$ rpki-client -vvf rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft File: aJtDtI4RHmnx33nMohHMtCZaJns.mft (raw, json) Hash identifier: gBkPyuKEfkQnQXsIRAC3GPDW85HhRxfDiSrPyTLDFiw= Subject key identifier: 03:AB:BF:96:E9:6D:CC:09:E9:40:6A:4A:72:26:42:40:79:41:C3:10 Authority key identifier: 68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B Certificate issuer: /CN=A91688C4/serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Certificate serial: 0675 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft Manifest number: 0670 Signing time: Sat 18 May 2024 23:30:55 +0000 Manifest this update: Sat 18 May 2024 23:30:55 +0000 Manifest next update: Sat 25 May 2024 23:30:55 +0000 Files and hashes: 1: aJtDtI4RHmnx33nMohHMtCZaJns.crl (hash: MNGIE7THo9lVhn0W6wrfgPASE6ViB1VqOFwoZpV2Qm4=) 2: 56FB3BA630DB11EBB36CAB54C4F9AE02.roa (hash: pVKgpE25u+sSRKE4cptGbAa1fOeGm3fPROv0vvQGx0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1653 (0x675) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688C4/serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Validity Not Before: May 18 23:30:55 2024 GMT Not After : May 25 23:30:55 2024 GMT Subject: CN=66493a2f-d79d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:36:84:a3:66:9a:84:3d:40:9a:57:39:c0:76: fd:82:da:36:01:79:12:2a:56:18:c2:72:78:c4:a6: a9:f5:95:68:41:ca:ea:51:a2:a2:1a:9a:07:3f:5f: 9c:69:65:55:a0:c4:3a:fb:23:f3:7b:10:fa:14:99: 51:ba:6e:7b:69:0d:98:b6:38:57:77:3f:36:14:e2: 19:4b:28:df:99:83:6f:8b:be:c3:6d:f6:d8:26:37: 2f:eb:2b:80:ac:2c:04:2c:af:a9:b2:d5:e5:dd:3b: 33:88:2d:9d:41:fb:aa:86:64:aa:50:fc:64:ce:5d: 9e:ec:2c:c4:d1:87:af:d7:03:90:df:09:b0:71:f9: 36:bb:f9:fa:4d:15:be:de:6d:5a:49:a4:53:2a:ee: c8:08:ca:d8:1c:51:b6:fe:2c:2c:86:48:21:a8:29: c3:70:ee:d9:14:b9:67:7b:21:32:c1:57:15:d7:8f: e3:0e:fe:ea:d9:2c:64:2d:4b:03:73:5b:fe:fb:72: ec:47:08:5e:05:23:14:13:96:66:9c:9a:8a:18:36: 17:00:6c:ef:41:cd:e8:81:d4:ac:b5:ac:84:5c:5b: a0:1d:ef:3e:a8:86:da:a8:ee:5e:a9:57:c0:91:78: b5:4a:5e:6a:2a:17:b4:f8:fa:9d:76:d8:d3:d5:9c: 82:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:AB:BF:96:E9:6D:CC:09:E9:40:6A:4A:72:26:42:40:79:41:C3:10 X509v3 Authority Key Identifier: keyid:68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:2a:a7:5d:95:e1:06:38:4c:f8:b7:b3:63:f0:f8:09:ee:cb: ae:23:37:59:19:f1:a6:4c:a9:b3:d9:21:51:26:a8:6e:4c:7e: d4:62:9d:c2:d2:79:e3:50:eb:fd:5d:95:cb:b5:9c:46:95:41: 37:6a:c3:d1:fc:94:82:cd:c2:ee:d5:03:2a:13:25:d7:ad:9b: 04:c8:23:b5:7f:6e:0b:17:21:a8:cb:f4:c8:24:90:76:70:a1: 0b:49:29:c0:05:49:a0:e0:3b:76:74:da:b0:72:84:50:fe:01: c5:e3:6a:b6:3c:c2:f3:28:62:c9:13:29:d4:b1:7b:79:f8:3a: 5d:39:24:86:ce:e5:86:aa:60:c8:07:c8:98:c3:24:8e:e7:b1: 87:0a:ba:f8:3a:dc:aa:11:7c:16:bf:df:66:af:05:5d:9f:ba: ca:f8:6a:29:a1:a8:da:25:85:9e:fb:09:17:98:ca:34:9a:3e: 97:ca:28:a1:3a:5e:ac:1f:d8:04:16:4e:f9:30:1f:b1:42:71: 6a:72:67:99:0a:ec:e0:7f:9a:c0:62:43:c6:ea:e7:d4:c2:54: da:d3:d7:14:3f:df:1f:64:74:61:f5:6c:77:cb:4b:92:16:d6: 2c:ad:90:eb:7d:15:7e:ae:0b:c5:4e:9c:a9:ac:1c:5d:bf:b5: a0:cf:f5:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4QzQxMTAvBgNVBAUTKDY4OUI0M0I0OEUxMTFFNjlGMURGNzlDQ0EyMTFDQ0I0 MjY1QTI2N0IwHhcNMjQwNTE4MjMzMDU1WhcNMjQwNTI1MjMzMDU1WjAYMRYwFAYD VQQDEw02NjQ5M2EyZi1kNzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDaEo2aahD1Amlc5wHb9gto2AXkSKlYYwnJ4xKap9ZVoQcrqUaKiGpoHP1+c aWVVoMQ6+yPzexD6FJlRum57aQ2YtjhXdz82FOIZSyjfmYNvi77DbfbYJjcv6yuA rCwELK+pstXl3TsziC2dQfuqhmSqUPxkzl2e7CzE0Yev1wOQ3wmwcfk2u/n6TRW+ 3m1aSaRTKu7ICMrYHFG2/iwshkghqCnDcO7ZFLlneyEywVcV14/jDv7q2SxkLUsD c1v++3LsRwheBSMUE5ZmnJqKGDYXAGzvQc3ogdSstayEXFugHe8+qIbaqO5eqVfA kXi1Sl5qKhe0+PqddtjT1ZyCOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOrv5bp bcwJ6UBqSnImQkB5QcMQMB8GA1UdIwQYMBaAFGibQ7SOER5p8d95zKIRzLQmWiZ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhDNC9EODk0N0VCODMw RDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0UkhtbngzM25Nb2hITXRDWmFK bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FKdER0STRSSG1ueDMzbk1vaEhNdENaYUpucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODhDNC9EODk0N0VCODMwRDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0Ukht bngzM25Nb2hITXRDWmFKbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/KqddleEGOEz4t7Nj8PgJ7suuIzdZGfGmTKmz2SFRJqhuTH7UYp3C 0nnjUOv9XZXLtZxGlUE3asPR/JSCzcLu1QMqEyXXrZsEyCO1f24LFyGoy/TIJJB2 cKELSSnABUmg4Dt2dNqwcoRQ/gHF42q2PMLzKGLJEynUsXt5+DpdOSSGzuWGqmDI B8iYwySO57GHCrr4OtyqEXwWv99mrwVdn7rK+GopoajaJYWe+wkXmMo0mj6Xyiih Ol6sH9gEFk75MB+xQnFqcmeZCuzgf5rAYkPG6ufUwlTa09cUP98fZHRh9Wx3y0uS FtYsrZDrfRV+rgvFTpyprBxdv7Wgz/Us -----END CERTIFICATE-----Generated at Sun May 19 00:30:16 2024 by rpki-client on console-ams.rpki-client.org