$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft File: AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft (raw, json) Hash identifier: j021wCMvXp5cPduRYHg+kSu7Fciahgl57udrBNB1YaM= Subject key identifier: 80:23:16:2B:F3:90:7B:FB:B6:1B:C0:C7:F4:2D:79:98:7A:48:B9:54 Authority key identifier: 00:02:41:49:0E:3F:20:98:F7:9D:5C:93:03:7E:BF:F2:B9:56:CF:D7 Certificate issuer: /CN=A91CA1A6/serialNumber=000241490E3F2098F79D5C93037EBFF2B956CFD7 Certificate serial: 0671 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AAJBSQ4_IJj3nVyTA36_8rlWz9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft Manifest number: 065E Signing time: Sat 18 May 2024 23:37:42 +0000 Manifest this update: Sat 18 May 2024 23:37:41 +0000 Manifest next update: Sat 25 May 2024 23:37:41 +0000 Files and hashes: 1: AAJBSQ4_IJj3nVyTA36_8rlWz9c.crl (hash: t4fkY6Sh09ho5A7gftn7mH4nLyk5VRbIuaJX3zHtLD4=) 2: EEE4C606B5D411ECA20B840AC4F9AE02.roa (hash: 8ouB4+ypz6psaqMpEgKk87Hwdrvm6cOEDZkXTxYkNtU=) 3: 910A49AAB5CC11ECAE337E78C4F9AE02.roa (hash: HYJ+7z69MIraClPpIQO6ffUZkveZt22iINEv/WRg3NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.crl rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AAJBSQ4_IJj3nVyTA36_8rlWz9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1649 (0x671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA1A6/serialNumber=000241490E3F2098F79D5C93037EBFF2B956CFD7 Validity Not Before: May 18 23:37:41 2024 GMT Not After : May 25 23:37:41 2024 GMT Subject: CN=66493bc5-1151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b0:d2:6b:70:41:ba:b8:f4:f0:d1:d4:93:94: 61:ca:a2:2a:5f:ea:28:f1:a9:48:55:a4:a4:f2:16: 3b:45:65:4a:cd:df:ba:0f:a8:9b:98:39:ce:3f:2b: d2:4c:88:ec:e8:c7:92:e4:20:f0:b1:e3:1c:bd:b5: 4d:8d:28:b3:d4:71:6b:66:6d:50:05:04:3d:3f:4b: 27:e3:6d:24:69:a8:e8:e1:bf:21:c1:e1:6f:5a:c5: dc:4e:81:90:25:67:ae:9f:3c:00:2b:7e:be:25:8c: f3:b0:9a:0b:c2:a3:8f:61:9f:0d:f0:ee:55:e2:28: 92:30:b7:2c:3e:d1:07:f4:59:53:9b:b3:fb:4e:5a: dd:c6:69:49:4d:c3:68:2c:bc:79:1e:3e:46:53:6a: df:88:58:6d:d9:6a:82:c8:9c:9f:7d:c3:f4:fd:5a: a1:ce:95:8c:ca:a8:b9:c7:8c:06:1e:35:11:69:fa: a4:7f:1d:00:dc:ae:53:c3:e3:0e:26:39:e8:7c:f7: 0e:96:dc:f2:80:62:76:08:06:ae:bd:a1:62:53:1b: da:09:5b:06:d5:0a:b3:d5:c9:3b:85:ce:ed:b0:da: 18:31:e2:c7:9c:f2:39:fc:05:a9:23:8c:d4:1c:8c: ad:63:ab:00:25:b8:0f:b3:e9:4f:4a:2c:fa:e7:b1: b8:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:23:16:2B:F3:90:7B:FB:B6:1B:C0:C7:F4:2D:79:98:7A:48:B9:54 X509v3 Authority Key Identifier: keyid:00:02:41:49:0E:3F:20:98:F7:9D:5C:93:03:7E:BF:F2:B9:56:CF:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AAJBSQ4_IJj3nVyTA36_8rlWz9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:85:23:3e:9b:98:db:7c:f2:a5:00:7d:06:70:73:ac:dc:50: 34:c1:4a:d2:30:2b:d3:7c:d6:72:7c:d3:32:ed:61:73:0f:2f: 0d:a0:00:ce:28:70:81:81:52:48:26:63:19:00:0c:ab:69:65: 0e:e7:23:16:3c:b8:b8:72:eb:cb:9d:b8:33:01:82:16:f8:89: 47:57:76:8e:9e:af:24:37:44:58:6f:3f:c1:27:dd:de:3a:72: f9:ba:1d:24:58:32:2d:33:fd:79:17:ad:b3:c0:2c:29:14:62: af:fe:1d:93:4b:79:08:ed:9e:53:c0:ee:a6:dc:c8:9e:bb:88: 8a:27:ba:90:0c:e9:b4:34:50:e3:96:3b:31:87:dd:bb:05:f8: f0:6b:a0:a8:95:73:2e:38:f1:ec:8c:9d:c1:1d:c7:74:4e:58: 1d:26:5b:76:ff:f6:ec:51:05:d7:c0:92:e4:63:69:73:7d:74: 2c:38:a1:74:26:c9:45:2e:50:70:78:7d:e4:8b:00:fc:98:34: 36:6d:75:78:c9:f7:c0:73:ea:ca:47:17:34:14:b6:c1:27:7b: 12:7b:99:b2:fe:4f:50:3f:8a:a2:fd:84:01:2b:0b:1e:de:48: 1f:ac:93:b3:48:05:92:31:30:3d:41:91:7d:63:df:15:3d:5c: 48:df:e4:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ExQTYxMTAvBgNVBAUTKDAwMDI0MTQ5MEUzRjIwOThGNzlENUM5MzAzN0VCRkYy Qjk1NkNGRDcwHhcNMjQwNTE4MjMzNzQxWhcNMjQwNTI1MjMzNzQxWjAYMRYwFAYD VQQDEw02NjQ5M2JjNS0xMTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrDSa3BBurj08NHUk5RhyqIqX+oo8alIVaSk8hY7RWVKzd+6D6ibmDnOPyvS TIjs6MeS5CDwseMcvbVNjSiz1HFrZm1QBQQ9P0sn420kaajo4b8hweFvWsXcToGQ JWeunzwAK36+JYzzsJoLwqOPYZ8N8O5V4iiSMLcsPtEH9FlTm7P7TlrdxmlJTcNo LLx5Hj5GU2rfiFht2WqCyJyffcP0/VqhzpWMyqi5x4wGHjURafqkfx0A3K5Tw+MO JjnofPcOltzygGJ2CAauvaFiUxvaCVsG1Qqz1ck7hc7tsNoYMeLHnPI5/AWpI4zU HIytY6sAJbgPs+lPSiz657G4CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAjFivz kHv7thvAx/QteZh6SLlUMB8GA1UdIwQYMBaAFAACQUkOPyCY951ckwN+v/K5Vs/X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTFBNi8zOEQ5M0UxRTNE MzAxMUVCQjNCMkQ2NkVDNEY5QUUwMi9BQUpCU1E0X0lKajNuVnlUQTM2XzhybFd6 OWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FBSkJTUTRfSUpqM25WeVRBMzZfOHJsV3o5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTFBNi8zOEQ5M0UxRTNEMzAxMUVCQjNCMkQ2NkVDNEY5QUUwMi9BQUpCU1E0X0lK ajNuVnlUQTM2XzhybFd6OWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIhSM+m5jbfPKlAH0GcHOs3FA0wUrSMCvTfNZyfNMy7WFzDy8NoADO KHCBgVJIJmMZAAyraWUO5yMWPLi4cuvLnbgzAYIW+IlHV3aOnq8kN0RYbz/BJ93e OnL5uh0kWDItM/15F62zwCwpFGKv/h2TS3kI7Z5TwO6m3Mieu4iKJ7qQDOm0NFDj ljsxh927Bfjwa6ColXMuOPHsjJ3BHcd0TlgdJlt2//bsUQXXwJLkY2lzfXQsOKF0 JslFLlBweH3kiwD8mDQ2bXV4yffAc+rKRxc0FLbBJ3sSe5my/k9QP4qi/YQBKwse 3kgfrJOzSAWSMTA9QZF9Y98VPVxI3+Qn -----END CERTIFICATE-----Generated at Sun May 19 00:30:21 2024 by rpki-client on console-ams.rpki-client.org