$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft File: 2vWZnAdAuMks1UA3tpsETNValVg.mft (raw, json) Hash identifier: AAmJm5JmcfjRyydtSLP7A7vaBOAfTK+2//hqlSXh+7g= Subject key identifier: 10:94:99:5D:E3:AE:52:01:F0:2B:84:71:E6:B2:CC:67:65:DB:81:CC Authority key identifier: DA:F5:99:9C:07:40:B8:C9:2C:D5:40:37:B6:9B:04:4C:D5:5A:95:58 Certificate issuer: /CN=A91C31A2/serialNumber=DAF5999C0740B8C92CD54037B69B044CD55A9558 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2vWZnAdAuMks1UA3tpsETNValVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft Manifest number: 0150 Signing time: Sun 19 May 2024 04:53:56 +0000 Manifest this update: Sun 19 May 2024 04:53:56 +0000 Manifest next update: Sun 26 May 2024 04:53:56 +0000 Files and hashes: 1: 2vWZnAdAuMks1UA3tpsETNValVg.crl (hash: Z6i5jsLv6GYq/hH0ulkuYAnDAHIH4RGryj8cV1zkzPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.crl rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2vWZnAdAuMks1UA3tpsETNValVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31A2/serialNumber=DAF5999C0740B8C92CD54037B69B044CD55A9558 Validity Not Before: May 19 04:53:56 2024 GMT Not After : May 26 04:53:56 2024 GMT Subject: CN=664985e4-9e9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e4:7a:0c:d0:a0:77:80:96:d8:9a:d0:44:99: 0a:bf:f7:12:b9:d0:68:26:2c:74:92:0d:5c:ba:92: 75:66:e7:f1:80:84:69:8e:0a:7a:11:6f:97:57:95: 46:24:d8:6b:4d:c6:e4:67:62:50:9f:30:35:db:90: 25:fd:8d:6e:3d:60:ad:3e:c3:10:a9:40:be:44:66: c4:af:a3:77:19:71:b9:ab:fe:1b:24:4f:ed:43:f4: ec:f0:2f:29:1c:f9:86:06:56:f5:89:12:29:5f:75: 5b:df:a6:1b:e4:4d:f0:3f:dc:c0:05:b3:d0:9e:16: 1c:df:cc:37:4f:84:4c:fa:20:57:84:9a:6e:43:f5: d1:86:95:09:73:d0:52:91:7d:95:a8:59:d4:1c:ec: aa:aa:88:49:84:55:69:cc:1a:73:c6:70:e9:94:ce: f6:af:1b:4a:c0:9d:a3:11:f6:42:f5:a5:cd:ba:11: 94:38:a8:53:81:43:90:42:21:2d:53:f3:1f:5a:17: c8:79:50:87:e9:46:77:cc:03:27:b4:ad:8f:58:ec: a9:0a:86:b4:1f:e0:9a:d9:65:f8:34:af:b4:0b:42: 7f:b5:b7:8b:96:9a:9c:4e:db:69:76:67:ea:b5:4f: 04:8a:86:1f:6b:dd:c9:fe:7c:6c:5a:36:0c:70:b9: 8c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:94:99:5D:E3:AE:52:01:F0:2B:84:71:E6:B2:CC:67:65:DB:81:CC X509v3 Authority Key Identifier: keyid:DA:F5:99:9C:07:40:B8:C9:2C:D5:40:37:B6:9B:04:4C:D5:5A:95:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2vWZnAdAuMks1UA3tpsETNValVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:af:61:99:6e:d8:81:cc:f1:2a:4b:b5:de:08:4a:e6:3c:7c: 2e:dd:56:d3:4e:b4:8c:37:a0:c7:25:28:67:6c:ec:6f:8a:25: 8d:de:1e:cf:79:85:4c:cb:a6:b9:85:68:18:66:1b:6a:ad:13: 0d:23:82:04:2c:42:df:0e:7d:ba:2e:fa:67:95:55:c8:d9:ff: 3d:74:55:d6:26:bf:61:9f:c8:15:07:be:54:4c:ad:83:ea:a3: 60:ff:80:94:94:5b:bd:a1:88:8f:27:a1:cf:b8:ab:ea:6b:95: b3:9f:5f:0b:eb:41:b3:53:d6:fb:37:55:1a:e2:85:14:45:cf: 9b:b5:79:d8:39:76:95:40:14:0e:94:52:8c:09:2a:14:26:32: 00:14:c8:ea:ab:35:a7:9e:3f:03:ce:40:a1:1b:db:e1:16:27: 8b:98:52:98:55:3b:51:d8:bf:27:4a:56:24:da:c6:d8:81:58: 61:50:27:22:cd:58:5f:32:57:cd:e4:8b:1a:0d:13:6b:df:c6: 32:de:c8:a4:b8:e6:38:76:db:7c:ec:91:41:5d:49:e1:c2:d9: b0:f5:8c:bd:58:67:15:50:5b:92:c9:2b:0c:6f:4d:d1:07:09: 00:72:21:97:4a:80:88:2d:d5:33:40:83:7f:1d:ee:02:c8:c0: 23:12:4a:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQTIxMTAvBgNVBAUTKERBRjU5OTlDMDc0MEI4QzkyQ0Q1NDAzN0I2OUIwNDRD RDU1QTk1NTgwHhcNMjQwNTE5MDQ1MzU2WhcNMjQwNTI2MDQ1MzU2WjAYMRYwFAYD VQQDEw02NjQ5ODVlNC05ZTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eR6DNCgd4CW2JrQRJkKv/cSudBoJix0kg1cupJ1ZufxgIRpjgp6EW+XV5VG JNhrTcbkZ2JQnzA125Al/Y1uPWCtPsMQqUC+RGbEr6N3GXG5q/4bJE/tQ/Ts8C8p HPmGBlb1iRIpX3Vb36Yb5E3wP9zABbPQnhYc38w3T4RM+iBXhJpuQ/XRhpUJc9BS kX2VqFnUHOyqqohJhFVpzBpzxnDplM72rxtKwJ2jEfZC9aXNuhGUOKhTgUOQQiEt U/MfWhfIeVCH6UZ3zAMntK2PWOypCoa0H+Ca2WX4NK+0C0J/tbeLlpqcTttpdmfq tU8EioYfa93J/nxsWjYMcLmMNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCUmV3j rlIB8CuEceayzGdl24HMMB8GA1UdIwQYMBaAFNr1mZwHQLjJLNVAN7abBEzVWpVY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFBMi9ERTAzMzMzNjM1 NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi8ydldabkFkQXVNa3MxVUEzdHBzRVROVmFs VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ2V1puQWRBdU1rczFVQTN0cHNFVE5WYWxWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzFBMi9ERTAzMzMzNjM1NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi8ydldabkFkQXVN a3MxVUEzdHBzRVROVmFsVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMr2GZbtiBzPEqS7XeCErmPHwu3VbTTrSMN6DHJShnbOxviiWN3h7P eYVMy6a5hWgYZhtqrRMNI4IELELfDn26LvpnlVXI2f89dFXWJr9hn8gVB75UTK2D 6qNg/4CUlFu9oYiPJ6HPuKvqa5Wzn18L60GzU9b7N1Ua4oUURc+btXnYOXaVQBQO lFKMCSoUJjIAFMjqqzWnnj8DzkChG9vhFieLmFKYVTtR2L8nSlYk2sbYgVhhUCci zVhfMlfN5IsaDRNr38Yy3sikuOY4dtt87JFBXUnhwtmw9Yy9WGcVUFuSySsMb03R BwkAciGXSoCILdUzQIN/He4CyMAjEkpG -----END CERTIFICATE-----Generated at Sun May 19 05:48:51 2024 by rpki-client on console-fra.rpki-client.org