$ rpki-client -vvf rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft File: zIO7bQqhd53qFp7bpKQCKN4hvXs.mft (raw, json) Hash identifier: RUWLIMwy4W2yUg1R+xU2KzqAJSAA8B2ZVbHff49vIwo= Subject key identifier: 4B:5D:7B:8B:29:39:36:D1:E3:A5:EB:2B:17:7B:43:79:65:3B:46:12 Authority key identifier: CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B Certificate issuer: /CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Certificate serial: 0268 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft Manifest number: 0264 Signing time: Sun 19 May 2024 03:49:46 +0000 Manifest this update: Sun 19 May 2024 03:49:46 +0000 Manifest next update: Sun 26 May 2024 03:49:46 +0000 Files and hashes: 1: zIO7bQqhd53qFp7bpKQCKN4hvXs.crl (hash: 444pPNv9bMpQ24tsdqZUg7spAyjRX6gZQxA/4nSV1Eo=) 2: 684DDD32CAB311ECBBCE9843C4F9AE02.roa (hash: qlH2HXjlgr8PBnyTmgV2A1ZCVpY5oeqzGuzCwKUpWe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Validity Not Before: May 19 03:49:46 2024 GMT Not After : May 26 03:49:46 2024 GMT Subject: CN=664976da-9e78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f6:f4:9a:98:5c:3a:e3:25:3f:d2:bc:d6:42: 11:c3:99:0b:3b:4c:ab:8a:bf:81:0b:f3:a6:67:5a: 1a:1a:d9:b0:57:3e:8a:8f:08:07:5a:21:f2:b9:0b: e7:69:87:02:7a:5e:e2:db:df:9a:11:bc:ff:79:c5: 1c:69:7e:b9:35:42:ef:9c:b4:50:01:4b:dc:e5:0f: d3:5b:52:27:5d:9c:c0:0d:74:66:5e:1e:e4:32:3a: 38:d5:df:88:a3:24:56:d1:67:78:e8:b1:f1:64:cc: c3:c9:3c:e8:78:3d:d0:34:17:be:4a:75:f7:bd:2a: 82:48:d7:5e:a3:3a:5d:11:72:6c:ab:a0:9d:37:bc: fa:fc:12:b4:62:92:71:6c:1d:a3:94:e7:6d:5a:e3: ea:f7:c1:94:2b:99:c1:b5:67:ac:6a:1a:8e:8c:db: 40:a7:8b:23:ff:38:20:c3:08:34:9e:ae:bf:9b:34: 14:84:eb:dd:7c:82:ba:01:71:6e:f2:1e:7a:83:4b: 93:47:46:0e:59:5a:53:5d:18:19:1d:d1:34:7d:af: 81:27:6e:79:71:6b:c4:18:75:54:9b:97:de:68:eb: 3f:c0:78:97:78:a8:da:66:96:40:98:6d:3a:d4:86: b3:fb:7f:7e:09:3c:89:6f:02:88:92:c4:bf:d0:23: 92:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:5D:7B:8B:29:39:36:D1:E3:A5:EB:2B:17:7B:43:79:65:3B:46:12 X509v3 Authority Key Identifier: keyid:CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:05:7b:cc:e1:09:5c:ca:a3:d1:65:6a:50:5a:f7:b0:8c:28: ab:87:01:30:11:34:5b:7f:b9:87:0b:9d:72:ca:9b:78:92:27: 01:9d:ee:d3:a9:0c:94:93:96:de:02:aa:a5:36:39:22:66:4e: 3e:9d:e0:4d:bc:6c:67:a6:2d:e2:a7:9f:18:5d:35:85:33:76: 40:4f:01:92:68:9f:7b:ca:cf:e0:46:57:a3:61:d1:a6:ab:59: af:c7:5d:9f:c7:e3:72:b7:44:ee:a1:88:ee:d8:35:cb:d0:15: 3c:4f:80:07:bb:c1:87:64:a3:50:00:9f:13:01:bb:09:13:d1: 8a:ef:62:2e:5c:68:ef:1e:21:3b:aa:6c:65:dd:4c:33:54:ac: 37:34:9b:d5:85:39:99:a9:01:81:0a:70:10:e5:30:34:e4:58: b2:4b:c7:3a:4b:f0:27:e4:5a:14:eb:a5:e9:bc:c7:b9:39:9d: 33:28:0d:9d:90:d4:27:6d:87:16:ff:7d:86:b9:b0:0c:fe:23: f7:87:19:2d:a9:25:95:5a:79:02:5b:57:4e:03:23:e2:04:47: f8:5c:a6:67:41:8a:f7:55:24:e6:26:ad:d4:b4:09:60:77:1b: c1:f6:91:d4:76:7b:33:a4:26:0e:32:9c:fb:7a:c6:2f:af:eb: 5f:6a:f2:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ5M0IxMTAvBgNVBAUTKENDODNCQjZEMEFBMTc3OURFQTE2OUVEQkE0QTQwMjI4 REUyMUJEN0IwHhcNMjQwNTE5MDM0OTQ2WhcNMjQwNTI2MDM0OTQ2WjAYMRYwFAYD VQQDEw02NjQ5NzZkYS05ZTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vb0mphcOuMlP9K81kIRw5kLO0yrir+BC/OmZ1oaGtmwVz6KjwgHWiHyuQvn aYcCel7i29+aEbz/ecUcaX65NULvnLRQAUvc5Q/TW1InXZzADXRmXh7kMjo41d+I oyRW0Wd46LHxZMzDyTzoeD3QNBe+SnX3vSqCSNdeozpdEXJsq6CdN7z6/BK0YpJx bB2jlOdtWuPq98GUK5nBtWesahqOjNtAp4sj/zggwwg0nq6/mzQUhOvdfIK6AXFu 8h56g0uTR0YOWVpTXRgZHdE0fa+BJ255cWvEGHVUm5feaOs/wHiXeKjaZpZAmG06 1Iaz+39+CTyJbwKIksS/0COSSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtde4sp OTbR46XrKxd7Q3llO0YSMB8GA1UdIwQYMBaAFMyDu20KoXed6hae26SkAijeIb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDkzQi9EQkFEMzdBMENB QUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1M3FGcDdicEtRQ0tONGh2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJTzdiUXFoZDUzcUZwN2JwS1FDS040aHZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDkzQi9EQkFEMzdBMENBQUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1 M3FGcDdicEtRQ0tONGh2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBBXvM4QlcyqPRZWpQWvewjCirhwEwETRbf7mHC51yypt4kicBne7T qQyUk5beAqqlNjkiZk4+neBNvGxnpi3ip58YXTWFM3ZATwGSaJ97ys/gRlejYdGm q1mvx12fx+Nyt0TuoYju2DXL0BU8T4AHu8GHZKNQAJ8TAbsJE9GK72IuXGjvHiE7 qmxl3UwzVKw3NJvVhTmZqQGBCnAQ5TA05FiyS8c6S/An5FoU66XpvMe5OZ0zKA2d kNQnbYcW/32GubAM/iP3hxktqSWVWnkCW1dOAyPiBEf4XKZnQYr3VSTmJq3UtAlg dxvB9pHUdnszpCYOMpz7esYvr+tfavI3 -----END CERTIFICATE-----Generated at Sun May 19 04:20:44 2024 by rpki-client on console-ams.rpki-client.org