$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: rSWuBKjoycixkU9egAjLca3ZZPXW+tLOzvXEaDcKT9U= Subject key identifier: 93:92:42:15:03:8D:31:0D:71:05:54:91:F0:5C:99:42:0E:8B:F0:BB Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: 58 Signing time: Sun 19 May 2024 07:49:33 +0000 Manifest this update: Sun 19 May 2024 07:49:32 +0000 Manifest next update: Sun 26 May 2024 07:49:32 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: VvdWoZqD4JRFsWULWpjnC1KcYCZZaqCOflhD2xpdGMg=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: Z3NjmZHjrC5QDqZVrNc2A+wY2OMdX2iZifn6im8ttEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: May 19 07:49:32 2024 GMT Not After : May 26 07:49:32 2024 GMT Subject: CN=6649af0c-7d94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:5b:9b:4c:3e:00:27:ee:a3:25:8b:1e:b3:d1: 86:11:49:bb:ea:cd:be:01:be:39:ac:f4:a9:1c:c2: ca:d6:0c:a8:1b:08:19:0a:a6:22:e8:ba:9d:d8:32: 65:6a:cb:2a:37:2f:d4:af:d6:1d:18:63:22:09:cf: 52:75:72:4e:22:9a:91:fe:5d:5f:bd:c0:32:d2:6e: 58:47:0b:af:57:de:40:90:bb:36:fe:e3:d5:87:35: 56:bf:fc:01:c6:f0:9c:b1:e6:1d:8a:6f:ea:bd:08: 67:5a:e1:fd:ec:79:10:00:dd:cc:98:35:71:a9:55: f3:83:52:cc:00:5c:6b:16:ce:4e:33:4c:8d:a5:e6: d4:ca:cc:b2:d8:d8:7e:ec:5d:b4:93:02:ac:88:ba: 8e:66:09:6d:17:ac:74:d7:2e:92:c8:5e:38:49:79: fb:eb:24:20:d9:c8:61:25:70:91:84:29:0e:0a:a1: 74:44:3d:6d:64:93:30:75:84:29:55:40:b7:ce:b4: 40:34:e4:9b:ca:07:c6:a8:bc:18:6e:4f:f7:16:9c: 90:d5:f4:42:ab:b8:07:6e:40:f0:19:f9:36:bc:49: 69:30:65:53:fd:ad:95:b3:ef:e9:2e:e5:0b:2b:ec: 73:a2:fe:4c:71:37:f9:fc:9e:93:30:9f:bb:db:b8: 9e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:92:42:15:03:8D:31:0D:71:05:54:91:F0:5C:99:42:0E:8B:F0:BB X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:9e:fc:eb:d9:6d:80:26:a0:7c:81:63:5c:c1:40:69:76:7b: 09:95:a3:67:ca:5f:9c:17:4f:82:f1:b6:75:be:3b:c1:8d:d1: bf:d0:86:43:41:46:84:b1:7c:40:35:2f:61:9f:a6:4b:32:39: 95:58:79:50:ee:f2:19:67:e2:cd:18:5c:d6:8d:21:a9:35:49: 13:1c:e3:e9:ca:16:3a:b8:f3:b6:05:52:c6:09:52:88:12:81: 3c:1e:94:74:db:63:9e:27:9e:9a:93:fc:63:67:73:a0:8c:7d: c6:c9:8d:38:27:e7:c5:20:89:2f:ec:7f:b6:70:dd:59:74:c3: 79:c7:f8:c0:af:ba:db:05:e1:64:66:45:10:0f:d5:30:35:ca: 02:86:3e:e8:b6:d8:4c:e2:f1:8b:32:b7:d0:df:64:e8:7d:c7: 5f:02:eb:db:53:f1:15:dc:f7:d1:4b:f4:3a:7b:f8:d5:8b:64: dd:79:0e:35:c2:1f:16:5a:06:c6:2d:11:5a:31:eb:32:84:72: 18:78:f6:ae:ae:2f:f6:5d:5e:aa:71:4b:be:3f:52:42:46:e1: 3d:82:78:a8:00:38:54:2d:93:92:03:e0:35:15:39:0c:11:70: b1:c1:19:f1:40:c5:13:70:8b:b8:2d:c8:82:b9:2d:3f:bc:df: 90:30:a0:47 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QUMzMzExMC8GA1UEBRMoREVBRjFDOERFNEZFM0M1MUM2OTE1M0ZDQUY5RkU4QzJB RDZGOEUyNjAeFw0yNDA1MTkwNzQ5MzJaFw0yNDA1MjYwNzQ5MzJaMBgxFjAUBgNV BAMTDTY2NDlhZjBjLTdkOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDoW5tMPgAn7qMlix6z0YYRSbvqzb4Bvjms9KkcwsrWDKgbCBkKpiLoup3YMmVq yyo3L9Sv1h0YYyIJz1J1ck4impH+XV+9wDLSblhHC69X3kCQuzb+49WHNVa//AHG 8Jyx5h2Kb+q9CGda4f3seRAA3cyYNXGpVfODUswAXGsWzk4zTI2l5tTKzLLY2H7s XbSTAqyIuo5mCW0XrHTXLpLIXjhJefvrJCDZyGElcJGEKQ4KoXREPW1kkzB1hClV QLfOtEA05JvKB8aovBhuT/cWnJDV9EKruAduQPAZ+Ta8SWkwZVP9rZWz7+ku5Qsr 7HOi/kxxN/n8npMwn7vbuJ7fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUk5JCFQON MQ1xBVSR8FyZQg6L8LswHwYDVR0jBBgwFoAU3q8cjeT+PFHGkVP8r5/owq1vjiYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBQzMzL0IwQkZBQzM0OTI0 RjExRUVBOEMyMjQ0MEM0RjlBRTAyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3Exdmpp WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3E4Y2plVC1QRkhHa1ZQOHI1X293cTF2amlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdB QzMzL0IwQkZBQzM0OTI0RjExRUVBOEMyMjQ0MEM0RjlBRTAyLzNxOGNqZVQtUEZI R2tWUDhyNV9vd3ExdmppWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAN+e/OvZbYAmoHyBY1zBQGl2ewmVo2fKX5wXT4LxtnW+O8GN0b/QhkNB RoSxfEA1L2GfpksyOZVYeVDu8hln4s0YXNaNIak1SRMc4+nKFjq487YFUsYJUogS gTwelHTbY54nnpqT/GNnc6CMfcbJjTgn58UgiS/sf7Zw3Vl0w3nH+MCvutsF4WRm RRAP1TA1ygKGPui22Ezi8Ysyt9DfZOh9x18C69tT8RXc99FL9Dp7+NWLZN15DjXC HxZaBsYtEVox6zKEchh49q6uL/ZdXqpxS74/UkJG4T2CeKgAOFQtk5ID4DUVOQwR cLHBGfFAxRNwi7gtyIK5LT+835AwoEc= -----END CERTIFICATE-----Generated at Sun May 19 08:25:02 2024 by rpki-client on console-ams.rpki-client.org