$ rpki-client -vvf rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft File: fDPCHh829n5MagTrI5AZrXcryyo.mft (raw, json) Hash identifier: ws0JHwg7d5mmQCPZ8v5qj83OLFZ3Za0eBf0wK7aw7/g= Subject key identifier: 5A:55:5A:E0:C0:0F:F7:17:20:42:16:94:71:3D:F0:99:B8:7C:E8:01 Authority key identifier: 7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A Certificate issuer: /CN=A91836C4/serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft Manifest number: FD Signing time: Sun 19 May 2024 05:37:11 +0000 Manifest this update: Sun 19 May 2024 05:37:11 +0000 Manifest next update: Sun 26 May 2024 05:37:11 +0000 Files and hashes: 1: fDPCHh829n5MagTrI5AZrXcryyo.crl (hash: i/Sa35NG+4OXdsvUGBZhTa6cuhc9HF8knCwXzK45ktk=) 2: 37A0ACFC8FCD11EDB4772D55C4F9AE02.roa (hash: duo+Tr9ExND317n6ueK2nntCbyUHaVQEXgOHrLPTcf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836C4/serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Validity Not Before: May 19 05:37:11 2024 GMT Not After : May 26 05:37:11 2024 GMT Subject: CN=66499007-b6ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c9:b6:57:a9:e1:5b:37:09:8e:7c:85:97:dc: 35:12:b5:b2:a4:2d:b9:4e:fe:5c:3d:7e:59:4d:d1: 31:14:75:b0:b6:14:b8:b6:d5:16:a2:55:5e:e0:0f: 35:bb:bd:5c:43:b4:22:19:db:5f:9d:ca:82:4b:bc: be:df:4e:6f:93:5e:94:e6:b0:47:13:d7:37:81:e2: 11:af:dd:1b:41:fd:4d:b4:41:f6:8f:c1:59:cc:0e: e7:89:92:8e:d8:be:1f:09:be:ec:bd:38:ca:52:22: 92:6a:95:55:3c:94:c5:00:a3:cc:e7:fc:15:1d:e6: 60:db:74:b2:75:b3:ec:c4:d6:27:3b:71:d0:07:dd: 4a:8f:d3:f4:58:51:ce:d8:47:3c:3c:ae:8f:b9:ba: e7:43:ec:f0:ae:a2:51:14:f1:c8:21:04:40:5c:8a: 66:53:9a:98:bd:1a:c4:f2:5a:38:d5:45:47:64:2a: cf:bc:76:85:f9:2c:a5:cc:17:60:36:58:92:0f:84: 26:82:c9:2b:a9:bc:f7:08:4d:58:95:65:76:ee:0d: 71:46:16:dc:26:76:38:0d:95:db:a7:7b:7b:8f:ae: 78:eb:b3:8a:b3:85:03:8a:1b:d3:34:1f:ea:2d:b5: 93:45:df:a7:08:2f:cf:d2:ff:42:04:d4:66:1a:ff: 31:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:55:5A:E0:C0:0F:F7:17:20:42:16:94:71:3D:F0:99:B8:7C:E8:01 X509v3 Authority Key Identifier: keyid:7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:58:50:72:72:f5:88:c2:47:a8:6d:b4:fb:55:6f:ed:2a:73: ec:25:8e:e7:4d:a4:42:c1:e9:4d:bf:75:d6:6c:eb:4d:58:e2: 5a:29:2c:57:0c:20:a9:a3:e2:d0:0c:6c:77:c8:e9:af:a3:a2: 9d:ac:d4:2e:c3:cb:73:4e:38:b4:66:b7:81:ff:74:10:a8:44: eb:c8:17:20:3a:b6:89:bb:bb:a5:34:a2:45:4e:2b:23:d7:1e: c6:e5:1e:a5:0d:45:57:36:43:97:94:b1:99:84:09:a6:41:ca: 06:3a:93:5b:26:67:d2:a2:76:85:e4:ca:38:f7:b5:88:ac:c9: ac:07:b9:da:b9:a4:40:a1:17:5d:e9:1e:ba:a5:1f:d5:ac:e2: 51:2b:a5:85:aa:57:00:1d:cd:4f:ef:17:41:4e:91:e8:36:06: 75:a2:06:ed:07:3f:17:63:b0:69:c6:d1:a3:31:16:ee:96:ed: c6:db:f7:55:95:17:4c:a8:e1:de:98:49:91:6f:22:49:6a:c9: 87:71:9b:c7:54:21:48:6b:3d:02:82:52:71:8d:c5:24:75:dd: d6:9b:ca:37:7c:dc:f7:89:d2:82:0c:bf:15:92:92:c0:1e:15: 93:b3:7a:a9:8c:4b:76:cd:54:78:70:b0:78:b1:51:2e:1e:00: b4:62:ff:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2QzQxMTAvBgNVBAUTKDdDMzNDMjFFMUYzNkY2N0U0QzZBMDRFQjIzOTAxOUFE NzcyQkNCMkEwHhcNMjQwNTE5MDUzNzExWhcNMjQwNTI2MDUzNzExWjAYMRYwFAYD VQQDEw02NjQ5OTAwNy1iNmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08m2V6nhWzcJjnyFl9w1ErWypC25Tv5cPX5ZTdExFHWwthS4ttUWolVe4A81 u71cQ7QiGdtfncqCS7y+305vk16U5rBHE9c3geIRr90bQf1NtEH2j8FZzA7niZKO 2L4fCb7svTjKUiKSapVVPJTFAKPM5/wVHeZg23SydbPsxNYnO3HQB91Kj9P0WFHO 2Ec8PK6PubrnQ+zwrqJRFPHIIQRAXIpmU5qYvRrE8lo41UVHZCrPvHaF+SylzBdg NliSD4Qmgskrqbz3CE1YlWV27g1xRhbcJnY4DZXbp3t7j65467OKs4UDihvTNB/q LbWTRd+nCC/P0v9CBNRmGv8xowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpVWuDA D/cXIEIWlHE98Jm4fOgBMB8GA1UdIwQYMBaAFHwzwh4fNvZ+TGoE6yOQGa13K8sq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZDNC85RDRCMTA2ODhG Q0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4MjluNU1hZ1RySTVBWnJYY3J5 eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZEUENIaDgyOW41TWFnVHJJNUFaclhjcnl5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZDNC85RDRCMTA2ODhGQ0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4Mjlu NU1hZ1RySTVBWnJYY3J5eW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAWFBycvWIwkeobbT7VW/tKnPsJY7nTaRCwelNv3XWbOtNWOJaKSxX DCCpo+LQDGx3yOmvo6KdrNQuw8tzTji0ZreB/3QQqETryBcgOraJu7ulNKJFTisj 1x7G5R6lDUVXNkOXlLGZhAmmQcoGOpNbJmfSonaF5Mo497WIrMmsB7nauaRAoRdd 6R66pR/VrOJRK6WFqlcAHc1P7xdBTpHoNgZ1ogbtBz8XY7BpxtGjMRbulu3G2/dV lRdMqOHemEmRbyJJasmHcZvHVCFIaz0CglJxjcUkdd3Wm8o3fNz3idKCDL8VkpLA HhWTs3qpjEt2zVR4cLB4sVEuHgC0Yv85 -----END CERTIFICATE-----Generated at Sun May 19 06:14:34 2024 by rpki-client on console-ams.rpki-client.org