$ rpki-client -vvf rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.mft File: wqLrTPkQJ3ikLhXM0gpYTtztwnI.mft (raw, json) Hash identifier: sKk80EV/D9lUG0Tisp5ymy9oQavbaXYCYqUdcEssaFg= Subject key identifier: 73:A7:B1:32:53:36:A2:C4:BD:F7:39:FD:73:FC:D0:65:F0:5F:23:95 Authority key identifier: C2:A2:EB:4C:F9:10:27:78:A4:2E:15:CC:D2:0A:58:4E:DC:ED:C2:72 Certificate issuer: /CN=A91365B9/serialNumber=C2A2EB4CF9102778A42E15CCD20A584EDCEDC272 Certificate serial: 02D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqLrTPkQJ3ikLhXM0gpYTtztwnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.mft Manifest number: 02D1 Signing time: Sun 19 May 2024 03:23:54 +0000 Manifest this update: Sun 19 May 2024 03:23:54 +0000 Manifest next update: Sun 26 May 2024 03:23:54 +0000 Files and hashes: 1: wqLrTPkQJ3ikLhXM0gpYTtztwnI.crl (hash: cdit4xcGNBwIssbYTS8t5/VXw1S2rmDvnK/SzIuHOpA=) 2: AFF4E1F89EB711EC8210607DC4F9AE02.roa (hash: /TuZ9+B/iKL8Wdr/M4Xrg2SYzklBnsQLva2o/WSmeOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.crl rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqLrTPkQJ3ikLhXM0gpYTtztwnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 724 (0x2d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91365B9/serialNumber=C2A2EB4CF9102778A42E15CCD20A584EDCEDC272 Validity Not Before: May 19 03:23:54 2024 GMT Not After : May 26 03:23:54 2024 GMT Subject: CN=664970ca-949e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:22:f4:48:cf:0c:18:46:b2:b1:2f:85:22:af: cc:40:0a:d8:80:19:e8:3f:d0:ed:08:53:3a:d6:27: 11:82:9f:0e:a5:36:a6:9e:41:f5:22:0d:da:18:10: ac:e8:2d:b4:41:4a:cb:50:a0:da:24:95:06:8a:de: 3a:4b:a8:2c:ba:47:b2:0f:96:13:6f:47:cb:82:b8: 2b:fc:cb:75:9a:d2:a3:0c:4f:1d:de:51:fd:db:9a: 26:09:43:3c:d9:1e:bf:05:c8:5e:d6:1d:a2:00:97: f5:e4:a9:05:9e:60:10:bd:fc:d3:00:37:54:19:44: 24:1b:ef:91:d5:95:d7:3b:48:bb:af:8c:bb:be:70: e9:0b:23:31:07:84:63:55:9b:1f:ca:b8:c8:cd:16: c6:9f:4a:63:e6:f9:0a:61:ce:36:8f:fb:4d:b7:93: c9:9f:5b:43:ed:9c:df:5d:44:eb:b6:fd:3b:40:9c: ad:ff:0a:51:b7:7b:1d:37:ed:1a:17:9f:c1:41:a8: a8:e7:13:83:bf:07:ef:7b:e6:b4:4a:82:3d:4d:f0: a9:bb:1f:e2:3d:91:eb:cf:0d:ff:ab:40:46:1f:1c: 34:f1:c5:6f:da:5d:1f:c1:ae:d0:e8:d0:fe:27:ec: 8c:b5:33:b2:3a:6c:fb:18:4f:56:97:c1:67:90:49: d3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A7:B1:32:53:36:A2:C4:BD:F7:39:FD:73:FC:D0:65:F0:5F:23:95 X509v3 Authority Key Identifier: keyid:C2:A2:EB:4C:F9:10:27:78:A4:2E:15:CC:D2:0A:58:4E:DC:ED:C2:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqLrTPkQJ3ikLhXM0gpYTtztwnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:be:9c:e3:b3:0f:48:6a:1b:ae:d0:ce:a9:29:14:8c:fa:78: 08:3a:7a:6a:e6:4e:75:3f:b5:d5:36:f2:83:0e:61:12:c8:08: 86:5d:3c:4a:f1:02:8b:c4:98:c3:bc:b3:db:e1:c8:29:16:00: 45:40:9e:e1:e8:76:fb:ad:69:3d:8b:2f:06:32:bd:78:c0:23: b2:07:84:e3:f3:c3:18:53:55:57:2e:f4:6b:cd:cb:fb:d7:26: ef:bb:28:0e:62:50:95:8f:cb:47:27:3a:af:f2:65:87:bc:d8: e4:6f:1b:4b:14:7e:0b:f7:08:6e:ca:7a:b1:d5:62:e8:2f:8d: 0a:fe:0b:d4:a6:29:ea:41:85:1a:60:d3:33:be:24:c6:ff:32: b4:1f:8b:f7:13:d5:40:d1:fd:22:8c:eb:7d:a1:6d:e0:54:e3: c8:cf:74:fe:a7:4c:22:a1:92:c9:7c:59:f9:11:29:62:2c:b9: 04:fe:c6:cd:30:97:4e:81:67:34:8a:e3:2c:60:17:9c:81:c8: 9d:08:f9:6c:e0:aa:26:cb:c2:19:a2:69:f9:0b:cf:ea:49:37: 18:33:47:08:37:6b:00:5a:34:1f:f7:90:76:47:07:19:57:e1: f8:af:df:2f:99:91:bf:f9:d0:e2:0b:5e:fb:65:8e:24:0c:d2: 2c:e0:c3:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY1QjkxMTAvBgNVBAUTKEMyQTJFQjRDRjkxMDI3NzhBNDJFMTVDQ0QyMEE1ODRF RENFREMyNzIwHhcNMjQwNTE5MDMyMzU0WhcNMjQwNTI2MDMyMzU0WjAYMRYwFAYD VQQDEw02NjQ5NzBjYS05NDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmSL0SM8MGEaysS+FIq/MQArYgBnoP9DtCFM61icRgp8OpTamnkH1Ig3aGBCs 6C20QUrLUKDaJJUGit46S6gsukeyD5YTb0fLgrgr/Mt1mtKjDE8d3lH925omCUM8 2R6/Bche1h2iAJf15KkFnmAQvfzTADdUGUQkG++R1ZXXO0i7r4y7vnDpCyMxB4Rj VZsfyrjIzRbGn0pj5vkKYc42j/tNt5PJn1tD7ZzfXUTrtv07QJyt/wpRt3sdN+0a F5/BQaio5xODvwfve+a0SoI9TfCpux/iPZHrzw3/q0BGHxw08cVv2l0fwa7Q6ND+ J+yMtTOyOmz7GE9Wl8FnkEnTBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOnsTJT NqLEvfc5/XP80GXwXyOVMB8GA1UdIwQYMBaAFMKi60z5ECd4pC4VzNIKWE7c7cJy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjVCOS83NDVENzcwMjlF QjQxMUVDQkYwRTE0NzdDNEY5QUUwMi93cUxyVFBrUUozaWtMaFhNMGdwWVR0enR3 bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dxTHJUUGtRSjNpa0xoWE0wZ3BZVHR6dHduSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjVCOS83NDVENzcwMjlFQjQxMUVDQkYwRTE0NzdDNEY5QUUwMi93cUxyVFBrUUoz aWtMaFhNMGdwWVR0enR3bkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlvpzjsw9Iahuu0M6pKRSM+ngIOnpq5k51P7XVNvKDDmESyAiGXTxK 8QKLxJjDvLPb4cgpFgBFQJ7h6Hb7rWk9iy8GMr14wCOyB4Tj88MYU1VXLvRrzcv7 1ybvuygOYlCVj8tHJzqv8mWHvNjkbxtLFH4L9whuynqx1WLoL40K/gvUpinqQYUa YNMzviTG/zK0H4v3E9VA0f0ijOt9oW3gVOPIz3T+p0wioZLJfFn5ESliLLkE/sbN MJdOgWc0iuMsYBecgcidCPls4Komy8IZomn5C8/qSTcYM0cIN2sAWjQf95B2RwcZ V+H4r98vmZG/+dDiC177ZY4kDNIs4MNX -----END CERTIFICATE-----Generated at Sun May 19 04:20:42 2024 by rpki-client on console-ams.rpki-client.org