$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft File: J39oYmhAcrYqFW3fdd13JcOPUdA.mft (raw, json) Hash identifier: N0I9ZcR9A/qsVWtDw3FxkbazMHNDqou58D9hwLF8hdg= Subject key identifier: 7C:D1:09:81:24:8F:CD:82:4B:D1:CA:50:C4:9F:B9:D2:7C:25:8C:AD Authority key identifier: 27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 Certificate issuer: /CN=A91A0BEC/serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Certificate serial: 098E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft Manifest number: 0989 Signing time: Sat 18 May 2024 20:56:09 +0000 Manifest this update: Sat 18 May 2024 20:56:08 +0000 Manifest next update: Sat 25 May 2024 20:56:08 +0000 Files and hashes: 1: J39oYmhAcrYqFW3fdd13JcOPUdA.crl (hash: ojhkiwsuxjw+xaFp0bBqCEIm5ya2XwbOr1rEc6h0KwU=) 2: 98438B98677F11EA972EEA2EC4F9AE02.roa (hash: vgXVDEq6fY1aAocc5HR3NJ+0QWxdFIUgmDfdg3s0DS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2446 (0x98e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0BEC/serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Validity Not Before: May 18 20:56:08 2024 GMT Not After : May 25 20:56:08 2024 GMT Subject: CN=664915e9-fedd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6b:67:c2:3e:8a:95:6b:98:51:14:00:6b:3e: 94:17:88:6f:e2:de:19:0a:22:d0:54:10:05:e9:d9: fb:32:75:b6:76:a9:4d:40:4e:37:0a:3f:8a:5c:4e: 4e:71:8c:60:20:c7:27:87:5f:f1:22:fa:95:ad:3e: cb:9d:a9:1a:58:7d:67:84:62:26:81:69:d3:7b:53: 14:2f:50:df:9a:0d:b3:7f:db:07:66:3e:e3:5e:26: 3c:ce:7a:ae:e9:d3:46:e8:d2:11:7b:76:c8:f3:22: 77:8f:82:38:f6:81:8d:9d:7c:f9:f3:95:29:59:28: bf:24:82:a0:d8:3b:6b:2e:dd:07:b8:20:db:3b:6d: dd:d0:1c:61:7e:28:83:a5:3c:f8:d4:fa:6e:20:81: 4b:57:1c:55:43:8e:d8:29:5b:3b:e0:c1:f5:c6:ac: 15:21:43:15:49:43:8d:e6:11:20:88:c8:b6:f1:ff: 0c:b3:00:3b:dc:6a:ba:92:4e:77:a7:5c:51:57:ce: fa:b2:23:4b:a3:74:7f:fa:f2:99:c7:2f:04:43:5d: d9:f5:47:5b:f7:f2:d6:d2:b2:6e:95:1d:67:66:92: 67:c8:6c:e3:4b:60:6e:b3:49:4b:de:3b:93:1a:03: f6:dc:02:53:b3:96:e8:50:73:eb:61:7f:c4:93:f9: dd:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D1:09:81:24:8F:CD:82:4B:D1:CA:50:C4:9F:B9:D2:7C:25:8C:AD X509v3 Authority Key Identifier: keyid:27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:c1:b1:45:6b:7e:80:cd:12:8e:7b:01:2a:4b:3b:c7:46:fe: 7f:6b:da:d8:73:2d:13:17:2e:f3:7e:f6:30:1a:bb:b4:2b:94: c8:ac:0d:62:d2:e8:7d:ae:7b:f7:65:24:bd:fe:e1:69:0c:a3: 24:48:f2:ee:e1:f6:ab:e4:e8:e0:7c:d4:17:e6:36:a2:e2:00: d0:91:96:d5:63:3c:19:0d:e5:5f:7f:91:00:9a:74:28:70:b2: 44:6e:30:6c:50:28:46:9d:71:cf:38:3f:5d:8f:24:8b:db:c4: 98:ed:56:d2:65:9e:9f:29:6a:71:32:07:ec:0f:26:50:9a:ec: 06:4c:e8:19:d2:17:1a:65:62:ad:e1:c6:8c:46:15:ad:23:42: df:2d:1b:b5:4c:b9:62:3c:24:a7:e7:f4:c5:69:d4:0c:ba:8a: 61:24:a2:7e:d3:ac:81:fd:0a:3e:a4:95:10:bc:00:32:ec:26: 17:7f:f4:76:d1:5f:2a:51:89:14:bd:75:f0:86:b1:08:fe:e6: 5b:b8:bc:bf:4f:86:03:09:bb:9e:82:7a:69:53:5c:64:39:b8: 7a:23:aa:ae:5c:b3:94:b8:27:6e:1b:1e:69:d8:75:6f:2e:fb: 4a:d3:f8:4a:5b:a0:ed:f8:0f:17:7e:27:af:68:89:c6:19:fc: e1:19:48:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBCRUMxMTAvBgNVBAUTKDI3N0Y2ODYyNjg0MDcyQjYyQTE1NkRERjc1REQ3NzI1 QzM4RjUxRDAwHhcNMjQwNTE4MjA1NjA4WhcNMjQwNTI1MjA1NjA4WjAYMRYwFAYD VQQDEw02NjQ5MTVlOS1mZWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWtnwj6KlWuYURQAaz6UF4hv4t4ZCiLQVBAF6dn7MnW2dqlNQE43Cj+KXE5O cYxgIMcnh1/xIvqVrT7LnakaWH1nhGImgWnTe1MUL1Dfmg2zf9sHZj7jXiY8znqu 6dNG6NIRe3bI8yJ3j4I49oGNnXz585UpWSi/JIKg2DtrLt0HuCDbO23d0BxhfiiD pTz41PpuIIFLVxxVQ47YKVs74MH1xqwVIUMVSUON5hEgiMi28f8MswA73Gq6kk53 p1xRV876siNLo3R/+vKZxy8EQ13Z9Udb9/LW0rJulR1nZpJnyGzjS2Bus0lL3juT GgP23AJTs5boUHPrYX/Ek/ndQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzRCYEk j82CS9HKUMSfudJ8JYytMB8GA1UdIwQYMBaAFCd/aGJoQHK2KhVt33XddyXDj1HQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEJFQy83QjdGMjhFMjY3 N0UxMUVBOEJEODI2MkRDNEY5QUUwMi9KMzlvWW1oQWNyWXFGVzNmZGQxM0pjT1BV ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozOW9ZbWhBY3JZcUZXM2ZkZDEzSmNPUFVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEJFQy83QjdGMjhFMjY3N0UxMUVBOEJEODI2MkRDNEY5QUUwMi9KMzlvWW1oQWNy WXFGVzNmZGQxM0pjT1BVZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAwbFFa36AzRKOewEqSzvHRv5/a9rYcy0TFy7zfvYwGru0K5TIrA1i 0uh9rnv3ZSS9/uFpDKMkSPLu4far5OjgfNQX5jai4gDQkZbVYzwZDeVff5EAmnQo cLJEbjBsUChGnXHPOD9djySL28SY7VbSZZ6fKWpxMgfsDyZQmuwGTOgZ0hcaZWKt 4caMRhWtI0LfLRu1TLliPCSn5/TFadQMuophJKJ+06yB/Qo+pJUQvAAy7CYXf/R2 0V8qUYkUvXXwhrEI/uZbuLy/T4YDCbuegnppU1xkObh6I6quXLOUuCduGx5p2HVv LvtK0/hKW6Dt+A8XfievaInGGfzhGUjN -----END CERTIFICATE-----Generated at Sat May 18 21:31:30 2024 by rpki-client on console-ams.rpki-client.org