$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft File: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft (raw, json) Hash identifier: AL//bUPntgZ6KeDjPkVw3oqm/432RHpR+wjVjB9BzxE= Subject key identifier: 23:2A:EC:23:C3:31:6D:F8:8B:22:35:E7:5E:51:F4:F4:6C:B2:1C:DA Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft Manifest number: 0133 Signing time: Sat 01 Jun 2024 06:16:21 +0000 Manifest this update: Sat 01 Jun 2024 06:16:20 +0000 Manifest next update: Sat 08 Jun 2024 06:16:20 +0000 Files and hashes: 1: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl (hash: vKlpVOfnvJPD3VsF8mzJi4RXiswjIfNK2m2/ML/EGuY=) 2: B6C2A6FE4D2711ED8D49D62FC4F9AE02.roa (hash: cGKzPRi4qpFTDp9AsYpCH0KUskozh5GY9aPuYwuAisU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Validity Not Before: Jun 1 06:16:20 2024 GMT Not After : Jun 8 06:16:20 2024 GMT Subject: CN=665abcb5-0014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:73:9e:08:ad:26:53:80:94:fc:37:fe:fd:4a: a2:7b:f5:ba:ec:ec:cb:fc:20:04:3d:64:f8:60:8f: a4:35:4b:e8:c6:38:47:c6:98:85:7b:9d:43:9b:8e: b5:25:be:95:55:f6:05:98:80:2f:fb:dc:71:ae:18: 03:1d:4a:71:65:16:ad:0b:19:c5:2b:62:f9:f8:ba: 94:2a:74:0c:b3:27:4a:ba:d3:cd:24:cd:8a:43:7a: 9d:54:57:62:41:89:c7:25:3d:9b:19:c8:3c:30:39: a3:68:8a:3e:be:cd:dc:c8:e1:f0:be:3e:6e:dd:a9: 7b:6d:5f:e3:38:77:a6:b2:2b:51:46:8a:49:07:9f: 97:09:1c:46:fb:d6:92:0c:c6:2c:bc:74:64:c9:f8: 95:f1:bd:b4:25:79:e1:f3:6d:ec:54:14:6e:57:9b: 0c:05:fa:7d:fb:b7:d9:24:74:2b:d5:e9:6b:f9:df: ce:0d:1f:e4:18:c3:82:f4:eb:e6:13:a8:92:08:f5: 35:fc:05:74:8a:8e:c1:c3:70:5b:9e:a0:d5:46:10: 14:80:d9:80:13:1d:fe:8e:bf:e6:e5:a3:28:a9:a6: 8d:82:61:e6:5c:0f:35:c4:f1:63:3b:3f:4d:1a:34: 18:3f:0a:c1:00:bc:9e:1c:43:16:75:dc:c8:55:9f: 47:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:2A:EC:23:C3:31:6D:F8:8B:22:35:E7:5E:51:F4:F4:6C:B2:1C:DA X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:89:f8:fc:f0:ea:6d:23:7d:6f:bd:87:f1:fc:3c:9c:74:93: 42:9a:00:1f:32:92:41:b0:56:c9:c2:3a:c3:e4:5c:50:bc:aa: cb:f4:15:80:bc:dd:c1:a9:ea:20:82:6a:e6:9e:4a:91:f8:b3: 20:5a:b9:ae:ec:04:b2:71:bc:78:43:c4:97:4c:84:ab:00:cd: 6d:4e:8f:3f:9b:2a:1a:89:e6:d9:ad:8c:19:b8:d0:58:c1:89: ce:c8:bf:18:55:b4:d5:0b:29:36:37:52:32:e6:b3:9d:ab:79: aa:c2:0f:1e:66:00:3f:23:4b:c4:7e:29:6d:79:4e:07:8f:b0: dc:a3:78:c1:11:c6:d0:ba:dc:df:51:8c:13:8e:74:6f:d1:45: 71:4f:bd:53:df:4c:07:d3:e0:c0:84:d9:2a:bf:95:ca:aa:22: e1:74:b4:67:3d:0b:25:8b:db:f8:d0:2d:5b:84:c2:ae:2c:43: cd:1e:f1:83:c0:c0:de:85:74:a5:60:3f:51:12:ee:c5:fd:94: f0:ed:96:76:f6:2e:3f:c8:64:55:2c:95:c4:d1:e7:8f:54:db: 31:0c:7b:43:dc:54:f7:3a:27:85:b0:34:e7:d0:6e:a3:16:2b: f1:44:3f:56:ee:dc:e3:23:57:7f:e8:3d:f0:4f:45:c6:4d:32: 44:a1:cd:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjQwNjAxMDYxNjIwWhcNMjQwNjA4MDYxNjIwWjAYMRYwFAYD VQQDEw02NjVhYmNiNS0wMDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3OeCK0mU4CU/Df+/Uqie/W67OzL/CAEPWT4YI+kNUvoxjhHxpiFe51Dm461 Jb6VVfYFmIAv+9xxrhgDHUpxZRatCxnFK2L5+LqUKnQMsydKutPNJM2KQ3qdVFdi QYnHJT2bGcg8MDmjaIo+vs3cyOHwvj5u3al7bV/jOHemsitRRopJB5+XCRxG+9aS DMYsvHRkyfiV8b20JXnh823sVBRuV5sMBfp9+7fZJHQr1elr+d/ODR/kGMOC9Ovm E6iSCPU1/AV0io7Bw3BbnqDVRhAUgNmAEx3+jr/m5aMoqaaNgmHmXA81xPFjOz9N GjQYPwrBALyeHEMWddzIVZ9HxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMq7CPD MW34iyI1515R9PRsshzaMB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTY5RS8yNTI1QzdDODREMjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxx MmZ5NWQ0S1lUOUg5UkpMQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOifj88OptI31vvYfx/DycdJNCmgAfMpJBsFbJwjrD5FxQvKrL9BWA vN3BqeoggmrmnkqR+LMgWrmu7ASycbx4Q8SXTISrAM1tTo8/myoaiebZrYwZuNBY wYnOyL8YVbTVCyk2N1Iy5rOdq3mqwg8eZgA/I0vEfilteU4Hj7Dco3jBEcbQutzf UYwTjnRv0UVxT71T30wH0+DAhNkqv5XKqiLhdLRnPQsli9v40C1bhMKuLEPNHvGD wMDehXSlYD9REu7F/ZTw7ZZ29i4/yGRVLJXE0eePVNsxDHtD3FT3OieFsDTn0G6j FivxRD9W7tzjI1d/6D3wT0XGTTJEoc2v -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:25 2024 by rpki-client on console-ams.rpki-client.org