$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: oDDO/kIAwexyJ3cZVG/UD89tFGIw2CsiOqLTQwJqq4A= Subject key identifier: 7E:F4:D9:0D:98:DC:BE:96:8A:B9:29:99:06:AD:04:3F:1B:7D:17:A8 Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 044C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 0445 Signing time: Sun 19 May 2024 01:56:20 +0000 Manifest this update: Sun 19 May 2024 01:56:19 +0000 Manifest next update: Sun 26 May 2024 01:56:19 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: zLb88xYXBF77ta6CNzgkoUsdpuC9rdlyaOJRbyduULQ=) 2: E1755B4E24D711EDBE2C660BC4F9AE02.roa (hash: OFjYFv8tLy2zQnIzsX4nCsQcZdp8BhHD9S3hqGHRqMo=) 3: 980FBF380C8E11EC899E3211C4F9AE02.roa (hash: 6PsJWrPCESS72Cgsphwc7pgkinbPzCBr6HjEWyJ7RGI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1100 (0x44c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: May 19 01:56:19 2024 GMT Not After : May 26 01:56:19 2024 GMT Subject: CN=66495c44-b796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:89:2d:76:b3:47:50:08:75:0b:64:2a:41:56: 7c:44:0a:b0:70:9f:5c:f7:90:f9:94:bf:24:03:56: 28:f2:09:4e:90:09:9d:e7:57:36:cc:be:32:1f:0b: 43:11:b8:90:87:1b:19:d2:98:d5:68:df:d1:96:a6: c8:d9:2c:e2:52:c4:3e:b5:c5:86:a7:e1:1a:67:b5: 84:d2:99:23:83:0c:6a:89:4f:87:7c:ed:8b:99:b5: e6:85:66:45:cc:dc:cf:f6:0f:15:68:88:58:54:b5: 9d:af:5d:8d:24:7e:46:d3:cb:23:40:5e:a3:90:fb: cf:38:7b:d5:d6:3b:01:2d:74:5f:0d:7b:ca:3e:d3: c5:8f:7a:b6:e9:e0:5b:e0:b8:8b:34:97:c2:09:0d: 5e:74:5d:93:30:05:55:c7:44:f5:2f:fa:22:ba:07: 36:d8:72:d6:a6:a4:57:f7:63:c7:4d:7f:b0:5c:7d: 37:4d:4e:f6:86:c4:5a:41:93:ab:f5:36:99:2a:65: 7a:2e:3f:69:d2:45:2d:6b:09:0f:5e:09:bd:b0:21: 42:b6:78:d8:e5:2a:91:e8:52:a4:37:13:80:4b:a0: a2:29:47:a0:a0:5c:b1:70:a2:ce:a6:ea:5f:8d:1b: 53:67:5b:4b:8c:7b:3d:c2:b9:7e:19:75:3c:8e:75: 81:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:F4:D9:0D:98:DC:BE:96:8A:B9:29:99:06:AD:04:3F:1B:7D:17:A8 X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:e5:f2:04:e9:27:fd:32:62:a9:92:86:ca:ee:b2:8b:e5:29: 2a:87:63:13:3b:b2:df:69:49:91:35:10:4a:92:3e:bb:4e:b4: c9:9b:e4:02:ec:f1:8a:8c:17:7a:80:f9:69:2a:34:73:b9:ce: fd:33:e3:54:a2:d0:91:7a:5f:1a:67:28:f3:d5:66:0b:a5:47: 5b:a3:e2:52:cb:12:cd:9b:28:7f:95:ca:97:ed:7b:e0:31:94: 02:72:71:da:20:98:32:15:45:69:3d:ea:ae:fc:9a:ab:10:34: 61:e4:66:93:1c:93:6b:a7:e2:75:5c:d8:7b:b2:2b:b2:a4:0e: 4d:19:31:b9:8a:8a:84:0d:81:6c:27:35:0a:ce:07:a8:9f:a2: 10:1e:e2:70:7b:bb:c4:21:17:13:a4:7b:ad:2e:0c:88:c0:35: f3:06:18:08:b2:16:c2:e6:92:2b:f8:8c:9f:32:74:a6:d3:36: 4f:49:81:3b:3c:5e:c3:1f:94:4d:9a:92:10:65:20:1f:23:d2: 10:48:0e:c8:93:4d:48:48:ab:5d:30:1c:65:61:53:07:53:3b: 4b:87:9a:2e:6b:95:88:d6:81:e9:ee:48:cd:e9:5a:78:0f:ba: ad:7f:4d:82:01:79:33:60:6c:77:c9:37:65:07:53:ea:f3:03: 77:f2:80:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjQwNTE5MDE1NjE5WhcNMjQwNTI2MDE1NjE5WjAYMRYwFAYD VQQDEw02NjQ5NWM0NC1iNzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24ktdrNHUAh1C2QqQVZ8RAqwcJ9c95D5lL8kA1Yo8glOkAmd51c2zL4yHwtD EbiQhxsZ0pjVaN/RlqbI2SziUsQ+tcWGp+EaZ7WE0pkjgwxqiU+HfO2LmbXmhWZF zNzP9g8VaIhYVLWdr12NJH5G08sjQF6jkPvPOHvV1jsBLXRfDXvKPtPFj3q26eBb 4LiLNJfCCQ1edF2TMAVVx0T1L/oiugc22HLWpqRX92PHTX+wXH03TU72hsRaQZOr 9TaZKmV6Lj9p0kUtawkPXgm9sCFCtnjY5SqR6FKkNxOAS6CiKUegoFyxcKLOpupf jRtTZ1tLjHs9wrl+GXU8jnWBaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH702Q2Y 3L6WirkpmQatBD8bfReoMB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN5fIE6Sf9MmKpkobK7rKL5Skqh2MTO7LfaUmRNRBKkj67TrTJm+QC 7PGKjBd6gPlpKjRzuc79M+NUotCRel8aZyjz1WYLpUdbo+JSyxLNmyh/lcqX7Xvg MZQCcnHaIJgyFUVpPequ/JqrEDRh5GaTHJNrp+J1XNh7siuypA5NGTG5ioqEDYFs JzUKzgeon6IQHuJwe7vEIRcTpHutLgyIwDXzBhgIshbC5pIr+IyfMnSm0zZPSYE7 PF7DH5RNmpIQZSAfI9IQSA7Ik01ISKtdMBxlYVMHUztLh5oua5WI1oHp7kjN6Vp4 D7qtf02CAXkzYGx3yTdlB1Pq8wN38oDv -----END CERTIFICATE-----Generated at Sun May 19 02:59:14 2024 by rpki-client on console-ams.rpki-client.org