$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: CKQsJQ3mBkaqyRZV+m7I9C5t23R5RMbUnen1/nt643A= Subject key identifier: 76:61:CE:D4:A1:68:9E:38:18:DD:F3:A2:F7:FD:EB:E6:11:C1:C4:3F Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 038C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 0389 Signing time: Sun 19 May 2024 02:39:48 +0000 Manifest this update: Sun 19 May 2024 02:39:48 +0000 Manifest next update: Sun 26 May 2024 02:39:48 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: tREivK2OIfJM3/sUc3yQw3OdpMEzZoOJOEigxDqOPkU=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: Erl4nPa+GikVhtgshrtlBR/jvDA3RJKWtw2DubCIuKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 908 (0x38c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: May 19 02:39:48 2024 GMT Not After : May 26 02:39:48 2024 GMT Subject: CN=66496674-4b1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:df:4e:27:26:49:66:36:fd:73:5a:0b:73:2f: 67:7e:ac:71:74:fb:64:3b:cd:7a:5a:7b:0c:18:23: 94:31:af:f3:ff:34:bf:76:89:1c:da:e3:cb:08:c3: a9:21:e3:9b:20:19:80:a0:c2:5a:d6:b3:90:a7:8e: 97:ff:c9:2b:8f:89:4c:b1:74:29:2a:26:9d:f0:a8: 62:83:6a:7b:d8:11:72:81:c9:6c:ac:45:62:ce:e8: b7:3f:da:02:71:01:01:39:70:3a:bb:dc:4a:3c:fd: 01:d6:31:8e:76:a4:ce:7f:c7:c7:1b:82:5b:74:4e: b1:84:93:c1:9e:26:be:ed:e8:c9:32:46:73:2b:ae: 5b:ac:ec:c1:cb:32:01:3d:c7:73:e5:92:5d:70:fd: 08:9e:54:3c:d6:8a:ba:62:41:69:d3:a2:47:0e:f5: 83:e1:c8:9c:da:fd:2b:9b:81:82:32:97:7f:42:5e: f2:35:77:de:38:c4:c5:c5:fb:3d:ea:e9:6b:3c:ce: 30:ad:50:3c:56:e6:14:31:35:57:39:01:eb:a8:7e: 3b:05:00:d6:29:f7:61:0a:44:81:9d:4d:82:a7:91: 89:f3:a0:61:c4:b7:0c:46:52:cc:5f:c8:0d:54:8b: 2d:bf:79:4d:81:38:93:8d:cf:b9:6d:d3:a6:9b:90: 30:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:61:CE:D4:A1:68:9E:38:18:DD:F3:A2:F7:FD:EB:E6:11:C1:C4:3F X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:f6:3c:4e:47:9f:78:b6:59:f9:0e:f0:2a:73:48:d9:da:c3: 94:d4:5b:38:f1:0a:27:60:c7:2f:3a:fb:f8:96:e3:c8:43:38: d2:db:e0:ad:61:5f:03:69:cf:f0:5c:58:9c:0e:0d:c2:ce:f7: 2c:0d:5c:e9:f8:b3:43:c1:6c:83:69:73:0b:73:3f:08:7f:3b: 9d:e6:f8:7c:7b:29:0b:b1:9d:fc:8d:2d:d9:37:7b:e0:be:43: e7:1d:98:54:63:73:e7:5a:56:70:4e:f6:59:a2:c6:2c:c3:49: b8:39:c4:24:dd:6e:ec:d9:26:27:c6:60:7a:7c:e6:f7:10:08: 75:24:ba:cb:76:9a:36:73:12:3f:da:1b:2c:fe:30:a4:45:a8: 0b:f6:21:d3:1c:55:2c:84:b0:8a:84:72:19:ca:a7:35:75:47: 06:a6:a3:5e:ad:e2:6f:cb:36:02:e9:df:79:51:51:b3:05:e6: f0:ac:79:17:bd:32:29:15:87:32:50:56:27:41:9a:63:d3:b8: e9:6e:93:16:ff:c7:33:e6:46:eb:d4:cb:d7:fc:86:0a:cf:7e: 85:40:99:7b:57:2c:b1:fd:c6:ce:30:8b:9e:9c:4f:97:f0:22: 18:26:04:fb:99:3c:ed:d0:d6:c8:6b:3e:e0:b7:5e:48:48:a4: 06:40:1d:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjQwNTE5MDIzOTQ4WhcNMjQwNTI2MDIzOTQ4WjAYMRYwFAYD VQQDEw02NjQ5NjY3NC00YjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs99OJyZJZjb9c1oLcy9nfqxxdPtkO816WnsMGCOUMa/z/zS/dokc2uPLCMOp IeObIBmAoMJa1rOQp46X/8krj4lMsXQpKiad8Khig2p72BFygclsrEVizui3P9oC cQEBOXA6u9xKPP0B1jGOdqTOf8fHG4JbdE6xhJPBnia+7ejJMkZzK65brOzByzIB Pcdz5ZJdcP0InlQ81oq6YkFp06JHDvWD4cic2v0rm4GCMpd/Ql7yNXfeOMTFxfs9 6ulrPM4wrVA8VuYUMTVXOQHrqH47BQDWKfdhCkSBnU2Cp5GJ86BhxLcMRlLMX8gN VIstv3lNgTiTjc+5bdOmm5AwrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZhztSh aJ44GN3zovf96+YRwcQ/MB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJ9jxOR594tln5DvAqc0jZ2sOU1Fs48QonYMcvOvv4luPIQzjS2+Ct YV8Dac/wXFicDg3CzvcsDVzp+LNDwWyDaXMLcz8Ifzud5vh8eykLsZ38jS3ZN3vg vkPnHZhUY3PnWlZwTvZZosYsw0m4OcQk3W7s2SYnxmB6fOb3EAh1JLrLdpo2cxI/ 2hss/jCkRagL9iHTHFUshLCKhHIZyqc1dUcGpqNereJvyzYC6d95UVGzBebwrHkX vTIpFYcyUFYnQZpj07jpbpMW/8cz5kbr1MvX/IYKz36FQJl7Vyyx/cbOMIuenE+X 8CIYJgT7mTzt0NbIaz7gt15ISKQGQB1V -----END CERTIFICATE-----Generated at Sun May 19 03:38:15 2024 by rpki-client on console-ams.rpki-client.org