$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json) Hash identifier: Xxx93thSdRbA1OZJLDTTB8UwUH3t2Jsr6YFEnufzSHM= Subject key identifier: 45:73:07:4C:38:44:9F:7A:D4:D0:67:70:1C:6A:A6:42:BE:7D:5D:D4 Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft Manifest number: 31 Signing time: Sun 19 May 2024 08:22:40 +0000 Manifest this update: Sun 19 May 2024 08:22:40 +0000 Manifest next update: Sun 26 May 2024 08:22:40 +0000 Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: y6oaflsmm5oGl2Vo5PGDaOizNZct47D9GgyIt3VsXTc=) 2: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: 7ulyk1BEVO7SLl9/nv+cH7TUYvvRxvfObneEVzCEi5U=) 3: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: IlatHUt1AsR9GufZuGQG0v+tb7N5if4iF2VnZgMXKRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Validity Not Before: May 19 08:22:40 2024 GMT Not After : May 26 08:22:40 2024 GMT Subject: CN=6649b6d0-fed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4b:34:23:3c:24:70:ab:f1:b8:0d:60:5f:95: cc:10:ba:d7:52:38:5b:c9:60:fc:aa:76:28:a1:f0: cf:7c:fc:b7:75:1f:ac:a0:ab:1b:cf:d4:dd:09:ee: 52:fb:8d:7e:4d:07:09:3e:e5:9c:eb:fe:4a:88:bf: d9:01:e2:25:10:ba:ff:35:b5:f9:a8:56:ee:86:a4: d4:f5:38:e6:88:21:b3:bb:2b:19:ca:7c:3a:0c:74: 1b:1b:4b:8a:ea:ac:28:96:04:e6:2f:6e:1a:91:7c: a4:51:d1:31:35:f1:01:e6:6b:3d:26:63:12:d3:1d: 1a:12:eb:ac:0b:1f:ee:71:49:6c:e6:62:ae:a8:e7: eb:d7:e9:ea:4a:18:b3:0e:46:cf:f6:5b:e5:51:4f: 1d:d1:dd:f7:0d:91:d0:d1:5a:05:8d:5d:c1:68:4b: cd:47:f1:ae:72:fa:c2:59:f6:49:3b:7a:b8:ed:d0: 5b:49:d0:92:05:7c:5f:16:3e:39:f0:03:40:76:ed: cb:44:d0:02:07:2c:2d:0a:e9:9c:ce:1c:6e:ad:33: eb:b4:6b:45:66:4d:54:30:6d:14:38:7b:2a:06:5a: 10:16:77:47:12:a8:cb:ee:b1:1e:33:9c:b3:c3:d5: da:9c:4a:bb:e5:d2:f6:25:5f:b8:f3:0f:98:a8:37: 56:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:73:07:4C:38:44:9F:7A:D4:D0:67:70:1C:6A:A6:42:BE:7D:5D:D4 X509v3 Authority Key Identifier: keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:59:6a:f0:35:c6:75:9d:e1:59:62:a9:f0:f9:df:e9:05:15: 88:2e:b4:b6:e4:d5:b5:db:49:d2:8d:60:0b:a1:89:44:f6:ac: 2a:a2:43:e3:2c:92:5b:86:14:54:a3:ac:4f:aa:35:1d:63:0a: 47:84:98:ed:74:62:c7:15:a5:fa:98:59:f2:24:4e:ab:1d:80: 18:df:dc:8e:3f:d1:bd:f9:ff:0e:ca:99:e2:03:3c:b1:ae:c5: bb:50:de:84:30:95:42:92:b2:ec:b6:b2:66:51:d5:ec:57:a2: dd:09:ae:c4:17:ba:d7:7c:30:4d:73:f6:04:1e:e9:4b:87:a4: 2c:ab:64:dc:7b:fb:c7:ca:f3:63:6c:ed:a1:94:2d:df:29:83: 4a:ac:c6:48:79:c0:e7:24:de:97:25:3c:10:f5:27:9c:1a:5c: 54:11:a1:8d:3b:9c:6e:72:3c:3d:cb:d6:a2:1d:c6:9b:a1:fe: 9f:10:fd:78:a8:b0:88:c5:37:ec:09:e4:a3:31:c3:9a:41:0e: 9e:7f:f8:c8:d0:c4:a4:fe:9b:c7:5f:16:a7:85:f2:91:d3:0d: 3a:45:a3:80:31:a9:f8:41:d7:3d:7d:55:98:8b:ef:4b:11:20: 0b:ae:92:2a:c5:85:16:38:45:60:3d:33:b6:d2:3b:1f:9c:db: 30:1e:66:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTRDMDExMC8GA1UEBRMoRDBGOEIwMDY1OTZDN0MwMzdDQjU0OTMwNUIzOTY5MDAw MEFBRThBNDAeFw0yNDA1MTkwODIyNDBaFw0yNDA1MjYwODIyNDBaMBgxFjAUBgNV BAMTDTY2NDliNmQwLWZlZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsSzQjPCRwq/G4DWBflcwQutdSOFvJYPyqdiih8M98/Ld1H6ygqxvP1N0J7lL7 jX5NBwk+5Zzr/kqIv9kB4iUQuv81tfmoVu6GpNT1OOaIIbO7KxnKfDoMdBsbS4rq rCiWBOYvbhqRfKRR0TE18QHmaz0mYxLTHRoS66wLH+5xSWzmYq6o5+vX6epKGLMO Rs/2W+VRTx3R3fcNkdDRWgWNXcFoS81H8a5y+sJZ9kk7erjt0FtJ0JIFfF8WPjnw A0B27ctE0AIHLC0K6ZzOHG6tM+u0a0VmTVQwbRQ4eyoGWhAWd0cSqMvusR4znLPD 1dqcSrvl0vYlX7jzD5ioN1ahAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURXMHTDhE n3rU0GdwHGqmQr59XdQwHwYDVR0jBBgwFoAU0PiwBllsfAN8tUkwWzlpAACq6KQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1NEMwL0ZFREY1NzJFQ0NC QjExRUU4QTBGNzc0OEM0RjlBRTAyLzBQaXdCbGxzZkFOOHRVa3dXemxwQUFDcTZL US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMFBpd0JsbHNmQU44dFVrd1d6bHBBQUNxNktRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 NEMwL0ZFREY1NzJFQ0NCQjExRUU4QTBGNzc0OEM0RjlBRTAyLzBQaXdCbGxzZkFO OHRVa3dXemxwQUFDcTZLUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJhZavA1xnWd4VliqfD53+kFFYgutLbk1bXbSdKNYAuhiUT2rCqiQ+Ms kluGFFSjrE+qNR1jCkeEmO10YscVpfqYWfIkTqsdgBjf3I4/0b35/w7KmeIDPLGu xbtQ3oQwlUKSsuy2smZR1exXot0JrsQXutd8ME1z9gQe6UuHpCyrZNx7+8fK82Ns 7aGULd8pg0qsxkh5wOck3pclPBD1J5waXFQRoY07nG5yPD3L1qIdxpuh/p8Q/Xio sIjFN+wJ5KMxw5pBDp5/+MjQxKT+m8dfFqeF8pHTDTpFo4AxqfhB1z19VZiL70sR IAuukirFhRY4RWA9M7bSOx+c2zAeZsI= -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org