$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft File: rdlBjw-bVfO3N2oJPbEdutOu_sg.mft (raw, json) Hash identifier: YORy+VqGIzcHqvnZ0AugwFstBjRzvF7VEeM+WJ90q2A= Subject key identifier: 5A:51:19:A4:19:19:01:19:AC:D6:EB:CF:EB:D4:CB:27:45:B7:7E:65 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0E1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft Manifest number: 0D33 Signing time: Sat 18 May 2024 18:54:10 +0000 Manifest this update: Sat 18 May 2024 18:54:10 +0000 Manifest next update: Sat 25 May 2024 18:54:10 +0000 Files and hashes: 1: rdlBjw-bVfO3N2oJPbEdutOu_sg.crl (hash: dUMEruVIf8l9UJenvMfD05sCkzfrRXovWZtMT5bSXJY=) 2: C735E33E1CB511EAB25B4768C4F9AE02.roa (hash: xsRvYHkt1kSJe/5WADtn9IbTwxTSTZmiIotthIwgGiQ=) 3: 59C7E67C77CC11EAB764ED34C4F9AE02.roa (hash: 1Zg3uJs0B9SBEAEBnlt+lBVE6s62+7/QDv6bVIsWqaU=) 4: 8C9FFE4C0F2F11EE85C26C11C4F9AE02.roa (hash: 3RupdV0E3AJ2Yrqp3j0pmtVBbkL6edsyZAqwmmp5q2E=) 5: 1B88FC66823D11EC8E3CB427C4F9AE02.roa (hash: Rl4wvZ1bQ+rW5Jss4ptaS97YoQDCBwchiKCYjFlSZFQ=) 6: 2C3F5F0C1CB711EAAA03506DC4F9AE02.roa (hash: Nsyuz4pVBmCSLGABPSKpBQa3yU72+R4F7kivIeQsp5M=) 7: E79C4936420D11EC89D7C163C4F9AE02.roa (hash: QqIyGCefAxLeqvom8feWqLCBzkG8r/+a3a+PgxerWrc=) 8: 5767371863FE11ED9287A15DC4F9AE02.roa (hash: FSlO93QBFy0yB2m4MihFIG6+n59WsoW9XnBM2VF+zXg=) 9: B3B97C46510311EDA562C34DC4F9AE02.roa (hash: RIPvfK8QUF5wmav7mk9nMb7DDj6cSNmzn+eFWQglssU=) 10: 0134DE8CC77211EC9B377B2DC4F9AE02.roa (hash: oHIaP2NJ8qCLYstJJ6+GfE8mMKYeymY1s7uux8FYeyI=) 11: 849EBBA60CCA11ED97820077C4F9AE02.roa (hash: +7m2OTWuKLLYbb41sDTiQAOToUAeHchnEjf9Iro+vW4=) 12: B86FBE4A2E3611EB84E66039C4F9AE02.roa (hash: R4wrT8zc1K+DV4H+c/LYTsZfoq1c/8r9FMd3l3K1fsM=) 13: AB2FDD4CA56911EA8F159D7BC4F9AE02.roa (hash: mCmcaYB22H4c0Nk62d6wSTOP7zL9gZg8L5pxFEpRgDM=) 14: 27F85F401B0811EEA3313C43C4F9AE02.roa (hash: MHsKA6rSmP/5ljZEq6IWVKWYpT2ymttT4WvGNnnCU0M=) 15: 8B0EC9621D0611EDBAB65333C4F9AE02.roa (hash: M696+5UFpF5kX1zKZ1iE9zRBar+hYBuMMv70MsqSzFc=) 16: FB9C6A1A77CA11EA95ECC830C4F9AE02.roa (hash: 0nN9mR6Movdpj9mFe9MyLylah55uw7sKp19/HTYnsn0=) 17: 624A8CB0A75211EDB46F8967C4F9AE02.roa (hash: DNAussOAhhKTgiB9XEna+amUcXb0mthrv74FzgccW7M=) 18: 640C18A214AD11EEAA685687C4F9AE02.roa (hash: V+Z1scvo5UHb+Ra3Ka2uleBikTmA8/0+Tgf2EQamPk4=) 19: DA05FC5C58A311EC952D4D56C4F9AE02.roa (hash: gNaJnFa9XuSHzmfL6Uwro9V8guRgZQ3ViR+mA1En7q0=) 20: 706D3EA4140211EB87D7320FC4F9AE02.roa (hash: OR4FotIF7u5M2RKgTvF/yMCSACYQcBm42uVHareeY0s=) 21: AE9742429B5711EB8E3BEB19C4F9AE02.roa (hash: L3UG8gL8J7aKAeycb8PsA3dBmQsih+G0FiTvQ7phQ3U=) 22: 5A4C001A77CC11EAB764ED34C4F9AE02.roa (hash: VjkFtnXBH2zgR/7GAmCLy2av4peQDcQ6/XsDR3llBbs=) 23: 6ACBF170CC4C11ED8B54A36FC4F9AE02.roa (hash: aulda/IDBjINvkVmDSR5SF4+9AqLl56cfZfOgOUn0Sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3613 (0xe1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: May 18 18:54:10 2024 GMT Not After : May 25 18:54:10 2024 GMT Subject: CN=6648f952-f8cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bf:f6:f2:c8:ca:01:9c:07:67:1e:e2:8b:4b: a4:1b:28:e7:a6:e5:be:d6:6a:a6:4c:79:de:b7:1c: 12:4f:c2:d8:64:2d:34:30:e9:51:71:e2:69:78:3b: f7:aa:87:45:32:ec:2b:a3:4d:1b:5b:9f:9e:47:79: cc:84:ab:9e:af:f7:40:b5:e7:f4:18:d8:7f:22:cd: f2:de:02:e8:3a:77:57:05:09:69:a1:bb:05:9e:72: 9e:d0:1f:8f:b9:6f:64:0c:8f:bd:49:86:d0:49:12: 4c:9f:d1:d5:ac:98:52:9f:09:38:b4:ee:90:2b:c8: 78:9f:7e:c9:9e:91:29:b4:31:08:0f:ba:7a:d2:fb: 2a:45:fe:81:5f:37:ab:f1:3d:dc:7d:2a:7d:ce:9c: 43:81:88:7c:b4:2d:0b:71:c5:84:73:a2:28:f9:97: 51:b1:8c:88:43:35:b4:70:27:20:8e:37:84:3e:3f: 56:32:3d:e8:ca:75:d7:00:4b:97:86:3e:e2:3f:2d: fc:b8:72:6b:79:59:99:ab:6c:2d:63:60:c5:1f:69: ac:9e:e1:49:61:f3:f3:c8:7a:d8:b8:11:dd:e6:6b: 30:a6:fe:a8:7b:5d:11:f7:2b:51:c6:f0:78:34:cf: 9f:d3:dc:71:2c:78:94:26:d4:3d:d6:86:8f:53:24: 3a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:51:19:A4:19:19:01:19:AC:D6:EB:CF:EB:D4:CB:27:45:B7:7E:65 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b8:c3:30:7a:d4:9c:b4:95:cd:04:f3:24:ca:af:15:22:43: c2:fc:36:29:5a:66:2b:4a:35:f9:7b:b9:a4:8a:68:9f:09:5b: ed:b3:10:57:73:8b:dc:8c:0a:6a:6c:92:cc:0f:a0:7e:8c:71: 4a:8a:28:f8:8e:52:0b:68:7d:bb:95:e5:9d:3d:0a:0d:27:2b: 0b:af:98:df:0d:fa:c3:aa:9e:d5:8b:48:5d:58:c5:d6:4e:54: 63:fc:b0:2e:68:50:29:67:2b:20:dd:22:fe:c3:fa:d1:f9:c7: 6d:e6:c0:e5:7a:0c:4e:92:0f:bb:29:33:54:08:8c:12:91:1e: d1:2b:63:6b:96:ad:44:d4:af:4a:fd:24:dd:6a:5a:06:db:33: b5:1d:e3:36:d7:a2:ff:2e:14:49:fd:14:b7:f3:67:a0:4b:24: 72:56:27:15:e3:32:69:27:bd:c9:1d:ab:ea:d1:29:17:26:30: 69:24:b2:db:c6:60:bb:a5:b1:a5:3c:9c:e8:82:92:0e:59:32: 4a:29:17:5a:1f:50:7c:ba:b9:9c:ee:ef:9a:fd:2b:11:65:bf: b3:f0:45:c7:17:ce:47:a7:ff:ad:80:ef:de:ff:86:d6:60:f9: 98:5b:f2:39:2e:37:cc:d1:07:f6:cd:87:2d:37:d1:8b:ab:9e: 03:ee:e2:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjQwNTE4MTg1NDEwWhcNMjQwNTI1MTg1NDEwWjAYMRYwFAYD VQQDEw02NjQ4Zjk1Mi1mOGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAur/28sjKAZwHZx7ii0ukGyjnpuW+1mqmTHnetxwST8LYZC00MOlRceJpeDv3 qodFMuwro00bW5+eR3nMhKuer/dAtef0GNh/Is3y3gLoOndXBQlpobsFnnKe0B+P uW9kDI+9SYbQSRJMn9HVrJhSnwk4tO6QK8h4n37JnpEptDEID7p60vsqRf6BXzer 8T3cfSp9zpxDgYh8tC0LccWEc6Io+ZdRsYyIQzW0cCcgjjeEPj9WMj3oynXXAEuX hj7iPy38uHJreVmZq2wtY2DFH2msnuFJYfPzyHrYuBHd5mswpv6oe10R9ytRxvB4 NM+f09xxLHiUJtQ91oaPUyQ6uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpRGaQZ GQEZrNbrz+vUyydFt35lMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xRDY2RDQ4NkQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZm TzNOMm9KUGJFZHV0T3Vfc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAruMMwetSctJXNBPMkyq8VIkPC/DYpWmYrSjX5e7mkimifCVvtsxBX c4vcjApqbJLMD6B+jHFKiij4jlILaH27leWdPQoNJysLr5jfDfrDqp7Vi0hdWMXW TlRj/LAuaFApZysg3SL+w/rR+cdt5sDlegxOkg+7KTNUCIwSkR7RK2Nrlq1E1K9K /STdaloG2zO1HeM216L/LhRJ/RS382egSyRyVicV4zJpJ73JHavq0SkXJjBpJLLb xmC7pbGlPJzogpIOWTJKKRdaH1B8urmc7u+a/SsRZb+z8EXHF85Hp/+tgO/e/4bW YPmYW/I5LjfM0Qf2zYctN9GLq54D7uLD -----END CERTIFICATE-----Generated at Sat May 18 20:16:06 2024 by rpki-client on console-ams.rpki-client.org