$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: U0r1VvfrsVQ9exTmIibgE+J1hqtMCMv/R0n+ONfmSWs= Subject key identifier: 1C:F3:95:62:55:A5:C9:4A:BC:95:A5:42:94:1A:A5:FA:D6:2F:04:95 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 0100 Signing time: Sun 19 May 2024 05:41:09 +0000 Manifest this update: Sun 19 May 2024 05:41:09 +0000 Manifest next update: Sun 26 May 2024 05:41:09 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: c78gR3ozJbacXUpKCeq7rRVje2ewCI4us4BD+veyxOM=) 2: 932F37BEA7B511EDA1D33553C4F9AE02.roa (hash: cKFBjhlVKbD9l42whmWqY74iJiioI2c2wVaBqFFzCe0=) 3: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: Dr0I9A08RG9JNfxlGe8FwtDZpWzU9IjLciNlV0di85c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: May 19 05:41:09 2024 GMT Not After : May 26 05:41:09 2024 GMT Subject: CN=664990f5-9284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:bf:20:b5:a9:31:1f:b8:ae:5e:38:5c:20:0d: 04:2c:a8:a3:5b:29:d0:13:f0:57:60:ff:84:26:0f: 12:7a:1e:46:49:27:ea:fa:cb:86:32:69:22:5f:8c: 2a:26:1e:cb:65:99:b4:07:91:72:5a:2b:73:4b:15: 26:53:e6:5f:29:31:d0:47:be:3b:b0:5a:42:56:5b: 9c:54:7b:1e:2b:22:02:b9:9e:00:66:9c:5e:90:bb: ad:fa:c1:d5:ff:17:1d:3f:cb:3b:dd:bc:79:8f:db: 3d:cb:3e:95:95:97:cd:be:c8:a0:0a:7b:46:9b:06: a5:51:74:67:4a:52:0b:02:a9:3c:ba:96:f5:cb:a2: f2:49:5a:99:a6:09:f4:78:4e:38:c3:53:5b:01:c9: cc:bc:5c:97:17:2a:ed:bb:44:96:23:bf:7b:5d:11: a6:25:c8:20:56:14:b3:ab:6d:0b:29:45:4e:b1:5b: 22:1e:32:ff:db:8e:e1:35:25:6b:44:af:8f:b4:01: 93:3d:86:e2:c2:f6:67:c1:df:ad:18:ef:5f:79:53: 0d:74:47:25:18:67:27:8d:2e:7d:25:62:ae:b4:86: e6:c2:17:52:9a:05:23:9a:49:ad:64:6e:d8:3e:54: a4:3a:68:d0:75:3b:99:64:60:c8:41:f2:2d:78:25: 51:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:F3:95:62:55:A5:C9:4A:BC:95:A5:42:94:1A:A5:FA:D6:2F:04:95 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:09:d7:1e:c8:55:ca:e6:1d:c6:c1:95:59:8e:4c:73:81:7e: 0b:e0:cf:4b:06:bd:ab:a5:ef:d8:63:73:57:1e:5d:41:5b:e4: 8f:03:ad:ef:b4:55:e2:b8:cc:b4:29:c2:e8:95:1d:6d:32:9d: 7a:6f:43:d5:10:44:bc:23:bf:c8:29:c3:f1:f0:27:f0:37:94: 1a:b9:6b:0c:1f:19:07:00:e3:a3:4d:77:bb:dc:89:ae:fb:ee: 5f:04:b0:8d:d6:42:0d:b4:bd:d0:07:9a:c9:bc:95:d7:c3:f9: b0:6f:ea:2e:fe:a4:39:b8:8c:24:9f:6c:13:da:95:0e:23:23: f8:18:0c:cc:72:59:7d:9c:ba:35:14:b2:00:57:f8:51:2f:7a: c1:18:8f:59:17:fe:ae:6f:33:5c:d5:7b:e4:21:2a:74:aa:c1: ad:d7:8b:f1:13:1f:e5:d3:4f:2c:20:f8:f0:22:2d:a3:61:ba: 11:2e:d2:c1:53:20:f8:d5:4f:10:fd:17:76:25:b6:58:00:1e: e8:de:a0:92:13:cc:78:c1:f5:c9:36:c1:bd:5a:1e:bc:74:a9: d6:b4:84:f5:b0:1c:39:f4:75:ef:42:dd:2a:b6:ec:14:01:18: 77:8e:00:eb:b3:d1:f5:1b:bd:b8:19:cf:ce:1d:86:ba:ac:39: 84:bf:aa:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjQwNTE5MDU0MTA5WhcNMjQwNTI2MDU0MTA5WjAYMRYwFAYD VQQDEw02NjQ5OTBmNS05Mjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4r8gtakxH7iuXjhcIA0ELKijWynQE/BXYP+EJg8Seh5GSSfq+suGMmkiX4wq Jh7LZZm0B5FyWitzSxUmU+ZfKTHQR747sFpCVlucVHseKyICuZ4AZpxekLut+sHV /xcdP8s73bx5j9s9yz6VlZfNvsigCntGmwalUXRnSlILAqk8upb1y6LySVqZpgn0 eE44w1NbAcnMvFyXFyrtu0SWI797XRGmJcggVhSzq20LKUVOsVsiHjL/247hNSVr RK+PtAGTPYbiwvZnwd+tGO9feVMNdEclGGcnjS59JWKutIbmwhdSmgUjmkmtZG7Y PlSkOmjQdTuZZGDIQfIteCVRYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzzlWJV pclKvJWlQpQapfrWLwSVMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfCdceyFXK5h3GwZVZjkxzgX4L4M9LBr2rpe/YY3NXHl1BW+SPA63v tFXiuMy0KcLolR1tMp16b0PVEES8I7/IKcPx8CfwN5QauWsMHxkHAOOjTXe73Imu ++5fBLCN1kINtL3QB5rJvJXXw/mwb+ou/qQ5uIwkn2wT2pUOIyP4GAzMcll9nLo1 FLIAV/hRL3rBGI9ZF/6ubzNc1XvkISp0qsGt14vxEx/l008sIPjwIi2jYboRLtLB UyD41U8Q/Rd2JbZYAB7o3qCSE8x4wfXJNsG9Wh68dKnWtIT1sBw59HXvQt0qtuwU ARh3jgDrs9H1G724Gc/OHYa6rDmEv6pu -----END CERTIFICATE-----Generated at Sun May 19 06:14:35 2024 by rpki-client on console-ams.rpki-client.org