$ rpki-client -vvf rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft File: J3d5rGk2otMhSl8XQCE_25JWxqM.mft (raw, json) Hash identifier: HkKEd1SYJSVf/hsS8hAPQ8nO68LWZ8GpQtj4zuP+uLE= Subject key identifier: 3C:E5:07:27:F4:35:0B:68:F2:CC:A3:9A:5F:64:DB:E3:EF:2D:91:DA Authority key identifier: 27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 Certificate issuer: /CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft Manifest number: 01BE Signing time: Sun 19 May 2024 04:28:59 +0000 Manifest this update: Sun 19 May 2024 04:28:58 +0000 Manifest next update: Sun 26 May 2024 04:28:58 +0000 Files and hashes: 1: J3d5rGk2otMhSl8XQCE_25JWxqM.crl (hash: Ec2z3ucNmhItz5LEGzykzoSE8joEGgc0U8nS67Hom88=) 2: 2841A0CE0BE111ED9E3AA135C4F9AE02.roa (hash: ItHODf/LTjer4aEMy+uXKhQTAYqJmb+1V4ZxxdvfZf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Validity Not Before: May 19 04:28:58 2024 GMT Not After : May 26 04:28:58 2024 GMT Subject: CN=6649800b-aa27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cd:ba:fd:3c:b3:d5:9f:6c:8e:35:0d:07:56: 7f:7f:88:f4:c5:4a:7e:62:38:70:33:ab:85:0f:82: 80:e8:2a:8b:29:86:f5:ec:71:f1:09:1b:13:36:be: bd:4a:61:32:21:cf:c6:f2:00:40:13:ea:39:1d:ef: 60:3d:b2:b9:02:d1:9a:a7:cc:59:bb:55:35:4f:68: 50:ec:43:56:74:a5:7a:b8:4e:31:e2:54:4a:64:e0: 7d:b2:5e:19:f4:bc:b5:d0:8c:29:71:45:84:5b:e8: 64:47:fb:1d:12:71:13:c0:f4:55:b6:f9:78:1b:d9: 35:d6:21:0c:21:bd:46:69:70:90:f2:a9:be:47:21: 29:21:35:02:41:09:2f:ec:22:a0:53:3c:93:aa:34: c4:9d:f7:25:72:ee:da:ec:86:50:e8:87:43:d9:04: 95:7b:b9:f8:28:c2:64:d8:1a:38:a5:cf:ea:cc:61: 97:d2:36:40:af:10:4c:14:8c:ce:d0:3d:06:90:79: a7:f7:e0:e5:1c:a2:07:7b:c4:c1:68:18:a1:8a:a5: fa:50:79:21:09:6a:00:cc:e8:98:73:d6:80:58:0c: a7:3f:33:ba:1b:b5:65:30:13:4c:3f:4f:27:42:35: 05:6a:9e:c0:c8:69:e7:48:a4:01:54:2b:bd:df:b1: ea:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:E5:07:27:F4:35:0B:68:F2:CC:A3:9A:5F:64:DB:E3:EF:2D:91:DA X509v3 Authority Key Identifier: keyid:27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:9b:42:b4:66:57:06:bf:b4:9e:1e:cd:2c:b5:b3:3c:34:b4: 69:43:3c:49:68:0e:b7:18:e7:1c:fb:22:3d:25:b1:3c:44:c8: c4:4d:ef:0e:75:7b:ca:be:a4:15:60:e6:c9:19:94:2b:44:a7: e8:b8:f8:ba:8c:2f:84:0d:62:6e:27:ef:29:4b:89:e7:24:19: 59:6d:45:5a:98:86:0b:4a:06:cd:fd:8c:43:1d:84:b1:01:20: 48:af:36:7b:6e:d3:7f:ee:93:74:95:04:20:f8:66:c1:7d:96: 9c:4e:89:ee:77:5b:2f:41:4c:cb:d3:66:6d:3d:ae:f9:39:4e: 35:1f:4a:01:61:92:84:0c:01:12:66:e9:b6:67:b7:09:ac:6d: 36:7b:85:ee:74:a4:f7:d4:b6:4b:ad:5e:0b:b4:aa:ed:cb:d4: b4:84:03:3a:a3:69:7a:fa:20:a2:f6:8f:82:14:76:de:fe:01: 92:5b:34:9f:e7:3c:cf:e2:04:5c:a2:95:95:4f:a0:75:90:2c: 70:03:80:8a:bf:70:91:74:d4:83:4d:5c:b7:a1:4c:34:11:35: 90:02:ba:47:0a:38:bb:dc:ec:42:21:be:c7:70:25:f7:89:9f: 8d:10:04:c1:d8:7d:07:8e:3a:9b:6e:49:0d:98:35:63:bd:48: db:e0:3f:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcwQjcxMTAvBgNVBAUTKDI3Nzc3OUFDNjkzNkEyRDMyMTRBNUYxNzQwMjEzRkRC OTI1NkM2QTMwHhcNMjQwNTE5MDQyODU4WhcNMjQwNTI2MDQyODU4WjAYMRYwFAYD VQQDEw02NjQ5ODAwYi1hYTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2s26/Tyz1Z9sjjUNB1Z/f4j0xUp+YjhwM6uFD4KA6CqLKYb17HHxCRsTNr69 SmEyIc/G8gBAE+o5He9gPbK5AtGap8xZu1U1T2hQ7ENWdKV6uE4x4lRKZOB9sl4Z 9Ly10IwpcUWEW+hkR/sdEnETwPRVtvl4G9k11iEMIb1GaXCQ8qm+RyEpITUCQQkv 7CKgUzyTqjTEnfclcu7a7IZQ6IdD2QSVe7n4KMJk2Bo4pc/qzGGX0jZArxBMFIzO 0D0GkHmn9+DlHKIHe8TBaBihiqX6UHkhCWoAzOiYc9aAWAynPzO6G7VlMBNMP08n QjUFap7AyGnnSKQBVCu937HqMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzlByf0 NQto8syjml9k2+PvLZHaMB8GA1UdIwQYMBaAFCd3eaxpNqLTIUpfF0AhP9uSVsaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzBCNy9BNTI2NEVFMDBC REQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90TWhTbDhYUUNFXzI1Sld4 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozZDVyR2syb3RNaFNsOFhRQ0VfMjVKV3hxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzBCNy9BNTI2NEVFMDBCREQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90 TWhTbDhYUUNFXzI1Sld4cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYm0K0ZlcGv7SeHs0stbM8NLRpQzxJaA63GOcc+yI9JbE8RMjETe8O dXvKvqQVYObJGZQrRKfouPi6jC+EDWJuJ+8pS4nnJBlZbUVamIYLSgbN/YxDHYSx ASBIrzZ7btN/7pN0lQQg+GbBfZacTonud1svQUzL02ZtPa75OU41H0oBYZKEDAES Zum2Z7cJrG02e4XudKT31LZLrV4LtKrty9S0hAM6o2l6+iCi9o+CFHbe/gGSWzSf 5zzP4gRcopWVT6B1kCxwA4CKv3CRdNSDTVy3oUw0ETWQArpHCji73OxCIb7HcCX3 iZ+NEATB2H0HjjqbbkkNmDVjvUjb4D/G -----END CERTIFICATE-----Generated at Sun May 19 04:56:55 2024 by rpki-client on console-fra.rpki-client.org