$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.mft File: Aqo6dsRZSXsbRfJukESsxvLoBE8.mft (raw, json) Hash identifier: ZeUQvj6EiRwbO9IAMsGJnlfXMbVTWQPaRyfhXcr+bMA= Subject key identifier: 0A:19:D1:21:52:E5:53:15:9E:DF:F4:4B:BA:B9:79:04:4B:16:13:2A Authority key identifier: 02:AA:3A:76:C4:59:49:7B:1B:45:F2:6E:90:44:AC:C6:F2:E8:04:4F Certificate issuer: /CN=A91BA5BA/serialNumber=02AA3A76C459497B1B45F26E9044ACC6F2E8044F Certificate serial: 02AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aqo6dsRZSXsbRfJukESsxvLoBE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.mft Manifest number: 02A0 Signing time: Sun 19 May 2024 03:38:18 +0000 Manifest this update: Sun 19 May 2024 03:38:17 +0000 Manifest next update: Sun 26 May 2024 03:38:17 +0000 Files and hashes: 1: Aqo6dsRZSXsbRfJukESsxvLoBE8.crl (hash: h/bTprHpHHlKlWn91K+bXoP1yLahvLGjYYJ3lizA0CM=) 2: 87F2D334F2D811EC8F663D52C4F9AE02.roa (hash: Yo+TkiCZdIsDX5eWvbmet6aAsm5sWLklbrBhAqSQ/jo=) 3: 5FFA5548B5A311EEA95C5732C4F9AE02.roa (hash: +1rr6hdaPkBuu5DRaFr2mXd3vAcnp+KmmihMstYoHfE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.crl rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aqo6dsRZSXsbRfJukESsxvLoBE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 687 (0x2af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA5BA/serialNumber=02AA3A76C459497B1B45F26E9044ACC6F2E8044F Validity Not Before: May 19 03:38:17 2024 GMT Not After : May 26 03:38:17 2024 GMT Subject: CN=66497429-3666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ef:3f:ad:0c:c9:25:21:d2:a8:0e:e5:b5:ad: 6c:9a:4b:13:42:b0:23:2a:ea:b1:47:0e:6e:b1:83: 51:c6:bb:af:89:ae:53:07:91:5d:d4:72:ae:82:6c: 3b:85:db:9a:75:be:5c:83:7f:91:a3:09:2e:58:c5: 06:64:ca:23:39:60:75:10:43:03:28:50:85:ce:98: f9:63:e2:7b:3e:eb:93:ff:1d:76:67:2a:6b:ed:88: e4:c1:7e:a4:85:76:23:c9:87:8c:69:b7:2a:5d:a5: 98:26:90:8b:79:f2:33:df:84:2b:b7:bf:ea:a8:9d: 83:e5:30:ac:0c:02:b8:6c:ef:a2:08:2a:b4:03:26: 69:b3:3c:ee:48:5f:65:78:1f:98:4b:5e:39:12:26: 44:8e:08:f2:ae:f2:3f:d7:0a:be:80:db:79:ef:9e: 04:66:ff:50:68:12:60:34:5a:b5:e1:27:18:14:42: 0a:56:3d:e8:16:0d:04:64:7f:dd:b1:01:65:4a:07: d8:e5:13:e1:4d:ec:27:01:7a:3f:e3:cb:c0:c1:eb: 8c:43:92:47:99:69:87:5c:17:8a:72:34:c5:70:81: 19:87:a3:ce:f0:9a:3a:b7:05:d7:97:5a:61:7e:26: 44:4b:b2:25:6e:35:e7:c5:1d:7f:0d:9b:93:ca:90: 49:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:19:D1:21:52:E5:53:15:9E:DF:F4:4B:BA:B9:79:04:4B:16:13:2A X509v3 Authority Key Identifier: keyid:02:AA:3A:76:C4:59:49:7B:1B:45:F2:6E:90:44:AC:C6:F2:E8:04:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aqo6dsRZSXsbRfJukESsxvLoBE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:8a:11:fa:ba:7c:03:86:97:c9:14:95:dc:dc:63:3b:4d:51: 03:4f:ce:9e:28:11:f6:2d:e4:a5:bc:49:e6:1b:88:83:40:e2: c3:1f:18:16:05:2d:f2:4c:1a:e9:0b:ce:e8:cc:84:d2:75:8c: 1b:83:be:bf:f1:e6:4b:37:1c:b5:68:f7:f2:65:a0:40:42:8e: 79:42:33:18:c2:ad:65:4c:6a:19:bc:59:2b:58:c3:d2:d2:78: 91:4b:32:69:d8:94:f6:d8:af:f1:92:f5:9c:46:40:f3:a2:e8: 78:cd:4b:29:f1:6b:cc:94:c3:82:d4:36:e8:bb:f8:0a:c1:b4: ae:b0:f2:7a:b7:cf:00:21:28:42:32:f2:b4:33:3d:48:f2:c2: 51:5e:86:bd:39:a0:13:f7:c2:b7:c2:1f:c7:98:19:23:2b:dc: c2:5c:6e:64:27:5e:bf:48:8f:97:53:95:62:b9:87:f4:87:5f: ff:d7:46:f4:d4:c7:dc:b5:28:bf:58:b3:36:cc:26:f5:17:49: 19:f4:a5:c6:fb:1b:f7:11:c3:eb:9a:8e:68:da:d8:43:44:a2: 8b:cb:49:00:fb:3c:a6:ea:3a:11:c0:09:0a:cf:01:59:51:19: a7:c0:90:d3:7d:2b:36:c7:50:71:7e:52:c4:b8:3f:16:d7:4e: 45:3a:bf:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE1QkExMTAvBgNVBAUTKDAyQUEzQTc2QzQ1OTQ5N0IxQjQ1RjI2RTkwNDRBQ0M2 RjJFODA0NEYwHhcNMjQwNTE5MDMzODE3WhcNMjQwNTI2MDMzODE3WjAYMRYwFAYD VQQDEw02NjQ5NzQyOS0zNjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAte8/rQzJJSHSqA7lta1smksTQrAjKuqxRw5usYNRxruvia5TB5Fd1HKugmw7 hduadb5cg3+RowkuWMUGZMojOWB1EEMDKFCFzpj5Y+J7PuuT/x12Zypr7YjkwX6k hXYjyYeMabcqXaWYJpCLefIz34Qrt7/qqJ2D5TCsDAK4bO+iCCq0AyZpszzuSF9l eB+YS145EiZEjgjyrvI/1wq+gNt5754EZv9QaBJgNFq14ScYFEIKVj3oFg0EZH/d sQFlSgfY5RPhTewnAXo/48vAweuMQ5JHmWmHXBeKcjTFcIEZh6PO8Jo6twXXl1ph fiZES7IlbjXnxR1/DZuTypBJAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAoZ0SFS 5VMVnt/0S7q5eQRLFhMqMB8GA1UdIwQYMBaAFAKqOnbEWUl7G0XybpBErMby6ARP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTVCQS80MzI2Q0JDMEI3 Q0QxMUVDQUY2ODEzMzVDNEY5QUUwMi9BcW82ZHNSWlNYc2JSZkp1a0VTc3h2TG9C RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FxbzZkc1JaU1hzYlJmSnVrRVNzeHZMb0JFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTVCQS80MzI2Q0JDMEI3Q0QxMUVDQUY2ODEzMzVDNEY5QUUwMi9BcW82ZHNSWlNY c2JSZkp1a0VTc3h2TG9CRTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZihH6unwDhpfJFJXc3GM7TVEDT86eKBH2LeSlvEnmG4iDQOLDHxgW BS3yTBrpC87ozITSdYwbg76/8eZLNxy1aPfyZaBAQo55QjMYwq1lTGoZvFkrWMPS 0niRSzJp2JT22K/xkvWcRkDzouh4zUsp8WvMlMOC1Dbou/gKwbSusPJ6t88AIShC MvK0Mz1I8sJRXoa9OaAT98K3wh/HmBkjK9zCXG5kJ16/SI+XU5ViuYf0h1//10b0 1MfctSi/WLM2zCb1F0kZ9KXG+xv3EcPrmo5o2thDRKKLy0kA+zym6joRwAkKzwFZ URmnwJDTfSs2x1BxflLEuD8W105FOr+i -----END CERTIFICATE-----Generated at Sun May 19 04:22:05 2024 by rpki-client on console-fra.rpki-client.org