$ rpki-client -vvf rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft File: C0io-y5r59-P7QejyRmyPKQL3so.mft (raw, json) Hash identifier: aQDu9gaV/tgUYyZv80cQe/re9VvsnJ63froEKm7CwVg= Subject key identifier: 1F:6F:30:56:42:A0:9B:F3:6A:ED:F0:55:B5:53:D2:68:F7:FA:BD:9E Authority key identifier: 0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA Certificate issuer: /CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Certificate serial: 0A0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft Manifest number: 09FD Signing time: Fri 31 May 2024 21:23:08 +0000 Manifest this update: Fri 31 May 2024 21:23:07 +0000 Manifest next update: Fri 07 Jun 2024 21:23:07 +0000 Files and hashes: 1: C0io-y5r59-P7QejyRmyPKQL3so.crl (hash: l/0joKbfoE6s4sn3sUM2LBApoU+wmQ4vxOSF0XvDju0=) 2: E16EB924B1A011ECBB574850C4F9AE02.roa (hash: /SpHw3LM2dxp+spwUPCplCVFduq4SfbpnO6I3ALmLPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2573 (0xa0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Validity Not Before: May 31 21:23:07 2024 GMT Not After : Jun 7 21:23:07 2024 GMT Subject: CN=665a3fbc-a95f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0f:93:37:64:fe:0a:ef:e0:98:61:74:40:74: 77:91:5c:a3:67:50:89:67:79:7b:19:ed:e8:37:3b: a6:26:d0:ab:2e:32:81:27:36:81:93:db:96:00:b3: 96:f4:09:e7:2d:73:3a:cd:77:00:d3:da:40:6d:be: 61:a0:f8:6b:e2:8d:48:21:6e:37:41:e1:cb:42:23: 64:9a:13:67:2d:e5:c4:8c:75:9c:de:68:eb:33:4c: a7:0d:46:1f:ab:39:d6:ef:0c:6e:5a:e9:9f:4b:6d: ed:30:e3:a6:d0:e4:a2:44:c2:d5:72:f5:0a:82:bf: d4:de:74:f1:3c:66:e0:7b:f6:62:c2:7b:4d:2d:a6: 42:d5:fd:98:5b:3a:14:c1:13:9c:68:ae:22:ea:11: ff:27:94:c6:00:c0:39:60:2e:6c:77:f5:5b:3c:7b: b6:66:99:b1:03:2b:3a:c8:d9:63:8d:56:7b:28:e4: d3:cf:cf:1d:32:21:65:10:3d:aa:19:72:9b:e4:2b: 76:f9:26:86:0a:59:65:2a:c9:5f:bb:6d:70:0b:c1: 44:04:e0:17:78:00:43:89:43:4f:93:3a:ef:14:00: 3d:07:df:e8:9b:21:45:a9:e1:ab:e8:4c:d4:e6:44: d6:c1:5c:a7:64:de:b2:de:81:62:d3:90:e3:9b:07: 46:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:6F:30:56:42:A0:9B:F3:6A:ED:F0:55:B5:53:D2:68:F7:FA:BD:9E X509v3 Authority Key Identifier: keyid:0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:20:0f:dc:d8:aa:fd:f8:54:f6:fb:fe:27:91:70:88:5c:b6: fa:cd:60:09:6a:36:a0:21:2b:26:9a:35:c2:1a:47:ba:0e:b5: 02:4a:43:ef:3a:e1:f7:de:ad:4c:5c:a9:77:ae:ac:d3:fc:55: d3:c0:65:a6:af:83:0d:12:37:8c:4b:36:a2:e7:08:b5:d4:63: 74:62:74:d8:af:f6:2e:fa:7d:fd:0a:6f:7c:ac:93:2a:ce:20: 24:29:4d:ee:74:f0:b1:84:0f:88:16:73:ee:a1:e0:c2:27:5c: 3f:90:fc:b1:7f:15:1d:3b:54:4d:31:85:b2:f8:d9:a7:78:e5: 98:55:42:11:d8:43:f5:ce:9b:c2:d3:58:4b:99:33:82:ef:59: 81:db:4f:24:71:a7:43:42:96:6a:de:a2:4f:62:23:6d:b4:ad: a4:0e:4d:f6:49:7d:ad:b3:a0:de:09:10:d9:09:52:0e:0a:b3: 5d:82:55:4a:0c:f9:be:ae:58:2d:65:36:b6:3c:ac:e6:75:2f: 27:0d:66:0f:e3:88:7e:20:43:64:3d:60:e8:5c:db:90:86:c2: a0:66:e7:32:6f:a7:f3:ab:de:e2:07:f8:ff:a9:be:85:15:41: a9:aa:fe:c9:f4:1d:49:42:14:01:35:b4:d2:92:8e:66:ab:bd: b2:0e:72:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyQjAxMTAvBgNVBAUTKDBCNDhBOEZCMkU2QkU3REY4RkVEMDdBM0M5MTlCMjND QTQwQkRFQ0EwHhcNMjQwNTMxMjEyMzA3WhcNMjQwNjA3MjEyMzA3WjAYMRYwFAYD VQQDEw02NjVhM2ZiYy1hOTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4w+TN2T+Cu/gmGF0QHR3kVyjZ1CJZ3l7Ge3oNzumJtCrLjKBJzaBk9uWALOW 9AnnLXM6zXcA09pAbb5hoPhr4o1IIW43QeHLQiNkmhNnLeXEjHWc3mjrM0ynDUYf qznW7wxuWumfS23tMOOm0OSiRMLVcvUKgr/U3nTxPGbge/ZiwntNLaZC1f2YWzoU wROcaK4i6hH/J5TGAMA5YC5sd/VbPHu2ZpmxAys6yNljjVZ7KOTTz88dMiFlED2q GXKb5Ct2+SaGClllKslfu21wC8FEBOAXeABDiUNPkzrvFAA9B9/omyFFqeGr6EzU 5kTWwVynZN6y3oFi05DjmwdG2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9vMFZC oJvzau3wVbVT0mj3+r2eMB8GA1UdIwQYMBaAFAtIqPsua+ffj+0Ho8kZsjykC97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJCMC82NkUwQ0FENjU2 RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5LVA3UWVqeVJteVBLUUwz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MwaW8teTVyNTktUDdRZWp5Um15UEtRTDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJCMC82NkUwQ0FENjU2RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5 LVA3UWVqeVJteVBLUUwzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbIA/c2Kr9+FT2+/4nkXCIXLb6zWAJajagISsmmjXCGke6DrUCSkPv OuH33q1MXKl3rqzT/FXTwGWmr4MNEjeMSzai5wi11GN0YnTYr/Yu+n39Cm98rJMq ziAkKU3udPCxhA+IFnPuoeDCJ1w/kPyxfxUdO1RNMYWy+NmneOWYVUIR2EP1zpvC 01hLmTOC71mB208kcadDQpZq3qJPYiNttK2kDk32SX2ts6DeCRDZCVIOCrNdglVK DPm+rlgtZTa2PKzmdS8nDWYP44h+IENkPWDoXNuQhsKgZucyb6fzq97iB/j/qb6F FUGpqv7J9B1JQhQBNbTSko5mq72yDnJ7 -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:12 2024 by rpki-client on console-ams.rpki-client.org