$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/1DEGkNzrfuShjaNXmsrRdIGGRqM.mft File: 1DEGkNzrfuShjaNXmsrRdIGGRqM.mft (raw, json) Hash identifier: BdpOQssq3uHXpQ2WgVceJ6BsFf67loLCa4YCXolEtjU= Subject key identifier: 71:AC:F0:C7:06:E5:78:32:38:C2:34:4A:37:39:AB:E8:2C:D4:8A:B7 Authority key identifier: D4:31:06:90:DC:EB:7E:E4:A1:8D:A3:57:9A:CA:D1:74:81:86:46:A3 Certificate issuer: /CN=A91BB07D/serialNumber=D4310690DCEB7EE4A18DA3579ACAD174818646A3 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DEGkNzrfuShjaNXmsrRdIGGRqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/1DEGkNzrfuShjaNXmsrRdIGGRqM.mft Manifest number: 90 Signing time: Sun 19 May 2024 07:07:20 +0000 Manifest this update: Sun 19 May 2024 07:07:19 +0000 Manifest next update: Sun 26 May 2024 07:07:19 +0000 Files and hashes: 1: 1DEGkNzrfuShjaNXmsrRdIGGRqM.crl (hash: d0w+vM5o+EDUlagKKCZRyuR4DMAfh/Jp0G5CQwZ0c50=) 2: DF7D72D28A8811EE986F3825C4F9AE02.roa (hash: RGr8hXQMjJdFndE7Gzhb7d7xv7E7MbpTwlhT5BeLBfE=) 3: D73C120C6D6111EE89A8734AC4F9AE02.roa (hash: 70f3c4+RlBu+YEYGG+fFi4ke/TLB2V48M54+7TFhHfA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/1DEGkNzrfuShjaNXmsrRdIGGRqM.crl rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/1DEGkNzrfuShjaNXmsrRdIGGRqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DEGkNzrfuShjaNXmsrRdIGGRqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB07D/serialNumber=D4310690DCEB7EE4A18DA3579ACAD174818646A3 Validity Not Before: May 19 07:07:19 2024 GMT Not After : May 26 07:07:19 2024 GMT Subject: CN=6649a527-5005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d7:27:7b:98:98:b1:0a:b3:5c:76:cd:6b:00: c0:24:0b:f0:aa:ec:10:2d:55:92:b6:56:ea:0b:4e: da:0a:22:b9:32:e6:5d:d1:01:04:e5:54:fc:4e:67: e7:d2:55:00:56:38:e8:5e:c6:13:70:7f:91:ba:f0: 21:1d:58:34:69:5c:ae:aa:e1:3f:62:b2:97:d4:f2: 78:b6:66:43:52:a5:ab:98:b3:40:22:27:49:d6:59: ab:60:2b:13:f5:14:62:10:7c:ca:3a:a0:f4:68:a7: 8a:24:4c:b0:c0:83:e0:95:65:12:82:c9:72:66:ec: 73:e5:4c:23:03:a3:45:27:55:85:96:a3:db:26:eb: 95:87:50:da:c9:ae:d9:2e:d0:ff:24:f9:13:dd:2d: b0:2b:58:a3:78:de:35:ca:b5:cd:95:03:8c:32:3d: 53:41:52:6e:c1:c0:4f:49:f7:46:2e:f5:36:d9:6e: 4c:dd:78:8c:5d:0a:14:49:6a:aa:53:32:2e:2e:f0: de:d9:bd:7c:ec:bd:20:9e:7d:b8:41:21:18:4c:d8: 2c:65:1a:aa:d2:c8:f1:db:b1:e1:8b:47:e9:50:96: 01:7b:e6:29:ab:56:2b:42:c6:26:5d:e2:de:61:7a: f2:b7:17:e3:84:64:62:65:e5:7d:94:89:f5:4c:50: 15:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:AC:F0:C7:06:E5:78:32:38:C2:34:4A:37:39:AB:E8:2C:D4:8A:B7 X509v3 Authority Key Identifier: keyid:D4:31:06:90:DC:EB:7E:E4:A1:8D:A3:57:9A:CA:D1:74:81:86:46:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/1DEGkNzrfuShjaNXmsrRdIGGRqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DEGkNzrfuShjaNXmsrRdIGGRqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/1DEGkNzrfuShjaNXmsrRdIGGRqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:0d:6f:3e:20:a6:51:d9:84:4b:d7:f9:a1:11:94:4e:9d:ab: 04:e9:42:d5:47:d9:cb:be:1d:12:72:fb:5a:4f:6d:ef:1d:df: f1:29:8e:44:89:46:3e:1b:34:de:44:c8:2c:db:20:8a:b4:34: 88:a4:7c:ff:cc:d2:f1:e8:14:a3:e8:d6:a8:26:a1:cf:f9:59: e4:b6:e9:66:f6:49:ec:5d:de:ac:62:2b:dc:2e:b7:9d:ab:9b: 10:1e:22:33:6e:c6:e3:ab:92:29:1f:fe:ca:8d:f0:cb:ec:3c: e8:66:a1:dc:34:44:83:23:03:48:fe:db:af:9a:48:a4:e2:69: cb:d9:33:ac:25:47:31:0b:7c:4a:2d:40:89:28:94:96:a6:30: 0b:e1:f8:12:68:9b:4c:e0:6b:27:a7:ec:97:39:63:d5:1a:55: 46:7a:e2:84:dd:57:ad:e2:db:bf:b1:f4:c0:27:3d:45:48:cb: b0:a1:4f:80:6e:a0:17:bf:f2:b6:5b:03:5d:32:7a:79:38:ae: fd:98:e9:37:4f:4f:de:a1:64:c2:b9:47:4f:18:f1:00:e1:19: a9:d1:74:7f:c7:d3:bc:f4:90:bb:cf:9f:f0:4e:11:df:2d:1f: 83:e5:fd:e7:33:54:32:7c:bb:85:7a:66:ab:ac:65:ab:0b:4b: 08:d0:8f:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIwN0QxMTAvBgNVBAUTKEQ0MzEwNjkwRENFQjdFRTRBMThEQTM1NzlBQ0FEMTc0 ODE4NjQ2QTMwHhcNMjQwNTE5MDcwNzE5WhcNMjQwNTI2MDcwNzE5WjAYMRYwFAYD VQQDEw02NjQ5YTUyNy01MDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ncne5iYsQqzXHbNawDAJAvwquwQLVWStlbqC07aCiK5MuZd0QEE5VT8Tmfn 0lUAVjjoXsYTcH+RuvAhHVg0aVyuquE/YrKX1PJ4tmZDUqWrmLNAIidJ1lmrYCsT 9RRiEHzKOqD0aKeKJEywwIPglWUSgslyZuxz5UwjA6NFJ1WFlqPbJuuVh1Daya7Z LtD/JPkT3S2wK1ijeN41yrXNlQOMMj1TQVJuwcBPSfdGLvU22W5M3XiMXQoUSWqq UzIuLvDe2b187L0gnn24QSEYTNgsZRqq0sjx27Hhi0fpUJYBe+Ypq1YrQsYmXeLe YXrytxfjhGRiZeV9lIn1TFAVywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGs8McG 5XgyOMI0Sjc5q+gs1Iq3MB8GA1UdIwQYMBaAFNQxBpDc637koY2jV5rK0XSBhkaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjA3RC9FOUI0ODUzQzRB QzQxMUVFOTgzOTM4NkZDNEY5QUUwMi8xREVHa056cmZ1U2hqYU5YbXNyUmRJR0dS cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFERUdrTnpyZnVTaGphTlhtc3JSZElHR1JxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjA3RC9FOUI0ODUzQzRBQzQxMUVFOTgzOTM4NkZDNEY5QUUwMi8xREVHa056cmZ1 U2hqYU5YbXNyUmRJR0dScU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrDW8+IKZR2YRL1/mhEZROnasE6ULVR9nLvh0ScvtaT23vHd/xKY5E iUY+GzTeRMgs2yCKtDSIpHz/zNLx6BSj6NaoJqHP+Vnktulm9knsXd6sYivcLred q5sQHiIzbsbjq5IpH/7KjfDL7DzoZqHcNESDIwNI/tuvmkik4mnL2TOsJUcxC3xK LUCJKJSWpjAL4fgSaJtM4Gsnp+yXOWPVGlVGeuKE3Vet4tu/sfTAJz1FSMuwoU+A bqAXv/K2WwNdMnp5OK79mOk3T0/eoWTCuUdPGPEA4Rmp0XR/x9O89JC7z5/wThHf LR+D5f3nM1QyfLuFemarrGWrC0sI0I8o -----END CERTIFICATE-----Generated at Sun May 19 08:25:07 2024 by rpki-client on console-ams.rpki-client.org