$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.mft File: -9GoSKH4mo0k2wtoF6CH-y313wg.mft (raw, json) Hash identifier: sFJAMNQKJq3cQLCiE4CpMgVF/aN/G6aowkRjpVWmm4Y= Subject key identifier: 2F:3D:51:FD:AF:E6:8F:A0:FF:8B:B6:66:5D:07:17:B5:29:D3:10:0D Authority key identifier: FB:D1:A8:48:A1:F8:9A:8D:24:DB:0B:68:17:A0:87:FB:2D:F5:DF:08 Certificate issuer: /CN=A91BAFCE/serialNumber=FBD1A848A1F89A8D24DB0B6817A087FB2DF5DF08 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-9GoSKH4mo0k2wtoF6CH-y313wg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.mft Manifest number: EF Signing time: Fri 31 May 2024 06:32:54 +0000 Manifest this update: Fri 31 May 2024 06:32:54 +0000 Manifest next update: Fri 07 Jun 2024 06:32:54 +0000 Files and hashes: 1: -9GoSKH4mo0k2wtoF6CH-y313wg.crl (hash: ZinRfhaaM4aKRphf+4OrK3LUqylM2/Qm1HDY3Pw2Ha8=) 2: 37C8FE80B2A211ED9A5C4B53C4F9AE02.roa (hash: 0N+/z4kTKX8NyMAex9FH+ekMrAx1yYCVrWXAZK9y2fI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.crl rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-9GoSKH4mo0k2wtoF6CH-y313wg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 06:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAFCE/serialNumber=FBD1A848A1F89A8D24DB0B6817A087FB2DF5DF08 Validity Not Before: May 31 06:32:54 2024 GMT Not After : Jun 7 06:32:54 2024 GMT Subject: CN=66596f16-4d80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:03:8c:4c:ca:7d:ea:bb:cd:bb:cb:00:4a:ed: 95:22:ad:0c:b5:e4:4d:3f:c7:f4:b2:c1:66:45:6d: 88:a9:2b:42:6f:f6:1a:4e:d1:69:d5:eb:43:e0:c4: 82:be:62:dc:ff:95:c1:8f:a3:ef:10:27:23:ed:9b: 88:2a:c0:96:67:bc:70:31:24:e1:fb:35:d5:4c:59: b0:d6:a9:fe:36:5c:d6:e9:ab:56:d2:d1:99:fd:da: 39:43:36:8f:a0:b6:d6:91:0b:0d:e8:64:08:84:06: f0:c9:e8:d1:1d:25:f6:42:6e:ee:af:7b:4c:f6:af: 26:ee:1a:a1:90:e9:03:26:24:55:04:a1:55:42:6e: 5d:db:13:a1:e2:00:e4:db:15:1a:72:f4:92:7d:3b: b5:57:7a:9e:64:4e:03:9e:14:64:97:51:88:47:25: ad:88:57:8e:97:bf:00:03:19:fa:96:80:9b:a4:49: d7:a8:c8:11:40:9d:8c:29:ce:dc:06:91:9c:30:1d: eb:31:86:aa:6d:5e:fc:25:8f:3e:36:29:87:0e:38: c7:c8:e4:c3:26:f3:c0:ee:24:59:a8:4f:cb:5f:71: 8e:29:b9:d2:49:22:17:c9:ed:5e:b3:e0:6a:7a:cc: 57:ad:17:ba:ca:b9:a3:ff:fd:13:ad:ea:55:7f:da: c5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:3D:51:FD:AF:E6:8F:A0:FF:8B:B6:66:5D:07:17:B5:29:D3:10:0D X509v3 Authority Key Identifier: keyid:FB:D1:A8:48:A1:F8:9A:8D:24:DB:0B:68:17:A0:87:FB:2D:F5:DF:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-9GoSKH4mo0k2wtoF6CH-y313wg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:6b:4f:82:4f:44:12:05:0e:2f:32:75:be:f2:98:60:8f:b8: 62:a2:7e:ce:ae:11:71:10:d3:e1:a5:c1:6f:2c:e5:77:2f:fc: 73:e6:dc:52:16:87:4f:fc:e8:ac:22:79:5a:90:f8:10:0b:8b: 36:41:e1:e0:a0:d7:c4:9f:fa:fc:3e:81:7a:8e:0f:2f:6e:71: 3b:96:7d:82:06:be:a6:fb:ea:76:f6:6f:ba:50:6e:ed:88:0f: 5c:15:33:0a:a1:73:23:c4:05:8f:9a:0a:6a:23:5f:5f:e1:cb: a3:60:cb:b5:d4:32:12:cc:6c:91:97:28:c6:c5:da:42:07:78: 20:66:6f:c5:ad:48:75:d5:cb:0c:7d:98:15:2d:71:55:d2:c1: 4c:2b:d9:eb:8d:14:32:6a:40:44:94:66:6d:e3:2c:88:46:dd: 5d:98:bb:f9:eb:ca:8e:c7:1f:6b:e9:36:14:0f:d9:db:f8:52: f6:c4:ee:e8:ee:a0:34:e7:66:82:23:4b:94:a1:6a:fd:3f:ff: f4:9d:46:ff:d7:91:cd:75:e0:82:ba:5d:b5:60:d4:ca:5f:be: 77:01:e1:25:da:7c:72:df:2d:6a:01:8a:32:52:91:c9:6e:cc: 4f:3c:e2:64:f1:05:60:22:9d:b1:51:e4:ed:60:cc:ed:28:e8: 93:3d:04:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFGQ0UxMTAvBgNVBAUTKEZCRDFBODQ4QTFGODlBOEQyNERCMEI2ODE3QTA4N0ZC MkRGNURGMDgwHhcNMjQwNTMxMDYzMjU0WhcNMjQwNjA3MDYzMjU0WjAYMRYwFAYD VQQDEw02NjU5NmYxNi00ZDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlwOMTMp96rvNu8sASu2VIq0MteRNP8f0ssFmRW2IqStCb/YaTtFp1etD4MSC vmLc/5XBj6PvECcj7ZuIKsCWZ7xwMSTh+zXVTFmw1qn+NlzW6atW0tGZ/do5QzaP oLbWkQsN6GQIhAbwyejRHSX2Qm7ur3tM9q8m7hqhkOkDJiRVBKFVQm5d2xOh4gDk 2xUacvSSfTu1V3qeZE4DnhRkl1GIRyWtiFeOl78AAxn6loCbpEnXqMgRQJ2MKc7c BpGcMB3rMYaqbV78JY8+NimHDjjHyOTDJvPA7iRZqE/LX3GOKbnSSSIXye1es+Bq esxXrRe6yrmj//0TrepVf9rFVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC89Uf2v 5o+g/4u2Zl0HF7Up0xANMB8GA1UdIwQYMBaAFPvRqEih+JqNJNsLaBegh/st9d8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUZDRS8yRDM0QzM5MkIy OUMxMUVEOThBODMxNEFDNEY5QUUwMi8tOUdvU0tING1vMGsyd3RvRjZDSC15MzEz d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy05R29TS0g0bW8wazJ3dG9GNkNILXkzMTN3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUZDRS8yRDM0QzM5MkIyOUMxMUVEOThBODMxNEFDNEY5QUUwMi8tOUdvU0tING1v MGsyd3RvRjZDSC15MzEzd2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxa0+CT0QSBQ4vMnW+8phgj7hion7OrhFxENPhpcFvLOV3L/xz5txS FodP/OisInlakPgQC4s2QeHgoNfEn/r8PoF6jg8vbnE7ln2CBr6m++p29m+6UG7t iA9cFTMKoXMjxAWPmgpqI19f4cujYMu11DISzGyRlyjGxdpCB3ggZm/FrUh11csM fZgVLXFV0sFMK9nrjRQyakBElGZt4yyIRt1dmLv568qOxx9r6TYUD9nb+FL2xO7o 7qA052aCI0uUoWr9P//0nUb/15HNdeCCul21YNTKX753AeEl2nxy3y1qAYoyUpHJ bsxPPOJk8QVgIp2xUeTtYMztKOiTPQQ6 -----END CERTIFICATE-----Generated at Fri May 31 10:02:41 2024 by rpki-client on console-ams.rpki-client.org