$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft File: AJko8LjNMO2gVjCoumdOdiqdKDM.mft (raw, json) Hash identifier: pNcfqWVHUrCNvERb//YXr46uo4UcUdd7OieD5I0N5pQ= Subject key identifier: D2:E1:04:6A:83:BD:4A:BF:1F:2F:B7:BB:89:89:74:8A:B1:F7:46:94 Authority key identifier: 00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 Certificate issuer: /CN=A91CE5A6/serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft Manifest number: 7D Signing time: Sun 19 May 2024 07:17:20 +0000 Manifest this update: Sun 19 May 2024 07:17:19 +0000 Manifest next update: Sun 26 May 2024 07:17:19 +0000 Files and hashes: 1: AJko8LjNMO2gVjCoumdOdiqdKDM.crl (hash: uVwTtkgWUkt5qKvBTQ9y1rFFNXE5KG+qJcCOGGyF5fo=) 2: EC56413A5B4B11EE9A031C81C4F9AE02.roa (hash: Hh0/f6NytDdeyTGJ1ZKz3ERIyV3jDbMOhWYWKs/vNpU=) 3: 7022F6EE5B4611EE9093F11EC4F9AE02.roa (hash: e0200w8zEsZ5WKCdPwZ5CedunKufXXzWVfu8693DHy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6/serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Validity Not Before: May 19 07:17:19 2024 GMT Not After : May 26 07:17:19 2024 GMT Subject: CN=6649a780-10c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c0:b3:e2:db:3b:32:dc:7c:79:a0:2b:b0:3b: e7:bb:0f:58:ec:d1:89:21:ae:8c:58:13:c7:59:a3: 4a:33:95:02:08:4c:08:1b:f5:aa:a3:17:d4:21:4b: 37:c0:54:45:11:30:b9:a2:2f:8b:f2:43:fc:9a:e3: f0:b4:7f:08:a5:ac:06:aa:d0:14:0e:94:fd:66:b9: 3a:8b:2e:0e:61:df:aa:6c:ad:74:d3:4a:b5:0f:ae: bd:8a:ac:bc:75:c9:fc:2d:13:3d:17:ab:cc:e8:4b: 2d:6d:87:41:93:b7:5c:15:bc:7a:c5:b1:db:3d:cc: 69:d0:13:cd:be:39:9e:4e:f5:4c:1c:ef:bc:d2:3c: 1a:ef:65:18:1f:4b:d5:06:ce:38:c7:5a:2a:f2:17: 82:21:11:9e:9a:e1:a7:05:41:3b:a9:d1:fa:1b:c9: cc:ed:cc:1e:0d:c6:26:39:af:9a:3b:a9:f2:21:2e: e0:1e:60:4b:df:5a:e9:5c:c0:97:90:d8:f8:c3:0d: 80:e0:ac:16:7d:da:1a:cb:a2:a3:30:e8:b3:89:af: 54:95:c7:dc:c8:e3:6d:61:ab:82:f9:f5:42:73:80: f0:17:6c:1e:4e:fd:14:b0:75:5d:b6:bd:07:4e:7d: 54:ea:00:31:5c:4d:a4:64:af:33:aa:48:b8:e6:98: 00:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E1:04:6A:83:BD:4A:BF:1F:2F:B7:BB:89:89:74:8A:B1:F7:46:94 X509v3 Authority Key Identifier: keyid:00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:e2:0f:cb:33:22:0a:3d:d1:23:7f:74:80:b0:c0:5e:0b:a3: ec:99:0d:49:ad:a9:1c:bb:56:09:eb:34:7e:49:8c:9e:c8:89: c8:98:18:3a:07:5e:c7:c8:2d:87:5f:22:67:c0:d0:21:1b:92: 0c:15:ef:47:1c:f2:30:ae:ad:c9:5c:34:e3:b4:3b:3b:b8:3a: 1c:68:e9:24:d3:49:b3:ad:d8:68:a9:bb:43:9b:aa:f0:9f:db: 4e:ee:8c:fd:01:ae:ba:1d:8d:b7:1c:b8:f5:32:b4:ec:af:0f: 0b:44:81:b4:04:6c:0c:81:ba:96:fc:97:bd:e6:2e:7f:46:45: 9f:49:05:5e:7f:d3:83:51:72:07:21:79:aa:e6:e3:49:95:54: 5d:7c:2b:b1:da:e5:82:34:fe:c3:8d:00:fb:c0:20:62:87:d8: d2:95:3b:5a:79:5c:e0:9c:06:51:7f:39:e9:65:53:1e:8b:48: f3:2a:7d:52:cd:47:df:f2:36:74:02:b8:ef:c1:20:ce:e8:ea: 76:8f:c1:25:cb:2f:78:88:af:80:e4:a9:6b:17:31:71:7a:cb: fd:3e:f7:92:8a:c6:4d:d0:dc:d7:7f:47:58:06:89:7c:bf:9d: a1:cc:e2:38:1c:98:89:26:8c:d7:ba:f5:18:45:31:ff:55:26: d5:c4:86:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDAwOTkyOEYwQjhDRDMwRURBMDU2MzBBOEJBNjc0RTc2 MkE5RDI4MzMwHhcNMjQwNTE5MDcxNzE5WhcNMjQwNTI2MDcxNzE5WjAYMRYwFAYD VQQDEw02NjQ5YTc4MC0xMGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cCz4ts7Mtx8eaArsDvnuw9Y7NGJIa6MWBPHWaNKM5UCCEwIG/WqoxfUIUs3 wFRFETC5oi+L8kP8muPwtH8IpawGqtAUDpT9Zrk6iy4OYd+qbK1000q1D669iqy8 dcn8LRM9F6vM6EstbYdBk7dcFbx6xbHbPcxp0BPNvjmeTvVMHO+80jwa72UYH0vV Bs44x1oq8heCIRGemuGnBUE7qdH6G8nM7cweDcYmOa+aO6nyIS7gHmBL31rpXMCX kNj4ww2A4KwWfdoay6KjMOizia9UlcfcyONtYauC+fVCc4DwF2weTv0UsHVdtr0H Tn1U6gAxXE2kZK8zqki45pgAAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLhBGqD vUq/Hy+3u4mJdIqx90aUMB8GA1UdIwQYMBaAFACZKPC4zTDtoFYwqLpnTnYqnSgz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9CMzc0OTcxMDVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9BSmtvOExqTk1PMmdWakNvdW1kT2RpcWRL RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FKa284TGpOTU8yZ1ZqQ291bWRPZGlxZEtETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9CMzc0OTcxMDVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9BSmtvOExqTk1P MmdWakNvdW1kT2RpcWRLRE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe4g/LMyIKPdEjf3SAsMBeC6PsmQ1Jrakcu1YJ6zR+SYyeyInImBg6 B17HyC2HXyJnwNAhG5IMFe9HHPIwrq3JXDTjtDs7uDocaOkk00mzrdhoqbtDm6rw n9tO7oz9Aa66HY23HLj1MrTsrw8LRIG0BGwMgbqW/Je95i5/RkWfSQVef9ODUXIH IXmq5uNJlVRdfCux2uWCNP7DjQD7wCBih9jSlTtaeVzgnAZRfznpZVMei0jzKn1S zUff8jZ0ArjvwSDO6Op2j8Elyy94iK+A5KlrFzFxesv9PveSisZN0NzXf0dYBol8 v52hzOI4HJiJJozXuvUYRTH/VSbVxIbl -----END CERTIFICATE-----Generated at Sun May 19 08:26:44 2024 by rpki-client on console-fra.rpki-client.org