$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft File: esDADw_KR57kZeT39UXoyUmT1hw.mft (raw, json) Hash identifier: GARlrz4zIsFPU/+TwT8smQWlGanzSnRFc+kumkSJF4w= Subject key identifier: C5:71:FE:FA:08:61:CD:6D:2C:D2:B3:B1:5A:65:58:A7:BC:23:C8:57 Authority key identifier: 7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C Certificate issuer: /CN=A91D1691/serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Certificate serial: 2373 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft Manifest number: 234E Signing time: Sat 18 May 2024 16:08:58 +0000 Manifest this update: Sat 18 May 2024 16:08:58 +0000 Manifest next update: Sat 25 May 2024 16:08:58 +0000 Files and hashes: 1: esDADw_KR57kZeT39UXoyUmT1hw.crl (hash: py+zlyCZoF2t85R9L8dbZ6i6lZXsOq1sqDSFEmYf1AY=) 2: BEB0F47E878211EEAE0BD437C4F9AE02.roa (hash: g7dH7dbdQ1lQq1sfWBZ5H+rmh8uDZsvwW4ydwCirp9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9075 (0x2373) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691/serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Validity Not Before: May 18 16:08:58 2024 GMT Not After : May 25 16:08:58 2024 GMT Subject: CN=6648d29a-ddac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:45:51:d9:49:7a:a8:75:93:cc:04:c3:99:8a: 57:3e:39:4b:01:e0:13:fb:21:e5:be:04:80:b0:9e: bd:96:1f:4f:f0:01:42:72:56:8b:26:90:aa:2a:ef: 95:bf:56:4b:45:fd:58:5d:c0:54:21:9c:bd:31:1a: c6:56:38:5b:2c:87:16:bb:8d:d4:4e:10:88:ca:53: 3a:b7:80:c1:df:07:f5:cf:a5:0e:ba:75:c7:1a:ed: b8:bc:28:16:13:c5:d3:da:b9:6d:43:b4:c5:9c:eb: 5c:55:bf:0b:38:f8:cc:ee:53:07:df:8c:24:be:03: 12:8b:66:10:66:01:42:85:c0:b7:53:d2:38:c7:7d: 95:55:86:57:f5:57:86:c5:bb:d9:18:45:9f:ca:6a: 61:6a:e5:a4:33:56:77:0e:8b:2c:74:42:33:b3:12: 04:4d:e1:3c:16:fe:74:15:37:18:6f:5d:d9:f5:0f: b8:de:4c:bc:7e:a2:a7:a1:53:fc:a5:08:d7:bc:16: 36:6c:97:5b:89:9f:2e:a8:6f:49:46:97:cf:47:d9: f9:14:45:f6:69:5c:91:b7:6a:2b:3c:55:fb:ec:f8: 29:81:80:e7:af:11:54:69:fc:fc:31:b6:51:a3:45: 20:3b:b8:0b:a2:2f:13:8f:53:ae:9c:fd:3d:66:04: ef:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:71:FE:FA:08:61:CD:6D:2C:D2:B3:B1:5A:65:58:A7:BC:23:C8:57 X509v3 Authority Key Identifier: keyid:7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:d9:fe:93:df:ad:50:c2:24:06:1d:89:1a:ec:28:2f:ba:f0: a6:dc:b9:af:f5:14:7f:f2:41:05:0b:e9:da:57:fc:b9:9b:91: 00:81:af:e3:b6:c0:91:ea:59:8d:c1:5f:45:d6:6a:4f:11:bf: 2f:d9:b9:dd:35:8b:86:51:d5:b0:fc:1c:ab:da:4c:35:e0:fe: a4:37:50:24:c8:5c:86:e5:e6:1f:d5:ae:7f:bf:ca:a4:d4:2e: 16:9e:1f:32:20:8b:db:8c:ab:dc:33:12:8b:a7:20:83:5f:e5: 1f:ca:3a:c9:27:42:5e:90:53:64:a3:6e:e7:c8:ba:ef:08:6a: 1c:77:47:c1:81:4a:da:97:08:3c:c7:f2:6f:3d:a9:b1:42:9c: 20:fa:83:18:ae:69:ee:b1:1a:9e:b2:75:bc:3f:d5:c2:61:6d: 03:fb:86:52:7e:23:db:56:81:6f:d2:40:ee:1e:aa:6d:51:19: d5:54:9a:e6:3f:dd:07:16:62:20:e1:99:ea:28:91:d5:49:29: 11:d7:2a:d7:fe:96:21:32:d6:7f:40:fc:c9:3e:39:fb:93:99: 2b:70:53:d9:ec:fb:5d:5d:b8:1c:ee:ce:31:16:fe:68:f5:4c: 92:63:c4:65:3c:e4:57:7b:1c:07:5e:6c:50:ba:c6:0c:de:53: 55:1f:ec:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKDdBQzBDMDBGMEZDQTQ3OUVFNDY1RTRGN0Y1NDVFOEM5 NDk5M0Q2MUMwHhcNMjQwNTE4MTYwODU4WhcNMjQwNTI1MTYwODU4WjAYMRYwFAYD VQQDEw02NjQ4ZDI5YS1kZGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkVR2Ul6qHWTzATDmYpXPjlLAeAT+yHlvgSAsJ69lh9P8AFCclaLJpCqKu+V v1ZLRf1YXcBUIZy9MRrGVjhbLIcWu43UThCIylM6t4DB3wf1z6UOunXHGu24vCgW E8XT2rltQ7TFnOtcVb8LOPjM7lMH34wkvgMSi2YQZgFChcC3U9I4x32VVYZX9VeG xbvZGEWfymphauWkM1Z3DossdEIzsxIETeE8Fv50FTcYb13Z9Q+43ky8fqKnoVP8 pQjXvBY2bJdbiZ8uqG9JRpfPR9n5FEX2aVyRt2orPFX77PgpgYDnrxFUafz8MbZR o0UgO7gLoi8Tj1OunP09ZgTv2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVx/voI Yc1tLNKzsVplWKe8I8hXMB8GA1UdIwQYMBaAFHrAwA8Pykee5GXk9/VF6MlJk9Yc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81QUZDMjY5MjY1 MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1N2taZVQzOVVYb3lVbVQx aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzREFEd19LUjU3a1plVDM5VVhveVVtVDFody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81QUZDMjY5MjY1MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1 N2taZVQzOVVYb3lVbVQxaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd2f6T361QwiQGHYka7CgvuvCm3Lmv9RR/8kEFC+naV/y5m5EAga/j tsCR6lmNwV9F1mpPEb8v2bndNYuGUdWw/Byr2kw14P6kN1AkyFyG5eYf1a5/v8qk 1C4Wnh8yIIvbjKvcMxKLpyCDX+UfyjrJJ0JekFNko27nyLrvCGocd0fBgUralwg8 x/JvPamxQpwg+oMYrmnusRqesnW8P9XCYW0D+4ZSfiPbVoFv0kDuHqptURnVVJrm P90HFmIg4ZnqKJHVSSkR1yrX/pYhMtZ/QPzJPjn7k5krcFPZ7PtdXbgc7s4xFv5o 9UySY8RlPORXexwHXmxQusYM3lNVH+yj -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org