$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft File: MIoPBCNx10Tky2KrUekE9wys03o.mft (raw, json) Hash identifier: jFUWtxCRYr/4l2/obeTDUunV+i1a/jP/HFmEb8x9z8g= Subject key identifier: 55:93:74:77:40:68:83:40:D6:9B:7C:39:C8:76:AD:40:CA:99:52:42 Authority key identifier: 30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A Certificate issuer: /CN=A91B2252/serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Certificate serial: 070A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft Manifest number: 0704 Signing time: Sat 18 May 2024 22:39:50 +0000 Manifest this update: Sat 18 May 2024 22:39:50 +0000 Manifest next update: Sat 25 May 2024 22:39:50 +0000 Files and hashes: 1: MIoPBCNx10Tky2KrUekE9wys03o.crl (hash: NWh9O6LVBffwLnoTa3weLJG/0z3TU+ffD3SXxq4bXiM=) 2: 0C86DB20F63E11EA9FF7B134C4F9AE02.roa (hash: LurmJ7QLRkm4UNwbxz+t6OH5Zu37E1jXfkrfx8UtdmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1802 (0x70a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2252/serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Validity Not Before: May 18 22:39:50 2024 GMT Not After : May 25 22:39:50 2024 GMT Subject: CN=66492e36-6568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ca:65:50:7a:e6:e5:ad:3a:17:81:c9:9a:a0: 54:41:1b:64:0b:7e:00:a1:f8:32:85:0a:ef:a4:31: 30:e1:1d:da:c2:f1:58:92:05:ec:7c:79:b0:fc:6d: 87:40:c6:ae:4b:33:62:fa:6d:aa:3f:44:02:ce:32: cc:fb:e4:5b:ae:3e:50:d1:ae:13:d2:fb:56:5a:36: 3c:bf:0c:4e:70:d3:70:fb:91:9e:db:ab:05:47:41: 45:8e:73:79:0f:aa:b0:ce:8d:00:4f:a4:0f:f6:0f: 98:ba:f0:a1:49:60:2b:8a:e2:e1:8f:a7:54:53:8b: 4c:dd:44:ea:ef:96:ae:2c:ad:34:7a:69:54:f6:e5: 81:d1:e9:18:7f:1e:a0:7d:45:ec:34:a5:cc:4f:79: c6:3d:65:ea:8f:6f:d3:3f:a0:f3:95:71:58:c2:13: c7:dd:98:18:1e:c4:17:9b:60:43:43:53:05:a3:94: ef:f5:7d:00:f2:f5:6a:8a:ed:14:dd:d6:ff:e3:16: 84:21:8b:84:35:bc:ee:3c:b3:24:48:2d:4a:5d:56: a4:c7:e5:93:ec:f1:64:2e:2e:ff:80:98:b3:96:ea: e8:e3:3f:b0:83:57:2f:55:50:4a:49:73:07:7c:b1: f9:ce:17:37:d7:88:6f:01:60:b5:60:15:73:74:fe: bd:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:93:74:77:40:68:83:40:D6:9B:7C:39:C8:76:AD:40:CA:99:52:42 X509v3 Authority Key Identifier: keyid:30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:dc:83:78:53:91:d7:91:16:a8:b5:78:de:5c:ff:54:99:7d: 2f:0a:c2:94:78:59:3e:f2:20:f2:db:7a:91:f2:03:d2:26:a0: 78:9d:90:c6:28:15:38:fe:ca:13:5f:37:f4:19:7d:30:14:65: a6:e8:d7:41:1c:ea:b9:19:fb:a0:00:0a:21:1a:05:3c:4a:31: 04:d3:d1:29:53:ca:6f:9f:6d:c0:d7:7b:71:ef:51:84:56:77: 5a:1b:c1:50:df:5a:3a:ba:7c:b8:79:df:cd:45:bd:ec:50:b3: 7c:b8:19:be:90:96:5c:7b:45:4a:c7:7b:88:5d:d9:d6:d6:c9: 96:b9:91:8e:af:1f:28:07:d9:d5:01:97:57:4d:6f:76:a9:55: 8b:5a:3f:75:f8:13:83:a9:24:80:a5:3d:98:9a:a6:58:b4:de: b8:e4:f1:4e:a3:22:c8:6e:c2:7a:79:d6:98:f9:01:e7:2a:ba: 11:42:be:21:73:49:d0:ea:f9:cc:3c:a5:cd:cf:b8:20:24:47: 69:5a:93:90:ba:b4:74:1f:a4:0e:d8:57:ed:56:4f:44:a8:76: 37:2f:ae:e9:f0:f5:0c:f6:c0:43:bf:11:ed:9f:2d:d6:a5:5b: ee:1a:56:f7:3a:7e:ec:36:71:dc:3c:e4:bb:f1:94:df:41:6a: 7f:4b:96:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIyNTIxMTAvBgNVBAUTKDMwOEEwRjA0MjM3MUQ3NDRFNENCNjJBQjUxRTkwNEY3 MENBQ0QzN0EwHhcNMjQwNTE4MjIzOTUwWhcNMjQwNTI1MjIzOTUwWjAYMRYwFAYD VQQDEw02NjQ5MmUzNi02NTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssplUHrm5a06F4HJmqBUQRtkC34AofgyhQrvpDEw4R3awvFYkgXsfHmw/G2H QMauSzNi+m2qP0QCzjLM++Rbrj5Q0a4T0vtWWjY8vwxOcNNw+5Ge26sFR0FFjnN5 D6qwzo0AT6QP9g+YuvChSWAriuLhj6dUU4tM3UTq75auLK00emlU9uWB0ekYfx6g fUXsNKXMT3nGPWXqj2/TP6DzlXFYwhPH3ZgYHsQXm2BDQ1MFo5Tv9X0A8vVqiu0U 3db/4xaEIYuENbzuPLMkSC1KXVakx+WT7PFkLi7/gJizluro4z+wg1cvVVBKSXMH fLH5zhc314hvAWC1YBVzdP69kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFWTdHdA aINA1pt8Och2rUDKmVJCMB8GA1UdIwQYMBaAFDCKDwQjcddE5Mtiq1HpBPcMrNN6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjI1Mi9DNThGOEI3QUY2 M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEwVGt5MktyVWVrRTl3eXMw M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Jb1BCQ054MTBUa3kyS3JVZWtFOXd5czAzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjI1Mi9DNThGOEI3QUY2M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEw VGt5MktyVWVrRTl3eXMwM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw3IN4U5HXkRaotXjeXP9UmX0vCsKUeFk+8iDy23qR8gPSJqB4nZDG KBU4/soTXzf0GX0wFGWm6NdBHOq5GfugAAohGgU8SjEE09EpU8pvn23A13tx71GE VndaG8FQ31o6uny4ed/NRb3sULN8uBm+kJZce0VKx3uIXdnW1smWuZGOrx8oB9nV AZdXTW92qVWLWj91+BODqSSApT2YmqZYtN645PFOoyLIbsJ6edaY+QHnKroRQr4h c0nQ6vnMPKXNz7ggJEdpWpOQurR0H6QO2FftVk9EqHY3L67p8PUM9sBDvxHtny3W pVvuGlb3On7sNnHcPOS78ZTfQWp/S5YY -----END CERTIFICATE-----Generated at Sun May 19 00:30:20 2024 by rpki-client on console-ams.rpki-client.org