$ rpki-client -vvf rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft File: g4n9Rv74flk96Bz_3N8guiynYB4.mft (raw, json) Hash identifier: BvNHAxN/107sHV81WWZ+ddy5GG0SFmIQZAsh7S0GcNs= Subject key identifier: AF:5A:09:94:FE:EB:42:37:4A:D7:C6:F3:89:D7:1B:2E:34:BB:05:55 Authority key identifier: 83:89:FD:46:FE:F8:7E:59:3D:E8:1C:FF:DC:DF:20:BA:2C:A7:60:1E Certificate issuer: /CN=A91475BA/serialNumber=8389FD46FEF87E593DE81CFFDCDF20BA2CA7601E Certificate serial: 074F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft Manifest number: 074B Signing time: Sat 18 May 2024 22:20:17 +0000 Manifest this update: Sat 18 May 2024 22:20:17 +0000 Manifest next update: Sat 25 May 2024 22:20:17 +0000 Files and hashes: 1: g4n9Rv74flk96Bz_3N8guiynYB4.crl (hash: 3sCWesM3fwCrzvatRTOB0BXx2C1feuWy3U9Q34WN474=) 2: 1E1D32C22FF311EC9220256BC4F9AE02.roa (hash: sp7R1jgbjSPvEocVz1lCwF44oWS6ofUWMkzKCCO1nDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.crl rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1871 (0x74f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91475BA/serialNumber=8389FD46FEF87E593DE81CFFDCDF20BA2CA7601E Validity Not Before: May 18 22:20:17 2024 GMT Not After : May 25 22:20:17 2024 GMT Subject: CN=664929a1-62cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ad:ec:b5:d0:74:03:13:75:7d:f9:91:b6:80: a1:db:3b:c5:2b:4a:5e:05:e7:f3:d7:bd:31:0e:83: 38:f8:1f:4d:ac:ae:4b:23:4b:7d:3b:38:25:78:7c: b4:58:ae:0a:f8:c2:16:27:1e:fa:48:d1:f5:09:0c: af:81:8f:25:bf:7c:f6:a4:a6:92:de:62:93:63:d9: c9:36:9b:a7:2e:0d:8e:66:fb:7e:73:bf:75:db:9b: c6:4d:ac:96:f2:6f:20:91:af:26:a9:69:57:ff:f1: f4:4e:94:06:5e:cc:4f:f2:6d:3e:61:59:0b:98:94: 6f:c1:74:31:18:79:02:c0:a1:81:08:f2:99:1d:6b: 79:ef:9d:81:9f:1d:5d:ba:d5:3d:13:75:52:be:3a: 8a:33:3a:8a:7d:e0:0c:38:b4:8a:9d:44:b1:59:f8: be:33:12:9a:6d:e1:ca:80:50:98:4a:d5:5a:6b:ea: f2:d0:1e:b4:90:65:05:db:06:45:c4:f0:f6:b7:b0: e0:aa:67:cb:b3:50:bf:cd:30:5f:9f:c7:6e:5a:82: 69:cf:e2:68:1e:ad:24:a5:37:a4:78:5e:6a:86:b0: c3:d0:d5:46:61:c5:79:0b:8d:be:f2:3c:58:23:ae: 1e:66:88:5e:71:3c:c7:b7:76:e7:f3:8a:de:ca:99: e7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:5A:09:94:FE:EB:42:37:4A:D7:C6:F3:89:D7:1B:2E:34:BB:05:55 X509v3 Authority Key Identifier: keyid:83:89:FD:46:FE:F8:7E:59:3D:E8:1C:FF:DC:DF:20:BA:2C:A7:60:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:97:4b:f1:2a:16:74:fb:24:4b:91:ff:f8:81:72:e3:16:5d: 13:a8:79:81:e5:bd:20:31:87:e6:56:d2:66:ef:58:74:dd:2b: 72:95:a9:a0:bd:2c:b3:37:fe:9a:54:0a:ea:c2:e0:83:96:23: af:4b:f7:44:8c:6a:7d:0e:74:42:b4:8f:01:96:f9:43:b3:70: b7:a0:53:94:fd:ba:ae:c4:5c:16:27:c1:05:c8:9a:80:99:77: 33:a7:08:e0:c0:02:f1:2e:d9:49:f4:71:cb:63:59:0a:fd:8f: 4b:2b:c7:76:a8:ed:d2:03:3f:8e:db:09:0a:f3:c9:e4:4f:1e: 5c:d1:65:12:48:53:45:88:e6:2b:80:85:fb:d5:b3:e2:17:40: 78:40:bd:73:30:02:4f:5b:37:e3:3e:4a:79:a4:74:3a:9c:6a: ea:41:b9:54:8d:65:89:b4:52:17:79:84:98:e8:c0:ec:6b:4b: fb:52:bd:ef:2f:08:3b:02:97:c1:37:42:fb:07:4b:56:3b:43: dc:59:6a:2d:9d:db:28:4a:e3:13:07:0a:bb:17:f3:bc:0b:93: 7f:b1:ea:cc:4f:6b:f4:36:7e:fd:c0:99:86:f1:75:40:dd:f7: 58:07:87:ba:37:4c:3a:fa:cb:8f:d7:ff:a0:5e:58:a6:f6:7d: 97:25:d8:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc1QkExMTAvBgNVBAUTKDgzODlGRDQ2RkVGODdFNTkzREU4MUNGRkRDREYyMEJB MkNBNzYwMUUwHhcNMjQwNTE4MjIyMDE3WhcNMjQwNTI1MjIyMDE3WjAYMRYwFAYD VQQDEw02NjQ5MjlhMS02MmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApq3stdB0AxN1ffmRtoCh2zvFK0peBefz170xDoM4+B9NrK5LI0t9OzgleHy0 WK4K+MIWJx76SNH1CQyvgY8lv3z2pKaS3mKTY9nJNpunLg2OZvt+c79125vGTayW 8m8gka8mqWlX//H0TpQGXsxP8m0+YVkLmJRvwXQxGHkCwKGBCPKZHWt5752Bnx1d utU9E3VSvjqKMzqKfeAMOLSKnUSxWfi+MxKabeHKgFCYStVaa+ry0B60kGUF2wZF xPD2t7DgqmfLs1C/zTBfn8duWoJpz+JoHq0kpTekeF5qhrDD0NVGYcV5C42+8jxY I64eZohecTzHt3bn84reypnniwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9aCZT+ 60I3StfG84nXGy40uwVVMB8GA1UdIwQYMBaAFIOJ/Ub++H5ZPegc/9zfILosp2Ae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzVCQS9ENEYwOEVFNkRB RTkxMUVBOTJDRTM0NUFDNEY5QUUwMi9nNG45UnY3NGZsazk2QnpfM044Z3VpeW5Z QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c0bjlSdjc0ZmxrOTZCel8zTjhndWl5bllCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzVCQS9ENEYwOEVFNkRBRTkxMUVBOTJDRTM0NUFDNEY5QUUwMi9nNG45UnY3NGZs azk2QnpfM044Z3VpeW5ZQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARl0vxKhZ0+yRLkf/4gXLjFl0TqHmB5b0gMYfmVtJm71h03Stylamg vSyzN/6aVArqwuCDliOvS/dEjGp9DnRCtI8BlvlDs3C3oFOU/bquxFwWJ8EFyJqA mXczpwjgwALxLtlJ9HHLY1kK/Y9LK8d2qO3SAz+O2wkK88nkTx5c0WUSSFNFiOYr gIX71bPiF0B4QL1zMAJPWzfjPkp5pHQ6nGrqQblUjWWJtFIXeYSY6MDsa0v7Ur3v Lwg7ApfBN0L7B0tWO0PcWWotndsoSuMTBwq7F/O8C5N/serMT2v0Nn79wJmG8XVA 3fdYB4e6N0w6+suP1/+gXlim9n2XJdiv -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org