$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft File: dddb2lG8oAYPcIETI0xBReREQho.mft (raw, json) Hash identifier: s4NG/gP342fTI9j66VnOqY67uYbY7wrb0a4/uNQRhWI= Subject key identifier: A6:B6:5E:E0:79:EA:C7:08:40:59:6E:EC:4C:2D:AA:6E:45:89:A1:CB Authority key identifier: 75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A Certificate issuer: /CN=A91CBB48/serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Certificate serial: 078B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft Manifest number: 0786 Signing time: Sat 18 May 2024 22:12:15 +0000 Manifest this update: Sat 18 May 2024 22:12:15 +0000 Manifest next update: Sat 25 May 2024 22:12:15 +0000 Files and hashes: 1: dddb2lG8oAYPcIETI0xBReREQho.crl (hash: z4ypHmRvGLnpezYnoutmC4ZQdeft/8biCl0/kdJj9rk=) 2: 96AC80A2CBB411EA99BB9A4DC4F9AE02.roa (hash: eM0/ieW68pT/1mH+cnfWrxugWCGoyMvD9LF24IpYcvg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1931 (0x78b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB48/serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Validity Not Before: May 18 22:12:15 2024 GMT Not After : May 25 22:12:15 2024 GMT Subject: CN=664927bf-6d12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:32:13:a7:21:d8:32:ee:d0:a3:e8:31:f4:2a: df:c1:4f:e9:a4:42:cf:b1:7b:9c:8e:5c:cb:5d:ca: c5:9e:7c:4a:f1:74:e6:e7:ed:c6:b9:df:34:2f:ee: 15:45:5e:f1:4c:da:5c:ad:a4:62:df:76:75:81:6c: cb:38:b1:06:f3:c4:81:65:1e:e4:ab:49:ba:e6:3d: d1:9d:d7:5b:ec:98:50:5b:ae:5e:1b:b5:cf:01:59: 3c:1d:a1:28:28:04:0c:89:77:c7:5a:31:00:11:5c: 39:08:bc:e2:88:7c:7d:a0:31:a4:0d:6a:7a:d7:2f: 51:cb:44:9b:c7:4f:36:83:78:4a:98:56:18:86:18: aa:dc:3d:26:46:06:f5:65:8f:2c:29:10:75:62:19: b1:98:04:b0:ae:bf:0f:3c:e3:40:c9:80:bc:d0:7e: f2:da:92:fe:af:f6:35:9e:05:bb:85:15:08:c6:f6: 08:db:ed:9c:e7:8b:10:bd:c6:38:31:d9:6a:9b:e6: 29:c3:57:d0:cd:09:cf:48:48:38:4e:be:45:a9:87: 33:af:2c:1b:45:c1:86:96:50:15:2c:6c:d3:9d:a8: 6c:4f:18:bc:1d:5f:30:a6:80:d7:89:ff:d7:38:4e: bf:78:0e:e5:91:0f:2d:da:0e:e8:21:ff:d1:c1:93: df:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B6:5E:E0:79:EA:C7:08:40:59:6E:EC:4C:2D:AA:6E:45:89:A1:CB X509v3 Authority Key Identifier: keyid:75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:2c:11:d2:50:c6:80:19:7d:b1:eb:3c:ad:fb:8a:6a:c4:07: b2:aa:6f:26:22:0c:12:09:1b:30:4c:27:61:fe:fb:c3:0e:5c: 53:97:8b:3b:91:6e:af:13:79:69:5a:88:2d:65:ad:ec:84:de: 30:5d:7e:ed:1b:36:cf:a8:63:01:80:13:96:cc:a5:01:62:05: f4:9f:92:6b:71:ca:b5:bc:4d:a5:0c:6c:9e:d2:67:bc:69:ad: 8a:ce:89:ec:ef:06:c0:cc:2e:c3:b5:a2:ec:ef:7e:02:2e:c2: fd:91:b4:00:2f:3b:04:5d:fa:c9:3b:85:2b:9a:6a:12:ed:fb: 5f:e1:ff:29:a6:5a:0b:61:45:a3:93:22:00:85:6b:60:65:9d: cf:83:d9:68:ea:9b:9b:5b:e4:10:b5:b3:79:90:3f:02:0d:17: 68:e4:46:b6:4a:10:b9:74:e2:85:19:37:32:d5:4c:7a:2f:47: 48:b0:72:c7:cf:a3:15:ca:26:5a:c8:46:6d:16:3f:40:56:c2: 16:4f:b5:0d:43:30:63:f5:99:70:ce:77:cc:cb:39:ac:53:86: fd:f8:72:81:16:7b:2e:5a:ee:38:d6:df:22:c6:1d:f4:c1:e5: 4f:05:f8:7e:0f:d9:2f:98:f7:50:22:d1:06:41:f1:ce:4b:c4: b9:63:71:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCNDgxMTAvBgNVBAUTKDc1RDc1QkRBNTFCQ0EwMDYwRjcwODExMzIzNEM0MTQ1 RTQ0NDQyMUEwHhcNMjQwNTE4MjIxMjE1WhcNMjQwNTI1MjIxMjE1WjAYMRYwFAYD VQQDEw02NjQ5MjdiZi02ZDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jITpyHYMu7Qo+gx9CrfwU/ppELPsXucjlzLXcrFnnxK8XTm5+3Gud80L+4V RV7xTNpcraRi33Z1gWzLOLEG88SBZR7kq0m65j3Rnddb7JhQW65eG7XPAVk8HaEo KAQMiXfHWjEAEVw5CLziiHx9oDGkDWp61y9Ry0Sbx082g3hKmFYYhhiq3D0mRgb1 ZY8sKRB1YhmxmASwrr8PPONAyYC80H7y2pL+r/Y1ngW7hRUIxvYI2+2c54sQvcY4 Mdlqm+Ypw1fQzQnPSEg4Tr5FqYczrywbRcGGllAVLGzTnahsTxi8HV8wpoDXif/X OE6/eA7lkQ8t2g7oIf/RwZPfiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKa2XuB5 6scIQFlu7Ewtqm5FiaHLMB8GA1UdIwQYMBaAFHXXW9pRvKAGD3CBEyNMQUXkREIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkI0OC85MEM0NzkxQ0NC QjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9BWVBjSUVUSTB4QlJlUkVR aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkZGIybEc4b0FZUGNJRVRJMHhCUmVSRVFoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkI0OC85MEM0NzkxQ0NCQjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9B WVBjSUVUSTB4QlJlUkVRaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOLBHSUMaAGX2x6zyt+4pqxAeyqm8mIgwSCRswTCdh/vvDDlxTl4s7 kW6vE3lpWogtZa3shN4wXX7tGzbPqGMBgBOWzKUBYgX0n5Jrccq1vE2lDGye0me8 aa2Kzons7wbAzC7DtaLs734CLsL9kbQALzsEXfrJO4UrmmoS7ftf4f8pploLYUWj kyIAhWtgZZ3Pg9lo6pubW+QQtbN5kD8CDRdo5Ea2ShC5dOKFGTcy1Ux6L0dIsHLH z6MVyiZayEZtFj9AVsIWT7UNQzBj9ZlwznfMyzmsU4b9+HKBFnsuWu441t8ixh30 weVPBfh+D9kvmPdQItEGQfHOS8S5Y3E+ -----END CERTIFICATE-----Generated at Sun May 19 00:30:21 2024 by rpki-client on console-ams.rpki-client.org