$ rpki-client -vvf rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft File: aWYanwY1V84rVDewGIk9fZ_dvtA.mft (raw, json) Hash identifier: Ut2gLTezZmo0xJjBmGtGd8T24Cp0uwLbYrMmmbwJmos= Subject key identifier: 1E:DE:FD:A2:D1:A9:82:D8:C9:E9:97:95:4A:07:59:9C:B7:A1:C7:58 Authority key identifier: 69:66:1A:9F:06:35:57:CE:2B:54:37:B0:18:89:3D:7D:9F:DD:BE:D0 Certificate issuer: /CN=A91431A6/serialNumber=69661A9F063557CE2B5437B018893D7D9FDDBED0 Certificate serial: 0589 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft Manifest number: 0583 Signing time: Sun 19 May 2024 00:34:10 +0000 Manifest this update: Sun 19 May 2024 00:34:09 +0000 Manifest next update: Sun 26 May 2024 00:34:09 +0000 Files and hashes: 1: aWYanwY1V84rVDewGIk9fZ_dvtA.crl (hash: /iwxXfnGPO/l0XQ1AwXigMtJM72Cm6l/6AJaXmU8kms=) 2: DDCD4C168EC611EBAB7F3476C4F9AE02.roa (hash: XgqjCFFv8OvHgcyHmr4FpMdTjHkJB/4NbQ4b1FrOS50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.crl rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1417 (0x589) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91431A6/serialNumber=69661A9F063557CE2B5437B018893D7D9FDDBED0 Validity Not Before: May 19 00:34:09 2024 GMT Not After : May 26 00:34:09 2024 GMT Subject: CN=66494901-5f1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bf:55:22:2c:23:b8:a7:6f:32:dd:37:80:38: f4:e7:b7:09:9b:28:ff:d1:39:d2:8d:69:a2:36:b7: 41:42:33:72:ee:ac:a7:8a:0c:12:cc:67:2c:e6:b2: ac:2c:af:ac:0e:c7:7e:57:e1:b6:a7:c2:54:65:5c: 95:be:20:67:59:2f:22:38:c9:50:27:13:88:9d:c9: 3b:97:ce:e3:4a:fa:f4:f6:85:03:de:0d:f6:e3:52: 6d:c6:77:84:c7:13:ae:76:45:e4:c2:94:1e:54:3c: 7b:99:72:a4:5f:93:15:e7:25:5d:1a:08:2b:be:04: 6f:b9:08:a6:45:bb:9d:d6:92:81:d9:0a:7d:6a:5c: f4:fe:6e:39:b3:3f:21:9a:3b:c9:bb:be:2c:68:ed: bb:88:a0:0b:f0:c4:41:ce:fc:a1:3b:2b:a8:81:84: 3c:ef:ec:f3:5d:79:2d:3a:dc:60:79:fa:70:98:c9: 41:da:35:42:70:39:fd:a3:ec:d5:32:0c:cc:fe:97: 75:3e:1c:14:50:23:60:3f:b4:0e:34:f2:20:b7:d2: 8c:1b:4b:c4:1c:05:69:4b:c6:ba:ea:5f:f5:ac:35: 5a:4f:fd:0f:f8:51:61:7d:80:78:ea:ae:16:19:d5: 5a:cf:c9:8b:d5:bb:5c:7f:55:a1:4d:4e:72:db:ba: 9d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DE:FD:A2:D1:A9:82:D8:C9:E9:97:95:4A:07:59:9C:B7:A1:C7:58 X509v3 Authority Key Identifier: keyid:69:66:1A:9F:06:35:57:CE:2B:54:37:B0:18:89:3D:7D:9F:DD:BE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:07:a4:1e:fb:67:42:93:73:89:eb:73:ed:24:24:fc:87:db: de:02:af:4d:3f:46:00:ed:f6:0e:22:80:53:18:a9:e8:d1:bd: c1:4e:2a:60:e0:88:f7:65:12:30:e4:b6:ed:2c:bd:85:bc:19: d3:5e:c2:64:90:91:b3:60:bd:04:f0:23:b4:83:32:e3:75:9f: e1:d5:47:53:59:af:87:ae:52:6b:99:e2:a7:b0:fb:2e:dc:b2: f0:80:6a:5a:ba:b6:a5:45:15:d5:2d:ff:7b:a1:9c:ed:c3:06: b4:5d:83:c7:cb:75:b7:79:a5:c4:9e:4d:13:55:aa:21:0e:44: 36:a5:bb:f8:9f:03:dc:e0:89:b7:f3:cc:3a:e2:2b:df:26:4c: c2:04:09:74:5b:39:51:96:d1:8b:f4:dc:38:1f:96:ca:71:e7: 9c:27:92:a8:61:bf:fb:09:90:2e:e1:82:7e:f8:f4:94:bb:43: 5c:45:aa:86:d8:e5:a3:b4:d5:9a:03:3f:70:3d:ff:0a:65:d6: 74:a1:11:04:a3:72:ce:32:34:46:f9:2b:b5:05:7d:bf:e8:1e: 60:f6:a6:24:fc:4a:19:71:11:ba:ff:fb:91:aa:db:17:64:6d: de:9a:3b:71:87:58:03:0b:43:f8:a2:91:38:d5:48:0c:41:2a: 92:f3:75:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMxQTYxMTAvBgNVBAUTKDY5NjYxQTlGMDYzNTU3Q0UyQjU0MzdCMDE4ODkzRDdE OUZEREJFRDAwHhcNMjQwNTE5MDAzNDA5WhcNMjQwNTI2MDAzNDA5WjAYMRYwFAYD VQQDEw02NjQ5NDkwMS01ZjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtb9VIiwjuKdvMt03gDj057cJmyj/0TnSjWmiNrdBQjNy7qynigwSzGcs5rKs LK+sDsd+V+G2p8JUZVyVviBnWS8iOMlQJxOInck7l87jSvr09oUD3g3241JtxneE xxOudkXkwpQeVDx7mXKkX5MV5yVdGggrvgRvuQimRbud1pKB2Qp9alz0/m45sz8h mjvJu74saO27iKAL8MRBzvyhOyuogYQ87+zzXXktOtxgefpwmMlB2jVCcDn9o+zV MgzM/pd1PhwUUCNgP7QONPIgt9KMG0vEHAVpS8a66l/1rDVaT/0P+FFhfYB46q4W GdVaz8mL1btcf1WhTU5y27qd1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7e/aLR qYLYyemXlUoHWZy3ocdYMB8GA1UdIwQYMBaAFGlmGp8GNVfOK1Q3sBiJPX2f3b7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzFBNi80NEQ4OTBDQThF QzUxMUVCOTdCMTIwNzRDNEY5QUUwMi9hV1lhbndZMVY4NHJWRGV3R0lrOWZaX2R2 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXWWFud1kxVjg0clZEZXdHSWs5ZlpfZHZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzFBNi80NEQ4OTBDQThFQzUxMUVCOTdCMTIwNzRDNEY5QUUwMi9hV1lhbndZMVY4 NHJWRGV3R0lrOWZaX2R2dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuB6Qe+2dCk3OJ63PtJCT8h9veAq9NP0YA7fYOIoBTGKno0b3BTipg 4Ij3ZRIw5LbtLL2FvBnTXsJkkJGzYL0E8CO0gzLjdZ/h1UdTWa+HrlJrmeKnsPsu 3LLwgGpauralRRXVLf97oZztwwa0XYPHy3W3eaXEnk0TVaohDkQ2pbv4nwPc4Im3 88w64ivfJkzCBAl0WzlRltGL9Nw4H5bKceecJ5KoYb/7CZAu4YJ++PSUu0NcRaqG 2OWjtNWaAz9wPf8KZdZ0oREEo3LOMjRG+Su1BX2/6B5g9qYk/EoZcRG6//uRqtsX ZG3emjtxh1gDC0P4opE41UgMQSqS83Wo -----END CERTIFICATE-----Generated at Sun May 19 01:47:09 2024 by rpki-client on console-ams.rpki-client.org