$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft File: iX261kcCN4pu4YYw4Yv3Whcpgmk.mft (raw, json) Hash identifier: t7Y74JfYwiWSvq5y+SdWlnal937MfSc9mblolMg/9HY= Subject key identifier: 8D:7D:BE:F8:4B:1C:1B:1B:69:EB:2D:1B:E9:C3:5A:D9:F0:57:44:08 Authority key identifier: 89:7D:BA:D6:47:02:37:8A:6E:E1:86:30:E1:8B:F7:5A:17:29:82:69 Certificate issuer: /CN=A91D8117/serialNumber=897DBAD64702378A6EE18630E18BF75A17298269 Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft Manifest number: 41 Signing time: Sun 19 May 2024 08:14:26 +0000 Manifest this update: Sun 19 May 2024 08:14:25 +0000 Manifest next update: Sun 26 May 2024 08:14:25 +0000 Files and hashes: 1: iX261kcCN4pu4YYw4Yv3Whcpgmk.crl (hash: f1gTX3o5gzQZrXFZKLfOkFp6wS0/B77kZ1ObCpIjCxs=) 2: D442A7A0BE2E11EEAFAF1934C4F9AE02.roa (hash: R6HAfsFQJCAwt/SBaezXmyue3jhCEJ5CX2/BB8RcTXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.crl rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8117/serialNumber=897DBAD64702378A6EE18630E18BF75A17298269 Validity Not Before: May 19 08:14:25 2024 GMT Not After : May 26 08:14:25 2024 GMT Subject: CN=6649b4e1-4d90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:01:89:f2:f5:f1:5d:a4:15:0b:e3:b4:22:ea: b9:2a:78:28:0e:02:3c:cb:ad:81:b5:2c:01:ae:e3: 1c:3d:03:82:ed:6c:a5:83:3f:92:08:f6:01:f5:37: 4a:9b:f8:90:4f:43:cd:28:d9:6e:53:c3:98:ca:32: 0a:ab:14:e9:16:ce:6a:52:6d:83:ce:97:10:ac:05: 87:03:e3:3f:59:b0:9d:40:43:7b:a7:e4:0b:fa:c1: c3:f6:20:ae:45:66:ea:c7:67:46:16:56:e2:5c:9b: da:7c:5e:33:e7:f6:1a:23:9c:cf:50:a2:f1:a4:31: 92:84:c8:cd:f7:95:f4:28:0a:22:dc:26:78:cc:b2: 0d:2a:25:6d:bf:cb:7b:51:aa:fb:bc:41:b3:83:c7: 0c:b2:3a:53:89:1b:5d:71:fc:05:77:68:f4:29:aa: fa:11:dd:93:a1:95:1a:f6:bc:30:09:13:ca:1b:84: 6e:0b:a2:ed:29:87:d4:07:92:c0:af:51:f0:f9:69: 92:aa:1f:24:29:ba:04:a3:74:93:db:74:84:b3:41: cb:f0:67:6f:5e:33:43:cf:30:00:17:25:ae:83:7d: a7:5e:11:19:fa:37:0c:8a:8e:74:ce:66:4d:3d:16: f1:55:8c:90:15:5c:0d:33:69:70:21:46:48:45:25: 7f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7D:BE:F8:4B:1C:1B:1B:69:EB:2D:1B:E9:C3:5A:D9:F0:57:44:08 X509v3 Authority Key Identifier: keyid:89:7D:BA:D6:47:02:37:8A:6E:E1:86:30:E1:8B:F7:5A:17:29:82:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:79:5f:ea:09:06:4a:c5:74:61:fe:90:82:f3:75:f8:fc:b8: e9:cd:84:a3:35:14:a8:4f:3d:32:f1:57:c7:88:10:d7:a0:b0: 06:91:18:0e:b6:bf:e2:6e:68:18:64:5f:81:29:e9:ce:e3:a1: 5e:19:b7:87:33:eb:0e:da:32:1d:ab:f1:3d:ad:dc:83:a4:3c: 05:1d:7f:74:74:34:9c:4f:a0:da:25:0d:11:ad:81:93:47:8c: d7:c8:aa:0c:71:2f:4f:50:46:09:08:29:5b:6c:11:96:ca:e5: 53:93:89:21:48:42:db:b2:5f:a0:f3:2d:21:dc:38:b9:0a:7a: 36:1a:92:bb:e3:24:67:2d:73:c5:43:8d:80:16:17:8a:a1:56: 29:94:cf:23:27:c0:0a:8e:7e:cc:8c:2f:b3:e8:99:08:7d:58: 08:aa:90:73:61:bb:c0:da:9d:e2:56:56:7a:9e:e1:ae:eb:2a: c2:61:27:82:7d:9c:f6:47:f4:1d:be:81:6e:18:9c:2b:34:9e: 1e:40:49:f3:eb:13:73:23:f5:e7:04:e8:81:4f:3a:cc:d4:2a: 78:87:ce:68:16:9a:07:bb:34:14:c0:47:c4:22:53:cc:40:87: 31:7c:de:f8:61:42:a8:c3:33:3b:30:4e:fb:01:f9:e1:15:6a: 8c:bf:45:49 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODExNzExMC8GA1UEBRMoODk3REJBRDY0NzAyMzc4QTZFRTE4NjMwRTE4QkY3NUEx NzI5ODI2OTAeFw0yNDA1MTkwODE0MjVaFw0yNDA1MjYwODE0MjVaMBgxFjAUBgNV BAMTDTY2NDliNGUxLTRkOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmAYny9fFdpBUL47Qi6rkqeCgOAjzLrYG1LAGu4xw9A4LtbKWDP5II9gH1N0qb +JBPQ80o2W5Tw5jKMgqrFOkWzmpSbYPOlxCsBYcD4z9ZsJ1AQ3un5Av6wcP2IK5F ZurHZ0YWVuJcm9p8XjPn9hojnM9QovGkMZKEyM33lfQoCiLcJnjMsg0qJW2/y3tR qvu8QbODxwyyOlOJG11x/AV3aPQpqvoR3ZOhlRr2vDAJE8obhG4Lou0ph9QHksCv UfD5aZKqHyQpugSjdJPbdISzQcvwZ29eM0PPMAAXJa6DfadeERn6NwyKjnTOZk09 FvFVjJAVXA0zaXAhRkhFJX+NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjX2++Esc Gxtp6y0b6cNa2fBXRAgwHwYDVR0jBBgwFoAUiX261kcCN4pu4YYw4Yv3Whcpgmkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MTE3LzhFMjhFNzk0QkUy RDExRUU4NTM2RDAzMEM0RjlBRTAyL2lYMjYxa2NDTjRwdTRZWXc0WXYzV2hjcGdt ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVgyNjFrY0NONHB1NFlZdzRZdjNXaGNwZ21rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MTE3LzhFMjhFNzk0QkUyRDExRUU4NTM2RDAzMEM0RjlBRTAyL2lYMjYxa2NDTjRw dTRZWXc0WXYzV2hjcGdtay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEB5X+oJBkrFdGH+kILzdfj8uOnNhKM1FKhPPTLxV8eIENegsAaRGA62 v+JuaBhkX4Ep6c7joV4Zt4cz6w7aMh2r8T2t3IOkPAUdf3R0NJxPoNolDRGtgZNH jNfIqgxxL09QRgkIKVtsEZbK5VOTiSFIQtuyX6DzLSHcOLkKejYakrvjJGctc8VD jYAWF4qhVimUzyMnwAqOfsyML7PomQh9WAiqkHNhu8DaneJWVnqe4a7rKsJhJ4J9 nPZH9B2+gW4YnCs0nh5ASfPrE3Mj9ecE6IFPOszUKniHzmgWmge7NBTAR8QiU8xA hzF83vhhQqjDMzswTvsB+eEVaoy/RUk= -----END CERTIFICATE-----Generated at Sun May 19 09:32:18 2024 by rpki-client on console-ams.rpki-client.org