$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: qqsjl/6E/gkmfjqb4HcghoQAvg0keYAnu4joA6GCCis= Subject key identifier: 20:1B:C5:63:E2:D8:B9:9E:B6:BD:CD:80:04:89:24:80:AA:CA:E5:95 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: C0 Signing time: Sun 19 May 2024 06:21:15 +0000 Manifest this update: Sun 19 May 2024 06:21:15 +0000 Manifest next update: Sun 26 May 2024 06:21:15 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: e58hLeYbGntRSg9/F3EJeEEifLzPZH4REpEWT9rltec=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: BDsArpnPj57wKjWMqGLOx2lac9bj3NuWSaBU3gek1qM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: May 19 06:21:15 2024 GMT Not After : May 26 06:21:15 2024 GMT Subject: CN=66499a5b-eced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:be:37:1e:a5:13:df:66:4e:05:5d:cf:c6:6f: 30:2a:71:49:f8:9f:31:3f:b5:7c:73:2e:e4:7b:d1: c7:78:19:78:66:9a:e8:ff:e2:2c:0b:59:a5:44:b4: 78:84:e1:16:35:7d:3e:3c:81:65:2a:8f:bc:f0:97: 93:bb:10:0b:8e:24:31:7e:11:92:83:5e:b0:e7:1b: 0a:7b:08:f6:ed:19:42:c0:dc:83:9d:94:71:82:ce: 3c:2c:fe:0b:86:ea:7b:02:62:6f:9d:8a:06:7d:b4: 90:af:fc:6c:e6:04:c5:b6:09:e2:0f:9f:a0:b8:50: 70:03:39:28:a9:98:4c:0a:85:dd:b5:5b:9d:29:59: 98:47:c6:c7:77:db:69:aa:21:01:d2:e2:b2:4f:c1: 99:13:2e:3c:b4:49:5f:a9:e1:1c:63:ff:e6:8a:25: b8:29:35:24:0e:d1:cd:50:36:83:9e:7c:d5:45:a2: 5b:9b:b4:d3:b8:0a:f5:d6:4d:0d:ff:1c:55:c4:e3: 9e:15:a7:0f:e0:52:3a:a1:4e:0f:db:79:37:7f:9d: 33:5d:6c:ed:e4:27:44:13:27:ad:28:c5:ad:57:dd: 40:01:8a:02:54:fc:c0:b9:08:5f:68:63:ba:9c:6a: ca:54:ee:55:d2:b9:1a:b7:20:b6:04:c8:82:5b:37: e7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:1B:C5:63:E2:D8:B9:9E:B6:BD:CD:80:04:89:24:80:AA:CA:E5:95 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:c9:8a:80:0d:47:c1:6d:c2:f8:ac:b6:d6:37:7a:65:bf:03: b6:e2:53:2a:1c:63:57:7a:80:bb:37:9a:2d:98:f9:1d:be:83: e7:3f:eb:79:b3:e1:b7:10:9d:2f:95:e2:7f:b9:7c:02:c1:41: f4:eb:c2:e8:38:44:d2:d1:48:b3:75:20:ac:37:fe:31:89:ff: 06:2f:ed:aa:7c:b7:a6:90:24:95:5e:1e:01:79:e1:98:12:43: 86:14:53:18:c2:13:4c:3c:88:11:db:78:f7:db:56:5c:6b:f9: 3e:73:38:1a:46:13:cc:c2:d4:ae:40:14:cc:a7:c7:79:72:c9: 12:28:43:ff:ae:9d:c7:7a:23:b9:fa:8f:1f:e7:df:7c:e4:c7: c9:4d:e6:30:93:30:39:f6:2c:01:ea:83:1c:79:e8:84:1c:61: 1a:8d:cf:8f:80:b4:f7:18:17:a5:50:e2:0e:79:cd:6d:79:f1: 68:e3:c8:19:7e:0a:cb:84:70:88:b3:bb:11:35:21:f3:f5:e8: c6:92:63:e8:a6:b1:96:cd:1f:f8:1b:3d:dd:ec:38:a3:88:d5: 6d:60:3c:c3:1e:db:7d:79:e9:02:9b:eb:bd:04:96:2c:6e:d9: dd:36:a3:e6:f0:48:c8:85:7c:40:3f:70:cc:6e:4c:92:52:c1: 3f:f3:70:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjQwNTE5MDYyMTE1WhcNMjQwNTI2MDYyMTE1WjAYMRYwFAYD VQQDEw02NjQ5OWE1Yi1lY2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3L43HqUT32ZOBV3Pxm8wKnFJ+J8xP7V8cy7ke9HHeBl4Zpro/+IsC1mlRLR4 hOEWNX0+PIFlKo+88JeTuxALjiQxfhGSg16w5xsKewj27RlCwNyDnZRxgs48LP4L hup7AmJvnYoGfbSQr/xs5gTFtgniD5+guFBwAzkoqZhMCoXdtVudKVmYR8bHd9tp qiEB0uKyT8GZEy48tElfqeEcY//miiW4KTUkDtHNUDaDnnzVRaJbm7TTuAr11k0N /xxVxOOeFacP4FI6oU4P23k3f50zXWzt5CdEEyetKMWtV91AAYoCVPzAuQhfaGO6 nGrKVO5V0rkatyC2BMiCWzfneQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAbxWPi 2Lmetr3NgASJJICqyuWVMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXyYqADUfBbcL4rLbWN3plvwO24lMqHGNXeoC7N5otmPkdvoPnP+t5 s+G3EJ0vleJ/uXwCwUH068LoOETS0UizdSCsN/4xif8GL+2qfLemkCSVXh4BeeGY EkOGFFMYwhNMPIgR23j321Zca/k+czgaRhPMwtSuQBTMp8d5cskSKEP/rp3HeiO5 +o8f59985MfJTeYwkzA59iwB6oMceeiEHGEajc+PgLT3GBelUOIOec1tefFo48gZ fgrLhHCIs7sRNSHz9ejGkmPoprGWzR/4Gz3d7DijiNVtYDzDHtt9eekCm+u9BJYs btndNqPm8EjIhXxAP3DMbkySUsE/83C1 -----END CERTIFICATE-----Generated at Sun May 19 08:25:00 2024 by rpki-client on console-ams.rpki-client.org