$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft File: n2xg5qKluzMFUknUcjhHf4nhOnA.mft (raw, json) Hash identifier: fFBkdV2JcuHR0rp8bgIVqbLqfczIY1QSdE3SDXoxLwU= Subject key identifier: 0D:91:19:40:9B:F2:92:26:D4:3D:89:E9:AA:A6:C0:67:95:6D:89:52 Authority key identifier: 9F:6C:60:E6:A2:A5:BB:33:05:52:49:D4:72:38:47:7F:89:E1:3A:70 Certificate issuer: /CN=A91D1E30/serialNumber=9F6C60E6A2A5BB33055249D47238477F89E13A70 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft Manifest number: D9 Signing time: Sun 19 May 2024 06:03:41 +0000 Manifest this update: Sun 19 May 2024 06:03:40 +0000 Manifest next update: Sun 26 May 2024 06:03:40 +0000 Files and hashes: 1: n2xg5qKluzMFUknUcjhHf4nhOnA.crl (hash: JVfebBowRBYKtbRWDw6aEeIOmTynv+kvDY+P/kCIXwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.crl rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E30/serialNumber=9F6C60E6A2A5BB33055249D47238477F89E13A70 Validity Not Before: May 19 06:03:40 2024 GMT Not After : May 26 06:03:40 2024 GMT Subject: CN=6649963c-2e24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cb:6e:51:9a:ec:4b:50:84:8f:69:a2:ab:5a: 8d:94:2c:36:5b:e6:88:ed:56:f7:34:58:d2:be:d3: 57:46:e4:1b:82:a8:cc:f0:64:8d:bf:5d:70:e3:09: 9e:0c:bc:ff:bc:8c:14:3d:80:91:76:f0:b5:12:ec: 0b:4c:23:3a:da:80:84:d2:b6:18:3d:23:67:b2:b2: b0:94:c4:fc:9b:ae:a6:c7:1a:0f:26:8b:46:86:e6: 87:ce:81:86:a5:f9:d8:b4:1d:05:50:45:08:79:42: 4c:26:58:14:8a:6a:a6:39:e1:66:ab:e0:e8:89:e8: fd:a4:bb:d6:10:5c:66:02:6f:26:c6:59:8b:e9:66: 1b:06:3a:69:1a:0a:4c:07:67:40:c2:50:82:21:c6: 3d:3e:65:e9:e5:07:9f:18:6b:e6:42:9b:dc:99:84: 95:46:b6:6a:f6:fd:03:3a:ce:58:f5:b3:41:78:22: ef:f8:24:b2:b0:e8:ea:fb:03:b8:f4:de:11:85:87: 4a:62:bd:86:85:49:3a:d4:2a:1b:73:1b:7a:3b:5f: 45:96:12:f9:57:25:49:74:25:c0:4e:84:0c:97:4f: d0:1e:85:39:28:4f:cb:db:34:21:11:11:f2:e6:4e: 9c:82:ea:7a:56:87:e2:08:49:af:f6:33:b0:d1:69: 52:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:91:19:40:9B:F2:92:26:D4:3D:89:E9:AA:A6:C0:67:95:6D:89:52 X509v3 Authority Key Identifier: keyid:9F:6C:60:E6:A2:A5:BB:33:05:52:49:D4:72:38:47:7F:89:E1:3A:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:58:33:84:d6:9f:82:fe:3c:4e:81:66:91:1a:34:29:db:a1: 54:ea:84:af:1f:52:7f:d1:b5:35:25:27:b0:17:1e:99:4d:c2: 82:f3:ab:f6:62:94:2d:b0:a9:0e:b5:9c:e2:8e:01:75:3f:33: ac:22:d8:53:1a:af:8a:dd:de:06:b1:b0:6e:10:91:78:8b:65: 91:68:3d:84:13:96:6a:0f:4d:c7:c1:e4:b9:2f:09:e2:29:ed: 3a:6b:5b:c7:be:61:40:b9:75:1b:0d:92:82:44:6b:25:45:3e: 1d:34:1e:6f:fe:86:76:cd:b6:10:7e:c1:d7:26:c8:92:a8:27: 27:72:f1:be:3f:73:78:ce:fd:5a:fe:da:3f:10:bd:eb:01:3b: c9:18:0a:fa:50:8f:30:14:bf:f9:08:38:a8:b0:24:c2:5e:ca: 70:a3:01:9d:e6:d5:b4:af:bd:d0:8e:29:59:8e:a5:81:55:e3: 12:d2:6e:c4:b9:0d:d3:2e:9e:77:00:cc:1f:fa:66:84:46:02: aa:0a:2c:94:72:6f:47:4a:05:dc:ff:bf:a8:6e:53:b3:db:93: d9:9a:58:a4:5f:cd:79:f0:5d:e5:ae:85:ce:f0:6d:41:af:dd: a0:fe:e3:b7:64:ed:be:d7:6d:24:d9:07:b8:ea:a8:e8:01:66: 79:54:a8:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFMzAxMTAvBgNVBAUTKDlGNkM2MEU2QTJBNUJCMzMwNTUyNDlENDcyMzg0NzdG ODlFMTNBNzAwHhcNMjQwNTE5MDYwMzQwWhcNMjQwNTI2MDYwMzQwWjAYMRYwFAYD VQQDEw02NjQ5OTYzYy0yZTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8tuUZrsS1CEj2miq1qNlCw2W+aI7Vb3NFjSvtNXRuQbgqjM8GSNv11w4wme DLz/vIwUPYCRdvC1EuwLTCM62oCE0rYYPSNnsrKwlMT8m66mxxoPJotGhuaHzoGG pfnYtB0FUEUIeUJMJlgUimqmOeFmq+Doiej9pLvWEFxmAm8mxlmL6WYbBjppGgpM B2dAwlCCIcY9PmXp5QefGGvmQpvcmYSVRrZq9v0DOs5Y9bNBeCLv+CSysOjq+wO4 9N4RhYdKYr2GhUk61Cobcxt6O19FlhL5VyVJdCXAToQMl0/QHoU5KE/L2zQhERHy 5k6cgup6VofiCEmv9jOw0WlSjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2RGUCb 8pIm1D2J6aqmwGeVbYlSMB8GA1UdIwQYMBaAFJ9sYOaipbszBVJJ1HI4R3+J4Tpw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUUzMC81Q0E1MDUyQ0M5 RDcxMUVEOTJBMTM4MkNDNEY5QUUwMi9uMnhnNXFLbHV6TUZVa25VY2poSGY0bmhP bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yeGc1cUtsdXpNRlVrblVjamhIZjRuaE9uQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUUzMC81Q0E1MDUyQ0M5RDcxMUVEOTJBMTM4MkNDNEY5QUUwMi9uMnhnNXFLbHV6 TUZVa25VY2poSGY0bmhPbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMWDOE1p+C/jxOgWaRGjQp26FU6oSvH1J/0bU1JSewFx6ZTcKC86v2 YpQtsKkOtZzijgF1PzOsIthTGq+K3d4GsbBuEJF4i2WRaD2EE5ZqD03HweS5Lwni Ke06a1vHvmFAuXUbDZKCRGslRT4dNB5v/oZ2zbYQfsHXJsiSqCcncvG+P3N4zv1a /to/EL3rATvJGAr6UI8wFL/5CDiosCTCXspwowGd5tW0r73QjilZjqWBVeMS0m7E uQ3TLp53AMwf+maERgKqCiyUcm9HSgXc/7+oblOz25PZmlikX8158F3lroXO8G1B r92g/uO3ZO2+120k2Qe46qjoAWZ5VKgR -----END CERTIFICATE-----Generated at Sun May 19 08:25:08 2024 by rpki-client on console-ams.rpki-client.org