$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft File: WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft (raw, json) Hash identifier: okHl3SR6DheYqPB8lfNC1kaMqUOVizYnRTnPgYHBlFo= Subject key identifier: 5D:14:39:FB:F4:22:91:1E:56:E3:74:D3:8D:FA:4C:30:D5:C8:C4:54 Authority key identifier: 59:CA:0E:D6:B9:6B:70:C2:9B:3D:D8:E4:EC:59:8E:A1:2E:0D:C2:E6 Certificate issuer: /CN=A91C7AB9/serialNumber=59CA0ED6B96B70C29B3DD8E4EC598EA12E0DC2E6 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft Manifest number: 50 Signing time: Sun 19 May 2024 07:56:08 +0000 Manifest this update: Sun 19 May 2024 07:56:07 +0000 Manifest next update: Sun 26 May 2024 07:56:07 +0000 Files and hashes: 1: WcoO1rlrcMKbPdjk7FmOoS4NwuY.crl (hash: 4YPKPNIjKlp4D8onayxcECD0I+yWjS/9sym8MJk4Rp4=) 2: 5CB841E69B1411EEA456FE83C4F9AE02.roa (hash: ZkuyjzQM5NywNPNPqesV9btZaP3Tg8fDuRFKbMiHyfA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.crl rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AB9/serialNumber=59CA0ED6B96B70C29B3DD8E4EC598EA12E0DC2E6 Validity Not Before: May 19 07:56:07 2024 GMT Not After : May 26 07:56:07 2024 GMT Subject: CN=6649b097-fbea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e3:9f:5b:a8:1d:e5:08:b8:5c:ce:28:0f:68: a5:38:75:d6:4f:90:f2:6a:58:b7:dc:a2:d2:a9:43: 23:de:9e:48:cd:dc:98:d9:d7:c5:65:1c:83:b5:90: 96:5d:c0:28:ef:b1:58:d1:eb:53:06:2f:ea:4d:4c: 1c:e1:5c:e2:5b:a9:2c:79:24:38:af:23:00:ce:91: a8:80:21:b8:62:31:7f:dc:67:31:e7:05:cf:2d:c1: 64:9e:4a:9d:5f:1d:9f:b9:82:e5:e9:81:44:a9:1a: 32:4a:f3:e7:dd:25:15:0c:5e:82:fd:8f:6b:72:0f: 8a:19:b2:e2:f7:9c:41:40:5e:23:cb:b8:ee:62:41: 70:ea:4a:28:26:a3:30:15:aa:64:de:9a:e2:07:78: 85:bc:d8:ac:ce:03:27:6a:4b:1f:32:4e:7a:10:1a: ee:37:de:b1:e6:12:9f:9c:67:0d:89:3d:2b:43:3c: 3e:77:a4:4e:19:ae:54:bd:70:23:b3:47:15:4f:f4: 4d:db:37:40:59:4f:f8:aa:6b:c6:ca:ae:d9:81:9f: ac:14:fc:e5:e6:1c:90:b4:3c:69:5d:ad:52:fd:ea: e5:65:11:95:b8:76:83:2f:10:82:5d:45:2b:66:48: 4a:60:43:2d:51:2f:b8:7e:aa:f2:79:6f:0a:a6:50: 34:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:14:39:FB:F4:22:91:1E:56:E3:74:D3:8D:FA:4C:30:D5:C8:C4:54 X509v3 Authority Key Identifier: keyid:59:CA:0E:D6:B9:6B:70:C2:9B:3D:D8:E4:EC:59:8E:A1:2E:0D:C2:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:b7:53:0e:3f:c5:8e:16:d1:cc:b2:60:fd:4f:fa:e8:11:cd: a6:ae:a6:7b:95:bb:23:bb:3c:b8:9c:2e:d4:eb:f9:cc:bd:49: 64:45:69:a1:9c:65:fd:41:c4:c4:26:86:8f:91:5a:21:58:0c: 7e:c3:e8:41:87:8d:a1:77:73:2a:c9:7b:b4:d1:0c:67:40:55: 7c:04:76:34:dd:8a:d3:9c:b6:45:c9:8d:d3:10:c9:90:82:85: 6f:7e:d5:55:5a:e3:93:ac:08:fb:86:8a:98:37:b8:c8:f5:2a: 9e:26:44:bc:bf:08:5b:df:31:bb:38:9d:52:a7:09:2e:8b:57: 1c:37:fd:e1:5b:f0:0f:09:1e:f3:47:04:69:e3:a2:23:09:3a: 80:61:96:ff:8c:74:d6:9e:57:97:db:aa:be:1b:b7:6e:76:64: 14:ac:be:a6:e8:c6:df:e9:e4:e9:b8:80:8c:93:27:d6:cd:e4: 9d:5e:2a:8a:0a:a1:9b:4e:0a:98:b1:4b:b7:90:72:8e:6f:80: 16:ff:04:bd:8e:5e:9a:a0:81:bf:46:53:3a:d5:14:d2:73:b6: cd:dc:28:b0:8c:61:4a:4e:3c:e4:f2:39:eb:b7:27:5a:e4:52: 95:b1:26:03:89:35:2d:24:7f:5d:9d:7a:3c:f8:f0:bc:a4:c7: f4:5e:bf:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0FCOTExMC8GA1UEBRMoNTlDQTBFRDZCOTZCNzBDMjlCM0REOEU0RUM1OThFQTEy RTBEQzJFNjAeFw0yNDA1MTkwNzU2MDdaFw0yNDA1MjYwNzU2MDdaMBgxFjAUBgNV BAMTDTY2NDliMDk3LWZiZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDY459bqB3lCLhczigPaKU4ddZPkPJqWLfcotKpQyPenkjN3JjZ18VlHIO1kJZd wCjvsVjR61MGL+pNTBzhXOJbqSx5JDivIwDOkaiAIbhiMX/cZzHnBc8twWSeSp1f HZ+5guXpgUSpGjJK8+fdJRUMXoL9j2tyD4oZsuL3nEFAXiPLuO5iQXDqSigmozAV qmTemuIHeIW82KzOAydqSx8yTnoQGu433rHmEp+cZw2JPStDPD53pE4ZrlS9cCOz RxVP9E3bN0BZT/iqa8bKrtmBn6wU/OXmHJC0PGldrVL96uVlEZW4doMvEIJdRStm SEpgQy1RL7h+qvJ5bwqmUDSZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXRQ5+/Qi kR5W43TTjfpMMNXIxFQwHwYDVR0jBBgwFoAUWcoO1rlrcMKbPdjk7FmOoS4NwuYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3QUI5L0FCNTc1MzA2OUIx MzExRUVBQUFBMzk4MkM0RjlBRTAyL1djb08xcmxyY01LYlBkams3Rm1Pb1M0Tnd1 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV2NvTzFybHJjTUtiUGRqazdGbU9vUzROd3VZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 QUI5L0FCNTc1MzA2OUIxMzExRUVBQUFBMzk4MkM0RjlBRTAyL1djb08xcmxyY01L YlBkams3Rm1Pb1M0Tnd1WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACa3Uw4/xY4W0cyyYP1P+ugRzaaupnuVuyO7PLicLtTr+cy9SWRFaaGc Zf1BxMQmho+RWiFYDH7D6EGHjaF3cyrJe7TRDGdAVXwEdjTditOctkXJjdMQyZCC hW9+1VVa45OsCPuGipg3uMj1Kp4mRLy/CFvfMbs4nVKnCS6LVxw3/eFb8A8JHvNH BGnjoiMJOoBhlv+MdNaeV5fbqr4bt252ZBSsvqboxt/p5Om4gIyTJ9bN5J1eKooK oZtOCpixS7eQco5vgBb/BL2OXpqggb9GUzrVFNJzts3cKLCMYUpOPOTyOeu3J1rk UpWxJgOJNS0kf12dejz48Lykx/Revw0= -----END CERTIFICATE-----Generated at Sun May 19 09:32:18 2024 by rpki-client on console-ams.rpki-client.org