$ rpki-client -vvf rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft File: jhRqR_5i0JoyZs4IOlecrROlgGY.mft (raw, json) Hash identifier: qwpSkCnWJNtvynqRMZnaPZFtPRx9qoeXbiXetCxWxzU= Subject key identifier: CA:5E:9D:1C:45:15:4B:44:E1:66:C3:EA:D0:2D:8B:37:39:9A:80:13 Authority key identifier: 8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 Certificate issuer: /CN=A91570C9/serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft Manifest number: B8 Signing time: Sun 19 May 2024 06:26:16 +0000 Manifest this update: Sun 19 May 2024 06:26:16 +0000 Manifest next update: Sun 26 May 2024 06:26:16 +0000 Files and hashes: 1: jhRqR_5i0JoyZs4IOlecrROlgGY.crl (hash: 0A7I82ngh45n43dHRTJnnnOfwktwPQVG1eoAbx3CPqY=) 2: DFFEC4ECFA2B11ED89B90A2FC4F9AE02.roa (hash: agumHNNhmcoX+UPs9EUhYTHkTtXw18UiV95xuDSDHF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91570C9/serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Validity Not Before: May 19 06:26:16 2024 GMT Not After : May 26 06:26:16 2024 GMT Subject: CN=66499b88-3682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bc:90:fe:8b:04:76:3d:ca:f8:e5:57:92:02: 7d:ba:e6:6c:4b:7e:b8:26:52:39:8d:95:4b:af:8a: 6a:24:db:a4:54:9e:b4:a1:cc:73:29:54:ff:55:0e: 91:fb:25:73:40:7d:4f:e4:14:e7:2d:59:0e:fd:df: f3:8b:56:e7:94:8a:80:90:71:32:d6:5e:38:db:3e: 79:f1:af:76:2e:bf:f9:e6:1a:d0:eb:24:1c:06:5b: 02:39:3b:b1:45:4a:06:70:32:c6:6e:a9:4d:c1:4d: 32:b0:38:58:e6:2d:ae:30:f0:85:b5:55:16:f0:89: 77:42:51:85:1f:36:c7:31:ab:50:47:37:0c:3c:de: 50:ca:09:27:53:cd:40:42:50:df:5b:db:61:73:a6: 9f:b1:56:8f:28:5e:8c:be:0d:2c:69:c2:8b:52:71: fe:83:82:e4:96:83:0b:09:1a:14:f0:4b:81:8b:c0: 65:2f:64:07:f2:46:eb:4b:91:09:5f:57:85:c0:df: f9:27:84:12:9e:3d:4e:42:42:d2:7e:8c:38:87:59: 1e:02:e5:0b:cd:91:ed:72:fd:b2:42:09:fa:1e:7e: 93:0b:6d:f6:81:6e:77:3f:e4:9e:c5:29:e2:6d:be: cf:68:31:07:8a:1f:6d:4b:56:2f:64:84:aa:1b:1c: 29:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5E:9D:1C:45:15:4B:44:E1:66:C3:EA:D0:2D:8B:37:39:9A:80:13 X509v3 Authority Key Identifier: keyid:8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:83:46:95:59:29:3a:4d:6a:06:13:15:57:2c:c7:34:c5:8f: a9:8b:4b:d4:94:ad:ee:6e:32:5f:54:c0:86:6a:0e:ff:aa:79: c1:d1:33:09:33:41:c5:df:ec:37:d3:c4:33:0e:fc:74:a1:09: 6e:ee:8f:5b:76:39:ea:74:d3:08:17:65:99:ad:61:6f:73:4a: 3e:a6:10:1a:44:62:35:6f:84:44:b3:56:6b:8a:76:33:73:1d: 33:87:11:e0:90:2c:06:2e:98:9c:1b:20:84:07:0e:6f:db:3f: 13:e5:fc:07:6b:aa:9b:81:86:ae:b4:21:d0:52:e5:89:b4:3d: 0f:9c:77:2f:b7:ab:88:08:74:f1:b0:d8:14:0f:4c:ea:2b:c8: 5f:da:0b:a4:65:85:25:a7:30:73:de:11:6f:7f:07:7b:4b:0b: e7:04:04:7f:f1:b9:1f:cf:d0:0c:e1:e3:ab:69:f8:7d:5e:99: 08:91:ef:36:96:c9:ec:27:c0:2d:19:9f:c5:37:9f:12:50:04: 3b:34:2d:a6:bc:35:14:c4:e8:0d:df:03:c5:94:4b:5d:3e:66: 8b:63:ea:9c:f0:ae:48:50:34:9d:68:b6:26:e8:35:40:cc:de: 11:6b:32:5a:10:f8:a6:11:93:48:2d:86:49:1a:9f:30:ec:37: dd:d3:20:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwQzkxMTAvBgNVBAUTKDhFMTQ2QTQ3RkU2MkQwOUEzMjY2Q0UwODNBNTc5Q0FE MTNBNTgwNjYwHhcNMjQwNTE5MDYyNjE2WhcNMjQwNTI2MDYyNjE2WjAYMRYwFAYD VQQDEw02NjQ5OWI4OC0zNjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybyQ/osEdj3K+OVXkgJ9uuZsS364JlI5jZVLr4pqJNukVJ60ocxzKVT/VQ6R +yVzQH1P5BTnLVkO/d/zi1bnlIqAkHEy1l442z558a92Lr/55hrQ6yQcBlsCOTux RUoGcDLGbqlNwU0ysDhY5i2uMPCFtVUW8Il3QlGFHzbHMatQRzcMPN5QygknU81A QlDfW9thc6afsVaPKF6Mvg0sacKLUnH+g4LkloMLCRoU8EuBi8BlL2QH8kbrS5EJ X1eFwN/5J4QSnj1OQkLSfow4h1keAuULzZHtcv2yQgn6Hn6TC232gW53P+SexSni bb7PaDEHih9tS1YvZISqGxwpBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpenRxF FUtE4WbD6tAtizc5moATMB8GA1UdIwQYMBaAFI4Uakf+YtCaMmbOCDpXnK0TpYBm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzBDOS8wMjI3QjlBRUZB MjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBKb3laczRJT2xlY3JST2xn R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poUnFSXzVpMEpveVpzNElPbGVjclJPbGdHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzBDOS8wMjI3QjlBRUZBMjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBK b3laczRJT2xlY3JST2xnR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIg0aVWSk6TWoGExVXLMc0xY+pi0vUlK3ubjJfVMCGag7/qnnB0TMJ M0HF3+w308QzDvx0oQlu7o9bdjnqdNMIF2WZrWFvc0o+phAaRGI1b4REs1ZrinYz cx0zhxHgkCwGLpicGyCEBw5v2z8T5fwHa6qbgYautCHQUuWJtD0PnHcvt6uICHTx sNgUD0zqK8hf2gukZYUlpzBz3hFvfwd7SwvnBAR/8bkfz9AM4eOrafh9XpkIke82 lsnsJ8AtGZ/FN58SUAQ7NC2mvDUUxOgN3wPFlEtdPmaLY+qc8K5IUDSdaLYm6DVA zN4RazJaEPimEZNILYZJGp8w7Dfd0yDC -----END CERTIFICATE-----Generated at Sun May 19 08:25:01 2024 by rpki-client on console-ams.rpki-client.org