$ rpki-client -vvf rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft File: mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft (raw, json) Hash identifier: mn9sJz34uVve6bMpVoWfWxgIfjD/cmSRo7f91MZiTDU= Subject key identifier: FC:F0:6C:A1:02:76:D6:E5:D4:FB:C1:09:9F:3F:EF:DB:B2:31:45:3C Authority key identifier: 98:1F:A2:27:A2:A4:35:C2:B7:6E:06:C9:C4:52:D3:EC:75:19:84:D3 Certificate issuer: /CN=A91536B7/serialNumber=981FA227A2A435C2B76E06C9C452D3EC751984D3 Certificate serial: 0666 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft Manifest number: 4F15 Signing time: Sat 18 May 2024 16:53:11 +0000 Manifest this update: Sat 18 May 2024 16:53:11 +0000 Manifest next update: Sat 25 May 2024 16:53:11 +0000 Files and hashes: 1: mB-iJ6KkNcK3bgbJxFLT7HUZhNM.crl (hash: cAafHi8bARbRzQz0J8wMZu9PC3Eaitngm2pUs7dGgfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.crl rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1638 (0x666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536B7/serialNumber=981FA227A2A435C2B76E06C9C452D3EC751984D3 Validity Not Before: May 18 16:53:11 2024 GMT Not After : May 25 16:53:11 2024 GMT Subject: CN=6648dcf7-ec77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ae:a9:20:c7:7e:41:2e:78:b7:a1:b0:0f:eb: e7:60:a9:b1:41:1b:2f:ae:b4:ee:07:1b:0e:db:b3: 5e:2b:10:24:e8:12:92:ed:c4:15:99:c4:01:97:a2: 37:09:e2:6d:db:b8:ca:b1:3c:c6:54:72:9d:a8:19: c6:6d:12:95:77:f3:ab:4c:08:eb:6a:e6:c6:0d:23: 6d:5d:39:04:7b:d7:fb:8a:11:52:e9:01:8a:56:ae: 8c:cd:0b:3a:74:80:54:4d:e6:15:ac:4a:59:e9:ab: 97:61:17:ad:ba:65:c3:45:a4:36:6f:33:68:8c:38: 42:78:75:6b:71:fa:47:55:52:ae:57:28:90:3b:83: 5a:e9:47:e8:5a:70:35:d1:98:4a:6e:29:00:5a:a9: 01:78:2b:1a:69:44:c3:b6:72:67:7d:38:8b:12:d5: f2:71:82:17:b3:5f:a9:a9:f4:35:14:2a:a8:8f:c0: b0:8b:f8:9c:6d:dd:68:d0:b2:21:8c:97:7d:d2:3d: 5e:9a:70:21:8e:4d:67:30:36:bd:dd:43:44:00:18: ec:d4:9c:06:41:f9:72:36:3b:2d:d5:99:a0:f2:a6: c6:a3:1d:12:76:02:7d:1e:3d:40:9f:9c:56:b6:27: b3:4f:75:48:0b:fb:cd:57:55:c2:d0:08:de:d3:ef: 12:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:F0:6C:A1:02:76:D6:E5:D4:FB:C1:09:9F:3F:EF:DB:B2:31:45:3C X509v3 Authority Key Identifier: keyid:98:1F:A2:27:A2:A4:35:C2:B7:6E:06:C9:C4:52:D3:EC:75:19:84:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:68:61:13:70:23:ea:51:ab:8d:e9:46:89:6a:5e:cc:85:3b: 0c:27:24:bf:5e:e4:2a:a7:8c:f4:e8:f5:c1:04:b0:06:f7:1b: 0d:f7:51:4c:f2:22:46:c0:ba:c7:af:28:72:fd:e2:13:89:a9: 0c:42:8e:0a:09:16:39:e5:02:82:9b:9e:fb:b0:23:e3:47:f2: 4b:11:6d:b4:6d:13:27:48:13:bb:d4:ae:6e:cd:46:98:97:31: 31:f7:c7:53:7e:eb:1a:70:ae:cb:2a:36:0e:2e:a0:bb:bd:c4: d5:48:1d:62:a0:45:85:8a:34:31:1c:0b:9c:37:be:cf:86:32: 70:9d:6e:38:c7:44:a7:01:11:2a:00:fd:14:6c:b7:bd:96:4e: 44:1b:a2:e1:04:bd:a9:d6:27:95:2a:31:71:cf:75:4a:48:38: cd:06:b9:46:9d:0c:01:aa:6a:5f:80:cb:b1:7f:2b:1c:09:bc: b5:1b:bf:99:35:87:77:57:7c:7f:ea:94:52:b8:c2:b2:ae:df: 4f:aa:12:af:c4:6f:94:c9:98:e3:e6:76:de:c0:33:2b:5c:13: 17:16:bb:a6:e3:2b:15:3d:d7:2e:18:ed:c7:62:98:4b:c2:2d: ee:b5:f5:72:ec:46:5a:35:7c:88:3b:44:94:e5:56:0e:6e:6c: 51:e8:78:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2QjcxMTAvBgNVBAUTKDk4MUZBMjI3QTJBNDM1QzJCNzZFMDZDOUM0NTJEM0VD NzUxOTg0RDMwHhcNMjQwNTE4MTY1MzExWhcNMjQwNTI1MTY1MzExWjAYMRYwFAYD VQQDEw02NjQ4ZGNmNy1lYzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxq6pIMd+QS54t6GwD+vnYKmxQRsvrrTuBxsO27NeKxAk6BKS7cQVmcQBl6I3 CeJt27jKsTzGVHKdqBnGbRKVd/OrTAjraubGDSNtXTkEe9f7ihFS6QGKVq6MzQs6 dIBUTeYVrEpZ6auXYRetumXDRaQ2bzNojDhCeHVrcfpHVVKuVyiQO4Na6UfoWnA1 0ZhKbikAWqkBeCsaaUTDtnJnfTiLEtXycYIXs1+pqfQ1FCqoj8Cwi/icbd1o0LIh jJd90j1emnAhjk1nMDa93UNEABjs1JwGQflyNjst1Zmg8qbGox0SdgJ9Hj1An5xW tiezT3VIC/vNV1XC0Aje0+8SKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzwbKEC dtbl1PvBCZ8/79uyMUU8MB8GA1UdIwQYMBaAFJgfoieipDXCt24GycRS0+x1GYTT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzZCNy9GMUNEMjdCNDcz QUQxMUU3QUNCRDAyNUVDNEY5QUUwMi9tQi1pSjZLa05jSzNiZ2JKeEZMVDdIVVpo Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21CLWlKNktrTmNLM2JnYkp4RkxUN0hVWmhOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzZCNy9GMUNEMjdCNDczQUQxMUU3QUNCRDAyNUVDNEY5QUUwMi9tQi1pSjZLa05j SzNiZ2JKeEZMVDdIVVpoTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkaGETcCPqUauN6UaJal7MhTsMJyS/XuQqp4z06PXBBLAG9xsN91FM 8iJGwLrHryhy/eITiakMQo4KCRY55QKCm577sCPjR/JLEW20bRMnSBO71K5uzUaY lzEx98dTfusacK7LKjYOLqC7vcTVSB1ioEWFijQxHAucN77PhjJwnW44x0SnAREq AP0UbLe9lk5EG6LhBL2p1ieVKjFxz3VKSDjNBrlGnQwBqmpfgMuxfyscCby1G7+Z NYd3V3x/6pRSuMKyrt9PqhKvxG+UyZjj5nbewDMrXBMXFrum4ysVPdcuGO3HYphL wi3utfVy7EZaNXyIO0SU5VYObmxR6Hj8 -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org