$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: dpMn3FWgWSF1t5mBN1cXSWgw96JrzvGw1xdPEMRexpE= Subject key identifier: B1:F4:1A:4F:EA:E9:28:D8:BE:ED:35:61:9C:DA:80:6F:BA:E3:44:19 Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0AC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0ABB Signing time: Sat 18 May 2024 20:08:05 +0000 Manifest this update: Sat 18 May 2024 20:08:04 +0000 Manifest next update: Sat 25 May 2024 20:08:04 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: zb8UfY+J0KkWgy1Sqs0tg9/m1CvXAGPGAZpV4/5+hSY=) 2: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: NaKs9z3QJXb5Kn8e48Iigov3Z7TuQs5pMXoTUPl9zy0=) 3: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: PndwU/bKorz9FPxSOlH7Na5k3+/rUrTNarEjKEZdBqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2759 (0xac7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: May 18 20:08:04 2024 GMT Not After : May 25 20:08:04 2024 GMT Subject: CN=66490aa5-ea3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:57:ee:98:de:bb:14:fd:13:ec:ae:51:11:0a: 90:58:c5:eb:40:d4:d4:b8:ce:b6:49:f4:ac:af:2b: 88:e8:bc:00:78:86:68:7f:f2:08:3a:4e:fb:00:d4: b2:4c:0d:10:13:22:de:99:9a:c9:01:fe:07:77:30: 83:3a:32:c9:c1:9e:2a:14:51:de:be:2d:09:ff:01: a0:4a:a9:1c:31:3d:88:96:e0:b9:d0:da:9e:da:d8: 4c:df:4c:56:06:22:53:27:ed:bb:7a:26:41:be:3c: 5d:d6:be:42:c6:9a:5d:78:0f:dc:2b:77:55:d4:99: 9f:f5:c2:09:fa:3e:be:f9:d6:5f:29:c7:b2:65:52: 8d:15:bd:6a:2f:47:91:c2:91:7c:c0:98:8d:14:c3: 2d:a2:a9:00:02:a4:f3:7c:e0:b2:2e:f0:ce:96:f8: aa:de:8b:e2:cc:82:77:34:03:30:85:07:fc:05:17: b2:8e:ee:9e:61:43:2d:f2:3d:b7:c2:88:8c:75:be: e4:2f:d8:2f:6a:3b:2d:e9:c0:6a:2f:37:e2:a7:d6: 30:9f:2f:8d:70:7e:d9:f5:76:d6:a2:7a:47:82:bc: 44:3d:85:7e:66:ab:b1:1a:f2:4f:0e:a9:2f:63:c5: 56:bf:34:16:35:3c:2c:b7:bc:98:9d:14:fc:7b:d9: e6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F4:1A:4F:EA:E9:28:D8:BE:ED:35:61:9C:DA:80:6F:BA:E3:44:19 X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:eb:89:f0:2a:5d:be:3f:18:17:69:5e:00:46:d3:0f:e2:7b: e6:72:a7:57:7e:ac:74:dc:bd:f3:22:40:05:7c:9a:cb:7a:f5: d7:98:e0:b1:77:20:b4:65:77:e7:38:e7:85:c9:9c:9c:26:49: 0f:b7:9b:2f:a5:cb:b2:64:48:e3:b4:84:f3:50:03:54:fd:3c: f4:9f:25:01:ce:69:a9:5b:82:f7:eb:e9:4b:a6:c4:bd:e3:2e: 79:41:b6:3e:84:7b:45:a6:15:b1:81:4a:6f:de:b7:89:73:f0: ea:d2:14:e7:88:70:85:3d:25:0c:46:cb:1e:69:31:31:5d:c7: 88:b3:6e:00:98:a1:f3:15:57:11:a6:de:dd:24:67:ec:7a:fb: 66:08:12:64:42:fd:d4:bb:24:c6:e3:5f:1e:c0:9c:a3:b8:33: a5:8b:62:5e:a1:88:b4:e7:6f:5a:64:54:a6:08:8f:e6:e8:aa: e7:4d:69:db:37:70:a1:3e:37:59:4c:9a:88:48:e3:37:22:c4: 3e:18:d8:8c:f6:ee:5d:33:c6:08:c8:42:7f:4e:72:ed:49:f0: 04:47:43:f4:3f:75:4f:36:64:b9:ed:5c:68:af:6f:e5:2f:1a: 6b:69:3c:93:40:c0:cf:48:2b:a5:b8:45:39:ba:31:76:a5:cb: 73:b9:75:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjQwNTE4MjAwODA0WhcNMjQwNTI1MjAwODA0WjAYMRYwFAYD VQQDEw02NjQ5MGFhNS1lYTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFfumN67FP0T7K5REQqQWMXrQNTUuM62SfSsryuI6LwAeIZof/IIOk77ANSy TA0QEyLemZrJAf4HdzCDOjLJwZ4qFFHevi0J/wGgSqkcMT2IluC50Nqe2thM30xW BiJTJ+27eiZBvjxd1r5CxppdeA/cK3dV1Jmf9cIJ+j6++dZfKceyZVKNFb1qL0eR wpF8wJiNFMMtoqkAAqTzfOCyLvDOlviq3ovizIJ3NAMwhQf8BReyju6eYUMt8j23 woiMdb7kL9gvajst6cBqLzfip9Ywny+NcH7Z9XbWonpHgrxEPYV+ZquxGvJPDqkv Y8VWvzQWNTwst7yYnRT8e9nm5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLH0Gk/q 6SjYvu01YZzagG+640QZMB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ64nwKl2+PxgXaV4ARtMP4nvmcqdXfqx03L3zIkAFfJrLevXXmOCx dyC0ZXfnOOeFyZycJkkPt5svpcuyZEjjtITzUANU/Tz0nyUBzmmpW4L36+lLpsS9 4y55QbY+hHtFphWxgUpv3reJc/Dq0hTniHCFPSUMRsseaTExXceIs24AmKHzFVcR pt7dJGfsevtmCBJkQv3UuyTG418ewJyjuDOli2JeoYi0529aZFSmCI/m6KrnTWnb N3ChPjdZTJqISOM3IsQ+GNiM9u5dM8YIyEJ/TnLtSfAER0P0P3VPNmS57Vxor2/l LxpraTyTQMDPSCuluEU5ujF2pctzuXUm -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org