$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: 3e3elw9GPwVe9tgZ7+rK9YiYza40w6fuPR0RmNZnbm0= Subject key identifier: FC:DA:A7:5A:19:E7:3B:E4:01:76:23:8F:75:36:B0:8C:74:1B:52:7B Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: E2 Signing time: Sun 19 May 2024 06:00:28 +0000 Manifest this update: Sun 19 May 2024 06:00:28 +0000 Manifest next update: Sun 26 May 2024 06:00:28 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: UeGUolxahddiBqZPWOnVw+2LnhSz5tzQ9evpA3HYmdc=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: sxdz9/OyOQYTo6p59vOkf0N1FGUmUNKIj7Hl/elMisQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: May 19 06:00:28 2024 GMT Not After : May 26 06:00:28 2024 GMT Subject: CN=6649957c-2b05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ca:83:c1:0c:6b:ad:a2:8b:a1:0f:f9:7d:49: 29:7a:c6:e1:15:2d:42:17:7d:d5:60:08:d1:2f:b8: eb:22:d9:fa:57:2c:58:7a:17:4e:18:9e:ff:e0:98: 56:5d:8a:12:65:70:4f:e0:f2:10:71:dc:16:97:86: b7:24:5c:c2:5e:f8:61:e5:4d:2d:22:76:0d:f6:ff: 88:56:6a:b5:6b:c1:77:57:8b:00:24:c2:16:eb:35: ee:53:53:72:c6:16:08:e1:18:0b:61:19:cd:b2:67: ec:a2:a5:03:c6:5c:0d:40:38:79:96:79:b6:92:31: 6b:22:50:8d:2f:ac:9c:c0:b2:5f:3b:2a:69:1e:28: 19:72:16:bb:d8:43:bc:4e:49:d8:65:7d:e0:24:1b: 11:ae:1f:c1:73:0b:cd:37:14:de:68:8d:47:a2:dd: 62:dc:a8:81:c1:99:67:63:aa:f9:db:50:da:b3:e0: 94:75:cf:d2:98:72:d1:83:c7:a6:bc:fd:97:b3:21: f4:bf:15:a8:36:c7:00:3a:02:5f:92:46:9b:05:62: 26:a5:c8:ff:36:bc:44:9a:26:6d:1d:5d:3a:fc:63: 1c:a7:a6:e1:8c:49:32:a4:89:79:b1:2c:fd:4a:56: 4c:ab:81:af:c1:09:f8:f6:b9:08:d7:5d:dd:c1:98: 9e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:DA:A7:5A:19:E7:3B:E4:01:76:23:8F:75:36:B0:8C:74:1B:52:7B X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:9d:62:2e:f2:a2:91:8d:d0:86:2c:7d:9b:34:e0:a1:7a:6a: 59:d1:7a:90:24:8b:31:75:e1:1a:a4:7b:57:7e:d3:06:99:ed: d2:a2:fa:cf:94:5a:74:89:47:aa:94:b2:5d:6e:16:92:c6:d1: 7c:ac:f6:72:0a:ea:24:79:e8:a8:12:a1:62:59:01:b9:61:0a: 1c:04:66:10:bb:e9:3b:3b:b0:37:81:d5:99:0c:0b:6f:15:7c: 2a:6e:7a:96:cb:ba:5f:1f:1a:81:a8:a7:43:b7:46:21:b1:0d: 1f:5c:73:ad:49:30:74:8e:f3:d5:21:69:1b:f2:06:4a:69:45: 60:8f:06:b7:64:b8:b2:53:2b:30:9f:7a:67:fb:df:33:35:5e: d7:4f:00:ee:52:29:09:88:a6:29:ab:88:59:40:b9:55:69:6f: df:57:ed:d9:dc:82:a6:eb:9e:8f:16:2b:78:ad:43:aa:41:d3: b7:7c:26:30:68:63:1e:67:db:9b:a6:64:47:8a:fe:5d:fe:e8: 6e:6e:8d:0a:4f:21:ee:3e:f5:df:b0:45:2c:38:b1:20:84:10: c9:93:37:2e:f9:9f:d1:af:12:d4:e9:e2:f9:1b:e2:14:63:d1: a5:3b:0c:4d:30:23:4c:fe:9e:d9:b9:54:ec:0e:4c:49:73:a0: 7d:31:15:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjQwNTE5MDYwMDI4WhcNMjQwNTI2MDYwMDI4WjAYMRYwFAYD VQQDEw02NjQ5OTU3Yy0yYjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMqDwQxrraKLoQ/5fUkpesbhFS1CF33VYAjRL7jrItn6VyxYehdOGJ7/4JhW XYoSZXBP4PIQcdwWl4a3JFzCXvhh5U0tInYN9v+IVmq1a8F3V4sAJMIW6zXuU1Ny xhYI4RgLYRnNsmfsoqUDxlwNQDh5lnm2kjFrIlCNL6ycwLJfOyppHigZcha72EO8 TknYZX3gJBsRrh/BcwvNNxTeaI1Hot1i3KiBwZlnY6r521Das+CUdc/SmHLRg8em vP2XsyH0vxWoNscAOgJfkkabBWImpcj/NrxEmiZtHV06/GMcp6bhjEkypIl5sSz9 SlZMq4GvwQn49rkI113dwZiecQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzap1oZ 5zvkAXYjj3U2sIx0G1J7MB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrnWIu8qKRjdCGLH2bNOChempZ0XqQJIsxdeEapHtXftMGme3SovrP lFp0iUeqlLJdbhaSxtF8rPZyCuokeeioEqFiWQG5YQocBGYQu+k7O7A3gdWZDAtv FXwqbnqWy7pfHxqBqKdDt0YhsQ0fXHOtSTB0jvPVIWkb8gZKaUVgjwa3ZLiyUysw n3pn+98zNV7XTwDuUikJiKYpq4hZQLlVaW/fV+3Z3IKm656PFit4rUOqQdO3fCYw aGMeZ9ubpmRHiv5d/uhubo0KTyHuPvXfsEUsOLEghBDJkzcu+Z/RrxLU6eL5G+IU Y9GlOwxNMCNM/p7ZuVTsDkxJc6B9MRWO -----END CERTIFICATE-----Generated at Sun May 19 08:25:02 2024 by rpki-client on console-ams.rpki-client.org