$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft File: J8OQD7137iLLcempDoFXTN5GRK0.mft (raw, json) Hash identifier: DsKX6UFNeTivAsZSoueCEpDRKIDlcTHWkcG9dgS68R8= Subject key identifier: 3A:E9:72:99:FC:5E:2B:7A:94:EB:72:BA:E8:89:D5:F6:CC:F0:F4:45 Authority key identifier: 27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD Certificate issuer: /CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Certificate serial: 068E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft Manifest number: 0688 Signing time: Sat 18 May 2024 23:22:15 +0000 Manifest this update: Sat 18 May 2024 23:22:14 +0000 Manifest next update: Sat 25 May 2024 23:22:14 +0000 Files and hashes: 1: J8OQD7137iLLcempDoFXTN5GRK0.crl (hash: 4pbKfcSRUIcaJ+QxjAWx7IMfjNVOLYBSTbv+/H1NKHU=) 2: 594EEA2CAEA711EE961B0558C4F9AE02.roa (hash: 1OottJ+jVSIpn9/qIbqYxFLpDRPxTkPCkdhUb2jBhmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Validity Not Before: May 18 23:22:14 2024 GMT Not After : May 25 23:22:14 2024 GMT Subject: CN=66493826-3dda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b9:70:bf:32:55:12:36:08:d2:41:4f:fa:65: 05:67:be:53:9b:0c:9b:40:e4:cf:65:2a:0e:14:f5: 39:05:df:5a:57:2f:51:91:61:00:45:80:fa:76:3f: 32:aa:7d:52:53:c0:bb:44:15:43:8b:bc:b5:4f:4a: 63:f0:18:6f:2f:0f:56:b3:4d:92:d0:e5:71:8b:78: 4c:32:ed:18:af:f5:96:a0:63:48:a6:80:bb:78:22: 28:37:81:c1:25:60:9d:3b:ad:5a:d2:c8:f7:30:72: 51:28:d2:14:c3:42:ba:1e:80:3b:41:8f:93:19:f7: 35:1d:bf:70:25:9f:48:18:93:57:69:64:96:8b:ed: a9:3f:ef:05:02:70:8c:27:1d:e7:e8:dd:51:a8:6d: f6:10:31:94:72:b7:fe:77:82:45:81:d5:8e:ce:32: ee:ea:3e:7a:4f:25:84:d0:46:cf:7c:0e:9d:d8:79: 41:78:17:4b:e4:c6:88:6c:aa:e5:68:c0:03:8e:0a: 36:9a:86:3c:64:e7:56:63:c9:57:64:32:aa:b1:d7: 82:13:13:84:26:ac:e5:67:9b:f4:63:ea:9c:f3:f0: 8d:02:7b:e2:60:bb:32:23:ed:c7:4f:0d:d9:b5:ed: a8:6b:6f:a1:17:6f:14:9b:0c:c9:14:4a:67:af:a1: d0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E9:72:99:FC:5E:2B:7A:94:EB:72:BA:E8:89:D5:F6:CC:F0:F4:45 X509v3 Authority Key Identifier: keyid:27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:c1:ba:ac:82:bb:33:a9:07:ec:46:1d:0a:66:0e:3d:da:b2: 2c:b7:d7:dd:32:82:79:1b:e7:76:51:2e:e0:3e:d9:f5:4d:74: 99:41:a8:99:34:48:f0:02:36:8a:b5:6d:58:a4:48:2d:7e:29: c8:6f:f4:35:2e:a0:3f:bd:a9:1a:53:59:55:e5:98:60:e7:6c: 0f:ee:45:c7:0f:93:49:17:99:ed:5a:74:d2:c4:e7:87:7e:f2: 3f:05:44:0e:13:e0:47:6a:1a:16:ec:0d:6c:bd:79:79:bc:66: a7:82:5e:ce:1f:bf:e9:06:93:bc:94:d4:2e:08:51:3c:57:64: 4b:b7:4d:d5:e2:f4:c1:34:df:dc:f6:5e:f4:16:fb:62:ce:7c: 5a:31:d3:13:ab:4a:0c:d5:ad:80:e8:30:31:ac:0b:80:b6:ba: 8f:f8:ac:1f:72:1d:58:a5:fc:88:d0:85:f4:f6:02:87:4a:4b: ea:f5:26:77:84:19:45:0d:96:01:02:f1:fd:ef:ca:a4:dc:42: e2:ee:7d:8c:f1:d6:bd:95:b1:a0:a8:f9:99:05:75:86:34:b6: 39:28:4e:f4:ae:34:6d:d0:03:a4:bc:a4:2d:8a:1a:e4:94:e3: 05:d4:4b:f8:7d:f7:64:78:6d:1a:62:45:e6:14:23:51:a8:05: 85:6e:52:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBMjMxMTAvBgNVBAUTKDI3QzM5MDBGQkQ3N0VFMjJDQjcxRTlBOTBFODE1NzRD REU0NjQ0QUQwHhcNMjQwNTE4MjMyMjE0WhcNMjQwNTI1MjMyMjE0WjAYMRYwFAYD VQQDEw02NjQ5MzgyNi0zZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLlwvzJVEjYI0kFP+mUFZ75TmwybQOTPZSoOFPU5Bd9aVy9RkWEARYD6dj8y qn1SU8C7RBVDi7y1T0pj8BhvLw9Ws02S0OVxi3hMMu0Yr/WWoGNIpoC7eCIoN4HB JWCdO61a0sj3MHJRKNIUw0K6HoA7QY+TGfc1Hb9wJZ9IGJNXaWSWi+2pP+8FAnCM Jx3n6N1RqG32EDGUcrf+d4JFgdWOzjLu6j56TyWE0EbPfA6d2HlBeBdL5MaIbKrl aMADjgo2moY8ZOdWY8lXZDKqsdeCExOEJqzlZ5v0Y+qc8/CNAnviYLsyI+3HTw3Z te2oa2+hF28UmwzJFEpnr6HQkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrpcpn8 Xit6lOtyuuiJ1fbM8PRFMB8GA1UdIwQYMBaAFCfDkA+9d+4iy3HpqQ6BV0zeRkSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEyMy9BQzUzM0RFRTI4 OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdpTExjZW1wRG9GWFRONUdS SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o4T1FENzEzN2lMTGNlbXBEb0ZYVE41R1JLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEyMy9BQzUzM0RFRTI4OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdp TExjZW1wRG9GWFRONUdSSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKwbqsgrszqQfsRh0KZg492rIst9fdMoJ5G+d2US7gPtn1TXSZQaiZ NEjwAjaKtW1YpEgtfinIb/Q1LqA/vakaU1lV5Zhg52wP7kXHD5NJF5ntWnTSxOeH fvI/BUQOE+BHahoW7A1svXl5vGangl7OH7/pBpO8lNQuCFE8V2RLt03V4vTBNN/c 9l70FvtiznxaMdMTq0oM1a2A6DAxrAuAtrqP+Kwfch1YpfyI0IX09gKHSkvq9SZ3 hBlFDZYBAvH978qk3ELi7n2M8da9lbGgqPmZBXWGNLY5KE70rjRt0AOkvKQtihrk lOMF1Ev4ffdkeG0aYkXmFCNRqAWFblJc -----END CERTIFICATE-----Generated at Sun May 19 00:30:20 2024 by rpki-client on console-ams.rpki-client.org