$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: 21lYoE3/HjNiIp3obuTJvI6W2QhhJ24R5Hkx10kvVag= Subject key identifier: 14:1C:6E:F4:DE:F9:F9:DF:6C:A3:57:64:13:5A:DC:DC:D6:A0:75:ED Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 01F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 01F7 Signing time: Sun 19 May 2024 04:12:34 +0000 Manifest this update: Sun 19 May 2024 04:12:33 +0000 Manifest next update: Sun 26 May 2024 04:12:33 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: /gptFw058FUdkNmQi5RNHC7Y3ad6vhi/2ycguEAKp2c=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: lGcMpUVn6boHFPVG2AIxQnya7MMj0Uj8rQcWAyqBMRg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Validity Not Before: May 19 04:12:33 2024 GMT Not After : May 26 04:12:33 2024 GMT Subject: CN=66497c32-4995 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:46:ab:9b:26:1a:cc:ac:4e:d7:93:ec:bb:65: 08:dd:d8:d8:1b:3e:76:5a:e0:42:fc:1a:b9:e8:7e: a4:e1:8a:a2:cf:16:59:f9:63:5c:e7:cf:46:4d:4d: 4b:05:38:3d:a9:53:a3:09:1d:c1:a9:82:ed:22:f3: ae:04:b1:ad:af:7d:0b:af:61:b4:97:35:09:a0:dc: 5f:26:ee:43:b9:93:ff:9f:ac:3c:21:f6:e9:3c:18: d3:52:2b:e9:20:be:ff:76:fa:7f:67:ad:fc:6b:78: 9f:05:c2:15:15:20:f9:36:d3:54:1c:12:1e:61:e5: e8:0c:b8:d6:aa:08:45:3e:19:cb:e4:d3:c1:0e:1a: a0:18:55:68:4e:81:c9:81:b0:2d:be:ac:ea:70:1c: fc:da:02:9d:a6:1a:b5:0a:78:57:3e:73:39:42:a4: c8:26:1a:72:f7:6b:6c:a3:8e:6a:2a:6b:e4:5f:d1: 83:f2:2c:ac:8b:88:d6:12:9f:c7:c9:d1:11:0d:95: 64:a5:f4:4d:f5:f9:d4:72:63:9b:98:97:2e:5c:52: 20:02:64:aa:fd:e9:67:fe:7a:31:07:15:a1:13:26: 50:9f:4d:79:98:0e:ad:d1:3d:e4:17:9a:15:f1:f4: 94:aa:ec:43:a6:f6:fd:3c:09:06:9e:83:b1:9c:f8: 0c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:1C:6E:F4:DE:F9:F9:DF:6C:A3:57:64:13:5A:DC:DC:D6:A0:75:ED X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:bb:3f:83:e8:5f:30:07:13:a8:76:84:c4:e7:ca:7d:6b:24: 40:31:23:f6:a1:22:38:34:5e:9f:cb:45:e3:55:dc:91:e3:ee: d4:fb:1a:87:aa:54:76:0d:eb:2c:27:24:5d:7f:09:89:f5:f8: ba:50:84:fb:ed:f1:85:5d:d8:19:5e:27:2e:0c:66:af:26:01: eb:66:05:3c:8a:b5:13:d4:d5:08:0d:0d:f3:ec:4a:cf:f8:99: 54:91:c4:87:e9:5e:26:16:0e:b0:df:ec:24:f2:d9:54:a5:e7: e4:34:66:9a:06:87:7d:25:c2:7d:5f:20:3d:55:3f:c5:58:73: dd:42:b2:9f:36:9b:6e:ce:02:ec:e5:e0:1a:15:2a:b5:b6:19: 1a:5d:01:3e:47:1d:2d:bb:9d:6f:25:73:13:18:a2:e1:aa:65: c7:8c:12:a0:34:74:c1:ad:ea:bf:a9:b9:92:2b:87:98:de:27: 52:29:94:db:c5:69:5b:ad:c8:15:0a:99:62:f1:38:bc:17:f7: 31:e3:83:d2:69:3c:4b:fe:7c:28:b3:69:f9:24:d0:1c:d4:ca: 71:f2:f5:c9:7e:f6:ee:dc:8f:4d:6c:de:d3:cb:21:c3:82:9f: d9:63:e0:2b:c7:f9:a3:10:ce:32:b1:14:f8:12:d7:76:21:43: f1:f4:dc:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjQwNTE5MDQxMjMzWhcNMjQwNTI2MDQxMjMzWjAYMRYwFAYD VQQDEw02NjQ5N2MzMi00OTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkarmyYazKxO15Psu2UI3djYGz52WuBC/Bq56H6k4YqizxZZ+WNc589GTU1L BTg9qVOjCR3BqYLtIvOuBLGtr30Lr2G0lzUJoNxfJu5DuZP/n6w8IfbpPBjTUivp IL7/dvp/Z638a3ifBcIVFSD5NtNUHBIeYeXoDLjWqghFPhnL5NPBDhqgGFVoToHJ gbAtvqzqcBz82gKdphq1CnhXPnM5QqTIJhpy92tso45qKmvkX9GD8iysi4jWEp/H ydERDZVkpfRN9fnUcmObmJcuXFIgAmSq/eln/noxBxWhEyZQn015mA6t0T3kF5oV 8fSUquxDpvb9PAkGnoOxnPgMeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQcbvTe +fnfbKNXZBNa3NzWoHXtMB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkuz+D6F8wBxOodoTE58p9ayRAMSP2oSI4NF6fy0XjVdyR4+7U+xqH qlR2DessJyRdfwmJ9fi6UIT77fGFXdgZXicuDGavJgHrZgU8irUT1NUIDQ3z7ErP +JlUkcSH6V4mFg6w3+wk8tlUpefkNGaaBod9JcJ9XyA9VT/FWHPdQrKfNptuzgLs 5eAaFSq1thkaXQE+Rx0tu51vJXMTGKLhqmXHjBKgNHTBreq/qbmSK4eY3idSKZTb xWlbrcgVCpli8Ti8F/cx44PSaTxL/nwos2n5JNAc1Mpx8vXJfvbu3I9NbN7TyyHD gp/ZY+Arx/mjEM4ysRT4Etd2IUPx9NxC -----END CERTIFICATE-----Generated at Sun May 19 05:08:06 2024 by rpki-client on console-ams.rpki-client.org