$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: GsrTLdLPLYpvNgGGKPvolHL6wIS6FOAWjlGIP0Ojcs8= Subject key identifier: 06:DA:3B:AF:AA:81:6F:0F:DD:09:58:69:1E:DC:FB:ED:02:6A:2B:6E Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 0135 Signing time: Sun 19 May 2024 04:58:18 +0000 Manifest this update: Sun 19 May 2024 04:58:18 +0000 Manifest next update: Sun 26 May 2024 04:58:18 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: gFe/zLtaDkIp1/lxInFsBw0vCy1ANoomtEiNzmukqS8=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: B0B4rBaB7RDR5K24splQuuNnMljYu/PH9jfvEV4r1Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: May 19 04:58:18 2024 GMT Not After : May 26 04:58:18 2024 GMT Subject: CN=664986ea-b9c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b8:f4:30:84:ca:ff:e1:33:d8:96:00:32:a7: 2d:ef:fa:d1:8e:68:10:59:03:d6:d0:97:22:81:fa: 3f:0f:0b:8d:c0:7b:1a:e1:a6:34:f4:69:41:a4:0e: 33:56:a8:4e:81:45:31:79:23:82:90:3a:b6:49:f7: eb:f6:ca:bb:0a:b7:76:bf:47:8e:bd:bf:88:47:68: 45:7f:5a:df:03:e1:d7:1a:15:6a:8e:2a:9a:59:15: 75:43:f3:dd:d5:25:6f:e1:71:9c:16:68:2e:38:f3: f0:41:64:cd:cc:63:d3:8c:77:33:34:76:ef:23:27: d9:11:98:5a:e3:fa:4a:1b:76:81:b4:e0:be:32:9f: 53:4d:55:49:43:dd:84:5a:e6:25:b1:29:78:d9:e2: 47:9f:61:5d:d2:3c:dd:bb:4e:e3:07:6c:d2:63:c3: f6:e1:a5:a2:63:57:bb:d6:7f:08:1d:3c:f0:d5:fd: 83:cf:a0:f1:e8:09:24:e2:18:77:dd:25:90:15:73: 4b:5f:fb:1e:38:ff:36:bc:cf:b0:98:35:fe:59:f2: 8a:7b:f0:ab:95:be:89:33:41:fb:09:b5:d2:de:30: a6:c7:c1:8e:7f:12:7c:d7:04:a3:f5:fc:ee:d8:37: 92:1f:c5:b3:e7:94:4c:89:f4:c5:44:f6:7d:13:e1: 58:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:DA:3B:AF:AA:81:6F:0F:DD:09:58:69:1E:DC:FB:ED:02:6A:2B:6E X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:79:e2:4a:36:3c:39:c5:19:20:56:f1:22:75:6e:0d:de:95: 94:3c:92:b5:99:e9:ab:b8:0c:30:9c:b7:07:ee:2d:be:7d:ac: 76:f7:a1:af:70:62:08:7c:ed:15:24:43:ec:05:88:6d:58:a5: 94:bf:f6:31:14:15:81:c5:09:51:b9:2f:ef:a7:f2:21:24:f4: 2b:97:b2:34:a5:e8:7f:1c:d5:24:8d:83:b5:f2:4e:7a:fe:e2: 5f:08:58:8a:24:5d:51:5b:d3:bd:41:26:aa:4f:df:88:ac:a6: ae:8f:4e:57:f1:c7:39:b4:ec:c2:27:88:0a:2e:dd:15:4c:c6: b2:d3:00:fe:f9:8a:a0:d7:e2:69:77:eb:2b:7c:25:57:5d:fe: 47:9d:89:0d:d7:bb:ff:98:e4:ad:5c:06:4f:2f:65:bc:cc:53: eb:ab:66:de:b2:a9:c3:48:0f:05:96:38:e1:2e:79:04:a1:c7: 45:42:56:01:12:c3:f8:bf:af:f2:06:00:c0:22:2a:a1:8c:7f: 79:2c:87:11:67:05:46:32:26:3f:7d:9c:47:15:0f:62:a7:24: a8:6f:12:5f:45:e9:34:eb:2d:21:34:5c:c6:bd:7f:5b:f2:bb: d9:13:81:d2:f9:31:01:2c:f7:85:03:44:90:bf:25:2a:60:ed: ae:35:b9:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjQwNTE5MDQ1ODE4WhcNMjQwNTI2MDQ1ODE4WjAYMRYwFAYD VQQDEw02NjQ5ODZlYS1iOWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7j0MITK/+Ez2JYAMqct7/rRjmgQWQPW0Jcigfo/DwuNwHsa4aY09GlBpA4z VqhOgUUxeSOCkDq2Sffr9sq7Crd2v0eOvb+IR2hFf1rfA+HXGhVqjiqaWRV1Q/Pd 1SVv4XGcFmguOPPwQWTNzGPTjHczNHbvIyfZEZha4/pKG3aBtOC+Mp9TTVVJQ92E WuYlsSl42eJHn2Fd0jzdu07jB2zSY8P24aWiY1e71n8IHTzw1f2Dz6Dx6Akk4hh3 3SWQFXNLX/seOP82vM+wmDX+WfKKe/Crlb6JM0H7CbXS3jCmx8GOfxJ81wSj9fzu 2DeSH8Wz55RMifTFRPZ9E+FYWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbaO6+q gW8P3QlYaR7c++0CaituMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTeeJKNjw5xRkgVvEidW4N3pWUPJK1memruAwwnLcH7i2+fax296Gv cGIIfO0VJEPsBYhtWKWUv/YxFBWBxQlRuS/vp/IhJPQrl7I0peh/HNUkjYO18k56 /uJfCFiKJF1RW9O9QSaqT9+IrKauj05X8cc5tOzCJ4gKLt0VTMay0wD++Yqg1+Jp d+srfCVXXf5HnYkN17v/mOStXAZPL2W8zFPrq2besqnDSA8FljjhLnkEocdFQlYB EsP4v6/yBgDAIiqhjH95LIcRZwVGMiY/fZxHFQ9ipySobxJfRek06y0hNFzGvX9b 8rvZE4HS+TEBLPeFA0SQvyUqYO2uNbmo -----END CERTIFICATE-----Generated at Sun May 19 06:14:36 2024 by rpki-client on console-ams.rpki-client.org