$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft File: s0it0HgdstIdxNM510-HoDk4ycc.mft (raw, json) Hash identifier: 8Q4UfShgbOAEVNQb+31RtoXeHHAlC2XKkNL6vEB9xRo= Subject key identifier: 85:83:C5:4E:0A:1C:D1:44:0D:50:41:01:A6:D5:10:F5:B3:B0:08:C0 Authority key identifier: B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 Certificate issuer: /CN=A91C7C44/serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft Manifest number: 0123 Signing time: Sun 19 May 2024 05:13:17 +0000 Manifest this update: Sun 19 May 2024 05:13:17 +0000 Manifest next update: Sun 26 May 2024 05:13:17 +0000 Files and hashes: 1: s0it0HgdstIdxNM510-HoDk4ycc.crl (hash: OQ7yV6q4ZtnsvSKCyFTuc4lG+uBXvxOkRdodDCQLqQw=) 2: 945D844463E311EDAD1B0B3FC4F9AE02.roa (hash: I1X7JACg/hLAWHCM0UINIChuMTlGhLwT5KCeL2gJlpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C44/serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Validity Not Before: May 19 05:13:17 2024 GMT Not After : May 26 05:13:17 2024 GMT Subject: CN=66498a6d-1174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:14:b1:23:73:79:a1:27:15:38:ee:6c:d4:20: ac:ef:d5:58:d7:cc:79:65:66:e0:e4:26:a4:7d:11: 8a:c0:c9:19:19:a0:68:86:05:ad:5f:f8:92:33:45: 9d:2d:de:fe:c2:5e:bb:43:07:01:3d:83:47:0b:0e: 1a:11:9c:35:6e:ae:cb:80:3a:fd:3c:c8:a8:f5:1e: cf:cc:46:37:fa:6b:16:b1:f3:6e:87:eb:02:9c:5b: e1:7a:54:03:4d:51:7e:fb:4b:09:b2:56:08:0d:eb: ac:9f:04:93:a6:74:d9:77:f1:41:8b:81:3e:b1:c2: 90:e7:d3:72:3f:2f:1f:28:c3:95:ea:79:55:e0:37: a6:76:60:53:6e:c6:a9:16:4b:83:d2:93:47:66:5f: f6:b5:91:d7:0a:e1:be:38:52:44:d9:0a:45:82:ef: 5c:31:bb:f3:a3:48:a1:02:72:7c:c8:3f:ac:40:72: dd:16:47:e6:76:02:c8:59:1f:38:c5:dd:ad:8c:e9: d3:49:b3:4e:41:15:e9:89:5b:c6:a6:70:c4:03:8c: 54:7b:2a:bd:31:2f:35:f5:a9:dc:96:32:1b:9e:41: 21:1d:d5:74:24:33:06:18:41:36:8d:c4:68:8c:ef: e3:fd:0e:33:6d:88:08:66:a4:d0:6f:6a:f6:21:f1: 19:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:83:C5:4E:0A:1C:D1:44:0D:50:41:01:A6:D5:10:F5:B3:B0:08:C0 X509v3 Authority Key Identifier: keyid:B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:25:e0:a2:c5:2a:b1:8f:bc:2a:66:58:85:35:3a:58:27:45: 3a:0a:c4:92:58:7d:97:a4:c3:70:05:66:38:dc:ad:d7:74:68: 96:6b:00:6e:f2:de:4f:a3:0e:bc:0e:24:ce:49:63:7f:4c:09: 17:50:13:8e:5c:c5:c4:c7:70:35:5c:01:89:d4:58:a5:5e:e4: a5:4b:99:67:12:4d:0b:4a:53:93:82:ba:d0:0b:0c:15:fd:6c: 92:e1:8e:7d:e0:57:a3:87:5c:89:d1:f4:ae:25:7d:71:4f:b0: d9:4e:75:91:9e:9d:7a:b0:06:23:81:77:32:08:6e:32:c7:80: 08:bb:fb:ea:22:47:c4:d3:c3:98:9f:ed:10:3c:f3:5f:2c:cc: 17:22:95:ec:e3:26:9d:0e:0b:d6:10:ef:4c:c4:22:aa:a2:0d: 27:57:fe:58:38:76:79:73:0f:5d:1d:20:15:40:7e:ca:4f:1d: 47:0d:66:22:08:30:1f:80:a0:24:a8:20:64:d8:25:c6:22:25: b3:90:7b:53:d3:9c:35:c0:83:c3:26:55:2b:32:e5:be:fd:6a: a0:a4:6c:d5:a0:ab:76:d4:e9:74:ec:9c:a7:aa:5a:55:f7:4f: 27:6c:4e:3e:96:41:cc:1b:1c:ed:4f:54:ca:5e:66:bd:89:dd: c3:68:44:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDNDQxMTAvBgNVBAUTKEIzNDhBREQwNzgxREIyRDIxREM0RDMzOUQ3NEY4N0Ew MzkzOEM5QzcwHhcNMjQwNTE5MDUxMzE3WhcNMjQwNTI2MDUxMzE3WjAYMRYwFAYD VQQDEw02NjQ5OGE2ZC0xMTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBSxI3N5oScVOO5s1CCs79VY18x5ZWbg5CakfRGKwMkZGaBohgWtX/iSM0Wd Ld7+wl67QwcBPYNHCw4aEZw1bq7LgDr9PMio9R7PzEY3+msWsfNuh+sCnFvhelQD TVF++0sJslYIDeusnwSTpnTZd/FBi4E+scKQ59NyPy8fKMOV6nlV4DemdmBTbsap FkuD0pNHZl/2tZHXCuG+OFJE2QpFgu9cMbvzo0ihAnJ8yD+sQHLdFkfmdgLIWR84 xd2tjOnTSbNOQRXpiVvGpnDEA4xUeyq9MS819ancljIbnkEhHdV0JDMGGEE2jcRo jO/j/Q4zbYgIZqTQb2r2IfEZuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWDxU4K HNFEDVBBAabVEPWzsAjAMB8GA1UdIwQYMBaAFLNIrdB4HbLSHcTTOddPh6A5OMnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0M0NC9ENTMzQTdCNDYz REUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0SWR4Tk01MTAtSG9EazR5 Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MwaXQwSGdkc3RJZHhOTTUxMC1Ib0RrNHljYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0M0NC9ENTMzQTdCNDYzREUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0 SWR4Tk01MTAtSG9EazR5Y2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASJeCixSqxj7wqZliFNTpYJ0U6CsSSWH2XpMNwBWY43K3XdGiWawBu 8t5Pow68DiTOSWN/TAkXUBOOXMXEx3A1XAGJ1FilXuSlS5lnEk0LSlOTgrrQCwwV /WyS4Y594Fejh1yJ0fSuJX1xT7DZTnWRnp16sAYjgXcyCG4yx4AIu/vqIkfE08OY n+0QPPNfLMwXIpXs4yadDgvWEO9MxCKqog0nV/5YOHZ5cw9dHSAVQH7KTx1HDWYi CDAfgKAkqCBk2CXGIiWzkHtT05w1wIPDJlUrMuW+/WqgpGzVoKt21Ol07JynqlpV 908nbE4+lkHMGxztT1TKXma9id3DaETO -----END CERTIFICATE-----Generated at Sun May 19 06:14:36 2024 by rpki-client on console-ams.rpki-client.org