$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.mft File: 6beh3yCMdbnrMDz4g8oSjqBPxQo.mft (raw, json) Hash identifier: vM/jkzrzqUDOOmcVHCegeVlnGGWV9haDyaoTE1LZjmQ= Subject key identifier: 11:EC:BD:1B:A7:6E:0A:28:74:1E:24:4D:3E:21:E5:21:16:FD:28:D4 Authority key identifier: E9:B7:A1:DF:20:8C:75:B9:EB:30:3C:F8:83:CA:12:8E:A0:4F:C5:0A Certificate issuer: /CN=A91D8DCB/serialNumber=E9B7A1DF208C75B9EB303CF883CA128EA04FC50A Certificate serial: 14E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6beh3yCMdbnrMDz4g8oSjqBPxQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.mft Manifest number: 14DF Signing time: Fri 31 May 2024 17:34:16 +0000 Manifest this update: Fri 31 May 2024 17:34:15 +0000 Manifest next update: Fri 07 Jun 2024 17:34:15 +0000 Files and hashes: 1: 6beh3yCMdbnrMDz4g8oSjqBPxQo.crl (hash: 04tt2x1x2SgCvdXzJiDq0QxU28XnMBqkB0xPVwobp/M=) 2: F1D384D031D311E88735EA0AC4F9AE02.roa (hash: dMpYdXxn4EAOU2tVv1lQ5PlkI4eRAaxApw0/M743aIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.crl rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6beh3yCMdbnrMDz4g8oSjqBPxQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5350 (0x14e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8DCB/serialNumber=E9B7A1DF208C75B9EB303CF883CA128EA04FC50A Validity Not Before: May 31 17:34:15 2024 GMT Not After : Jun 7 17:34:15 2024 GMT Subject: CN=665a0a18-c780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ef:38:dc:63:68:46:a5:7c:01:5f:ed:c6:0b: a6:cc:e7:55:40:20:2f:da:03:de:18:f8:0d:85:a5: ae:0f:ec:bc:76:2d:1d:68:74:22:90:fc:fa:6c:4e: df:1e:22:e6:bc:30:ac:f5:95:76:83:0b:c8:c7:d3: b9:51:c6:46:ae:cf:2b:02:6a:a2:56:35:47:b9:2f: f1:0a:1d:da:f4:d4:27:12:2c:9e:68:2c:de:52:f6: df:3c:1f:63:3d:e2:6c:79:68:f3:55:83:f0:33:ff: 21:2d:a0:71:cc:66:98:ec:0b:11:5e:96:6a:6d:05: e7:2c:20:17:08:e8:91:d5:94:53:a5:54:36:f8:c9: 26:fc:ef:0c:0a:39:e2:8f:2c:fd:7a:0a:26:ab:41: e4:ff:fe:79:86:77:03:d3:3e:73:13:58:1c:bb:40: b1:ca:2a:c5:0e:c4:85:3d:53:c5:50:07:50:e1:c7: 6b:af:46:0a:36:01:b6:14:9b:fc:08:b3:ae:7a:81: f4:02:6f:a0:c6:34:3c:c2:c3:65:15:1c:19:f4:71: ed:c0:96:ed:15:f4:a5:dc:5c:16:1c:db:f8:72:ac: 5c:3a:83:ce:f7:af:4b:75:c2:6b:b5:31:41:ad:7d: 53:73:0d:c0:80:be:79:ee:d4:0c:45:e9:d9:d0:d9: 75:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:EC:BD:1B:A7:6E:0A:28:74:1E:24:4D:3E:21:E5:21:16:FD:28:D4 X509v3 Authority Key Identifier: keyid:E9:B7:A1:DF:20:8C:75:B9:EB:30:3C:F8:83:CA:12:8E:A0:4F:C5:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6beh3yCMdbnrMDz4g8oSjqBPxQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:1e:75:a1:47:68:55:ac:34:53:ec:bb:95:9f:b1:c9:ad:79: 35:65:db:a5:91:b5:0f:a3:1c:6a:6c:7b:2b:23:0f:b7:0d:cd: 29:ba:9b:0e:89:18:91:b4:28:7c:dc:9d:c3:0c:a6:20:1c:59: 39:20:9c:89:49:e7:8a:f3:71:99:6b:b9:00:fa:61:f0:06:a0: 3b:9c:26:f1:e1:43:4a:dd:8e:bf:f5:40:24:73:d9:8f:94:ef: dc:34:d0:89:96:14:55:05:ad:3a:73:c5:74:f4:6d:a6:86:b9: bc:e6:c5:f7:fb:7f:68:88:52:df:6e:19:a3:31:ec:83:9a:79: 67:c4:71:70:1b:f4:02:92:37:63:3c:05:e7:5d:fc:1e:4b:b0: 75:84:5c:99:63:75:2c:cc:48:58:f1:f8:ed:96:12:f6:88:c8: 43:91:1e:9c:5f:21:5f:39:2b:6f:93:a6:c6:33:4b:e5:ce:ae: e4:a9:e1:54:c9:17:2d:ae:90:ea:f9:db:23:7c:a3:10:53:87: 4f:48:21:a8:93:cb:2c:e3:55:f3:ce:e1:2d:80:3f:ce:94:1c: 28:0b:ca:b9:74:3f:9e:20:6a:2a:52:c3:28:f6:c6:8a:46:a8: 67:70:a0:03:0b:7a:bf:ea:cc:78:06:68:f2:e4:87:07:ce:b7: 9f:f4:99:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhEQ0IxMTAvBgNVBAUTKEU5QjdBMURGMjA4Qzc1QjlFQjMwM0NGODgzQ0ExMjhF QTA0RkM1MEEwHhcNMjQwNTMxMTczNDE1WhcNMjQwNjA3MTczNDE1WjAYMRYwFAYD VQQDEw02NjVhMGExOC1jNzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2u843GNoRqV8AV/txgumzOdVQCAv2gPeGPgNhaWuD+y8di0daHQikPz6bE7f HiLmvDCs9ZV2gwvIx9O5UcZGrs8rAmqiVjVHuS/xCh3a9NQnEiyeaCzeUvbfPB9j PeJseWjzVYPwM/8hLaBxzGaY7AsRXpZqbQXnLCAXCOiR1ZRTpVQ2+Mkm/O8MCjni jyz9egomq0Hk//55hncD0z5zE1gcu0CxyirFDsSFPVPFUAdQ4cdrr0YKNgG2FJv8 CLOueoH0Am+gxjQ8wsNlFRwZ9HHtwJbtFfSl3FwWHNv4cqxcOoPO969LdcJrtTFB rX1Tcw3AgL557tQMRenZ0Nl1vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHsvRun bgoodB4kTT4h5SEW/SjUMB8GA1UdIwQYMBaAFOm3od8gjHW56zA8+IPKEo6gT8UK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOERDQi83NDNGNzBDODJG MkMxMUU4OTlEMUUwMTdDNEY5QUUwMi82YmVoM3lDTWRibnJNRHo0ZzhvU2pxQlB4 UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZiZWgzeUNNZGJuck1EejRnOG9TanFCUHhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OERDQi83NDNGNzBDODJGMkMxMUU4OTlEMUUwMTdDNEY5QUUwMi82YmVoM3lDTWRi bnJNRHo0ZzhvU2pxQlB4UW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsHnWhR2hVrDRT7LuVn7HJrXk1ZdulkbUPoxxqbHsrIw+3Dc0pupsO iRiRtCh83J3DDKYgHFk5IJyJSeeK83GZa7kA+mHwBqA7nCbx4UNK3Y6/9UAkc9mP lO/cNNCJlhRVBa06c8V09G2mhrm85sX3+39oiFLfbhmjMeyDmnlnxHFwG/QCkjdj PAXnXfweS7B1hFyZY3UszEhY8fjtlhL2iMhDkR6cXyFfOStvk6bGM0vlzq7kqeFU yRctrpDq+dsjfKMQU4dPSCGok8ss41XzzuEtgD/OlBwoC8q5dD+eIGoqUsMo9saK RqhncKADC3q/6sx4Bmjy5IcHzref9Jmk -----END CERTIFICATE-----Generated at Fri May 31 20:34:17 2024 by rpki-client on console-ams.rpki-client.org