$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.mft File: -4BdU3nLB9UqQR7__QSRyjm3vyc.mft (raw, json) Hash identifier: 9UaFZJZIiCdy1I5i/KAwGOGtuK6GvW8hNbn/6I9s1BA= Subject key identifier: 14:AA:8A:2A:9D:33:DE:A1:64:46:33:64:64:83:57:D9:39:DA:67:17 Authority key identifier: FB:80:5D:53:79:CB:07:D5:2A:41:1E:FF:FD:04:91:CA:39:B7:BF:27 Certificate issuer: /CN=A91D5ECA/serialNumber=FB805D5379CB07D52A411EFFFD0491CA39B7BF27 Certificate serial: 051B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-4BdU3nLB9UqQR7__QSRyjm3vyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.mft Manifest number: 0517 Signing time: Sun 19 May 2024 01:03:07 +0000 Manifest this update: Sun 19 May 2024 01:03:07 +0000 Manifest next update: Sun 26 May 2024 01:03:07 +0000 Files and hashes: 1: -4BdU3nLB9UqQR7__QSRyjm3vyc.crl (hash: XYs8qr9mP/vr/i0DPMhL8h+Pjr6T/YnGR8tncJl74Ss=) 2: F4740B2CB92711EBA6B43A86C4F9AE02.roa (hash: NK+l5m2ta776fmuAwfuzwnZ0hG3yotAbqESNUgO6JqU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.crl rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-4BdU3nLB9UqQR7__QSRyjm3vyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1307 (0x51b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5ECA/serialNumber=FB805D5379CB07D52A411EFFFD0491CA39B7BF27 Validity Not Before: May 19 01:03:07 2024 GMT Not After : May 26 01:03:07 2024 GMT Subject: CN=66494fcb-e506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:32:b4:47:c1:1a:7b:c4:d3:6d:21:06:f1:db: 81:a6:16:b2:34:f7:da:43:e0:2e:fa:f9:e2:e3:b2: b0:9d:81:fc:b1:30:ed:c4:14:a5:0c:bb:93:71:38: fa:91:c2:4e:0c:42:98:3a:26:7d:c9:04:80:59:3c: 1a:c3:47:6c:97:2b:01:28:96:eb:35:5b:74:a1:88: 7c:dd:bf:2b:79:63:9f:05:96:06:ad:03:18:0e:12: e1:39:9f:a5:0e:58:0c:2c:99:d2:5d:26:b4:6d:f1: 87:53:86:84:7d:a9:7d:12:58:76:fe:d0:b5:6e:fa: 9c:b2:75:d5:5d:71:7e:5c:e3:db:af:18:6b:89:49: f4:08:38:17:a5:72:d8:e4:03:52:1e:e8:65:4d:43: c9:99:fb:ae:4c:e7:03:fe:00:eb:00:84:15:f2:fb: c3:09:7e:d1:e4:5a:2d:46:36:16:f3:20:86:b4:f8: 01:1f:18:a6:8f:e7:ec:2b:43:60:5e:40:af:b4:0e: 85:27:0c:7d:52:17:12:99:e7:cb:4e:22:44:fa:80: f5:6b:46:1c:5d:24:59:1e:69:a4:36:e9:c8:f0:da: 50:de:ec:e3:a1:1c:01:90:2c:7c:91:f8:b0:42:72: d8:f0:9b:f1:24:13:f9:20:44:96:f0:9b:8a:75:38: ff:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AA:8A:2A:9D:33:DE:A1:64:46:33:64:64:83:57:D9:39:DA:67:17 X509v3 Authority Key Identifier: keyid:FB:80:5D:53:79:CB:07:D5:2A:41:1E:FF:FD:04:91:CA:39:B7:BF:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-4BdU3nLB9UqQR7__QSRyjm3vyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:2a:24:1c:4a:10:16:90:f5:58:d8:79:6f:a8:02:34:99:e8: 59:e1:38:0d:5f:84:39:a7:70:67:b6:97:4f:ce:f3:a8:75:63: 06:3f:03:88:dd:e4:a8:d4:d5:32:24:43:d4:92:3d:2f:cb:5f: 71:f0:cb:73:05:65:0c:04:4e:5e:76:7b:b5:11:47:ad:e7:7f: c8:75:87:ce:e9:00:1f:15:98:cc:cc:0b:16:c9:96:c3:cd:5e: e8:c8:5d:36:90:dd:b0:b9:08:fa:a8:5b:fe:ff:d1:a1:de:0e: 92:62:23:69:f2:84:46:45:11:e5:53:30:d3:c5:02:a5:4f:1c: f1:ce:2d:c2:b7:1e:61:3d:b6:93:2a:37:d5:d8:73:c8:70:69: ca:84:d4:f6:cf:eb:cf:bd:cb:a1:f7:f0:fd:71:61:31:da:1e: f3:37:fa:d2:b6:61:0b:41:31:7f:f8:18:9c:c7:9a:c7:77:9f: d1:1e:d9:d9:bc:02:a8:96:13:82:29:94:5a:61:44:06:47:81: 09:87:3b:db:2b:ab:fa:7f:fc:eb:1c:d4:02:97:13:cc:c2:c8: 59:60:0f:0a:9b:30:23:94:63:46:ae:23:fc:28:c2:56:d3:17: 73:f9:8b:23:9f:9e:46:7b:ec:0b:6e:57:dd:9e:f6:ef:c8:ed: 8f:e4:d0:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFQ0ExMTAvBgNVBAUTKEZCODA1RDUzNzlDQjA3RDUyQTQxMUVGRkZEMDQ5MUNB MzlCN0JGMjcwHhcNMjQwNTE5MDEwMzA3WhcNMjQwNTI2MDEwMzA3WjAYMRYwFAYD VQQDEw02NjQ5NGZjYi1lNTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTK0R8Eae8TTbSEG8duBphayNPfaQ+Au+vni47KwnYH8sTDtxBSlDLuTcTj6 kcJODEKYOiZ9yQSAWTwaw0dslysBKJbrNVt0oYh83b8reWOfBZYGrQMYDhLhOZ+l DlgMLJnSXSa0bfGHU4aEfal9Elh2/tC1bvqcsnXVXXF+XOPbrxhriUn0CDgXpXLY 5ANSHuhlTUPJmfuuTOcD/gDrAIQV8vvDCX7R5FotRjYW8yCGtPgBHximj+fsK0Ng XkCvtA6FJwx9UhcSmefLTiJE+oD1a0YcXSRZHmmkNunI8NpQ3uzjoRwBkCx8kfiw QnLY8JvxJBP5IESW8JuKdTj/OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSqiiqd M96hZEYzZGSDV9k52mcXMB8GA1UdIwQYMBaAFPuAXVN5ywfVKkEe//0Ekco5t78n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUVDQS9CRkQyMzIwNkI5 MjUxMUVCQjBFMkNCODJDNEY5QUUwMi8tNEJkVTNuTEI5VXFRUjdfX1FTUnlqbTN2 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy00QmRVM25MQjlVcVFSN19fUVNSeWptM3Z5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUVDQS9CRkQyMzIwNkI5MjUxMUVCQjBFMkNCODJDNEY5QUUwMi8tNEJkVTNuTEI5 VXFRUjdfX1FTUnlqbTN2eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeKiQcShAWkPVY2HlvqAI0mehZ4TgNX4Q5p3BntpdPzvOodWMGPwOI 3eSo1NUyJEPUkj0vy19x8MtzBWUMBE5ednu1EUet53/IdYfO6QAfFZjMzAsWyZbD zV7oyF02kN2wuQj6qFv+/9Gh3g6SYiNp8oRGRRHlUzDTxQKlTxzxzi3Ctx5hPbaT KjfV2HPIcGnKhNT2z+vPvcuh9/D9cWEx2h7zN/rStmELQTF/+Bicx5rHd5/RHtnZ vAKolhOCKZRaYUQGR4EJhzvbK6v6f/zrHNQClxPMwshZYA8KmzAjlGNGriP8KMJW 0xdz+Ysjn55Ge+wLblfdnvbvyO2P5NBJ -----END CERTIFICATE-----Generated at Sun May 19 01:47:16 2024 by rpki-client on console-ams.rpki-client.org