$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: nJlTCmPqt6ZnJcAzBrpEKspVsAQSbY9iHghvvxkTVGc= Subject key identifier: 5D:A2:8A:5B:5B:49:DF:6A:3D:96:DB:71:E6:78:23:8A:B3:6F:0C:69 Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 031C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 0317 Signing time: Sun 19 May 2024 03:07:00 +0000 Manifest this update: Sun 19 May 2024 03:07:00 +0000 Manifest next update: Sun 26 May 2024 03:07:00 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: mhhybXi+gRv9a8YeBjFtr6fh2aFmZXGLp6yWuo68KXg=) 2: 5ADC253683EC11ECB7EC3B76C4F9AE02.roa (hash: AQ4JvRT0zfz0tOnN9Gn1iJAh7pWTPc79i+GWVTGuFxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 796 (0x31c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: May 19 03:07:00 2024 GMT Not After : May 26 03:07:00 2024 GMT Subject: CN=66496cd4-2d8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:46:00:69:60:dc:20:15:43:1f:8c:41:2c:fb: 72:fc:84:81:9c:ae:f6:ef:c1:7e:68:05:b1:f6:31: f1:df:93:04:24:f4:cd:a8:c7:df:20:f1:c7:80:5b: c0:9f:c9:4a:da:11:ec:e2:e8:6e:8e:0e:8d:b2:a4: 85:06:3b:3b:19:06:9d:27:e2:02:38:dd:f8:7f:38: 3c:e3:e4:d6:7c:a5:b6:37:57:5d:38:b4:01:83:3e: e2:9f:8b:71:6e:5e:67:a7:6a:28:97:73:81:13:fb: b2:f5:ee:2f:12:6c:7b:9e:4e:24:f3:b9:8c:3f:8b: c0:9c:c7:47:26:82:1f:6a:19:31:90:13:f8:61:8b: 64:4b:81:e8:43:62:97:26:cf:67:75:f0:5b:5e:50: 07:63:19:fa:70:ca:a6:98:18:9f:82:6d:83:3c:17: aa:6a:0f:3a:e1:16:88:2b:e9:53:88:c2:99:08:bb: fe:2f:aa:c9:a1:f6:85:8e:e9:ce:92:29:d1:d3:79: 79:21:0d:db:b8:b1:62:7f:98:9d:1d:1e:a6:81:2d: 4a:be:37:35:6b:63:f6:82:41:1f:d7:0c:7b:86:1f: 57:7d:48:12:c3:f2:45:81:a7:eb:8b:ea:d3:83:f5: 65:16:f8:2e:40:50:62:a4:bc:a5:57:eb:53:1e:78: bf:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A2:8A:5B:5B:49:DF:6A:3D:96:DB:71:E6:78:23:8A:B3:6F:0C:69 X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:d3:df:9e:0d:ab:1c:43:a9:c6:c7:0b:0a:43:61:88:31:95: c9:d2:a7:dc:ba:a2:4f:39:7e:3e:73:c6:6e:37:ef:92:1a:23: c6:1a:f1:c0:ab:7a:a7:23:6e:cb:6b:05:9d:33:37:5f:56:29: e7:34:41:91:dd:15:12:3b:f6:fd:d6:fc:5f:36:a1:05:c1:98: 91:b6:ec:c7:ff:e8:70:52:5c:ce:ef:c8:4c:be:19:d5:69:f3: 8c:c9:5d:ad:8b:eb:0d:b8:70:32:b7:51:bb:fd:a8:bd:69:c5: fe:3b:2b:ab:59:38:b9:a6:4d:2d:b1:f5:36:bc:3f:90:a4:d8: 44:16:36:aa:71:d9:07:81:a8:fa:e8:7c:3c:a3:6a:b4:9a:78: 19:94:ee:0c:04:42:33:4a:60:fd:5e:f8:85:ba:ea:33:45:05: e5:bf:dd:f2:59:ec:91:b7:76:d2:f0:fa:e2:45:56:a3:1c:74: db:b9:85:54:d0:5d:d0:d2:2e:10:1b:4f:7a:37:32:96:35:8a: 7b:91:55:c5:40:22:ab:2c:80:5b:84:76:76:05:07:b6:94:5b: 58:55:11:30:7f:df:ac:23:71:6c:01:fc:07:a5:bc:14:08:f0: ea:61:78:e6:b8:8c:96:e7:f9:d9:9a:af:e2:45:74:e8:da:2a: 0a:06:77:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjQwNTE5MDMwNzAwWhcNMjQwNTI2MDMwNzAwWjAYMRYwFAYD VQQDEw02NjQ5NmNkNC0yZDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEYAaWDcIBVDH4xBLPty/ISBnK7278F+aAWx9jHx35MEJPTNqMffIPHHgFvA n8lK2hHs4uhujg6NsqSFBjs7GQadJ+ICON34fzg84+TWfKW2N1ddOLQBgz7in4tx bl5np2ool3OBE/uy9e4vEmx7nk4k87mMP4vAnMdHJoIfahkxkBP4YYtkS4HoQ2KX Js9ndfBbXlAHYxn6cMqmmBifgm2DPBeqag864RaIK+lTiMKZCLv+L6rJofaFjunO kinR03l5IQ3buLFif5idHR6mgS1Kvjc1a2P2gkEf1wx7hh9XfUgSw/JFgafri+rT g/VlFvguQFBipLylV+tTHni/SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2iiltb Sd9qPZbbceZ4I4qzbwxpMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc09+eDascQ6nGxwsKQ2GIMZXJ0qfcuqJPOX4+c8ZuN++SGiPGGvHA q3qnI27LawWdMzdfVinnNEGR3RUSO/b91vxfNqEFwZiRtuzH/+hwUlzO78hMvhnV afOMyV2ti+sNuHAyt1G7/ai9acX+OyurWTi5pk0tsfU2vD+QpNhEFjaqcdkHgaj6 6Hw8o2q0mngZlO4MBEIzSmD9XviFuuozRQXlv93yWeyRt3bS8PriRVajHHTbuYVU 0F3Q0i4QG096NzKWNYp7kVXFQCKrLIBbhHZ2BQe2lFtYVREwf9+sI3FsAfwHpbwU CPDqYXjmuIyW5/nZmq/iRXTo2ioKBneL -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org