$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft File: redjNI0CWa0SzYi3ZNOYy4rHQMk.mft (raw, json) Hash identifier: ZJtb1+Nzg1iwi6EyyshocpHkgHDdOANsPh6IEr3ptdY= Subject key identifier: 7E:EC:0A:D5:75:59:E9:00:6A:B1:02:91:0A:E9:C2:02:EB:3E:AC:0B Authority key identifier: AD:E7:63:34:8D:02:59:AD:12:CD:88:B7:64:D3:98:CB:8A:C7:40:C9 Certificate issuer: /CN=A91BBCC9/serialNumber=ADE763348D0259AD12CD88B764D398CB8AC740C9 Certificate serial: 0527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft Manifest number: 051F Signing time: Sun 19 May 2024 01:01:52 +0000 Manifest this update: Sun 19 May 2024 01:01:52 +0000 Manifest next update: Sun 26 May 2024 01:01:52 +0000 Files and hashes: 1: redjNI0CWa0SzYi3ZNOYy4rHQMk.crl (hash: M8Z5bXb14wA7zb4sIRpODzHV45A7wz9jza80ryHuo/s=) 2: B69C27DCB6D711EB9D603F7DC4F9AE02.roa (hash: OWf8PDQ8WMymcLSHEfIQAksI7XQ+plK8c+CWI6STWXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.crl rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBCC9/serialNumber=ADE763348D0259AD12CD88B764D398CB8AC740C9 Validity Not Before: May 19 01:01:52 2024 GMT Not After : May 26 01:01:52 2024 GMT Subject: CN=66494f80-1e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:24:28:59:0b:f0:80:40:55:10:d2:c7:36:88: be:96:a0:df:6a:e6:03:c9:2e:27:52:ba:5b:bd:d6: ed:71:73:6a:6f:56:26:cf:a3:20:97:47:87:6e:a0: 07:18:29:53:0b:5f:9b:88:ec:1e:ba:7b:65:31:d7: 95:99:22:aa:b1:01:ec:23:62:1b:25:b3:63:2f:f0: 69:bf:d0:7f:8b:20:46:c6:e6:d8:9a:d9:df:5b:57: dd:34:01:c6:b1:61:3b:09:35:5b:59:4f:12:6a:d2: 9f:d3:b6:47:64:c7:c7:58:ba:24:f5:bd:d5:0f:8c: 44:e7:7a:4e:33:96:00:03:2d:b3:c9:0e:a8:34:8b: 8a:29:0f:e9:46:63:ed:cc:e7:e3:79:56:9e:c6:8e: 26:72:ef:01:03:c9:20:ca:53:d0:fa:01:6f:b8:a4: 7f:71:1e:af:fe:fb:0a:b3:d7:71:41:9f:f5:29:b8: b3:13:91:b8:ec:ed:4d:97:c2:ed:75:a7:4e:55:22: ac:8a:a0:97:81:5e:f1:85:b8:fa:62:6a:a5:a7:3f: ee:d8:fb:47:06:73:73:e3:86:6b:fb:33:c6:9a:df: 65:79:dc:6c:86:75:bc:2b:d3:75:57:7e:54:52:74: a6:07:67:a8:89:98:ff:65:47:43:3c:10:6b:66:39: c7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:EC:0A:D5:75:59:E9:00:6A:B1:02:91:0A:E9:C2:02:EB:3E:AC:0B X509v3 Authority Key Identifier: keyid:AD:E7:63:34:8D:02:59:AD:12:CD:88:B7:64:D3:98:CB:8A:C7:40:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:35:32:0e:ff:68:a4:a0:8a:ce:23:ea:97:76:35:a5:66:9b: 9f:1b:5c:08:23:39:a2:a6:9c:36:b3:79:8c:96:9a:ce:5a:7d: 10:70:a8:ae:9b:70:d3:c8:dc:86:d5:7a:1d:15:2f:02:c0:02: ff:9b:93:0b:46:de:c3:c6:ec:89:3d:61:a3:bd:dd:f7:a0:16: e1:16:47:c2:5c:f4:8f:70:d9:c4:b5:2b:70:a4:1b:28:eb:fe: da:1d:9e:24:af:36:c3:34:0a:89:12:08:ec:fa:67:dd:7f:a0: 2b:d7:39:e4:a9:bd:f2:2a:0d:d6:ce:1b:13:73:0c:93:1d:05: 1f:dc:12:d9:f1:1f:e4:92:64:c1:76:4d:d9:d2:9b:90:de:95: 8e:a7:27:bc:89:31:0b:fd:f4:f3:5f:85:50:a2:25:01:40:d7: 5c:cd:5f:61:2f:19:b3:08:e2:95:32:07:bd:26:22:d8:98:1e: 51:92:e6:69:e6:a8:49:75:ac:3b:80:a2:e9:f9:aa:fb:77:f4: 91:56:ff:5a:1e:fa:a7:cb:5a:98:06:0f:a1:ab:b6:51:28:d2: d9:aa:d2:f2:21:5f:04:98:ed:dd:76:f2:8d:af:5e:22:b8:d5: 16:3d:45:79:1d:c0:45:76:6b:f4:04:42:78:8f:fd:3e:2f:89: 5a:9f:cf:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJDQzkxMTAvBgNVBAUTKEFERTc2MzM0OEQwMjU5QUQxMkNEODhCNzY0RDM5OENC OEFDNzQwQzkwHhcNMjQwNTE5MDEwMTUyWhcNMjQwNTI2MDEwMTUyWjAYMRYwFAYD VQQDEw02NjQ5NGY4MC0xZTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCQoWQvwgEBVENLHNoi+lqDfauYDyS4nUrpbvdbtcXNqb1Ymz6Mgl0eHbqAH GClTC1+biOweuntlMdeVmSKqsQHsI2IbJbNjL/Bpv9B/iyBGxubYmtnfW1fdNAHG sWE7CTVbWU8SatKf07ZHZMfHWLok9b3VD4xE53pOM5YAAy2zyQ6oNIuKKQ/pRmPt zOfjeVaexo4mcu8BA8kgylPQ+gFvuKR/cR6v/vsKs9dxQZ/1KbizE5G47O1Nl8Lt dadOVSKsiqCXgV7xhbj6Ymqlpz/u2PtHBnNz44Zr+zPGmt9ledxshnW8K9N1V35U UnSmB2eoiZj/ZUdDPBBrZjnHbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7sCtV1 WekAarECkQrpwgLrPqwLMB8GA1UdIwQYMBaAFK3nYzSNAlmtEs2It2TTmMuKx0DJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkNDOS9EMzBCMTVDMEI2 Q0YxMUVCODRFQjE4NTFDNEY5QUUwMi9yZWRqTkkwQ1dhMFN6WWkzWk5PWXk0ckhR TWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JlZGpOSTBDV2EwU3pZaTNaTk9ZeTRySFFNay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkNDOS9EMzBCMTVDMEI2Q0YxMUVCODRFQjE4NTFDNEY5QUUwMi9yZWRqTkkwQ1dh MFN6WWkzWk5PWXk0ckhRTWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2NTIO/2ikoIrOI+qXdjWlZpufG1wIIzmippw2s3mMlprOWn0QcKiu m3DTyNyG1XodFS8CwAL/m5MLRt7DxuyJPWGjvd33oBbhFkfCXPSPcNnEtStwpBso 6/7aHZ4krzbDNAqJEgjs+mfdf6Ar1znkqb3yKg3WzhsTcwyTHQUf3BLZ8R/kkmTB dk3Z0puQ3pWOpye8iTEL/fTzX4VQoiUBQNdczV9hLxmzCOKVMge9JiLYmB5RkuZp 5qhJdaw7gKLp+ar7d/SRVv9aHvqny1qYBg+hq7ZRKNLZqtLyIV8EmO3ddvKNr14i uNUWPUV5HcBFdmv0BEJ4j/0+L4lan88w -----END CERTIFICATE-----Generated at Sun May 19 01:47:15 2024 by rpki-client on console-ams.rpki-client.org