4d:31:27:e1: a1:8a:47:73:55:59:7a:55:ed:2f:cd:56:56:d2:f2:fd:cd:8b: 05:bb:76:fe:ab:d0:ce:62:f1:68:33:8d:61:04:8d:82:93:ac: 69:67:3c:be:1f:5f:74:06:f3:6e:97:43:8c:05:19:c8:90:43: 77:0f:d1:fe:d6:c6:09:18:4a:71:2c:66:38:d1:a8:11:ca:d2: ad:0e:19:f4:31:f4:a9:41:be:1c:c9:81:cc:1d:09:a7:5a:9e: e3:a3:46:a7:f6:4d:06:62:1b:ef:3e:f7:c7:67:e3:41:87:ac: 36:7d:c4:38:4b:9b:41:01:f7:d3:53:e6:ec:03:5b:51:cb:79: 44:be:e3:ec -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MjZCMzExMC8GA1UEBRMoMEJEQUI2MDg2MTdGM0MzMTgzQzQ3MEY0RTYxOUIyNzk1 Rjc1QzM4OTAeFw0yNDA1MTkwODM2NDhaFw0yNDA1MjYwODM2NDhaMBgxFjAUBgNV BAMTDTY2NDliYTIwLTA0NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBpLIgv4oNbk1QbsCQpvqWpP7r0nRZ3B0clWsnnboveE5lY5JbULanml8F1w37 2OwRPfoRY3u8VDZ2OEJ7Kw296IMGhhqNpP7S8CSXFhEOuFz51fK5SeZGhwOamCX7 pOuaGqgXrOfibs0MMfWJt+cwpByYtwBI2zEvxlVuKsdm3+t1mjY5mgratbN7w/qi 2NW/7bOlPWEQ5VA4MnG8CKz/j49vApC/gvMp+F0vuWf3li2PfmHmIoSkqWgz+Snr ztXZZJKV19XpxZQbOr3iX2d/MZobFMvGZlhTeby7hTmNp+Xfb1TMm+nqkLAAtt5t AMUHyoFug7o0wdT1qGMr5GHzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpDlYSEzh qLXkl8tiawgqEhu5+oQwHwYDVR0jBBgwFoAUC9q2CGF/PDGDxHD05hmyeV91w4kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyNkIzL0M1NTQyM0FBRTY5 MTExRUVCRjA1ODkzMkM0RjlBRTAyL0M5cTJDR0ZfUERHRHhIRDA1aG15ZVY5MXc0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQzlxMkNHRl9QREdEeEhEMDVobXllVjkxdzRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMy NkIzL0M1NTQyM0FBRTY5MTExRUVCRjA1ODkzMkM0RjlBRTAyL0M5cTJDR0ZfUERH RHhIRDA1aG15ZVY5MXc0ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACCWHdGgIOilPB8TTpL1sjmph81XVnFnga8II/zYsqaqZ305BU5ExZhZ hLrf3KrbD10PJwbRfLepn/2s2/1LMwekJ0MbalAD9rCRrmWfyWu8XkUWmc/oNT3/ Xx1RYxbl1uOr2tvFrEKNCgdcd4qjVLVMlOe0IsbQ1zr3TTEn4aGKR3NVWXpV7S/N VlbS8v3NiwW7dv6r0M5i8WgzjWEEjYKTrGlnPL4fX3QG826XQ4wFGciQQ3cP0f7W xgkYSnEsZjjRqBHK0q0OGfQx9KlBvhzJgcwdCadanuOjRqf2TQZiG+8+98dn40GH rDZ9xDhLm0EB99NT5uwDW1HLeUS+4+w= -----END CERTIFICATE-----Generated at Sun May 19 09:32:15 2024 by rpki-client on console-ams.rpki-client.org