$ rpki-client -vvf rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft File: wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft (raw, json) Hash identifier: L+yNAP4hkWUigI8r5IjO9pjyaZ0qv20IiM9S3Cv9WmM= Subject key identifier: 19:E2:6E:31:5A:31:CB:B6:99:C8:5C:99:C4:39:0E:46:79:B3:90:03 Authority key identifier: C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 Certificate issuer: /CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Certificate serial: 2F1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft Manifest number: 2F17 Signing time: Sat 18 May 2024 15:43:26 +0000 Manifest this update: Sat 18 May 2024 15:43:26 +0000 Manifest next update: Sat 25 May 2024 15:43:26 +0000 Files and hashes: 1: wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl (hash: muZqjiNgl0kZsWHa5c2qet8bLW1vj5VHNmQNyDfH9as=) 2: 47A21580B6CC11EC98672826C4F9AE02.roa (hash: tpNIAdRfsKkg0xxOzZvVEFJwv4X6xOfkm1azpJejwbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12063 (0x2f1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Validity Not Before: May 18 15:43:26 2024 GMT Not After : May 25 15:43:26 2024 GMT Subject: CN=6648cc9e-c681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:29:29:12:e1:9f:ed:8c:5a:f5:2d:65:b4:d8: 21:37:2f:04:92:d1:a8:a0:d4:17:e1:42:20:d5:ec: 19:9a:f3:d3:9a:b4:bb:ce:53:dc:6e:e4:b5:28:43: 34:05:05:75:40:9e:b9:08:be:9a:76:6d:38:9c:b8: d6:73:07:f6:d2:e7:31:48:49:48:f0:38:d9:8e:26: 4e:7c:8a:e6:3a:ee:7b:00:f5:18:81:92:e5:04:33: e7:c9:1c:96:ee:58:ad:8a:23:6c:4c:e0:75:f7:69: 4f:73:5d:35:c6:08:7f:d4:a5:55:ec:6d:07:7b:cb: c9:db:34:ce:91:d8:84:47:94:36:de:c1:c0:62:52: e9:10:f0:70:b8:5e:7d:c9:68:43:00:fb:d5:8c:e7: 49:3f:71:54:e7:bf:c7:44:88:77:8b:92:49:8e:08: d2:ab:00:14:18:27:68:e4:c1:2c:c4:82:ba:d1:e0: 52:24:d8:52:02:24:4d:f9:8a:50:57:01:62:af:5f: df:f4:45:7c:de:de:46:29:04:4a:96:63:c1:27:b8: 15:81:de:96:0a:8f:8b:cf:f1:7f:6c:fe:b8:5e:25: 82:28:b3:84:bd:46:6e:ba:b9:6e:d8:b1:cf:1d:83: 81:dc:e9:0c:6e:05:06:54:60:17:c9:f7:22:9a:e5: d5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:E2:6E:31:5A:31:CB:B6:99:C8:5C:99:C4:39:0E:46:79:B3:90:03 X509v3 Authority Key Identifier: keyid:C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:41:48:f0:8d:85:6b:ec:92:0a:05:1f:9e:ac:6d:ae:cb:39: 76:8a:7b:2a:d2:ea:ff:8f:0d:32:af:b6:89:93:ca:0e:50:4a: 83:eb:7a:f0:94:58:ca:7c:67:d0:e8:19:36:97:fc:5d:67:3f: 6c:3d:f6:e2:69:e7:c2:1e:36:fb:e2:7b:1c:54:fd:69:5a:bc: 06:28:4c:f5:08:83:82:a0:c4:cb:bc:a7:5b:0c:87:8a:f3:e6: 92:b7:12:73:44:b5:e0:c0:aa:95:b0:b7:f8:c4:99:fa:74:74: fd:3c:ab:b9:7e:ec:52:0a:4f:14:6b:62:40:be:70:f0:4c:fe: 16:2d:64:3c:bc:4f:7e:8e:d9:a3:53:87:0c:c3:2b:bf:6f:b9: 27:88:02:84:d0:52:47:4e:2b:61:27:ae:a9:c3:31:ff:8e:85: 02:8e:63:78:51:c5:4c:45:34:3b:7c:0c:79:65:a9:a0:c4:f9: 41:bf:30:77:9e:3a:ee:c7:a1:b7:72:dc:a1:b8:1a:39:23:f4: b9:9f:9a:09:07:7c:3e:93:a4:01:85:1c:2d:29:87:b6:fd:68: 75:cd:aa:8c:99:c6:32:f2:40:9d:47:34:cc:15:4d:c2:ec:75: c2:e7:ec:63:15:6d:70:27:15:35:82:7a:3c:1e:ef:e1:41:10: c0:00:46:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0NUMxMTAvBgNVBAUTKEMwRjdEOEQ2RDU0MTYzNzY1RkY2RjNFMkZCMzM3RkNG RTE1MDcyMTkwHhcNMjQwNTE4MTU0MzI2WhcNMjQwNTI1MTU0MzI2WjAYMRYwFAYD VQQDEw02NjQ4Y2M5ZS1jNjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArikpEuGf7Yxa9S1ltNghNy8EktGooNQX4UIg1ewZmvPTmrS7zlPcbuS1KEM0 BQV1QJ65CL6adm04nLjWcwf20ucxSElI8DjZjiZOfIrmOu57APUYgZLlBDPnyRyW 7litiiNsTOB192lPc101xgh/1KVV7G0He8vJ2zTOkdiER5Q23sHAYlLpEPBwuF59 yWhDAPvVjOdJP3FU57/HRIh3i5JJjgjSqwAUGCdo5MEsxIK60eBSJNhSAiRN+YpQ VwFir1/f9EV83t5GKQRKlmPBJ7gVgd6WCo+Lz/F/bP64XiWCKLOEvUZuurlu2LHP HYOB3OkMbgUGVGAXyfcimuXVEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBnibjFa Mcu2mchcmcQ5DkZ5s5ADMB8GA1UdIwQYMBaAFMD32NbVQWN2X/bz4vszf8/hUHIZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ1Qy81QThBRDA4ODBC MTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkzWmY5dlBpLXpOX3otRlFj aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dQZlkxdFZCWTNaZjl2UGktek5fei1GUWNoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ1Qy81QThBRDA4ODBCMTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkz WmY5dlBpLXpOX3otRlFjaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWQUjwjYVr7JIKBR+erG2uyzl2insq0ur/jw0yr7aJk8oOUEqD63rw lFjKfGfQ6Bk2l/xdZz9sPfbiaefCHjb74nscVP1pWrwGKEz1CIOCoMTLvKdbDIeK 8+aStxJzRLXgwKqVsLf4xJn6dHT9PKu5fuxSCk8Ua2JAvnDwTP4WLWQ8vE9+jtmj U4cMwyu/b7kniAKE0FJHTithJ66pwzH/joUCjmN4UcVMRTQ7fAx5ZamgxPlBvzB3 njrux6G3ctyhuBo5I/S5n5oJB3w+k6QBhRwtKYe2/Wh1zaqMmcYy8kCdRzTMFU3C 7HXC5+xjFW1wJxU1gno8Hu/hQRDAAEb3 -----END CERTIFICATE-----Generated at Sat May 18 17:20:34 2024 by rpki-client on console-ams.rpki-client.org