$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.mft File: S8VilW0H0G-q3JIziLmGYPcofJo.mft (raw, json) Hash identifier: NIJSeWkLtzL8PQs0ZpmKQwym6QUkDujfudLv6joE7CI= Subject key identifier: 2D:28:D6:42:DC:BA:D7:25:72:6B:90:40:65:13:D0:AD:6E:2C:F2:94 Authority key identifier: 4B:C5:62:95:6D:07:D0:6F:AA:DC:92:33:88:B9:86:60:F7:28:7C:9A Certificate issuer: /CN=A91BF039/serialNumber=4BC562956D07D06FAADC923388B98660F7287C9A Certificate serial: 0A3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S8VilW0H0G-q3JIziLmGYPcofJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.mft Manifest number: 0A35 Signing time: Sat 18 May 2024 20:30:59 +0000 Manifest this update: Sat 18 May 2024 20:30:59 +0000 Manifest next update: Sat 25 May 2024 20:30:59 +0000 Files and hashes: 1: S8VilW0H0G-q3JIziLmGYPcofJo.crl (hash: +tCNS7VMSK0Oul2kJ2R5Ir1OCfaykkEbzWR4EwSxGwU=) 2: 6D49440845BC11EAB591BD20C4F9AE02.roa (hash: +EH85YAp1dcpIF99ICzGj5geNh5nH/fjSqrNCHc2CX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.crl rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S8VilW0H0G-q3JIziLmGYPcofJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2619 (0xa3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF039/serialNumber=4BC562956D07D06FAADC923388B98660F7287C9A Validity Not Before: May 18 20:30:59 2024 GMT Not After : May 25 20:30:59 2024 GMT Subject: CN=66491003-99b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:eb:61:8e:0f:c9:20:16:dc:a5:cc:20:fc:3a: b0:3c:f5:33:0a:7c:b0:06:17:31:19:6c:a7:58:c1: d6:c0:cf:f6:d4:47:ea:35:7d:4a:e2:f3:61:0d:76: a3:43:6d:f3:4c:37:9b:4d:85:e1:7e:e1:0d:09:b9: d8:e7:4d:ba:fd:09:89:6f:04:2e:ca:03:2a:53:b5: cb:e8:ff:1c:62:65:0e:a7:0a:25:06:5a:49:ba:11: 95:6a:f7:22:fa:78:8b:95:f4:bb:37:c4:b8:0a:10: c1:92:5c:43:65:d2:3d:f1:b8:8b:cb:0d:0d:43:06: 1d:04:2a:d5:41:6e:43:f9:d6:18:a9:49:1f:85:c2: f9:2a:4a:1d:fb:ad:09:99:86:f7:50:b9:1c:64:18: 1f:27:13:33:b2:44:80:ac:d1:28:4f:25:f8:0f:20: 82:6a:2c:75:22:fc:ee:06:8c:a0:25:0c:26:ad:b7: a2:0a:d2:ae:c9:7e:60:e1:bd:de:b7:72:ef:66:c5: 1d:dd:b3:ce:3f:46:6c:ac:6d:60:7b:d6:86:d9:ee: 19:3e:31:59:c8:4b:20:3c:a1:70:b9:44:66:18:f1: 85:eb:df:7e:dd:b6:d6:17:f4:cf:19:c0:2b:cc:b6: 4e:74:98:8e:63:f3:01:b8:01:09:c9:11:7b:19:77: d5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:28:D6:42:DC:BA:D7:25:72:6B:90:40:65:13:D0:AD:6E:2C:F2:94 X509v3 Authority Key Identifier: keyid:4B:C5:62:95:6D:07:D0:6F:AA:DC:92:33:88:B9:86:60:F7:28:7C:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S8VilW0H0G-q3JIziLmGYPcofJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:4a:b4:43:ef:70:1b:7e:69:c7:c0:52:2f:90:3a:fc:f2:c7: 75:b6:a2:7b:3a:88:19:ce:d7:cb:92:95:2b:04:96:f0:c3:3e: bc:6e:81:6d:f1:e6:29:85:ba:68:c8:31:92:09:4a:28:49:b8: e4:eb:5a:67:a6:90:b3:ab:13:dd:36:51:08:20:75:16:2e:ab: 28:ca:a0:65:0c:ac:f2:f6:0c:c0:20:72:a6:ee:c1:92:99:73: 45:b1:c1:8f:b7:fb:4d:7e:ae:28:f7:74:23:ee:be:64:49:a4: f4:f2:ae:10:3e:7b:b6:3e:d5:ea:ad:8d:56:71:01:58:48:86: 3a:7d:48:b3:1b:9f:24:63:20:b8:5b:90:64:42:c8:dd:28:9d: cb:36:57:d7:2d:92:94:94:5e:98:98:fc:e7:97:77:54:b2:db: 92:2a:3c:92:00:7e:08:c0:be:a9:76:56:a5:1b:bf:6b:37:62: 64:ac:19:92:26:b5:e9:50:69:d7:e5:bc:ae:41:a9:66:20:6f: 5d:19:0c:e8:2a:04:7a:40:a4:29:0d:aa:59:89:07:c3:90:2f: 3c:6d:12:84:21:9b:c8:5c:34:c5:c9:1f:ca:9f:97:94:64:d8: be:f2:83:11:d8:cf:50:f6:64:c8:46:bf:e8:df:1f:60:76:b6: a6:96:23:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYwMzkxMTAvBgNVBAUTKDRCQzU2Mjk1NkQwN0QwNkZBQURDOTIzMzg4Qjk4NjYw RjcyODdDOUEwHhcNMjQwNTE4MjAzMDU5WhcNMjQwNTI1MjAzMDU5WjAYMRYwFAYD VQQDEw02NjQ5MTAwMy05OWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxethjg/JIBbcpcwg/DqwPPUzCnywBhcxGWynWMHWwM/21EfqNX1K4vNhDXaj Q23zTDebTYXhfuENCbnY5026/QmJbwQuygMqU7XL6P8cYmUOpwolBlpJuhGVavci +niLlfS7N8S4ChDBklxDZdI98biLyw0NQwYdBCrVQW5D+dYYqUkfhcL5Kkod+60J mYb3ULkcZBgfJxMzskSArNEoTyX4DyCCaix1IvzuBoygJQwmrbeiCtKuyX5g4b3e t3LvZsUd3bPOP0ZsrG1ge9aG2e4ZPjFZyEsgPKFwuURmGPGF699+3bbWF/TPGcAr zLZOdJiOY/MBuAEJyRF7GXfVbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0o1kLc utclcmuQQGUT0K1uLPKUMB8GA1UdIwQYMBaAFEvFYpVtB9BvqtySM4i5hmD3KHya MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjAzOS8yNTY3NkRGMDQ1 QkIxMUVBQTY0ODc3MUVDNEY5QUUwMi9TOFZpbFcwSDBHLXEzSkl6aUxtR1lQY29m Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M4VmlsVzBIMEctcTNKSXppTG1HWVBjb2ZKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjAzOS8yNTY3NkRGMDQ1QkIxMUVBQTY0ODc3MUVDNEY5QUUwMi9TOFZpbFcwSDBH LXEzSkl6aUxtR1lQY29mSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpSrRD73AbfmnHwFIvkDr88sd1tqJ7OogZztfLkpUrBJbwwz68boFt 8eYphbpoyDGSCUooSbjk61pnppCzqxPdNlEIIHUWLqsoyqBlDKzy9gzAIHKm7sGS mXNFscGPt/tNfq4o93Qj7r5kSaT08q4QPnu2PtXqrY1WcQFYSIY6fUizG58kYyC4 W5BkQsjdKJ3LNlfXLZKUlF6YmPznl3dUstuSKjySAH4IwL6pdlalG79rN2JkrBmS JrXpUGnX5byuQalmIG9dGQzoKgR6QKQpDapZiQfDkC88bRKEIZvIXDTFyR/Kn5eU ZNi+8oMR2M9Q9mTIRr/o3x9gdramliNR -----END CERTIFICATE-----Generated at Sat May 18 21:31:31 2024 by rpki-client on console-ams.rpki-client.org