$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: Ee94ZfurtC5SlG50iAx4wd/b7EBmOlyysDiQcxEX7lM= Subject key identifier: 73:5D:8F:35:CF:0B:07:2F:5D:27:40:8B:58:70:DC:42:0B:97:CF:AB Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 0553 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 0550 Signing time: Sun 19 May 2024 00:52:47 +0000 Manifest this update: Sun 19 May 2024 00:52:46 +0000 Manifest next update: Sun 26 May 2024 00:52:46 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: hmFHSGkTIVL8al3/HKPkW/Cn8fZAoXxUgRNVSy3RMWk=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: OhVuBFxS3Hd+CdkAUoMYbhIPZTEIj6EhUVj0u1y46Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1363 (0x553) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: May 19 00:52:46 2024 GMT Not After : May 26 00:52:46 2024 GMT Subject: CN=66494d5f-87f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6b:b6:ee:71:64:e8:4a:70:21:72:b1:4b:23: 73:59:06:e7:f7:83:65:6a:52:f5:fd:47:c4:87:72: 9d:96:6d:d6:b1:af:a3:c6:34:0c:dd:0d:51:10:a7: df:8d:cb:11:0f:fe:7a:41:a7:f3:4f:94:15:26:93: 16:c9:85:b6:bc:14:0e:75:30:d5:d9:76:21:94:be: ab:a7:dc:66:14:9b:12:a4:31:69:f1:16:da:c8:a9: 4a:90:80:09:02:bb:29:f1:0e:a0:65:73:d5:90:45: 55:c7:59:40:32:a7:dd:b1:d5:64:29:5e:35:b2:4b: a9:a8:bf:37:2b:8e:70:55:ad:6d:4c:02:17:e6:fb: 84:89:49:86:17:7e:80:30:4d:2c:61:f6:51:b5:76: fc:91:a3:e5:c9:79:60:2c:14:44:c1:52:10:d1:14: 92:8b:ef:19:64:6a:4d:7d:95:40:a5:0e:38:02:8f: fb:a8:73:9d:d3:11:c8:9a:8d:63:16:32:e9:e1:e9: a3:1e:a7:2b:52:9e:0d:60:13:12:52:3f:1e:6e:30: bb:87:5f:2e:75:13:78:7a:a7:de:0b:32:8b:68:ef: 1c:88:05:fc:e7:71:5c:f3:4a:13:f8:cf:e0:48:1c: 52:79:ee:d5:49:03:20:e2:61:a4:71:6e:6c:0d:1f: e3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:5D:8F:35:CF:0B:07:2F:5D:27:40:8B:58:70:DC:42:0B:97:CF:AB X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:18:cd:7f:b3:82:21:e4:04:88:b5:a6:2b:f8:24:fd:19:d1: 7f:49:64:6f:8f:c0:81:43:11:4b:a7:b6:a8:30:5d:fe:f2:7a: 46:cc:51:82:e3:68:3e:6f:52:75:64:37:a2:ff:c7:24:66:1b: 89:a9:75:bd:3c:54:62:ef:f3:bb:a1:0a:a1:7e:c8:d2:50:1a: 22:c9:6f:11:40:8c:36:5d:a3:ab:2b:12:34:f6:ce:6c:0d:5b: 10:f3:da:85:6b:e1:df:88:0d:70:32:85:24:ec:4c:e5:4c:20: c6:f6:b9:ca:d5:ba:59:31:53:34:ba:a4:fd:6c:27:eb:b6:54: d3:16:9c:ea:01:43:a2:51:e0:c5:ab:09:a2:4c:55:5e:76:18: 76:26:2a:e8:ea:3d:44:e3:02:ac:5a:d0:88:a4:64:bd:44:aa: 64:7d:10:ba:42:fd:10:be:01:96:ca:a6:30:20:db:2a:05:5e: 34:98:81:de:ad:93:70:c0:d3:a5:1f:7e:4f:d9:3e:89:e3:c4: 26:0f:91:b2:50:5d:19:51:29:f5:69:ed:80:39:68:72:11:79: b7:13:44:28:4e:ba:02:f9:c4:64:77:da:f5:d2:50:17:6b:e3: 5e:72:24:61:64:eb:ba:7a:e4:55:6f:23:eb:2b:79:0b:1f:c4: e0:c2:d5:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjQwNTE5MDA1MjQ2WhcNMjQwNTI2MDA1MjQ2WjAYMRYwFAYD VQQDEw02NjQ5NGQ1Zi04N2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2u27nFk6EpwIXKxSyNzWQbn94NlalL1/UfEh3Kdlm3Wsa+jxjQM3Q1REKff jcsRD/56QafzT5QVJpMWyYW2vBQOdTDV2XYhlL6rp9xmFJsSpDFp8RbayKlKkIAJ Arsp8Q6gZXPVkEVVx1lAMqfdsdVkKV41skupqL83K45wVa1tTAIX5vuEiUmGF36A ME0sYfZRtXb8kaPlyXlgLBREwVIQ0RSSi+8ZZGpNfZVApQ44Ao/7qHOd0xHImo1j FjLp4emjHqcrUp4NYBMSUj8ebjC7h18udRN4eqfeCzKLaO8ciAX853Fc80oT+M/g SBxSee7VSQMg4mGkcW5sDR/j9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNdjzXP CwcvXSdAi1hw3EILl8+rMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyGM1/s4Ih5ASItaYr+CT9GdF/SWRvj8CBQxFLp7aoMF3+8npGzFGC 42g+b1J1ZDei/8ckZhuJqXW9PFRi7/O7oQqhfsjSUBoiyW8RQIw2XaOrKxI09s5s DVsQ89qFa+HfiA1wMoUk7EzlTCDG9rnK1bpZMVM0uqT9bCfrtlTTFpzqAUOiUeDF qwmiTFVedhh2Jiro6j1E4wKsWtCIpGS9RKpkfRC6Qv0QvgGWyqYwINsqBV40mIHe rZNwwNOlH35P2T6J48QmD5GyUF0ZUSn1ae2AOWhyEXm3E0QoTroC+cRkd9r10lAX a+NeciRhZOu6euRVbyPrK3kLH8TgwtU0 -----END CERTIFICATE-----Generated at Sun May 19 01:47:15 2024 by rpki-client on console-ams.rpki-client.org