$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft File: jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft (raw, json) Hash identifier: /cUZeDzemCbVxzI4rPrsKaowD5TWnIYG4hF8oL8KXnw= Subject key identifier: 10:36:01:6D:0D:17:90:19:F1:D5:B2:7D:35:9E:66:4F:32:2E:F6:B5 Authority key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C Certificate issuer: /CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Certificate serial: 19C9 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft Manifest number: 19C3 Signing time: Sun 02 Jun 2024 16:09:25 +0000 Manifest this update: Sun 02 Jun 2024 16:09:24 +0000 Manifest next update: Sun 09 Jun 2024 16:09:24 +0000 Files and hashes: 1: jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl (hash: TECrLcLFBocjcChOxA2HqKc5ky1n3P1PHV7jqh4tryg=) 2: AFA37450139811EA807F1A26C4F9AE02.roa (hash: l6ozucYTFKjn39HEiVgGalsJ6EF9CCKenjj1DUfT/Ak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 14:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6601 (0x19c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Validity Not Before: Jun 2 16:09:24 2024 GMT Not After : Jun 9 16:09:24 2024 GMT Subject: CN=665c9935-58b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e9:53:40:18:52:bb:d2:cf:fc:97:c6:b7:f6: 3f:67:f5:fd:16:33:7e:dd:f1:b4:c6:a0:d1:c9:b2: 2a:6a:7c:ab:76:c8:b1:d7:19:9a:ee:c0:69:22:6c: f5:fe:70:16:be:ef:db:7c:27:0b:c7:af:90:89:7b: 74:f0:3c:a8:33:6b:41:33:6a:08:3d:42:95:f4:2f: df:60:62:12:80:fe:d3:18:11:ad:40:e0:bf:63:e5: 4b:76:f4:8f:75:61:17:39:70:f3:67:59:ef:c8:4d: d1:40:31:23:c4:7c:ca:00:fb:c5:a6:50:6f:2d:5c: 95:6e:75:b0:f5:7d:2d:b3:70:48:a8:94:c3:3f:37: fe:fa:64:fd:56:82:f1:21:64:f3:cd:cd:d3:32:01: c1:cb:7f:9b:12:fc:1b:16:38:fb:55:0e:b5:6d:f7: 17:e2:e4:13:b7:55:1f:61:2d:54:a3:99:9b:d6:e4: 9f:13:4c:cd:f3:5b:02:51:83:75:79:a0:82:40:99: 89:04:3e:c5:9c:7a:29:02:64:55:50:b7:71:b1:09: b8:cc:75:52:6c:b2:61:4f:b5:5a:06:54:55:75:dd: cc:52:2d:67:ea:8f:69:7d:61:58:4d:dd:b7:41:03: fc:90:b8:59:6d:54:d7:85:c6:bb:d1:e4:21:70:84: 53:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:36:01:6D:0D:17:90:19:F1:D5:B2:7D:35:9E:66:4F:32:2E:F6:B5 X509v3 Authority Key Identifier: keyid:8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:4c:f7:20:86:aa:71:85:8e:51:a3:13:31:6a:af:7d:fc:ed: a0:d3:f6:25:13:24:57:02:f2:87:bf:3c:f4:e5:87:8e:2f:2e: c2:ac:be:f8:7f:33:78:ac:41:fd:1d:73:7e:ff:cc:4c:e6:8e: e2:b6:2f:a6:0e:2a:89:3c:b8:5d:4d:9a:5f:47:70:85:5a:7c: 81:a9:b6:34:58:cc:0a:b4:b2:07:bb:18:26:85:96:fe:4c:61: cc:02:5e:0d:62:1f:27:3f:f7:05:b6:70:88:28:49:14:4d:b6: 9e:82:db:c4:cc:71:30:6e:91:35:73:b7:82:bd:53:59:ec:da: 9e:16:c1:7d:47:f0:99:55:20:1e:2d:a9:17:da:40:e9:b5:5f: fd:04:66:83:4a:e3:fc:1e:b4:6e:20:7c:cf:7e:ce:39:ae:bc: 3b:f7:fd:66:a1:e8:bc:cd:2d:6e:13:f3:90:1f:f3:65:42:58: 32:de:dd:35:e1:0d:62:dc:7d:b4:68:c1:69:57:ab:16:8a:c7: cb:18:6b:4a:dc:76:cc:f7:a0:7b:8a:1e:87:d1:db:61:55:3d: dd:00:27:a7:f6:56:4b:62:91:88:62:b2:76:b9:ea:2b:3e:c7: b8:40:b8:b3:f1:e0:9a:b4:c4:1e:ea:b4:a4:8e:b4:ac:fb:4c: a2:a6:67:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKDhFMTFGQ0I0RThCRDYzRDI3Qjg0RUIyRDUyNjcwQ0Ex NzRGOUM0M0MwHhcNMjQwNjAyMTYwOTI0WhcNMjQwNjA5MTYwOTI0WjAYMRYwFAYD VQQDEw02NjVjOTkzNS01OGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6OlTQBhSu9LP/JfGt/Y/Z/X9FjN+3fG0xqDRybIqanyrdsix1xma7sBpImz1 /nAWvu/bfCcLx6+QiXt08DyoM2tBM2oIPUKV9C/fYGISgP7TGBGtQOC/Y+VLdvSP dWEXOXDzZ1nvyE3RQDEjxHzKAPvFplBvLVyVbnWw9X0ts3BIqJTDPzf++mT9VoLx IWTzzc3TMgHBy3+bEvwbFjj7VQ61bfcX4uQTt1UfYS1Uo5mb1uSfE0zN81sCUYN1 eaCCQJmJBD7FnHopAmRVULdxsQm4zHVSbLJhT7VaBlRVdd3MUi1n6o9pfWFYTd23 QQP8kLhZbVTXhca70eQhcIRTxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBA2AW0N F5AZ8dWyfTWeZk8yLva1MB8GA1UdIwQYMBaAFI4R/LTovWPSe4TrLVJnDKF0+cQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83NTNENzFFRTNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5SjdoT3N0VW1jTW9YVDV4 RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2poSDh0T2k5WTlKN2hPc3RVbWNNb1hUNXhEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0E3NC83NTNENzFFRTNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5 SjdoT3N0VW1jTW9YVDV4RHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALTPcghqpxhY5RoxMxaq99/O2g0/YlEyRXAvKHvzz05YeOLy7CrL74 fzN4rEH9HXN+/8xM5o7iti+mDiqJPLhdTZpfR3CFWnyBqbY0WMwKtLIHuxgmhZb+ TGHMAl4NYh8nP/cFtnCIKEkUTbaegtvEzHEwbpE1c7eCvVNZ7NqeFsF9R/CZVSAe LakX2kDptV/9BGaDSuP8HrRuIHzPfs45rrw79/1moei8zS1uE/OQH/NlQlgy3t01 4Q1i3H20aMFpV6sWisfLGGtK3HbM96B7ih6H0dthVT3dACen9lZLYpGIYrJ2ueor Pse4QLiz8eCatMQe6rSkjrSs+0yipmdD -----END CERTIFICATE-----Generated at Sun Jun 2 18:47:16 2024 by rpki-client on console-ams.rpki-client.org