$ rpki-client -vvf rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.mft File: s8iROAA2kV3l6qhM8TOrOzWz6dM.mft (raw, json) Hash identifier: b/rN/WAyEk5btGCDS1CWi7h9XjKH26auRY6Z9NuHw2s= Subject key identifier: C2:BE:99:56:2C:76:8B:3F:70:B7:09:44:F7:98:2F:AD:8B:47:30:86 Authority key identifier: B3:C8:91:38:00:36:91:5D:E5:EA:A8:4C:F1:33:AB:3B:35:B3:E9:D3 Certificate issuer: /CN=A91D891D/serialNumber=B3C891380036915DE5EAA84CF133AB3B35B3E9D3 Certificate serial: 06B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8iROAA2kV3l6qhM8TOrOzWz6dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.mft Manifest number: 0ADB Signing time: Thu 30 May 2024 23:43:17 +0000 Manifest this update: Thu 30 May 2024 23:43:17 +0000 Manifest next update: Thu 06 Jun 2024 23:43:17 +0000 Files and hashes: 1: s8iROAA2kV3l6qhM8TOrOzWz6dM.crl (hash: ChUemOS8LpkCU1lp8XzUS9yb05mmHhAV14iQvN8oNdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.crl rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8iROAA2kV3l6qhM8TOrOzWz6dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 22:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1713 (0x6b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D891D/serialNumber=B3C891380036915DE5EAA84CF133AB3B35B3E9D3 Validity Not Before: May 30 23:43:17 2024 GMT Not After : Jun 6 23:43:17 2024 GMT Subject: CN=66590f15-e931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:10:af:0a:21:b7:c0:ea:18:50:fc:ff:3c:36: 3c:a9:51:e9:2e:5a:02:d8:8a:64:8a:c0:89:05:f9: 7f:54:f2:4c:e5:6f:31:d3:bc:18:d6:4a:53:04:d6: 9b:0e:4e:20:9e:d9:e9:94:db:dc:bf:05:f9:ab:dc: e6:ed:46:f0:13:43:0f:61:f0:8b:cf:c1:d0:2c:14: 12:16:4f:13:f6:a2:b2:3c:f4:d0:5f:ce:df:b6:18: 23:c5:da:c8:c6:68:02:f7:8b:18:14:98:b6:3f:f2: 2b:2d:c2:87:10:5a:b9:cd:bb:e9:ae:70:70:80:b3: b8:86:b3:19:3a:8e:f2:17:60:1d:dd:f5:73:64:58: e3:12:18:8f:f6:72:3c:c8:3b:ca:88:3a:1c:4b:a5: 5b:94:0c:88:00:c9:dd:38:f0:1a:01:87:3e:a3:cf: cd:3b:c2:34:79:de:44:b6:e4:cb:30:da:8b:96:cb: 12:88:b8:fb:70:a0:29:3e:f4:a0:9a:d0:dc:ba:dc: 77:5d:fd:66:9e:8c:94:75:30:ad:c1:f7:21:b4:7a: 82:2b:ae:91:67:97:d3:4b:ce:a4:a0:39:08:c1:77: 5d:ef:21:05:07:a7:f5:37:55:26:d1:fd:9a:1f:f7: c1:8b:07:b6:f5:b2:15:55:2e:a9:cd:a6:05:13:cd: 18:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:BE:99:56:2C:76:8B:3F:70:B7:09:44:F7:98:2F:AD:8B:47:30:86 X509v3 Authority Key Identifier: keyid:B3:C8:91:38:00:36:91:5D:E5:EA:A8:4C:F1:33:AB:3B:35:B3:E9:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8iROAA2kV3l6qhM8TOrOzWz6dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:de:bb:c4:fe:84:fd:85:c5:3f:90:08:c5:0c:6e:21:90:18: f3:7a:52:42:db:61:6e:c7:21:bb:31:d1:c2:9c:b0:96:1c:21: eb:41:fe:18:b0:39:47:50:6c:6b:2f:65:e9:10:d5:e8:41:34: 85:50:a2:4e:d5:05:cb:8a:58:22:da:7f:16:78:db:77:e6:a6: 90:12:a5:4d:d0:ca:32:b5:8f:5d:32:2d:88:61:47:35:1c:4f: 56:54:5b:de:a9:a6:b7:89:26:90:02:d9:87:84:e1:5a:b6:73: f9:9b:58:13:1e:b5:f6:25:bd:ef:e8:6e:5d:89:64:6e:10:b9: 4f:b5:5d:07:fb:04:99:3a:a3:1a:e7:0a:75:ef:37:4c:ad:10: 29:e8:fb:69:95:2e:2c:da:a2:98:14:4d:72:3f:8e:91:91:40: 93:42:ee:c7:65:91:73:e1:5b:5e:b3:70:cd:fb:91:81:f9:ed: 20:8a:e9:3d:d0:99:aa:67:f5:0d:b4:04:46:01:8e:7b:f2:5d: 87:3a:52:6a:80:92:84:21:a9:9a:62:44:3b:d8:60:55:24:84: 18:81:ea:96:1f:d5:e0:da:83:8e:5b:63:d7:2f:a6:f0:d5:e4: 9c:ee:61:f8:10:2a:00:04:5b:8f:3f:e4:bf:a1:b7:d2:62:0c: 7a:ca:ed:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5MUQxMTAvBgNVBAUTKEIzQzg5MTM4MDAzNjkxNURFNUVBQTg0Q0YxMzNBQjNC MzVCM0U5RDMwHhcNMjQwNTMwMjM0MzE3WhcNMjQwNjA2MjM0MzE3WjAYMRYwFAYD VQQDEw02NjU5MGYxNS1lOTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xCvCiG3wOoYUPz/PDY8qVHpLloC2IpkisCJBfl/VPJM5W8x07wY1kpTBNab Dk4gntnplNvcvwX5q9zm7UbwE0MPYfCLz8HQLBQSFk8T9qKyPPTQX87fthgjxdrI xmgC94sYFJi2P/IrLcKHEFq5zbvprnBwgLO4hrMZOo7yF2Ad3fVzZFjjEhiP9nI8 yDvKiDocS6VblAyIAMndOPAaAYc+o8/NO8I0ed5EtuTLMNqLlssSiLj7cKApPvSg mtDcutx3Xf1mnoyUdTCtwfchtHqCK66RZ5fTS86koDkIwXdd7yEFB6f1N1Um0f2a H/fBiwe29bIVVS6pzaYFE80YlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMK+mVYs dos/cLcJRPeYL62LRzCGMB8GA1UdIwQYMBaAFLPIkTgANpFd5eqoTPEzqzs1s+nT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODkxRC8zODFBOEYyQTFD QzIxMUVCODJCNTcxNzhDNEY5QUUwMi9zOGlST0FBMmtWM2w2cWhNOFRPck96V3o2 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4aVJPQUEya1YzbDZxaE04VE9yT3pXejZkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODkxRC8zODFBOEYyQTFDQzIxMUVCODJCNTcxNzhDNEY5QUUwMi9zOGlST0FBMmtW M2w2cWhNOFRPck96V3o2ZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq3rvE/oT9hcU/kAjFDG4hkBjzelJC22FuxyG7MdHCnLCWHCHrQf4Y sDlHUGxrL2XpENXoQTSFUKJO1QXLilgi2n8WeNt35qaQEqVN0MoytY9dMi2IYUc1 HE9WVFveqaa3iSaQAtmHhOFatnP5m1gTHrX2Jb3v6G5diWRuELlPtV0H+wSZOqMa 5wp17zdMrRAp6PtplS4s2qKYFE1yP46RkUCTQu7HZZFz4Vtes3DN+5GB+e0giuk9 0JmqZ/UNtARGAY578l2HOlJqgJKEIamaYkQ72GBVJIQYgeqWH9Xg2oOOW2PXL6bw 1eSc7mH4ECoABFuPP+S/obfSYgx6yu1/ -----END CERTIFICATE-----Generated at Fri May 31 00:28:37 2024 by rpki-client on console-ams.rpki-client.org