$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json) Hash identifier: AQQYrS0syF3d5lEEJ/8gXzNWms7GIISvQr4oMafqEPw= Subject key identifier: 17:EA:7C:7F:82:A2:C1:A8:59:58:29:60:0D:07:DE:1B:DC:41:12:7A Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft Manifest number: 67 Signing time: Sun 19 May 2024 07:35:17 +0000 Manifest this update: Sun 19 May 2024 07:35:17 +0000 Manifest next update: Sun 26 May 2024 07:35:17 +0000 Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: cyMT5GZv6ljyCvp2+Lus4OTdZ/UnURH2s3M0i80104Q=) 2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: mPmCunMSrXDdreriX544bpxYrAwb++Ejhwv2abmXk3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: May 19 07:35:17 2024 GMT Not After : May 26 07:35:17 2024 GMT Subject: CN=6649abb5-a069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:73:ad:15:5b:92:a7:62:15:78:be:4f:ea:54: 18:8b:69:ee:56:5b:33:79:6e:4e:47:66:8c:4b:67: 12:e0:73:16:6e:28:b7:ea:40:81:05:23:32:a4:bd: a6:df:db:52:2d:f1:ac:88:a1:7e:2d:18:ac:46:a1: 3e:35:dd:87:40:4d:6e:2d:3c:6a:ab:e3:ae:87:2b: 34:d6:55:2e:cc:a0:43:f9:69:97:23:1c:4c:a9:3e: d7:ac:26:2c:ea:47:45:9d:74:b6:1e:12:fe:87:fc: b8:dc:46:6a:30:56:44:2c:cd:0f:ee:7d:14:f1:2b: 45:71:71:42:05:a7:fa:eb:99:36:f1:4a:da:73:b7: 54:80:81:cc:15:ba:df:18:fd:78:6d:4d:6c:ed:42: 18:61:71:29:42:44:dd:6e:03:9e:f8:c3:be:f4:19: 80:c5:53:c0:0d:61:b6:94:1a:78:f9:bf:52:c6:f5: 9b:e0:cd:e6:9c:bb:48:fd:b2:eb:c1:ab:db:6e:e2: 5f:12:61:c2:82:70:c6:a2:05:87:01:24:02:93:85: 60:3d:e3:7e:95:ab:9b:a5:11:b6:b7:7d:55:aa:5d: 99:cf:e5:c7:77:a2:de:20:76:e3:c1:2e:b2:0f:d1: 5e:90:57:fe:0a:bb:0a:59:84:13:68:86:5b:0b:22: 5e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:EA:7C:7F:82:A2:C1:A8:59:58:29:60:0D:07:DE:1B:DC:41:12:7A X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:cb:e4:81:38:ba:c4:0f:b3:0b:9c:2c:d2:8f:a7:1c:73:b4: 5d:ff:a4:37:2a:6c:21:0a:a9:63:a0:26:47:71:4a:ed:0f:d8: 9e:64:69:18:2b:51:4b:05:a8:bb:2f:93:77:45:9c:48:8b:20: c2:bf:d6:30:be:0e:ac:d7:20:4e:5f:dc:c6:1b:67:1e:84:bf: 21:42:d8:81:26:af:e1:3a:07:ed:5d:dc:7c:6e:b1:7f:74:50: 59:5a:92:c4:91:2c:a8:cf:cd:74:47:f4:24:03:99:3f:7d:ea: 33:22:6a:37:9d:a1:d6:0c:db:85:45:21:42:09:39:2b:58:f4: 0d:cf:f3:30:56:5e:f5:16:40:ab:49:30:9d:83:52:e5:16:6d: e7:f6:77:71:9a:21:34:7b:77:e9:be:c2:2a:e6:8c:fb:98:01: 24:5b:14:49:54:81:b8:3b:23:ba:27:67:28:59:2d:33:02:8e: f4:fd:de:43:c0:f0:6c:8c:81:a4:05:1e:83:9f:2d:2c:05:82: f1:1c:e1:90:be:9a:d1:eb:52:6c:19:b8:35:79:bf:55:1c:7c: cc:46:34:c0:8e:82:d9:1e:1e:28:3a:24:a5:3b:e7:c3:73:7d: 7e:ee:22:d3:d2:62:9e:89:4d:b7:e8:38:20:1f:bc:30:34:69: 70:1a:3f:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MDJBMjExMC8GA1UEBRMoNkZDRDc4MTlBOEY5M0ZBRjQwRDBFMzg3RjIxQjQ2RTg0 REU5RDcwQjAeFw0yNDA1MTkwNzM1MTdaFw0yNDA1MjYwNzM1MTdaMBgxFjAUBgNV BAMTDTY2NDlhYmI1LWEwNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEc60VW5KnYhV4vk/qVBiLae5WWzN5bk5HZoxLZxLgcxZuKLfqQIEFIzKkvabf 21It8ayIoX4tGKxGoT413YdATW4tPGqr466HKzTWVS7MoEP5aZcjHEypPtesJizq R0WddLYeEv6H/LjcRmowVkQszQ/ufRTxK0VxcUIFp/rrmTbxStpzt1SAgcwVut8Y /XhtTWztQhhhcSlCRN1uA574w770GYDFU8ANYbaUGnj5v1LG9Zvgzeacu0j9suvB q9tu4l8SYcKCcMaiBYcBJAKThWA9436Vq5ulEba3fVWqXZnP5cd3ot4gduPBLrIP 0V6QV/4KuwpZhBNohlsLIl4HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUF+p8f4Ki wahZWClgDQfeG9xBEnowHwYDVR0jBBgwFoAUb814Gaj5P69A0OOH8htG6E3p1wsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwMkEyL0VGRDIxNTg0NzdF QjExRUU5M0I2OEIzQUM0RjlBRTAyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYjgxNEdhajVQNjlBME9PSDhodEc2RTNwMXdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIw MkEyL0VGRDIxNTg0NzdFQjExRUU5M0I2OEIzQUM0RjlBRTAyL2I4MTRHYWo1UDY5 QTBPT0g4aHRHNkUzcDF3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFTL5IE4usQPswucLNKPpxxztF3/pDcqbCEKqWOgJkdxSu0P2J5kaRgr UUsFqLsvk3dFnEiLIMK/1jC+DqzXIE5f3MYbZx6EvyFC2IEmr+E6B+1d3HxusX90 UFlaksSRLKjPzXRH9CQDmT996jMiajedodYM24VFIUIJOStY9A3P8zBWXvUWQKtJ MJ2DUuUWbef2d3GaITR7d+m+wirmjPuYASRbFElUgbg7I7onZyhZLTMCjvT93kPA 8GyMgaQFHoOfLSwFgvEc4ZC+mtHrUmwZuDV5v1UcfMxGNMCOgtkeHig6JKU758Nz fX7uItPSYp6JTbfoOCAfvDA0aXAaP7g= -----END CERTIFICATE-----Generated at Sun May 19 08:25:07 2024 by rpki-client on console-ams.rpki-client.org