$ rpki-client -vvf rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft File: jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft (raw, json) Hash identifier: oz6TX2/oWFc/wMScujRs7sc/wpWVdHBVGzj6+RePlCw= Subject key identifier: 82:67:06:5F:14:D5:CF:F9:2B:AE:C1:CA:94:1F:AD:30:D8:B6:C3:34 Authority key identifier: 8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75 Certificate issuer: /CN=A91385F2/serialNumber=8C0A1FFF1AA31CEA6CC0C88B67AC22D594639C75 Certificate serial: 0437 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft Manifest number: 0431 Signing time: Sun 19 May 2024 02:00:09 +0000 Manifest this update: Sun 19 May 2024 02:00:08 +0000 Manifest next update: Sun 26 May 2024 02:00:08 +0000 Files and hashes: 1: jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl (hash: 85LYYbTEOuskObxVzvCSTkYpq3GFL45XzD76FxzDlDs=) 2: E6B7014C152511ECAD055780C4F9AE02.roa (hash: wY2tWMCpA53Xn4fhz59FHFfOwIeqYMS5pp24NwZTVhc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1079 (0x437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91385F2/serialNumber=8C0A1FFF1AA31CEA6CC0C88B67AC22D594639C75 Validity Not Before: May 19 02:00:08 2024 GMT Not After : May 26 02:00:08 2024 GMT Subject: CN=66495d28-2ea6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3f:db:e5:57:01:78:a6:27:ab:87:53:c1:19: 4b:d0:e4:d7:4c:20:11:43:f0:28:a6:46:aa:38:7a: 91:f0:c1:14:dd:a4:2d:10:70:78:ec:f6:60:7c:35: a7:a1:97:cd:10:f1:44:93:21:14:9c:07:e3:ac:da: 9d:82:ca:14:9f:c5:2e:f5:8b:ba:25:94:2e:74:28: 13:13:24:1c:38:cf:72:6c:09:fd:9d:63:7c:21:d0: c2:f9:b2:1b:ee:18:16:db:93:39:be:5c:ab:99:5a: f0:20:b6:f5:94:fa:fa:4a:2d:18:26:c0:c7:78:47: d2:81:4f:bd:f6:82:80:24:95:e4:5a:d7:c1:71:e9: 91:3d:78:e0:f6:83:d2:e1:2a:80:73:cf:bc:60:2b: 72:0b:e4:93:e3:3a:aa:df:0b:71:06:f7:b4:8c:3b: 96:e0:7b:59:83:7f:7f:b4:d0:00:53:7a:8d:5b:22: 4e:0c:2d:83:0e:08:58:f9:b9:35:4f:0d:9b:cb:c4: 97:c3:f0:80:20:3c:74:f6:9d:cc:3d:28:4d:6d:b5: 19:6b:fd:d4:91:97:5d:e7:9b:26:52:e3:30:dc:6a: c7:ed:52:98:89:ea:44:c2:82:4b:81:ba:db:70:54: bb:4e:78:d0:e5:91:2b:28:66:13:a6:be:fa:7b:2d: 8d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:67:06:5F:14:D5:CF:F9:2B:AE:C1:CA:94:1F:AD:30:D8:B6:C3:34 X509v3 Authority Key Identifier: keyid:8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:31:fd:ba:c8:48:12:8d:ad:98:3f:5d:22:e8:10:5c:a4:09: bf:29:a2:bb:10:e3:c2:7c:17:94:42:62:cb:d3:9e:ef:79:5b: e2:04:33:b5:eb:52:17:4a:95:b4:2f:d3:83:74:57:e8:d4:bc: 9b:70:30:cd:dc:c4:b7:d3:5d:36:ec:35:fc:3d:14:30:a0:02: 6c:66:4e:43:08:c5:9f:8d:8a:2e:fd:6e:5b:59:33:bb:f0:b4: 26:c5:12:41:82:01:85:64:d3:43:dc:44:e6:38:9a:ff:ea:c0: 20:08:0c:4b:78:96:bd:21:29:93:32:80:e4:08:c1:87:64:8b: 3e:1b:1b:16:a1:d7:d7:ac:df:fa:2f:e6:a5:3a:57:97:8f:91: d2:2e:e0:7e:92:3b:64:d9:c4:e1:ee:e7:df:61:7d:c9:08:e7: 43:78:4d:d4:09:bc:50:6f:95:5a:35:1f:99:d9:7b:5b:f8:3e: 88:d4:cd:67:b6:d1:70:ae:77:fd:02:2c:a7:16:e8:4c:28:05: cf:4a:1d:5f:aa:59:f4:b1:75:8b:15:c2:a5:66:8c:2e:a7:b3: cf:a9:c3:eb:c4:57:6c:fa:31:b7:3b:ff:3a:ae:81:c0:91:2e: 5c:9b:5a:41:5b:9c:31:41:3f:af:76:b7:1b:85:31:14:6d:6b: a3:59:4a:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg1RjIxMTAvBgNVBAUTKDhDMEExRkZGMUFBMzFDRUE2Q0MwQzg4QjY3QUMyMkQ1 OTQ2MzlDNzUwHhcNMjQwNTE5MDIwMDA4WhcNMjQwNTI2MDIwMDA4WjAYMRYwFAYD VQQDEw02NjQ5NWQyOC0yZWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArj/b5VcBeKYnq4dTwRlL0OTXTCARQ/AopkaqOHqR8MEU3aQtEHB47PZgfDWn oZfNEPFEkyEUnAfjrNqdgsoUn8Uu9Yu6JZQudCgTEyQcOM9ybAn9nWN8IdDC+bIb 7hgW25M5vlyrmVrwILb1lPr6Si0YJsDHeEfSgU+99oKAJJXkWtfBcemRPXjg9oPS 4SqAc8+8YCtyC+ST4zqq3wtxBve0jDuW4HtZg39/tNAAU3qNWyJODC2DDghY+bk1 Tw2by8SXw/CAIDx09p3MPShNbbUZa/3UkZdd55smUuMw3GrH7VKYiepEwoJLgbrb cFS7TnjQ5ZErKGYTpr76ey2NHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJnBl8U 1c/5K67BypQfrTDYtsM0MB8GA1UdIwQYMBaAFIwKH/8aoxzqbMDIi2esItWUY5x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODVGMi80RDMwMTZFODE1 MjExMUVDQkU4ODZBMjlDNEY5QUUwMi9qQW9mX3hxakhPcHN3TWlMWjZ3aTFaUmpu SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pBb2ZfeHFqSE9wc3dNaUxaNndpMVpSam5IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODVGMi80RDMwMTZFODE1MjExMUVDQkU4ODZBMjlDNEY5QUUwMi9qQW9mX3hxakhP cHN3TWlMWjZ3aTFaUmpuSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUMf26yEgSja2YP10i6BBcpAm/KaK7EOPCfBeUQmLL057veVviBDO1 61IXSpW0L9ODdFfo1LybcDDN3MS301027DX8PRQwoAJsZk5DCMWfjYou/W5bWTO7 8LQmxRJBggGFZNND3ETmOJr/6sAgCAxLeJa9ISmTMoDkCMGHZIs+GxsWodfXrN/6 L+alOleXj5HSLuB+kjtk2cTh7uffYX3JCOdDeE3UCbxQb5VaNR+Z2Xtb+D6I1M1n ttFwrnf9AiynFuhMKAXPSh1fqln0sXWLFcKlZowup7PPqcPrxFds+jG3O/86roHA kS5cm1pBW5wxQT+vdrcbhTEUbWujWUoc -----END CERTIFICATE-----Generated at Sun May 19 02:39:35 2024 by rpki-client on console-fra.rpki-client.org