$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft File: Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft (raw, json) Hash identifier: /eus27jSkk5zE6MzRwNEnFoSoyY7SWOVIEVBThEdTl4= Subject key identifier: 9A:A5:FA:F4:2D:DC:08:15:7D:DC:D0:86:C5:6B:B6:44:29:8D:89:C0 Authority key identifier: 02:9F:82:12:43:0A:8D:D7:E7:95:4F:EC:31:3F:15:DA:47:CB:44:DD Certificate issuer: /CN=A91D2FC0/serialNumber=029F8212430A8DD7E7954FEC313F15DA47CB44DD Certificate serial: 0A39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft Manifest number: 0A31 Signing time: Sat 18 May 2024 20:32:53 +0000 Manifest this update: Sat 18 May 2024 20:32:52 +0000 Manifest next update: Sat 25 May 2024 20:32:52 +0000 Files and hashes: 1: Ap-CEkMKjdfnlU_sMT8V2kfLRN0.crl (hash: 8qLnLgNWi6VcYd79tiBlx9hjIgi/Af+QkVdoEKMtmKE=) 2: 81D0374C475111EA82F8B821C4F9AE02.roa (hash: WtyrulsdejF5XDbIrnH7eySluYuKPV92/ol6mKYzbjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.crl rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2617 (0xa39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2FC0/serialNumber=029F8212430A8DD7E7954FEC313F15DA47CB44DD Validity Not Before: May 18 20:32:52 2024 GMT Not After : May 25 20:32:52 2024 GMT Subject: CN=66491075-8b17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:22:0b:d7:b7:9c:91:3f:7b:39:ca:bd:8d:8f: 7c:d0:89:18:47:90:9c:db:0f:aa:a2:db:6f:60:a9: 1b:fc:3c:d4:3d:0d:1f:74:c8:a5:05:d1:60:7a:64: 78:d0:e9:86:5e:3a:a0:9e:1a:7c:7d:08:57:8b:8a: c3:7a:59:ed:9a:1a:ea:93:ab:c0:84:ff:57:a9:3a: 5f:96:87:bf:50:86:26:02:01:05:8a:06:16:bd:84: 9b:06:fa:f5:a9:f4:09:6a:05:2b:d8:d5:ec:dc:ec: a2:55:18:e3:dc:72:e2:65:cf:ca:75:3a:27:68:ae: 33:8c:c9:e1:56:99:96:5e:05:f0:95:a4:3f:20:75: a2:fe:b2:61:93:f3:32:89:57:17:a7:a5:eb:41:21: 06:71:89:98:f0:31:37:37:b7:d1:75:34:1e:8c:94: c9:39:60:69:8b:7c:66:a0:ed:67:73:36:39:96:c7: 89:76:18:8b:03:03:c3:aa:5a:6c:ef:39:78:ff:1b: 89:32:c2:6d:e2:d0:83:71:ea:e1:f7:69:7f:87:ab: 4d:c5:d9:98:12:b1:84:dd:fc:2c:61:da:65:37:ce: a0:40:09:8e:0e:9e:e9:63:b0:2c:f5:a7:61:fa:3f: 8b:ce:75:39:f2:da:54:ac:a2:12:81:0c:9b:5e:d7: eb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A5:FA:F4:2D:DC:08:15:7D:DC:D0:86:C5:6B:B6:44:29:8D:89:C0 X509v3 Authority Key Identifier: keyid:02:9F:82:12:43:0A:8D:D7:E7:95:4F:EC:31:3F:15:DA:47:CB:44:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:8b:5d:16:d4:24:b7:99:dc:0e:54:9b:50:7a:c9:02:9c:aa: f6:3b:30:b2:af:40:9e:dd:8b:57:86:6c:04:15:95:64:34:90: 37:dc:a7:1b:7f:2c:6c:2a:ce:1e:be:66:c6:d7:40:23:d0:30: 81:e9:7d:7c:c5:70:50:c0:77:1b:24:00:54:f0:14:d9:f7:19: 3d:93:ff:e4:1b:17:4d:39:8f:86:a8:ff:ba:3e:53:76:29:b4: 76:37:15:75:4a:f2:db:d0:cc:b5:18:f8:0e:2c:62:e1:71:dc: a5:9d:c3:6e:6c:85:e8:8b:28:2c:ed:51:e9:28:ff:13:6f:6a: 66:66:38:65:cb:bc:73:9b:55:74:58:37:cb:fa:88:dc:49:d0: 8d:2f:1c:5d:4f:1b:bb:ed:80:17:3b:32:31:aa:a6:77:c4:57: 5d:c8:5b:62:e3:74:d5:e6:50:b4:0f:e7:1c:d7:92:24:0e:87: 65:00:b7:42:bd:cd:9f:b2:e0:d6:a7:f8:f7:b5:d5:1a:64:59: c7:32:ab:99:93:71:35:da:d4:a9:0c:0a:82:bc:89:d2:07:9d: 34:b2:fe:31:f5:50:b9:f2:cb:09:74:ca:44:87:1d:8c:3c:65: f2:9c:9f:1b:ad:70:e0:fb:bc:12:09:d1:48:63:c2:05:4a:22: 50:85:37:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJGQzAxMTAvBgNVBAUTKDAyOUY4MjEyNDMwQThERDdFNzk1NEZFQzMxM0YxNURB NDdDQjQ0REQwHhcNMjQwNTE4MjAzMjUyWhcNMjQwNTI1MjAzMjUyWjAYMRYwFAYD VQQDEw02NjQ5MTA3NS04YjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSIL17eckT97Ocq9jY980IkYR5Cc2w+qottvYKkb/DzUPQ0fdMilBdFgemR4 0OmGXjqgnhp8fQhXi4rDelntmhrqk6vAhP9XqTpfloe/UIYmAgEFigYWvYSbBvr1 qfQJagUr2NXs3OyiVRjj3HLiZc/KdTonaK4zjMnhVpmWXgXwlaQ/IHWi/rJhk/My iVcXp6XrQSEGcYmY8DE3N7fRdTQejJTJOWBpi3xmoO1nczY5lseJdhiLAwPDqlps 7zl4/xuJMsJt4tCDcerh92l/h6tNxdmYErGE3fwsYdplN86gQAmODp7pY7As9adh +j+LznU58tpUrKISgQybXtfrWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJql+vQt 3AgVfdzQhsVrtkQpjYnAMB8GA1UdIwQYMBaAFAKfghJDCo3X55VP7DE/FdpHy0Td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkZDMC8yQTgxNUEwODQ3 NTAxMUVBOENEOTc2MUZDNEY5QUUwMi9BcC1DRWtNS2pkZm5sVV9zTVQ4VjJrZkxS TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FwLUNFa01LamRmbmxVX3NNVDhWMmtmTFJOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkZDMC8yQTgxNUEwODQ3NTAxMUVBOENEOTc2MUZDNEY5QUUwMi9BcC1DRWtNS2pk Zm5sVV9zTVQ4VjJrZkxSTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAci10W1CS3mdwOVJtQeskCnKr2OzCyr0Ce3YtXhmwEFZVkNJA33Kcb fyxsKs4evmbG10Aj0DCB6X18xXBQwHcbJABU8BTZ9xk9k//kGxdNOY+GqP+6PlN2 KbR2NxV1SvLb0My1GPgOLGLhcdylncNubIXoiygs7VHpKP8Tb2pmZjhly7xzm1V0 WDfL+ojcSdCNLxxdTxu77YAXOzIxqqZ3xFddyFti43TV5lC0D+cc15IkDodlALdC vc2fsuDWp/j3tdUaZFnHMquZk3E12tSpDAqCvInSB500sv4x9VC58ssJdMpEhx2M PGXynJ8brXDg+7wSCdFIY8IFSiJQhTcX -----END CERTIFICATE-----Generated at Sat May 18 21:31:31 2024 by rpki-client on console-ams.rpki-client.org