$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft File: L8Qw8eIVy9fgjyZDiDcDUALeMak.mft (raw, json) Hash identifier: Ju9inpA9eqHjkHbMOsMal0uWV6ZJz+4qBeto6fUoHqo= Subject key identifier: 5A:1E:C3:FE:9D:5C:E3:1B:63:51:0A:B4:FE:79:21:0F:44:AB:9C:BE Authority key identifier: 2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 Certificate issuer: /CN=A91CB8A3/serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft Manifest number: 01E1 Signing time: Sun 19 May 2024 04:17:32 +0000 Manifest this update: Sun 19 May 2024 04:17:31 +0000 Manifest next update: Sun 26 May 2024 04:17:31 +0000 Files and hashes: 1: L8Qw8eIVy9fgjyZDiDcDUALeMak.crl (hash: 571Nbhof2/4DVWcydWSlB2noAM/DM/eOkWMPxoM47Bo=) 2: D2E9BA7EFD1911EC9E748466C4F9AE02.roa (hash: DoDb58b9oib60xbehXb/xmUfGJSBbrfggKmeZI08ZRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8A3/serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Validity Not Before: May 19 04:17:31 2024 GMT Not After : May 26 04:17:31 2024 GMT Subject: CN=66497d5c-1cc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:0d:69:cf:50:63:31:29:4f:a3:3f:cd:67:8e: 09:ff:ff:e0:71:cc:3d:32:0d:ba:25:a3:7d:85:e5: f4:2d:da:69:0b:5d:21:89:4d:48:07:8b:c0:60:51: 8a:47:7c:3d:45:e4:33:65:88:79:d1:df:b4:0f:6d: 77:f7:ec:01:8d:47:0e:55:e5:fe:4b:81:87:5f:ce: eb:15:93:f4:7d:37:a8:f3:60:c7:3b:21:72:2c:91: 9b:fd:a3:fe:e1:2a:f9:34:dc:30:bd:87:32:26:08: 77:2a:43:64:5e:05:da:c2:d3:b5:2e:a1:97:41:cf: 8c:6a:7f:24:5b:f3:34:f4:be:3d:5b:44:76:d7:1f: 3e:ad:ed:f8:8e:ff:50:20:2d:89:7c:44:96:7c:0b: 3c:92:f4:91:ed:18:71:b6:68:27:43:8f:24:f5:43: 9a:63:70:96:57:38:98:6a:05:f4:d9:40:b1:d6:71: 58:82:a2:ca:10:80:14:a8:8b:81:50:24:95:21:0f: ac:2d:44:ef:c7:02:23:bf:cf:d7:db:fb:bb:3f:2b: 23:13:df:38:eb:e3:92:03:a8:f4:80:fc:ff:de:97: d8:f3:fa:60:67:55:d3:57:95:f4:87:4c:7a:4b:4e: 08:85:93:f2:a3:78:1c:6f:d2:68:65:2e:9d:5b:23: a2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:1E:C3:FE:9D:5C:E3:1B:63:51:0A:B4:FE:79:21:0F:44:AB:9C:BE X509v3 Authority Key Identifier: keyid:2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:55:82:30:2d:5f:6a:2a:b9:80:0a:13:1c:db:d0:56:e7:40: 3a:e1:b5:0a:3b:1e:48:21:2a:43:7f:43:b9:0d:74:b8:a1:8d: 31:d1:2a:3b:56:9d:98:59:a3:49:32:57:ec:54:0f:ce:a3:52: 92:44:cf:47:8f:5d:e1:65:7b:ec:02:dc:71:ab:34:ec:0e:85: 6d:87:da:91:77:d2:17:f0:eb:14:0f:99:04:b6:70:c0:2f:c2: 2c:a7:66:71:70:6a:d9:f8:b1:41:ba:28:df:a3:9d:3e:96:5e: 6a:bc:26:16:dc:93:11:e6:dd:0b:5d:8f:74:3a:da:10:8d:ef: 78:c5:4c:ab:14:73:9e:4b:cc:e8:44:a6:7e:d5:dc:a2:d4:45: 83:dd:34:ea:36:33:b9:34:5d:8e:08:c7:a9:b0:72:6f:fe:fe: b5:c6:4c:d8:da:fa:e2:91:d9:f8:34:96:64:14:13:94:8b:df: 0d:2f:9f:9e:0e:63:d1:e3:1f:66:4b:a0:19:70:1c:33:cb:62: 96:2d:18:9d:5e:db:43:be:b0:58:55:d2:c4:17:e5:91:99:bc: 51:7d:55:85:a6:44:65:54:d5:f3:15:54:1a:b6:80:44:2a:d1: 4c:2c:39:ea:6a:61:4f:a1:ee:4a:08:31:df:5b:86:e7:03:3a: 5b:b2:64:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QTMxMTAvBgNVBAUTKDJGQzQzMEYxRTIxNUNCRDdFMDhGMjY0Mzg4MzcwMzUw MDJERTMxQTkwHhcNMjQwNTE5MDQxNzMxWhcNMjQwNTI2MDQxNzMxWjAYMRYwFAYD VQQDEw02NjQ5N2Q1Yy0xY2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/A1pz1BjMSlPoz/NZ44J///gccw9Mg26JaN9heX0LdppC10hiU1IB4vAYFGK R3w9ReQzZYh50d+0D2139+wBjUcOVeX+S4GHX87rFZP0fTeo82DHOyFyLJGb/aP+ 4Sr5NNwwvYcyJgh3KkNkXgXawtO1LqGXQc+Man8kW/M09L49W0R21x8+re34jv9Q IC2JfESWfAs8kvSR7RhxtmgnQ48k9UOaY3CWVziYagX02UCx1nFYgqLKEIAUqIuB UCSVIQ+sLUTvxwIjv8/X2/u7PysjE9846+OSA6j0gPz/3pfY8/pgZ1XTV5X0h0x6 S04IhZPyo3gcb9JoZS6dWyOiOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFoew/6d XOMbY1EKtP55IQ9Eq5y+MB8GA1UdIwQYMBaAFC/EMPHiFcvX4I8mQ4g3A1AC3jGp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhBMy85NjY1MEYzOEZE MTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5ZmdqeVpEaURjRFVBTGVN YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UXc4ZUlWeTlmZ2p5WkRpRGNEVUFMZU1hay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhBMy85NjY1MEYzOEZEMTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5 ZmdqeVpEaURjRFVBTGVNYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIVYIwLV9qKrmAChMc29BW50A64bUKOx5IISpDf0O5DXS4oY0x0So7 Vp2YWaNJMlfsVA/Oo1KSRM9Hj13hZXvsAtxxqzTsDoVth9qRd9IX8OsUD5kEtnDA L8Isp2ZxcGrZ+LFBuijfo50+ll5qvCYW3JMR5t0LXY90OtoQje94xUyrFHOeS8zo RKZ+1dyi1EWD3TTqNjO5NF2OCMepsHJv/v61xkzY2vrikdn4NJZkFBOUi98NL5+e DmPR4x9mS6AZcBwzy2KWLRidXttDvrBYVdLEF+WRmbxRfVWFpkRlVNXzFVQatoBE KtFMLDnqamFPoe5KCDHfW4bnAzpbsmSD -----END CERTIFICATE-----Generated at Sun May 19 05:08:06 2024 by rpki-client on console-ams.rpki-client.org