$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.mft File: -xEsrVYxm_qsoasoznvX9MsmjOk.mft (raw, json) Hash identifier: 6hzLQaIb0GPt80SFWdleVSfLqtR6UuVvzrruYPx3TQ4= Subject key identifier: 65:FD:A7:0E:A5:F6:91:B7:A2:EB:4D:96:FD:4A:89:AB:D8:E0:94:26 Authority key identifier: FB:11:2C:AD:56:31:9B:FA:AC:A1:AB:28:CE:7B:D7:F4:CB:26:8C:E9 Certificate issuer: /CN=A91ADDD5/serialNumber=FB112CAD56319BFAACA1AB28CE7BD7F4CB268CE9 Certificate serial: 04BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.mft Manifest number: 04B0 Signing time: Sun 19 May 2024 01:32:08 +0000 Manifest this update: Sun 19 May 2024 01:32:07 +0000 Manifest next update: Sun 26 May 2024 01:32:07 +0000 Files and hashes: 1: -xEsrVYxm_qsoasoznvX9MsmjOk.crl (hash: iEbiPBThT0TTkMl96Et9pKg+4k1OFpe2dQjS/BWrCF0=) 2: ABCDCC4EE16711EEA88FAE64C4F9AE02.roa (hash: cfDZaMRsqSF8bF5LgzLOQVQXnmCYnDo2fjqK5sD7UUg=) 3: 128DFF02E14611EE80D6C425C4F9AE02.roa (hash: RsFkDrsaWXrs+2HHRJtN4KDTMNXXJoHjiyFQ4t/Nt5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.crl rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1210 (0x4ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADDD5/serialNumber=FB112CAD56319BFAACA1AB28CE7BD7F4CB268CE9 Validity Not Before: May 19 01:32:07 2024 GMT Not After : May 26 01:32:07 2024 GMT Subject: CN=66495698-732c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:88:4a:c9:c0:34:7b:18:11:e2:45:dd:65:a4: e8:cf:e1:8b:fe:24:a8:31:1a:d2:e4:ab:b4:8e:ae: 7e:d8:71:83:41:f3:05:c3:3c:3a:9a:75:83:45:da: c7:8f:ce:21:90:8a:dc:15:49:a5:46:6f:f2:4c:07: ce:49:e3:d1:d5:94:e5:4e:b2:1d:47:22:58:b3:fc: 25:56:44:2a:80:5d:8b:32:12:19:59:f2:d0:91:34: b3:73:23:c6:8b:3d:98:61:4e:1a:28:08:7e:cf:be: f1:ca:db:1b:4e:2b:b3:78:cc:53:68:8e:94:6d:cc: 26:47:6f:b3:41:bf:29:12:10:d7:cb:77:a7:57:bf: 1a:7e:94:af:01:7d:71:08:c4:96:11:20:c0:0c:88: f7:97:df:f2:bc:c2:50:44:55:db:e2:7d:7a:c7:37: 2b:14:e2:e3:ce:b0:ec:7d:45:7d:3d:64:b8:9d:40: a9:33:9c:37:8e:b7:3f:46:39:28:0a:c5:9b:9e:f6: 4d:78:07:a1:ec:24:f6:0e:7b:57:fb:76:63:4c:21: 10:64:89:68:68:6b:f8:96:d2:01:79:53:e1:8e:fe: 2a:f7:c3:e1:77:80:bf:67:bc:6c:3d:81:32:e7:8b: fb:35:1c:f6:a0:27:92:d8:8c:0d:bc:7c:cf:ec:13: 45:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:FD:A7:0E:A5:F6:91:B7:A2:EB:4D:96:FD:4A:89:AB:D8:E0:94:26 X509v3 Authority Key Identifier: keyid:FB:11:2C:AD:56:31:9B:FA:AC:A1:AB:28:CE:7B:D7:F4:CB:26:8C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:c9:ba:f0:72:df:e0:89:6b:c2:37:1c:87:5a:8c:e8:c1:6e: 74:e5:ae:7f:6a:df:e0:43:1a:08:a2:3f:16:c4:60:5e:10:cb: 9b:7b:91:95:c8:7f:58:14:2b:b8:cf:6e:10:95:52:c2:50:a4: de:04:da:14:6f:c4:71:44:b2:16:5f:ab:7b:6e:63:9c:42:9b: 69:d9:87:9f:75:c3:70:ea:c5:c2:37:f0:a9:90:3d:a0:dc:91: d6:ed:0b:92:54:58:ab:71:f4:ae:60:1c:e5:f2:c6:2c:ee:7a: 6a:23:9f:51:a8:11:9e:8f:72:17:54:07:bc:90:43:e1:2c:a7: 9d:2f:9e:4e:de:8b:04:e9:51:b4:2f:0d:1f:57:1f:c7:3a:59: a2:df:41:2c:8a:39:62:72:4f:25:1f:5c:b9:e9:4d:8b:38:fc: 8f:98:6c:27:c8:1c:51:56:f8:93:7f:f9:20:9a:12:84:b7:e1: ca:7b:92:e2:39:1d:61:ba:1e:60:56:bb:d7:22:b8:a2:cb:37: d1:1e:4b:d1:47:c1:b7:c7:84:8d:66:23:86:d5:c8:fb:c7:e4: b2:0d:e8:89:95:6c:38:8c:f0:db:d7:82:a5:c4:51:dc:72:14: e1:54:1f:af:88:0e:95:86:0a:6b:b3:ef:b4:61:a1:2b:6a:41: f4:c4:dd:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURERDUxMTAvBgNVBAUTKEZCMTEyQ0FENTYzMTlCRkFBQ0ExQUIyOENFN0JEN0Y0 Q0IyNjhDRTkwHhcNMjQwNTE5MDEzMjA3WhcNMjQwNTI2MDEzMjA3WjAYMRYwFAYD VQQDEw02NjQ5NTY5OC03MzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYhKycA0exgR4kXdZaToz+GL/iSoMRrS5Ku0jq5+2HGDQfMFwzw6mnWDRdrH j84hkIrcFUmlRm/yTAfOSePR1ZTlTrIdRyJYs/wlVkQqgF2LMhIZWfLQkTSzcyPG iz2YYU4aKAh+z77xytsbTiuzeMxTaI6UbcwmR2+zQb8pEhDXy3enV78afpSvAX1x CMSWESDADIj3l9/yvMJQRFXb4n16xzcrFOLjzrDsfUV9PWS4nUCpM5w3jrc/Rjko CsWbnvZNeAeh7CT2DntX+3ZjTCEQZIloaGv4ltIBeVPhjv4q98Phd4C/Z7xsPYEy 54v7NRz2oCeS2IwNvHzP7BNFOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGX9pw6l 9pG3outNlv1KiavY4JQmMB8GA1UdIwQYMBaAFPsRLK1WMZv6rKGrKM571/TLJozp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRERENS84QjBEMEZGMkUz RjgxMUVCOUUwOERCMTRDNEY5QUUwMi8teEVzclZZeG1fcXNvYXNvem52WDlNc21q T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14RXNyVll4bV9xc29hc296bnZYOU1zbWpPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RERENS84QjBEMEZGMkUzRjgxMUVCOUUwOERCMTRDNEY5QUUwMi8teEVzclZZeG1f cXNvYXNvem52WDlNc21qT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUybrwct/giWvCNxyHWozowW505a5/at/gQxoIoj8WxGBeEMube5GV yH9YFCu4z24QlVLCUKTeBNoUb8RxRLIWX6t7bmOcQptp2YefdcNw6sXCN/CpkD2g 3JHW7QuSVFircfSuYBzl8sYs7npqI59RqBGej3IXVAe8kEPhLKedL55O3osE6VG0 Lw0fVx/HOlmi30Esijlick8lH1y56U2LOPyPmGwnyBxRVviTf/kgmhKEt+HKe5Li OR1huh5gVrvXIriiyzfRHkvRR8G3x4SNZiOG1cj7x+SyDeiJlWw4jPDb14KlxFHc chThVB+viA6Vhgprs++0YaErakH0xN1Q -----END CERTIFICATE-----Generated at Sun May 19 02:59:13 2024 by rpki-client on console-ams.rpki-client.org