$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft File: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft (raw, json) Hash identifier: AiY/gLjXhmSg4D4dDaPDkZdjHtLv5vtK/I3Aqjqtd5c= Subject key identifier: A0:A9:35:0F:9A:EB:99:95:45:78:A4:0F:01:6B:71:3A:60:F5:DF:1B Authority key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 Certificate issuer: /CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Certificate serial: 057C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft Manifest number: 0573 Signing time: Sun 19 May 2024 00:40:31 +0000 Manifest this update: Sun 19 May 2024 00:40:31 +0000 Manifest next update: Sun 26 May 2024 00:40:31 +0000 Files and hashes: 1: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl (hash: R9SelEtE8a/kok+Xbie8kVPFALfojpuCvldEpntMcxE=) 2: FC583AC6CC8511EC8D238672C4F9AE02.roa (hash: VZu5d76z9BECtg/Tj5HFrFfwRfnA0abv0g9BO+rAGf8=) 3: FD987A54CC8511EC8D238672C4F9AE02.roa (hash: AEpVxnY0R43f2daSwocrVvAC1ESwULSrijAgzj4RpB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1404 (0x57c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Validity Not Before: May 19 00:40:31 2024 GMT Not After : May 26 00:40:31 2024 GMT Subject: CN=66494a7f-3a5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:34:9c:6f:5d:8b:45:bb:f6:06:d6:d8:b6:2a: 8c:78:6b:3a:21:07:61:25:dd:f8:ec:9a:95:31:38: 62:41:da:a2:ff:11:af:6a:37:8e:59:44:85:c1:4f: 4a:92:c4:75:8c:e3:39:18:1a:9e:ab:f7:1c:3f:31: 4b:7d:07:6e:e4:4c:33:96:43:48:af:4c:4f:bf:36: e6:bb:b6:a1:f5:f5:b8:a1:05:57:e1:4b:f9:bb:64: 29:fb:1b:92:f1:a8:48:9a:63:c3:43:84:97:a5:14: 64:71:03:26:18:dc:5e:9c:e4:fb:21:c2:34:c7:15: c6:cc:55:bc:2d:0f:66:f2:73:29:cf:77:9c:da:db: 9c:d2:e9:e7:0b:5c:f5:55:1b:17:0f:ed:34:0f:cb: 66:67:c9:94:4c:99:01:01:06:ca:53:08:40:18:55: ba:c4:c3:22:f5:fe:6b:63:e0:79:60:d9:f7:f4:14: 50:10:77:3a:bb:09:d7:91:51:f0:9f:6a:06:f8:eb: 1b:f2:65:d8:43:56:ce:b4:e9:16:7e:52:77:ac:87: f5:2d:00:3e:62:5f:cf:a7:f8:33:ce:6d:ed:a9:00: 43:7d:b1:de:7f:1f:18:83:4e:69:9b:6d:f1:ed:7b: 19:03:2b:a3:bf:e9:f6:ec:83:62:0b:f8:0a:73:90: 35:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A9:35:0F:9A:EB:99:95:45:78:A4:0F:01:6B:71:3A:60:F5:DF:1B X509v3 Authority Key Identifier: keyid:DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:cd:a1:b7:e3:92:eb:f2:47:df:6f:87:a5:08:9e:85:51:5b: f7:f8:a6:9f:f3:2a:1a:da:9d:62:87:55:9e:42:cc:51:ea:c3: 9f:4b:c6:99:2f:3f:38:9a:fa:1f:e9:86:d5:1a:57:e5:3c:14: a2:12:17:50:94:c5:b7:c7:64:73:3b:a3:0e:ce:52:6e:3c:7b: 0d:35:83:99:04:8c:a1:05:e0:70:87:18:8f:2b:18:ac:ad:40: 7b:3c:b4:e9:70:df:fd:9f:ba:1d:b0:cc:47:7a:9d:35:b3:2d: 74:87:bc:bf:d5:1b:59:4d:9a:46:dd:6a:d1:65:72:c4:22:68: 4d:bb:22:eb:e6:76:b5:bd:d4:a1:95:50:b8:3b:36:38:eb:14: 9c:41:f4:9a:cb:e2:8a:9c:39:75:80:ae:35:f3:40:0d:79:97: 61:76:78:8e:21:9e:0c:5b:24:79:80:cb:9f:0f:9d:60:80:db: 0d:b1:7b:41:9a:81:ec:31:40:99:86:94:90:9e:9c:88:9a:43: 4a:f8:bc:00:02:f8:e3:55:17:7d:89:37:b0:57:3b:b7:df:ae: 16:13:1e:b8:d5:f1:e4:f5:a4:9e:0f:dd:1d:a0:95:a7:02:31: ce:c2:f1:36:e6:2a:f3:b9:ef:73:62:e8:86:99:44:82:e5:33: e1:c7:77:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2NEQxMTAvBgNVBAUTKERGMTFFOTI2OEQwNkFFNTNCQUZCNzQxM0JEMzRGRjM4 NzhFNEVFRDAwHhcNMjQwNTE5MDA0MDMxWhcNMjQwNTI2MDA0MDMxWjAYMRYwFAYD VQQDEw02NjQ5NGE3Zi0zYTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TScb12LRbv2BtbYtiqMeGs6IQdhJd347JqVMThiQdqi/xGvajeOWUSFwU9K ksR1jOM5GBqeq/ccPzFLfQdu5EwzlkNIr0xPvzbmu7ah9fW4oQVX4Uv5u2Qp+xuS 8ahImmPDQ4SXpRRkcQMmGNxenOT7IcI0xxXGzFW8LQ9m8nMpz3ec2tuc0unnC1z1 VRsXD+00D8tmZ8mUTJkBAQbKUwhAGFW6xMMi9f5rY+B5YNn39BRQEHc6uwnXkVHw n2oG+Osb8mXYQ1bOtOkWflJ3rIf1LQA+Yl/Pp/gzzm3tqQBDfbHefx8Yg05pm23x 7XsZAyujv+n27INiC/gKc5A1OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKCpNQ+a 65mVRXikDwFrcTpg9d8bMB8GA1UdIwQYMBaAFN8R6SaNBq5Tuvt0E700/zh45O7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzY0RC9CMkVGM0UzNDk1 RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3JsTzYtM1FUdlRUX09Iams3 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN4SHBKbzBHcmxPNi0zUVR2VFRfT0hqazd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzY0RC9CMkVGM0UzNDk1RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3Js TzYtM1FUdlRUX09Iams3dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBczaG345Lr8kffb4elCJ6FUVv3+Kaf8yoa2p1ih1WeQsxR6sOfS8aZ Lz84mvof6YbVGlflPBSiEhdQlMW3x2RzO6MOzlJuPHsNNYOZBIyhBeBwhxiPKxis rUB7PLTpcN/9n7odsMxHep01sy10h7y/1RtZTZpG3WrRZXLEImhNuyLr5na1vdSh lVC4OzY46xScQfSay+KKnDl1gK4180ANeZdhdniOIZ4MWyR5gMufD51ggNsNsXtB moHsMUCZhpSQnpyImkNK+LwAAvjjVRd9iTewVzu3364WEx641fHk9aSeD90doJWn AjHOwvE25irzue9zYuiGmUSC5TPhx3cK -----END CERTIFICATE-----Generated at Sun May 19 01:47:15 2024 by rpki-client on console-ams.rpki-client.org