$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft File: saGMIGd1j-jJIZgeixH6MI5iaTs.mft (raw, json) Hash identifier: UeA6RDLPaZ7K0Vdj+WimZHiU39uQ5i0oppAgpvcHDVU= Subject key identifier: 39:03:99:43:62:6A:57:DF:32:C5:E3:A0:7E:4E:FD:AF:B0:30:18:A7 Authority key identifier: B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B Certificate issuer: /CN=A91AAAF2/serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Certificate serial: 070C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft Manifest number: 0707 Signing time: Thu 30 May 2024 23:08:37 +0000 Manifest this update: Thu 30 May 2024 23:08:36 +0000 Manifest next update: Thu 06 Jun 2024 23:08:36 +0000 Files and hashes: 1: saGMIGd1j-jJIZgeixH6MI5iaTs.crl (hash: FQcpb0Ij7jiWHtbSGhmgdmgBUudb3J8d+9gaD+PwfQE=) 2: 73D3A6E0F72011EA8776EC28C4F9AE02.roa (hash: 8mFzzrlk85rbk61UzKP3wPdAY1iqXOtfnZR2ZRvL2VU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 22:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1804 (0x70c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAAF2/serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Validity Not Before: May 30 23:08:36 2024 GMT Not After : Jun 6 23:08:36 2024 GMT Subject: CN=665906f4-e0ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:94:ae:ac:de:66:15:a4:ce:1e:ad:26:ac:ed: 30:0c:df:76:ae:bc:64:cd:4b:c4:01:e9:cb:d7:01: 8a:7d:4f:5f:07:83:ef:1c:0b:3b:17:d6:4d:94:6e: de:8a:b8:7d:f0:11:fa:77:2e:89:84:86:a9:2d:fc: dd:34:b9:53:56:ba:1b:05:db:4c:e8:e8:71:28:e5: 71:02:0b:6a:e3:97:bb:15:69:ef:c7:e6:da:93:7b: 0d:39:91:2c:04:d5:12:52:48:eb:fe:45:63:6b:fe: 3a:b3:39:c9:df:da:ca:28:6e:97:c2:47:7d:eb:e4: 28:9a:1c:20:84:77:65:42:de:22:e9:86:51:97:03: 6b:37:a3:cb:88:62:50:94:3b:89:64:b6:61:22:94: 18:c7:05:e4:1d:87:f0:3f:28:5d:b4:86:55:e3:a3: 86:c2:25:55:36:a6:e1:36:00:ad:66:86:fe:1b:f2: 5d:b6:da:f6:03:45:18:6a:fb:e9:3d:15:41:d3:e9: e8:47:43:bc:04:71:af:0c:4c:b5:f5:5b:af:f5:67: b9:1c:fb:71:4c:61:85:ea:10:4b:85:64:a0:1f:36: 65:87:58:02:52:2c:37:d6:49:f1:ea:08:59:82:e0: b9:a5:12:4e:bf:0f:e1:52:5b:86:5f:be:30:5f:7b: 09:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:03:99:43:62:6A:57:DF:32:C5:E3:A0:7E:4E:FD:AF:B0:30:18:A7 X509v3 Authority Key Identifier: keyid:B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:1e:38:a4:1c:ac:f2:93:45:e4:eb:64:91:ce:31:55:86:21: be:5a:80:0c:20:eb:5a:fa:7d:a4:14:0f:ea:65:05:44:64:eb: 3e:5e:d7:c9:9a:8b:c5:38:6a:80:fe:6c:88:ff:21:96:ca:99: bc:1f:47:7b:cf:71:a2:52:98:67:6d:28:fa:50:10:33:a7:66: f0:8d:04:35:60:04:2d:48:7f:da:b2:18:6d:2d:e4:c1:77:39: 7b:ac:7c:4b:23:22:66:64:fa:a2:02:6d:d7:bc:dc:e0:8e:62: 7a:77:46:96:ca:9d:ea:44:2f:05:0c:bb:da:94:3d:e1:cc:bc: 34:04:cb:2e:b9:68:56:47:c7:99:a7:e5:cc:51:8d:db:fe:82: 55:06:dd:5e:94:d3:22:46:50:2d:8a:fd:3b:2d:d8:8f:17:b7: ea:4e:72:06:25:ad:52:36:9d:ee:4a:38:b0:6f:f8:09:d6:f0: 53:d7:db:69:b5:e6:63:85:56:d5:7e:94:45:83:e8:3a:b0:df: fe:b3:0c:b3:42:27:71:a5:52:3b:9c:0d:58:54:24:8f:7f:82: ed:b2:4e:64:d3:26:76:07:b4:d5:3e:32:ea:dc:a8:04:61:dd: 4c:5c:24:08:b2:89:9c:cc:06:c8:b4:fa:5a:21:48:5a:90:52: a4:74:45:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFBRjIxMTAvBgNVBAUTKEIxQTE4QzIwNjc3NThGRThDOTIxOTgxRThCMTFGQTMw OEU2MjY5M0IwHhcNMjQwNTMwMjMwODM2WhcNMjQwNjA2MjMwODM2WjAYMRYwFAYD VQQDEw02NjU5MDZmNC1lMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZSurN5mFaTOHq0mrO0wDN92rrxkzUvEAenL1wGKfU9fB4PvHAs7F9ZNlG7e irh98BH6dy6JhIapLfzdNLlTVrobBdtM6OhxKOVxAgtq45e7FWnvx+bak3sNOZEs BNUSUkjr/kVja/46sznJ39rKKG6Xwkd96+QomhwghHdlQt4i6YZRlwNrN6PLiGJQ lDuJZLZhIpQYxwXkHYfwPyhdtIZV46OGwiVVNqbhNgCtZob+G/Jdttr2A0UYavvp PRVB0+noR0O8BHGvDEy19Vuv9We5HPtxTGGF6hBLhWSgHzZlh1gCUiw31knx6ghZ guC5pRJOvw/hUluGX74wX3sJSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkDmUNi alffMsXjoH5O/a+wMBinMB8GA1UdIwQYMBaAFLGhjCBndY/oySGYHosR+jCOYmk7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUFGMi84MjI2QUI3MkY3 MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWotakpJWmdlaXhINk1JNWlh VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhR01JR2Qxai1qSklaZ2VpeEg2TUk1aWFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUFGMi84MjI2QUI3MkY3MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWot akpJWmdlaXhINk1JNWlhVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeHjikHKzyk0Xk62SRzjFVhiG+WoAMIOta+n2kFA/qZQVEZOs+XtfJ movFOGqA/myI/yGWypm8H0d7z3GiUphnbSj6UBAzp2bwjQQ1YAQtSH/ashhtLeTB dzl7rHxLIyJmZPqiAm3XvNzgjmJ6d0aWyp3qRC8FDLvalD3hzLw0BMsuuWhWR8eZ p+XMUY3b/oJVBt1elNMiRlAtiv07LdiPF7fqTnIGJa1SNp3uSjiwb/gJ1vBT19tp teZjhVbVfpRFg+g6sN/+swyzQidxpVI7nA1YVCSPf4Ltsk5k0yZ2B7TVPjLq3KgE Yd1MXCQIsomczAbItPpaIUhakFKkdEWU -----END CERTIFICATE-----Generated at Fri May 31 00:28:35 2024 by rpki-client on console-ams.rpki-client.org