$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: /V+lum02lLyRr/mGDzsmPRMitxqRtnXWLE4DpFy/Oz0= Subject key identifier: F5:53:A6:0C:F6:A1:38:F5:AD:47:83:36:5D:EE:FA:EF:69:B5:63:FE Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 050C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 0508 Signing time: Sun 19 May 2024 01:09:31 +0000 Manifest this update: Sun 19 May 2024 01:09:30 +0000 Manifest next update: Sun 26 May 2024 01:09:30 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: puV1LJBwtWhZUJqF52yYgflkt0P2bwRKypg9aumYl4o=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: 8xPWjkoE+zFud+TFxgnEq1UzwqrmQYh6gT2DXl5XDNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1292 (0x50c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: May 19 01:09:30 2024 GMT Not After : May 26 01:09:30 2024 GMT Subject: CN=6649514b-bfec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:40:b8:85:f0:4f:16:92:5d:7a:37:70:d7:76: 18:75:b6:8c:c4:2c:e0:cd:0f:24:ba:a3:3f:16:f9: 32:e7:de:f2:4c:44:a2:78:c6:e6:48:bc:74:fe:9c: ac:3d:1b:09:ae:43:1c:71:22:62:63:37:35:e2:22: 79:41:f4:e4:8e:b3:58:3c:cf:c7:a3:dd:3d:73:77: a6:84:17:5a:93:ca:88:c1:ce:63:7c:74:c5:91:f2: b1:a8:45:ae:59:02:03:ec:16:2a:a0:07:01:b1:b0: 0f:84:8e:ac:a3:b4:71:dc:c4:d5:0a:52:d6:d4:d4: e8:c3:75:f0:70:e5:ee:d0:bd:e2:58:38:25:9d:1c: 8a:d7:73:ec:75:f1:19:ba:d9:d9:c3:9d:01:6e:3e: 1c:f2:8f:29:71:b9:12:24:04:8b:ad:21:9c:25:f5: cf:ee:8a:d0:04:11:c6:30:dd:3a:00:d4:fe:d8:7e: 23:d9:45:2e:55:9c:57:20:a3:3d:da:eb:82:ec:a1: 80:db:34:8d:fd:28:8e:e1:8f:91:c1:e7:a0:d5:f2: a0:78:7b:2f:2d:57:9a:ee:99:dc:6c:60:af:48:79: 89:7f:d3:e4:75:82:bd:5f:28:c0:cd:31:4c:39:91: 82:75:4b:c8:99:c5:7d:03:ac:2b:e8:36:bc:ec:33: df:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:53:A6:0C:F6:A1:38:F5:AD:47:83:36:5D:EE:FA:EF:69:B5:63:FE X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:8a:2c:c6:dc:0a:11:7c:6e:10:3e:e1:fa:18:3c:af:22:af: 64:bf:86:69:54:4f:5c:47:71:cc:91:df:31:7e:89:86:df:89: 80:61:35:2a:19:df:55:19:95:9d:49:94:d5:ca:b3:b1:d4:1b: e8:73:f5:c6:58:7e:81:be:aa:04:22:c4:a8:99:25:00:82:a7: c5:97:8b:90:ec:3c:cb:74:7d:e9:53:3f:5c:b9:86:53:ba:5b: 0c:53:ba:36:b7:65:2a:a4:9f:bb:f0:4f:88:d2:5f:f3:c1:3d: 40:bf:62:17:a8:f2:4a:06:03:ce:9b:1d:a2:32:97:a9:99:46: 4e:44:df:ba:39:37:f4:b5:87:96:14:e1:74:b0:1a:56:0b:dc: a0:6f:be:85:ca:1d:99:23:5e:ae:2a:b4:34:62:04:de:30:08: 63:32:66:5c:40:08:23:5f:29:4d:25:78:44:94:0d:08:73:bb: 0a:ba:bc:d9:73:84:64:5d:da:ea:b6:01:86:4f:03:2c:e7:48: a2:9b:99:31:6f:92:96:53:e2:75:5e:8a:69:11:e4:08:a6:15: dd:6a:f1:34:b7:3c:2e:2a:65:1b:9e:15:42:90:51:d1:24:97: 77:03:2e:7a:f7:a9:fa:9f:81:b9:38:08:37:c5:41:1f:84:e5: e6:cc:4f:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjQwNTE5MDEwOTMwWhcNMjQwNTI2MDEwOTMwWjAYMRYwFAYD VQQDEw02NjQ5NTE0Yi1iZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUC4hfBPFpJdejdw13YYdbaMxCzgzQ8kuqM/Fvky597yTESieMbmSLx0/pys PRsJrkMccSJiYzc14iJ5QfTkjrNYPM/Ho909c3emhBdak8qIwc5jfHTFkfKxqEWu WQID7BYqoAcBsbAPhI6so7Rx3MTVClLW1NTow3XwcOXu0L3iWDglnRyK13PsdfEZ utnZw50Bbj4c8o8pcbkSJASLrSGcJfXP7orQBBHGMN06ANT+2H4j2UUuVZxXIKM9 2uuC7KGA2zSN/SiO4Y+Rweeg1fKgeHsvLVea7pncbGCvSHmJf9PkdYK9XyjAzTFM OZGCdUvImcV9A6wr6Da87DPfkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVTpgz2 oTj1rUeDNl3u+u9ptWP+MB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7iizG3AoRfG4QPuH6GDyvIq9kv4ZpVE9cR3HMkd8xfomG34mAYTUq Gd9VGZWdSZTVyrOx1Bvoc/XGWH6BvqoEIsSomSUAgqfFl4uQ7DzLdH3pUz9cuYZT ulsMU7o2t2UqpJ+78E+I0l/zwT1Av2IXqPJKBgPOmx2iMpepmUZORN+6OTf0tYeW FOF0sBpWC9ygb76Fyh2ZI16uKrQ0YgTeMAhjMmZcQAgjXylNJXhElA0Ic7sKurzZ c4RkXdrqtgGGTwMs50iim5kxb5KWU+J1XoppEeQIphXdavE0tzwuKmUbnhVCkFHR JJd3Ay5696n6n4G5OAg3xUEfhOXmzE+P -----END CERTIFICATE-----Generated at Sun May 19 01:47:15 2024 by rpki-client on console-ams.rpki-client.org