$ rpki-client -vvf rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft File: 91XB4Q_ErmiS0krLh4LX5cAEGLA.mft (raw, json) Hash identifier: Vkfmc2fpvSpkrEHXUtnTyQiOs8iT/cMee30wtuxiWS8= Subject key identifier: FC:A0:2C:54:25:93:D2:83:59:BD:C8:10:7A:B8:0A:19:DB:81:2A:7D Authority key identifier: F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 Certificate issuer: /CN=A9136F59/serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft Manifest number: 01EF Signing time: Sun 19 May 2024 04:14:27 +0000 Manifest this update: Sun 19 May 2024 04:14:26 +0000 Manifest next update: Sun 26 May 2024 04:14:26 +0000 Files and hashes: 1: 91XB4Q_ErmiS0krLh4LX5cAEGLA.crl (hash: VzKJjRqgqei0lcAHSJ6eUy2fpJIc8tF9QPEM79Xv2e8=) 2: ED0C111CF8F611ECB6DF8835C4F9AE02.roa (hash: wYUBzooVrEbT6ZXl38oQZE+9xL3AYMS5g0m/JK1vkiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136F59/serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Validity Not Before: May 19 04:14:26 2024 GMT Not After : May 26 04:14:26 2024 GMT Subject: CN=66497ca2-31da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ca:e6:1f:98:fa:81:6e:6b:c1:3f:33:83:65: b6:bb:81:7d:a5:8d:37:3a:2f:84:07:cb:77:f3:b8: 76:cd:f7:f0:d1:1d:5e:5f:62:4c:4e:58:dd:be:66: dc:89:e2:4a:39:dc:d4:80:33:97:04:28:26:6e:58: 8d:c3:44:00:0b:cd:7e:9b:d5:cf:d8:ba:41:c7:a6: 93:40:7e:15:98:06:0a:2c:1c:97:14:6a:c7:0b:fb: 83:3b:93:07:ed:6c:bb:2a:c2:ce:ca:bb:e3:20:02: 49:99:0a:6e:1c:2f:b1:62:0b:88:22:3d:3a:18:9b: d8:ad:25:5f:ea:47:94:3e:17:de:b0:07:ba:c4:da: f1:f2:42:1c:c5:76:46:a9:ba:9e:38:62:8b:f9:99: 60:73:f2:7f:96:4a:a4:88:e5:6a:c8:3a:2c:c9:24: 7a:cb:23:b4:5b:3c:50:c6:01:2a:d8:6f:4d:d8:a6: 74:05:73:a5:8a:3a:a2:ed:84:af:a6:4e:23:77:e5: 5c:b7:d6:22:ed:af:f3:ab:14:4a:71:3b:f5:3c:ba: 2a:17:47:ec:8d:6e:ea:9b:d1:bf:71:16:d5:fb:2b: 7c:ac:d8:3e:fd:5b:f7:f9:50:59:6e:e2:13:4c:cb: 99:ae:fe:1e:3f:3e:3c:0f:c8:f1:d9:c6:29:08:28: 11:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A0:2C:54:25:93:D2:83:59:BD:C8:10:7A:B8:0A:19:DB:81:2A:7D X509v3 Authority Key Identifier: keyid:F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:90:15:9c:41:14:aa:f6:fd:55:2a:da:d2:af:59:83:49:9f: 34:74:a0:7d:5f:f8:d3:02:0e:c7:3d:33:b6:3c:2b:ac:33:b7: fa:13:7d:18:78:c9:81:d3:d4:06:46:49:1b:2a:43:c6:6f:22: b4:e9:90:c4:c4:63:25:0d:35:95:a1:6d:a5:cb:19:e9:d5:77: d1:ef:18:18:fb:10:5d:20:0c:a1:2b:06:2c:5d:32:f3:cb:45: 62:53:e2:83:83:71:8e:a2:9d:a5:1b:ae:74:ef:96:d0:76:6d: b2:c0:e0:f0:2c:47:aa:3c:ab:82:1c:26:a3:d5:87:ac:7d:76: 70:79:97:88:2a:da:2d:e3:88:1b:3c:9b:a5:ca:f5:2f:22:98: a7:93:e7:cc:0b:44:bc:ea:46:8b:0f:af:ac:a7:84:24:4b:96: 4d:3a:eb:8c:a7:75:2c:e3:cf:26:69:f3:32:90:be:bb:50:95: c4:5e:7a:b9:fc:dd:ca:a6:2d:86:88:8c:09:43:b5:55:32:b5: 2f:42:25:3d:8a:d2:d4:e6:31:cd:39:3d:32:8c:46:f5:42:ea: 02:98:ea:d4:7b:7c:4e:2c:1e:da:41:b0:f3:0d:8e:07:80:53: fd:15:3f:a8:f8:12:b9:43:ca:42:5a:40:47:fb:35:22:35:56: 28:32:7d:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZGNTkxMTAvBgNVBAUTKEY3NTVDMUUxMEZDNEFFNjg5MkQyNEFDQjg3ODJEN0U1 QzAwNDE4QjAwHhcNMjQwNTE5MDQxNDI2WhcNMjQwNTI2MDQxNDI2WjAYMRYwFAYD VQQDEw02NjQ5N2NhMi0zMWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3crmH5j6gW5rwT8zg2W2u4F9pY03Oi+EB8t387h2zffw0R1eX2JMTljdvmbc ieJKOdzUgDOXBCgmbliNw0QAC81+m9XP2LpBx6aTQH4VmAYKLByXFGrHC/uDO5MH 7Wy7KsLOyrvjIAJJmQpuHC+xYguIIj06GJvYrSVf6keUPhfesAe6xNrx8kIcxXZG qbqeOGKL+Zlgc/J/lkqkiOVqyDosySR6yyO0WzxQxgEq2G9N2KZ0BXOlijqi7YSv pk4jd+Vct9Yi7a/zqxRKcTv1PLoqF0fsjW7qm9G/cRbV+yt8rNg+/Vv3+VBZbuIT TMuZrv4ePz48D8jx2cYpCCgR9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPygLFQl k9KDWb3IEHq4ChnbgSp9MB8GA1UdIwQYMBaAFPdVweEPxK5oktJKy4eC1+XABBiw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkY1OS81NzcyQUZCRUY4 NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJtaVMwa3JMaDRMWDVjQUVH TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkxWEI0UV9Fcm1pUzBrckxoNExYNWNBRUdMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkY1OS81NzcyQUZCRUY4NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJt aVMwa3JMaDRMWDVjQUVHTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjkBWcQRSq9v1VKtrSr1mDSZ80dKB9X/jTAg7HPTO2PCusM7f6E30Y eMmB09QGRkkbKkPGbyK06ZDExGMlDTWVoW2lyxnp1XfR7xgY+xBdIAyhKwYsXTLz y0ViU+KDg3GOop2lG65075bQdm2ywODwLEeqPKuCHCaj1YesfXZweZeIKtot44gb PJulyvUvIpink+fMC0S86kaLD6+sp4QkS5ZNOuuMp3Us488mafMykL67UJXEXnq5 /N3Kpi2GiIwJQ7VVMrUvQiU9itLU5jHNOT0yjEb1QuoCmOrUe3xOLB7aQbDzDY4H gFP9FT+o+BK5Q8pCWkBH+zUiNVYoMn3I -----END CERTIFICATE-----Generated at Sun May 19 05:08:04 2024 by rpki-client on console-ams.rpki-client.org