$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft File: mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft (raw, json) Hash identifier: tVI6Kqr71RZTqfTA1WeW8JUDDBYLXuAOFv3Yoi/lyyg= Subject key identifier: DC:7D:3F:F7:07:13:67:B2:48:75:C5:2D:44:58:5A:A5:A7:77:50:83 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 09B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft Manifest number: 0997 Signing time: Sat 18 May 2024 20:56:45 +0000 Manifest this update: Sat 18 May 2024 20:56:44 +0000 Manifest next update: Sat 25 May 2024 20:56:44 +0000 Files and hashes: 1: mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl (hash: /2peDDprnajgarqg/h6iVTJBzaBeZifv5Vekkk6ZXhM=) 2: 07CD68A213AD11EFADED003DC4F9AE02.roa (hash: mw/1AkG0h2/VCsdxl5VCIYoldfBNUqXCdmVhyy1MN0I=) 3: DB701E584E6311EEBED9743CC4F9AE02.roa (hash: oI04e+L7sfMU3Sj0iOiRw8fx6cZ5LmX2RbaxWaFzzOU=) 4: 011CBE6CDF8911ED942E2A67C4F9AE02.roa (hash: ruViVCRJvEfOz9OjHERXLsP/W7M4wMXz2oTU4fGgAJk=) 5: DC4A492A4E6311EEBED9743CC4F9AE02.roa (hash: VPX0H6cdFOsD+zG6jkUQSU97ro/+zyFklQ+WnPjh1dQ=) 6: 8A533506C9DC11EE8B24C55EC4F9AE02.roa (hash: YQ93vpgeMhab/R8ZlFAYYEI4TgKyYiC1Ypil0/nPvE0=) 7: 66E400CACB4C11EE8E404546C4F9AE02.roa (hash: Bhm0Q4XwclM/AutVLQajl/RY7MZ/JnuqZS+j7Xz7NN4=) 8: 8A916FDC83D711EAAA5AEC56C4F9AE02.roa (hash: yQYomqcwgOlX6WAs8ZRA75TVRZC7TmCArM+Ntkj02Ew=) 9: BACC498C9EFC11EC856FCB09C4F9AE02.roa (hash: HS8PGK9JvgH2bBKy4nxxFbr2M5XBFdQnBUnj4pS0EeA=) 10: 8C0868D0C9DC11EE8B24C55EC4F9AE02.roa (hash: C+ub+CENSJtyHyu/2AvvJdYuCVWeMlxkJN2l0lgPcTw=) 11: 8B083190C9DC11EE8B24C55EC4F9AE02.roa (hash: kxN3E1UjFrRW2qS6VXZ4546hiWA0TPCQ1evX0olnexQ=) 12: 8B8856F4C9DC11EE8B24C55EC4F9AE02.roa (hash: maL4uN20qdAsWEHHKCBH0I+qShISlNfAhA2p73xkGTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2487 (0x9b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: May 18 20:56:44 2024 GMT Not After : May 25 20:56:44 2024 GMT Subject: CN=6649160d-ab30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:32:8e:22:0f:93:2d:57:3b:8c:e7:54:35:1b: 97:88:f9:43:93:ef:69:54:17:86:cf:9a:5f:6f:89: 27:1d:53:9f:11:ab:df:52:e5:8d:24:52:bd:f1:d4: 0a:1d:f2:4b:6b:47:34:4a:c7:6e:ff:21:04:15:b2: b7:ac:8a:86:dd:f8:f5:81:a4:7f:9d:24:9b:b9:c9: f8:be:f6:f9:90:a9:a1:cf:27:73:20:80:ef:67:86: 09:1c:40:1e:50:6a:92:15:3f:70:a6:2e:aa:03:eb: 52:b0:bf:2d:7c:b6:8c:b4:4e:43:87:b6:b7:34:46: bc:b3:12:4b:96:c2:b1:83:92:e6:04:36:cc:bb:59: cb:58:d7:30:61:f9:73:f0:98:92:c1:59:e5:1e:7b: 73:9e:8d:6f:fa:88:cd:4e:8c:62:f9:e7:e5:09:55: 97:4f:a8:16:32:2e:a9:a3:17:1f:02:c2:cd:f5:85: f0:2c:0a:68:55:cb:02:98:fa:4f:4c:ae:3a:d1:ec: c6:d2:dc:e4:cd:6f:79:72:28:fe:85:6d:60:b3:78: cf:42:67:1a:1c:6f:db:a2:f9:90:41:43:2b:28:34: 7a:90:d4:7f:24:d4:86:72:97:78:a6:63:06:73:de: dc:34:e5:28:a5:6c:aa:b2:cf:b5:62:4f:ad:63:75: 37:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7D:3F:F7:07:13:67:B2:48:75:C5:2D:44:58:5A:A5:A7:77:50:83 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:1d:1b:35:ac:7a:6b:5c:de:d1:b4:1b:02:7d:f4:4b:6a:8a: 29:20:dd:ce:f2:16:d5:cb:03:c5:92:54:8f:e9:c5:05:bf:0e: bb:c3:ab:99:e4:f7:35:07:27:ca:8d:78:c5:50:a8:de:ac:1c: cb:7e:85:e8:18:51:15:dd:d6:46:64:92:96:91:d9:46:76:63: 54:47:74:5f:05:16:36:3d:67:44:8e:72:99:2e:9b:67:ec:1b: 6f:a5:77:c6:58:a4:e6:e5:82:b9:a8:f0:1e:64:f6:a4:72:80: b7:0d:41:69:94:19:7f:bf:d7:27:8a:5e:7e:5d:87:8a:98:c0: 96:42:bb:0b:3a:c7:d5:c4:a4:fe:e4:13:cb:6d:ff:f5:f9:7d: c2:2a:95:8c:e2:7f:1b:ba:a3:11:bc:e2:73:e6:a6:d7:e7:db: 30:d1:26:8a:f7:1e:08:a9:d6:57:56:74:d3:a5:6b:c9:1c:66: 92:e9:30:d5:76:54:cb:99:da:61:e5:6a:17:93:8f:13:1b:38: ab:b9:72:0a:d6:31:8f:2c:da:dd:6e:09:f3:4a:d1:c1:45:17: 01:df:5c:a4:20:5f:97:98:33:2e:d6:e1:fd:51:07:2c:99:18: ac:42:59:d0:37:02:a9:9b:9e:59:4b:e1:6a:8c:64:b4:1b:1b: eb:70:d4:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjQwNTE4MjA1NjQ0WhcNMjQwNTI1MjA1NjQ0WjAYMRYwFAYD VQQDEw02NjQ5MTYwZC1hYjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DKOIg+TLVc7jOdUNRuXiPlDk+9pVBeGz5pfb4knHVOfEavfUuWNJFK98dQK HfJLa0c0Ssdu/yEEFbK3rIqG3fj1gaR/nSSbucn4vvb5kKmhzydzIIDvZ4YJHEAe UGqSFT9wpi6qA+tSsL8tfLaMtE5Dh7a3NEa8sxJLlsKxg5LmBDbMu1nLWNcwYflz 8JiSwVnlHntzno1v+ojNToxi+eflCVWXT6gWMi6poxcfAsLN9YXwLApoVcsCmPpP TK460ezG0tzkzW95cij+hW1gs3jPQmcaHG/bovmQQUMrKDR6kNR/JNSGcpd4pmMG c97cNOUopWyqss+1Yk+tY3U35wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNx9P/cH E2eySHXFLURYWqWnd1CDMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjQ5My81RkNBQjY3MjY4RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENX MC0zWWdHRHRUWkdEeS1HR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgHRs1rHprXN7RtBsCffRLaoopIN3O8hbVywPFklSP6cUFvw67w6uZ 5Pc1ByfKjXjFUKjerBzLfoXoGFEV3dZGZJKWkdlGdmNUR3RfBRY2PWdEjnKZLptn 7BtvpXfGWKTm5YK5qPAeZPakcoC3DUFplBl/v9cnil5+XYeKmMCWQrsLOsfVxKT+ 5BPLbf/1+X3CKpWM4n8buqMRvOJz5qbX59sw0SaK9x4IqdZXVnTTpWvJHGaS6TDV dlTLmdph5WoXk48TGziruXIK1jGPLNrdbgnzStHBRRcB31ykIF+XmDMu1uH9UQcs mRisQlnQNwKpm55ZS+FqjGS0GxvrcNSn -----END CERTIFICATE-----Generated at Sat May 18 21:31:31 2024 by rpki-client on console-ams.rpki-client.org