$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: o3VyNrvjFVdo2j4TFg+bZeVyG4IWi+12b2plJuz/wmk= Subject key identifier: 69:62:20:4B:D5:7F:51:7E:FB:6E:89:29:34:4F:C6:A9:EA:C6:A6:FA Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 0544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 053B Signing time: Sun 19 May 2024 00:59:00 +0000 Manifest this update: Sun 19 May 2024 00:58:59 +0000 Manifest next update: Sun 26 May 2024 00:58:59 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: gDkrJgiDSqkhKgzq4JEEfMoha3vgOQfwXA0gFPvCZb4=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: /vQQ5lhFzVE5J0DcEdqHnJDb6NDLcF26MBF4BLF50z4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1348 (0x544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: May 19 00:58:59 2024 GMT Not After : May 26 00:58:59 2024 GMT Subject: CN=66494ed3-188b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0d:9e:74:27:81:fd:ac:7a:98:c9:ea:39:ed: 90:23:66:f7:ae:a8:29:eb:81:d9:86:8e:7e:2a:3f: 89:e4:2f:3d:f1:c6:9e:27:30:9b:cc:1e:61:c3:48: 8e:0d:08:c3:32:8a:9d:93:bc:be:81:71:a1:39:0d: 2d:03:1b:fb:77:87:a3:ec:6b:6d:65:7d:54:6c:f3: 8d:0c:70:71:7b:7b:13:60:87:cd:bd:e0:e3:3f:1a: 9e:66:dc:e0:f1:5d:e4:b2:64:ff:a1:0e:2e:b7:4b: 41:1f:ed:55:75:61:99:c5:8e:ef:3f:46:88:a8:1d: bb:c1:72:78:a8:ff:48:d5:78:f5:cd:8d:7d:70:b3: 66:fc:3c:16:6b:25:82:b7:43:75:ec:18:e0:59:cd: dc:0f:ec:ed:11:9d:64:34:fb:d4:78:6f:b8:92:81: 1b:38:fa:34:6f:43:a1:bd:8e:da:ca:2a:05:c3:03: 83:4d:cf:ed:6f:38:93:db:d8:df:a4:b0:d5:48:f4: 0c:84:a5:84:65:ce:1d:01:6c:a1:3e:7e:9b:64:58: 7f:be:7f:5e:49:d0:59:f2:bb:ad:14:6a:33:43:77: 13:19:5e:a8:8c:58:b1:b2:96:68:9c:b5:9a:3e:42: 9e:90:92:a4:6d:c4:05:9d:61:07:88:f4:cf:3e:7f: f3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:62:20:4B:D5:7F:51:7E:FB:6E:89:29:34:4F:C6:A9:EA:C6:A6:FA X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:94:47:d9:d9:2d:08:5b:d4:54:ca:25:e8:bb:8a:46:e7:fb: ca:67:46:49:cb:3e:71:19:60:f4:d7:5d:2e:54:e7:a8:e0:ec: 06:7e:8f:74:fd:4f:67:fa:27:e3:6f:d4:ad:f6:fb:4c:fd:f9: ee:d6:7c:eb:ad:f1:1a:79:2c:49:fa:c2:ff:b1:97:ee:31:6a: a2:f8:16:f7:f0:a0:08:34:e4:bd:41:89:a9:0d:d2:52:0b:17: 9b:c5:d7:f5:ce:63:62:6d:2e:65:74:dd:82:84:af:e8:bb:99: 1d:43:3e:aa:be:c6:b3:29:f9:1f:0b:84:73:06:97:f0:5c:64: dd:d2:56:83:57:89:b3:63:52:02:d6:4e:a1:5e:26:05:18:57: f9:d0:66:ca:45:a3:ce:48:fb:d0:07:f3:3d:35:6f:f4:31:b8: a8:9e:24:cf:7e:4b:56:f0:13:87:62:41:2c:b5:9d:29:41:1e: 6f:14:56:20:75:f8:e2:d6:73:7b:61:04:a5:50:13:41:74:9f: db:96:1f:21:1b:de:e2:00:44:d1:f5:c9:69:9c:b7:7e:3f:9a: cf:50:60:93:17:44:1e:e2:db:37:20:a7:57:0a:3c:22:b5:35: 2c:7c:53:b9:70:f1:eb:d1:88:f6:73:c5:f9:31:c8:44:41:7c: 6a:da:a4:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjQwNTE5MDA1ODU5WhcNMjQwNTI2MDA1ODU5WjAYMRYwFAYD VQQDEw02NjQ5NGVkMy0xODhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQ2edCeB/ax6mMnqOe2QI2b3rqgp64HZho5+Kj+J5C898caeJzCbzB5hw0iO DQjDMoqdk7y+gXGhOQ0tAxv7d4ej7GttZX1UbPONDHBxe3sTYIfNveDjPxqeZtzg 8V3ksmT/oQ4ut0tBH+1VdWGZxY7vP0aIqB27wXJ4qP9I1Xj1zY19cLNm/DwWayWC t0N17BjgWc3cD+ztEZ1kNPvUeG+4koEbOPo0b0OhvY7ayioFwwODTc/tbziT29jf pLDVSPQMhKWEZc4dAWyhPn6bZFh/vn9eSdBZ8rutFGozQ3cTGV6ojFixspZonLWa PkKekJKkbcQFnWEHiPTPPn/zQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGliIEvV f1F++26JKTRPxqnqxqb6MB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRlEfZ2S0IW9RUyiXou4pG5/vKZ0ZJyz5xGWD0110uVOeo4OwGfo90 /U9n+ifjb9St9vtM/fnu1nzrrfEaeSxJ+sL/sZfuMWqi+Bb38KAINOS9QYmpDdJS Cxebxdf1zmNibS5ldN2ChK/ou5kdQz6qvsazKfkfC4RzBpfwXGTd0laDV4mzY1IC 1k6hXiYFGFf50GbKRaPOSPvQB/M9NW/0MbioniTPfktW8BOHYkEstZ0pQR5vFFYg dfji1nN7YQSlUBNBdJ/blh8hG97iAETR9clpnLd+P5rPUGCTF0Qe4ts3IKdXCjwi tTUsfFO5cPHr0Yj2c8X5MchEQXxq2qQA -----END CERTIFICATE-----Generated at Sun May 19 01:47:16 2024 by rpki-client on console-ams.rpki-client.org