$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft File: a1P4D46IGzcxlyZjuhiXt0qS1E0.mft (raw, json) Hash identifier: XrqSTgsUYiguyHLrVhIEFhzjRJVixJKE4FVIU5l4ZZA= Subject key identifier: 42:EE:DE:C8:F7:EC:77:66:01:15:43:72:9B:A5:15:02:6A:1F:52:1A Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft Manifest number: 0104 Signing time: Sun 19 May 2024 05:33:41 +0000 Manifest this update: Sun 19 May 2024 05:33:40 +0000 Manifest next update: Sun 26 May 2024 05:33:40 +0000 Files and hashes: 1: a1P4D46IGzcxlyZjuhiXt0qS1E0.crl (hash: zdS9SjCMfluaRpICAZBL8y0DENCrFeCW6d8tTCQyIH4=) 2: B21A436E892711EDA93DEC0FC4F9AE02.roa (hash: rJKGmkxrx86qzxz6fYU4vf5f1E895jsX9J3BJSYVwpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: May 19 05:33:40 2024 GMT Not After : May 26 05:33:40 2024 GMT Subject: CN=66498f34-41c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:76:cf:07:ea:3a:27:c6:0e:c5:3c:91:40:b8: 5e:1f:46:39:21:ab:92:47:d3:65:f0:1e:08:c4:e0: 18:b6:f8:ab:f6:8d:97:35:a7:25:07:d0:59:9f:a9: b5:8d:f2:22:39:fa:be:a8:7d:e6:e9:2c:57:9b:fa: 97:19:77:5b:27:a1:8b:ad:1c:90:37:a0:0a:6c:4e: 8f:6c:d7:a6:f2:85:68:e3:01:1c:1f:3b:29:7a:8d: 4e:fe:5d:37:b3:40:c8:1d:d4:ff:17:2a:7f:81:f3: 26:a8:b2:5b:ad:cb:d4:02:ae:46:49:ee:d1:e1:bf: e8:e3:e7:96:36:c8:fd:b2:8b:81:ce:4f:36:fd:c0: 44:a9:d4:15:92:93:c0:b5:03:14:d3:5e:4d:a4:a6: 40:52:70:12:5a:17:e5:fb:49:e0:80:17:a6:0c:4a: fe:23:d8:ab:00:56:ed:3c:00:0d:a2:32:10:95:c2: 48:79:31:32:71:62:bb:67:d0:e3:be:9f:0b:95:6f: f8:24:bf:23:4c:0e:6a:82:5b:9a:41:c6:62:f3:a9: 5e:d8:11:c0:75:a8:d2:24:8e:b8:b1:d3:98:da:2f: 31:21:af:31:d0:57:42:fb:26:eb:8b:37:8e:2e:1a: c9:d0:58:77:b0:c8:97:fc:ae:fe:0b:3d:3f:64:f9: 9a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:EE:DE:C8:F7:EC:77:66:01:15:43:72:9B:A5:15:02:6A:1F:52:1A X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:8f:a7:b8:ce:4c:e1:75:22:2a:50:4d:17:43:eb:53:a3:91: 3b:05:83:63:15:4e:e3:77:0f:52:19:5e:a5:8a:e4:55:07:91: 3c:55:6b:1b:43:72:38:c7:09:e1:b1:c3:94:e2:df:71:9b:96: 21:75:48:cb:68:c1:0d:c7:0b:63:8c:4e:87:c8:a4:7f:41:fb: 76:04:ce:4c:60:4f:e2:83:f5:07:54:9d:5b:38:21:75:1b:11: 6a:fd:2e:b1:ba:a1:eb:4d:0a:27:88:97:f2:b8:85:73:07:29: d5:f0:22:e9:72:ea:1d:7e:7c:b6:f7:89:c9:aa:d0:57:ba:d0: 65:6e:0a:83:6d:95:0e:0d:05:25:02:74:01:47:0c:1e:f5:37: 89:c0:65:fb:9b:40:31:32:d5:24:1a:5c:32:e6:1f:6f:73:76: ce:70:1f:f1:51:ea:e1:63:20:12:0d:77:73:86:08:aa:32:66: 65:77:cf:7f:12:84:6d:8f:e8:75:e6:c0:7f:21:84:57:38:dc: 16:8d:34:39:e1:40:d7:62:55:33:c4:d8:49:47:60:c8:1a:a0: e1:43:53:4d:ea:3a:a9:a5:6b:79:0f:0b:c7:c7:e5:c8:5c:3a: de:e9:ac:06:9a:5b:8c:cf:69:47:3b:f8:1b:7c:b6:ea:df:60: 25:07:2f:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjQwNTE5MDUzMzQwWhcNMjQwNTI2MDUzMzQwWjAYMRYwFAYD VQQDEw02NjQ5OGYzNC00MWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9XbPB+o6J8YOxTyRQLheH0Y5IauSR9Nl8B4IxOAYtvir9o2XNaclB9BZn6m1 jfIiOfq+qH3m6SxXm/qXGXdbJ6GLrRyQN6AKbE6PbNem8oVo4wEcHzspeo1O/l03 s0DIHdT/Fyp/gfMmqLJbrcvUAq5GSe7R4b/o4+eWNsj9souBzk82/cBEqdQVkpPA tQMU015NpKZAUnASWhfl+0nggBemDEr+I9irAFbtPAANojIQlcJIeTEycWK7Z9Dj vp8LlW/4JL8jTA5qgluaQcZi86le2BHAdajSJI64sdOY2i8xIa8x0FdC+ybrizeO LhrJ0Fh3sMiX/K7+Cz0/ZPmaMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELu3sj3 7HdmARVDcpulFQJqH1IaMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEMy81RkEzNkUzNDg5MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6 Y3hseVpqdWhpWHQwcVMxRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgj6e4zkzhdSIqUE0XQ+tTo5E7BYNjFU7jdw9SGV6liuRVB5E8VWsb Q3I4xwnhscOU4t9xm5YhdUjLaMENxwtjjE6HyKR/Qft2BM5MYE/ig/UHVJ1bOCF1 GxFq/S6xuqHrTQoniJfyuIVzBynV8CLpcuodfny294nJqtBXutBlbgqDbZUODQUl AnQBRwwe9TeJwGX7m0AxMtUkGlwy5h9vc3bOcB/xUerhYyASDXdzhgiqMmZld89/ EoRtj+h15sB/IYRXONwWjTQ54UDXYlUzxNhJR2DIGqDhQ1NN6jqppWt5DwvHx+XI XDre6awGmluMz2lHO/gbfLbq32AlBy+e -----END CERTIFICATE-----Generated at Sun May 19 06:14:35 2024 by rpki-client on console-ams.rpki-client.org