$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft File: dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft (raw, json) Hash identifier: T3bOy1CR13dau8Z1mHPQoCAUZJciHtzCUkxgGiaPPE8= Subject key identifier: 42:65:9F:1C:5C:E2:15:B8:6D:42:13:DB:C3:E9:90:65:80:DD:FC:71 Authority key identifier: 77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 Certificate issuer: /CN=A91557BA/serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Certificate serial: 0B91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft Manifest number: 0B88 Signing time: Sat 18 May 2024 19:20:50 +0000 Manifest this update: Sat 18 May 2024 19:20:49 +0000 Manifest next update: Sat 25 May 2024 19:20:49 +0000 Files and hashes: 1: dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl (hash: b0gaF0jyuAYLqyhM1ygw6W5vZIHMQFufGwcpbvxy8nM=) 2: D68289BE984B11ECB04DAB38C4F9AE02.roa (hash: 0gxNTMeRk0FZXFUFm3TqARct7ccARqhdMl770N275VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2961 (0xb91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA/serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Validity Not Before: May 18 19:20:49 2024 GMT Not After : May 25 19:20:49 2024 GMT Subject: CN=6648ff91-837c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:93:eb:b7:ac:95:3e:92:9a:aa:30:ba:c9:f7: 1f:01:3c:aa:83:2e:2a:7d:43:1b:53:bb:6d:59:dc: 22:b9:e0:43:b2:08:8d:fb:53:c0:04:e9:64:e3:ed: 17:b6:ed:f4:d2:06:c4:80:15:1f:00:ba:20:6c:d0: 3f:59:d8:51:5d:cb:68:24:ec:b2:86:9e:43:56:9d: 2a:3b:32:9b:22:0d:88:81:c8:98:9d:cc:43:f8:58: d7:6c:65:99:78:7d:b0:f7:98:7c:68:36:ac:48:57: 2a:71:f0:45:9e:86:4e:66:11:07:fe:e5:36:c6:52: 8b:9a:3e:c7:ed:b5:ff:25:79:96:e6:1a:38:e4:31: a3:33:84:30:5d:88:97:0c:e2:b3:e7:b7:d4:30:54: 8b:98:90:71:52:b1:a1:98:f2:f1:22:61:89:de:50: 7b:47:9d:7f:f6:bc:2e:28:6c:b7:84:24:27:4e:44: 4c:5f:62:7f:5c:b6:e1:31:aa:3c:16:b0:bb:cc:26: 26:36:99:4c:5f:c6:eb:ec:dd:79:4a:00:f3:c7:69: f6:a5:4d:b3:14:da:84:9c:26:a8:08:94:c8:71:fc: 9d:9f:fa:9c:cb:b6:7e:3f:c6:6c:a8:c9:8c:9a:ec: 00:ce:51:0f:27:66:0b:ed:79:62:04:25:f5:e5:94: 7a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:65:9F:1C:5C:E2:15:B8:6D:42:13:DB:C3:E9:90:65:80:DD:FC:71 X509v3 Authority Key Identifier: keyid:77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:93:c7:67:dd:de:90:c9:13:7d:41:d9:9d:40:72:91:53:3b: f8:e4:31:e6:3f:51:07:21:b6:e3:8a:47:86:97:30:68:7f:7e: 3e:b9:f6:85:4e:62:64:2b:34:4d:ae:8f:39:ec:81:14:b1:11: b2:71:a8:65:dd:39:3c:17:ad:84:b5:58:5b:23:e5:8b:21:0d: 28:16:fa:dd:17:ac:b7:5e:d5:3e:48:a6:f5:ce:a0:32:26:a7: af:ea:ee:d5:8e:08:f4:86:39:f6:ab:02:14:c8:69:f2:ea:84: f9:68:a3:b3:23:d2:ea:e0:fe:76:af:ca:ba:f4:d5:78:e3:fd: 02:0a:b1:86:b6:3a:e0:f5:9a:f2:e3:b1:87:9d:d4:8a:a0:57: a1:85:f7:40:7a:b1:4f:9a:65:99:37:d2:1d:96:c3:a1:43:0c: 3d:37:8c:c4:b6:da:65:6d:87:12:2a:23:46:69:f0:33:85:c3: 5a:4d:58:bc:59:cb:7e:38:bd:97:d7:a4:42:ed:e9:20:ef:db: 39:14:f4:bc:65:d1:80:0d:51:0c:a7:b7:e5:fa:e0:c2:c6:7f: 82:ab:9c:59:3a:8d:5a:1d:ea:6a:63:fb:8c:83:2c:97:e4:85: 64:29:b8:60:84:ba:a4:1f:cb:3b:82:fd:f2:50:36:55:76:fe: fa:e4:07:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKDc3MDZEMDg4RTkyMURFOEIwMUVCQkEwNjIwMUQwNDE1 MEU4NjREMDQwHhcNMjQwNTE4MTkyMDQ5WhcNMjQwNTI1MTkyMDQ5WjAYMRYwFAYD VQQDEw02NjQ4ZmY5MS04MzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ZPrt6yVPpKaqjC6yfcfATyqgy4qfUMbU7ttWdwiueBDsgiN+1PABOlk4+0X tu300gbEgBUfALogbNA/WdhRXctoJOyyhp5DVp0qOzKbIg2IgciYncxD+FjXbGWZ eH2w95h8aDasSFcqcfBFnoZOZhEH/uU2xlKLmj7H7bX/JXmW5ho45DGjM4QwXYiX DOKz57fUMFSLmJBxUrGhmPLxImGJ3lB7R51/9rwuKGy3hCQnTkRMX2J/XLbhMao8 FrC7zCYmNplMX8br7N15SgDzx2n2pU2zFNqEnCaoCJTIcfydn/qcy7Z+P8ZsqMmM muwAzlEPJ2YL7XliBCX15ZR6AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJlnxxc 4hW4bUIT28PpkGWA3fxxMB8GA1UdIwQYMBaAFHcG0IjpId6LAeu6BiAdBBUOhk0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82RTc0OTUxMDA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNvc0I2N29HSUIwRUZRNkdU UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R3YlFpT2toM29zQjY3b0dJQjBFRlE2R1RRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82RTc0OTUxMDA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNv c0I2N29HSUIwRUZRNkdUUVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmk8dn3d6QyRN9QdmdQHKRUzv45DHmP1EHIbbjikeGlzBof34+ufaF TmJkKzRNro857IEUsRGycahl3Tk8F62EtVhbI+WLIQ0oFvrdF6y3XtU+SKb1zqAy Jqev6u7Vjgj0hjn2qwIUyGny6oT5aKOzI9Lq4P52r8q69NV44/0CCrGGtjrg9Zry 47GHndSKoFehhfdAerFPmmWZN9IdlsOhQww9N4zEttplbYcSKiNGafAzhcNaTVi8 Wct+OL2X16RC7ekg79s5FPS8ZdGADVEMp7fl+uDCxn+Cq5xZOo1aHepqY/uMgyyX 5IVkKbhghLqkH8s7gv3yUDZVdv765Adp -----END CERTIFICATE-----Generated at Sat May 18 20:15:59 2024 by rpki-client on console-ams.rpki-client.org