$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft File: I1WemnFX565_YExCiDcpLeAzCaA.mft (raw, json) Hash identifier: tpAILetTNaTnS9B3tNHnynqs/jjgriroPvlOY27U88g= Subject key identifier: D7:D1:46:B6:EF:E6:F7:D6:75:06:1F:44:53:C2:72:61:84:5B:6B:90 Authority key identifier: 23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 Certificate issuer: /CN=A91BEA2A/serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft Manifest number: 01D4 Signing time: Sun 19 May 2024 04:21:43 +0000 Manifest this update: Sun 19 May 2024 04:21:42 +0000 Manifest next update: Sun 26 May 2024 04:21:42 +0000 Files and hashes: 1: I1WemnFX565_YExCiDcpLeAzCaA.crl (hash: u3BtQ//3AvdN6t7iGCcA1Wh3DJrp6w+emTqZkQoFY9s=) 2: CFF0FDEC025911EDA0A85765C4F9AE02.roa (hash: IIET7EYwWspwql9sc/JN8kiozR7Qi5MMWfPVZw350Q4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA2A/serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Validity Not Before: May 19 04:21:42 2024 GMT Not After : May 26 04:21:42 2024 GMT Subject: CN=66497e57-566b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a1:32:a8:73:10:8e:df:4b:8f:5a:5d:33:6f: 39:6f:11:dd:d7:e3:c6:f3:64:f6:74:ba:20:ca:7e: 1a:a5:71:2e:93:ef:c2:c4:8e:6d:6e:98:6a:68:67: 2c:c4:14:35:f8:80:25:80:28:fa:5e:40:44:86:7d: e1:e3:8e:d7:91:5c:5e:d2:d3:ad:84:47:c8:18:bb: ca:94:2d:b5:4f:c6:2d:a0:dd:3c:b7:05:b0:98:2d: d5:85:f5:d8:06:2c:88:28:05:92:f3:2f:1c:51:92: 3b:8b:96:b9:c4:e8:b4:b0:a8:f2:a0:04:28:34:27: ad:98:8b:a4:a2:53:85:1b:36:42:98:1f:68:46:ce: 65:77:ed:7c:c8:d0:8b:21:06:6b:44:9d:b8:d8:2d: cf:4c:c8:92:a8:27:ff:d6:9d:e4:8d:ac:c0:bb:aa: c3:23:2d:b9:cc:ff:2f:d2:36:9e:98:54:1e:58:82: 11:65:05:e4:6e:7c:12:ef:7a:bf:6f:c4:bb:81:d5: 9e:61:9e:cb:cd:1f:c8:d0:65:6b:dc:db:6d:08:6d: 98:24:db:bb:e5:62:e2:72:44:91:98:01:a2:58:9a: f8:21:4e:6e:7a:04:a5:34:b3:04:b2:f4:fa:91:0d: 42:cf:04:71:7c:af:a0:00:23:fe:c6:f0:cc:a8:30: e9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D1:46:B6:EF:E6:F7:D6:75:06:1F:44:53:C2:72:61:84:5B:6B:90 X509v3 Authority Key Identifier: keyid:23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:53:b4:82:c5:77:95:18:47:d8:96:f8:89:6f:1a:19:a6:3b: 64:ce:2e:bc:34:14:e4:d6:c8:9a:f8:13:50:7a:d2:74:3a:53: b2:1c:59:e3:48:df:5d:0e:10:46:42:3f:95:75:9f:ba:0b:10: b9:55:21:a0:45:6f:b7:db:78:4b:94:f6:ce:30:3d:53:87:bf: 4d:e1:de:db:dc:e5:1d:74:47:c4:32:cd:4f:a8:1f:34:e0:6d: fb:4a:06:30:02:8d:bb:c6:18:6b:98:fe:19:38:31:62:d4:65: a7:25:83:fd:52:ad:73:a0:fe:0b:b0:f7:50:b9:f9:af:dd:0d: 8f:aa:1a:6c:5c:e4:e4:c0:55:81:55:2d:dc:1e:92:78:16:c8: 19:bb:c8:fc:49:2e:89:b3:ad:76:16:66:6a:80:29:b6:c1:3d: 22:43:44:59:68:a8:44:d4:29:95:ab:d7:1d:9c:d2:53:d8:67: 4d:8f:7f:30:83:47:24:dc:bd:4b:f7:40:02:f4:67:6a:49:46: d9:81:1f:30:ac:eb:6f:85:77:23:5e:bc:0f:ce:1d:5d:2a:81: 6c:bb:ad:17:51:c2:dc:9a:26:0c:58:63:95:0f:5e:34:ce:7b: 50:8b:35:3a:36:f5:e0:a7:5e:68:4b:82:29:9b:8e:60:28:24: 3e:37:bd:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVBMkExMTAvBgNVBAUTKDIzNTU5RTlBNzE1N0U3QUU3RjYwNEM0Mjg4MzcyOTJE RTAzMzA5QTAwHhcNMjQwNTE5MDQyMTQyWhcNMjQwNTI2MDQyMTQyWjAYMRYwFAYD VQQDEw02NjQ5N2U1Ny01NjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qEyqHMQjt9Lj1pdM285bxHd1+PG82T2dLogyn4apXEuk+/CxI5tbphqaGcs xBQ1+IAlgCj6XkBEhn3h447XkVxe0tOthEfIGLvKlC21T8YtoN08twWwmC3VhfXY BiyIKAWS8y8cUZI7i5a5xOi0sKjyoAQoNCetmIukolOFGzZCmB9oRs5ld+18yNCL IQZrRJ242C3PTMiSqCf/1p3kjazAu6rDIy25zP8v0jaemFQeWIIRZQXkbnwS73q/ b8S7gdWeYZ7LzR/I0GVr3NttCG2YJNu75WLickSRmAGiWJr4IU5uegSlNLMEsvT6 kQ1CzwRxfK+gACP+xvDMqDDpbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfRRrbv 5vfWdQYfRFPCcmGEW2uQMB8GA1UdIwQYMBaAFCNVnppxV+euf2BMQog3KS3gMwmg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUEyQS8zRDM1MEZEMjAy NTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2NV9ZRXhDaURjcExlQXpD YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kxV2VtbkZYNTY1X1lFeENpRGNwTGVBekNhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUEyQS8zRDM1MEZEMjAyNTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2 NV9ZRXhDaURjcExlQXpDYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvU7SCxXeVGEfYlviJbxoZpjtkzi68NBTk1sia+BNQetJ0OlOyHFnj SN9dDhBGQj+VdZ+6CxC5VSGgRW+323hLlPbOMD1Th79N4d7b3OUddEfEMs1PqB80 4G37SgYwAo27xhhrmP4ZODFi1GWnJYP9Uq1zoP4LsPdQufmv3Q2PqhpsXOTkwFWB VS3cHpJ4FsgZu8j8SS6Js612FmZqgCm2wT0iQ0RZaKhE1CmVq9cdnNJT2GdNj38w g0ck3L1L90AC9GdqSUbZgR8wrOtvhXcjXrwPzh1dKoFsu60XUcLcmiYMWGOVD140 zntQizU6NvXgp15oS4Ipm45gKCQ+N70K -----END CERTIFICATE-----Generated at Sun May 19 04:56:56 2024 by rpki-client on console-fra.rpki-client.org