$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.mft File: 9pu293YHOZ_TQrEkyvjejeR_cw8.mft (raw, json) Hash identifier: TX9hZ7mZWD4Rj44i7cA81W965fKFyhuTmo20hfbF5SQ= Subject key identifier: B9:7D:FF:1C:27:8C:5D:10:EC:72:BA:4B:04:EF:E0:85:B7:DD:C3:69 Authority key identifier: F6:9B:B6:F7:76:07:39:9F:D3:42:B1:24:CA:F8:DE:8D:E4:7F:73:0F Certificate issuer: /CN=A91CBB1B/serialNumber=F69BB6F77607399FD342B124CAF8DE8DE47F730F Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pu293YHOZ_TQrEkyvjejeR_cw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.mft Manifest number: F7 Signing time: Sun 19 May 2024 05:46:09 +0000 Manifest this update: Sun 19 May 2024 05:46:08 +0000 Manifest next update: Sun 26 May 2024 05:46:08 +0000 Files and hashes: 1: 9pu293YHOZ_TQrEkyvjejeR_cw8.crl (hash: 8FVSc9326OO+nJ1BNuG2h7uySp1/0f+7ygWcMKjSU2A=) 2: A606B22CA65211EDB3A5967CC4F9AE02.roa (hash: xyz/02ryzl16W4qrT07+J5xASQFDNUQalvA+EHdQsOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.crl rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pu293YHOZ_TQrEkyvjejeR_cw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB1B/serialNumber=F69BB6F77607399FD342B124CAF8DE8DE47F730F Validity Not Before: May 19 05:46:08 2024 GMT Not After : May 26 05:46:08 2024 GMT Subject: CN=66499220-652a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fa:00:a0:76:64:4a:f3:7c:d4:d9:31:0a:e0: 6f:55:a8:42:af:26:ea:4d:1d:c8:d8:e1:f4:73:3f: 61:7a:bc:e5:78:5d:81:95:7c:e5:f0:b9:5b:a7:f8: ab:be:de:7d:3c:73:ff:96:47:9c:92:0d:8c:6f:5d: c9:c0:32:24:0a:45:5b:7a:8c:40:75:39:9a:bb:5f: ab:60:35:e7:de:86:64:4c:2d:a1:a0:c8:42:49:a6: 5b:d1:34:a6:35:e5:05:b8:98:e2:77:fe:b5:b8:67: a5:ed:e2:75:c1:f2:1e:a3:1e:28:33:80:b0:f6:9d: 0d:c4:54:df:80:3a:54:49:a4:cf:44:33:7d:af:45: 95:b4:ea:18:5f:96:25:58:c7:94:7c:12:b6:a8:ab: 6b:85:a6:d8:a1:76:1a:34:87:63:9b:1c:78:f6:ed: 7f:57:00:78:73:e1:28:f1:7a:1d:05:c2:0f:2e:1d: c3:eb:b8:42:f6:61:bc:2a:2b:60:32:e6:e6:8d:38: bc:2c:14:b3:13:f8:b5:4f:5f:b6:de:43:03:54:f3: f4:ca:6f:75:d0:72:8e:d0:a6:2c:21:47:00:a4:36: a6:8f:a8:2b:ae:98:58:07:5f:64:dd:63:0d:93:40: 6a:96:5d:d7:66:56:98:c2:85:25:14:31:8b:79:91: 0c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:7D:FF:1C:27:8C:5D:10:EC:72:BA:4B:04:EF:E0:85:B7:DD:C3:69 X509v3 Authority Key Identifier: keyid:F6:9B:B6:F7:76:07:39:9F:D3:42:B1:24:CA:F8:DE:8D:E4:7F:73:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pu293YHOZ_TQrEkyvjejeR_cw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:79:e4:b7:bd:00:9b:d1:ef:fc:e8:fb:f5:14:8a:08:14:1d: 7f:9f:c4:fd:0e:5a:00:18:d8:59:de:6a:e3:2f:cb:a1:20:ba: 1e:4d:47:89:c8:09:e5:96:63:9a:43:bb:53:60:4f:4a:86:e2: 0c:2c:d5:1d:83:ad:32:e6:5e:90:cf:fa:6b:26:00:dd:1f:5e: b0:80:ed:03:8a:f6:3f:d5:4b:27:f3:35:56:41:63:1d:12:4e: de:34:ad:d1:ea:85:32:e8:c5:e7:d5:55:5c:e8:e9:34:b8:b6: e7:0a:7e:b8:66:7f:1e:41:f3:ea:e1:b8:e3:e9:fd:16:c7:2a: bd:2e:24:12:a5:da:f9:78:01:44:48:2e:98:31:99:38:82:b7: 86:79:58:5e:12:0b:25:7a:1e:35:4e:27:f1:70:7f:b4:44:c1: d8:2c:47:be:9e:66:d5:ce:d3:a8:a1:28:fa:91:ea:86:b1:08: 84:41:e3:17:e4:96:19:f4:35:07:02:9b:68:b4:be:04:90:5b: 33:1f:42:21:46:c3:0f:08:bd:9e:61:8e:4f:5a:7a:52:01:b5: 96:62:9c:a3:bf:eb:85:62:55:ed:ce:00:60:11:23:88:ba:1c: 47:d0:4f:fe:ae:7e:9d:a7:aa:86:54:39:74:6a:fd:d9:dc:bd: 2f:54:60:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCMUIxMTAvBgNVBAUTKEY2OUJCNkY3NzYwNzM5OUZEMzQyQjEyNENBRjhERThE RTQ3RjczMEYwHhcNMjQwNTE5MDU0NjA4WhcNMjQwNTI2MDU0NjA4WjAYMRYwFAYD VQQDEw02NjQ5OTIyMC02NTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/oAoHZkSvN81NkxCuBvVahCrybqTR3I2OH0cz9herzleF2BlXzl8Llbp/ir vt59PHP/lkeckg2Mb13JwDIkCkVbeoxAdTmau1+rYDXn3oZkTC2hoMhCSaZb0TSm NeUFuJjid/61uGel7eJ1wfIeox4oM4Cw9p0NxFTfgDpUSaTPRDN9r0WVtOoYX5Yl WMeUfBK2qKtrhabYoXYaNIdjmxx49u1/VwB4c+Eo8XodBcIPLh3D67hC9mG8Kitg MubmjTi8LBSzE/i1T1+23kMDVPP0ym910HKO0KYsIUcApDamj6grrphYB19k3WMN k0Bqll3XZlaYwoUlFDGLeZEM0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLl9/xwn jF0Q7HK6SwTv4IW33cNpMB8GA1UdIwQYMBaAFPabtvd2Bzmf00KxJMr43o3kf3MP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkIxQi8yQUQxMzk4NkE2 NEYxMUVEOTgwMkNBNzZDNEY5QUUwMi85cHUyOTNZSE9aX1RRckVreXZqZWplUl9j dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlwdTI5M1lIT1pfVFFyRWt5dmplamVSX2N3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkIxQi8yQUQxMzk4NkE2NEYxMUVEOTgwMkNBNzZDNEY5QUUwMi85cHUyOTNZSE9a X1RRckVreXZqZWplUl9jdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATeeS3vQCb0e/86Pv1FIoIFB1/n8T9DloAGNhZ3mrjL8uhILoeTUeJ yAnllmOaQ7tTYE9KhuIMLNUdg60y5l6Qz/prJgDdH16wgO0DivY/1Usn8zVWQWMd Ek7eNK3R6oUy6MXn1VVc6Ok0uLbnCn64Zn8eQfPq4bjj6f0Wxyq9LiQSpdr5eAFE SC6YMZk4greGeVheEgsleh41TifxcH+0RMHYLEe+nmbVztOooSj6keqGsQiEQeMX 5JYZ9DUHAptotL4EkFszH0IhRsMPCL2eYY5PWnpSAbWWYpyjv+uFYlXtzgBgESOI uhxH0E/+rn6dp6qGVDl0av3Z3L0vVGAO -----END CERTIFICATE-----Generated at Sun May 19 06:14:36 2024 by rpki-client on console-ams.rpki-client.org