$ rpki-client -vvf rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft File: s5m0raB1Aagp1W8h2o613DIDSlY.mft (raw, json) Hash identifier: mL+is94QySOFm/qeZFUsjQGHpQwvBvZqDdkf5CJFT6A= Subject key identifier: 0A:06:EA:F2:D3:D8:BC:69:E4:22:5C:7A:06:8A:34:98:D6:1D:D4:3D Authority key identifier: B3:99:B4:AD:A0:75:01:A8:29:D5:6F:21:DA:8E:B5:DC:32:03:4A:56 Certificate issuer: /CN=A91D98FC/serialNumber=B399B4ADA07501A829D56F21DA8EB5DC32034A56 Certificate serial: 0BE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft Manifest number: 0BDB Signing time: Sat 18 May 2024 19:05:58 +0000 Manifest this update: Sat 18 May 2024 19:05:58 +0000 Manifest next update: Sat 25 May 2024 19:05:58 +0000 Files and hashes: 1: s5m0raB1Aagp1W8h2o613DIDSlY.crl (hash: Pz2QQCeCtNxGi3q47uxRYX6xp3fxyTCk6fLCye97ntA=) 2: 1752A952B44711EDB021F350C4F9AE02.roa (hash: CmY3H6MLM8sPTwL3Kw+WquoJl8ZVYZgWOsoVa3VE2V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.crl rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3047 (0xbe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D98FC/serialNumber=B399B4ADA07501A829D56F21DA8EB5DC32034A56 Validity Not Before: May 18 19:05:58 2024 GMT Not After : May 25 19:05:58 2024 GMT Subject: CN=6648fc16-06e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3f:33:d8:0f:56:ec:67:45:40:df:bc:41:96: be:7a:19:db:58:5b:8b:ac:20:86:d5:84:fb:f0:f4: 84:0d:38:2b:3f:ef:88:e2:08:22:13:36:23:a8:7f: b0:a8:69:a0:81:28:56:32:7d:70:9d:88:b8:18:14: 36:df:f9:f0:95:cd:68:22:37:dd:a1:34:8c:00:be: a5:a5:ca:46:12:05:b0:ec:6f:ec:e5:a2:a9:5f:3f: 7b:02:9e:3e:27:dc:f2:80:34:34:16:33:44:6d:98: d4:91:c0:f2:ca:95:91:c8:95:62:a8:5c:b2:de:b2: 8c:d7:40:7d:b7:17:bd:e0:75:a0:5c:94:3f:40:7e: db:22:62:82:8b:f0:3e:3d:ae:4c:13:a8:94:97:ed: de:de:7c:44:b0:55:8f:fe:a6:3e:d7:f4:9b:a7:f8: 8a:49:65:16:0a:d6:47:d0:d5:f0:34:1c:72:1c:74: 87:55:26:15:0d:79:99:fe:8c:ef:fe:2a:18:71:46: 6f:2e:cc:15:34:f6:44:95:0b:b7:4a:e5:26:8d:73: f2:6c:66:77:f7:30:4a:c5:29:68:83:33:a0:c6:98: c4:fa:05:b4:e1:51:10:47:d3:dd:ac:4b:1a:33:2f: cc:e9:1f:5c:91:35:dc:55:fb:d8:ed:cb:0e:ec:ad: 5d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:06:EA:F2:D3:D8:BC:69:E4:22:5C:7A:06:8A:34:98:D6:1D:D4:3D X509v3 Authority Key Identifier: keyid:B3:99:B4:AD:A0:75:01:A8:29:D5:6F:21:DA:8E:B5:DC:32:03:4A:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:ae:bf:97:c2:13:06:c7:b8:5a:8e:59:c3:30:b9:6a:03:20: 8a:59:99:74:f7:ca:99:53:ce:24:57:5e:1e:ba:10:6c:bf:cc: 23:db:3a:72:cf:e5:4a:a4:46:f5:4d:2f:e0:ee:63:3a:c9:ea: fb:8b:b0:a2:21:c8:53:54:c6:cb:9c:37:f0:7a:e1:f4:a5:90: dd:35:6f:76:75:7e:dd:54:48:f9:91:f2:21:c0:69:5d:3e:04: 22:c8:66:56:b5:78:59:0b:49:67:64:9e:ec:ed:4e:1e:b1:3d: 49:3d:85:10:bc:78:13:4f:fc:b3:27:9b:c4:07:eb:42:9d:51: 9d:6f:90:87:80:37:a3:4a:c6:eb:30:31:de:65:37:80:28:ba: b9:b4:22:2d:0b:65:6b:15:11:1b:12:bd:e5:81:12:a9:0f:31: e4:9c:00:28:02:43:49:ce:a0:86:05:26:4c:50:29:09:92:88: c5:de:9a:57:ab:78:75:98:4e:c3:c5:b7:7d:59:47:cb:5e:63: 1c:7d:bc:c1:a2:81:0c:db:58:04:8b:af:94:56:da:e5:97:ab: 67:f6:eb:e8:50:0c:15:bd:6c:83:e6:e7:df:2b:ea:00:5a:77: a3:89:b5:93:7a:0f:70:25:ca:d8:74:71:d8:f1:ba:b8:41:1f: 87:cd:5c:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk4RkMxMTAvBgNVBAUTKEIzOTlCNEFEQTA3NTAxQTgyOUQ1NkYyMURBOEVCNURD MzIwMzRBNTYwHhcNMjQwNTE4MTkwNTU4WhcNMjQwNTI1MTkwNTU4WjAYMRYwFAYD VQQDEw02NjQ4ZmMxNi0wNmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoj8z2A9W7GdFQN+8QZa+ehnbWFuLrCCG1YT78PSEDTgrP++I4ggiEzYjqH+w qGmggShWMn1wnYi4GBQ23/nwlc1oIjfdoTSMAL6lpcpGEgWw7G/s5aKpXz97Ap4+ J9zygDQ0FjNEbZjUkcDyypWRyJViqFyy3rKM10B9txe94HWgXJQ/QH7bImKCi/A+ Pa5ME6iUl+3e3nxEsFWP/qY+1/Sbp/iKSWUWCtZH0NXwNBxyHHSHVSYVDXmZ/ozv /ioYcUZvLswVNPZElQu3SuUmjXPybGZ39zBKxSlogzOgxpjE+gW04VEQR9PdrEsa My/M6R9ckTXcVfvY7csO7K1dywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAoG6vLT 2Lxp5CJcegaKNJjWHdQ9MB8GA1UdIwQYMBaAFLOZtK2gdQGoKdVvIdqOtdwyA0pW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOThGQy8xQzg5OUUyNkY0 RUMxMUU5OEZCRTlCMEZDNEY5QUUwMi9zNW0wcmFCMUFhZ3AxVzhoMm82MTNESURT bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1bTByYUIxQWFncDFXOGgybzYxM0RJRFNsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OThGQy8xQzg5OUUyNkY0RUMxMUU5OEZCRTlCMEZDNEY5QUUwMi9zNW0wcmFCMUFh Z3AxVzhoMm82MTNESURTbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdrr+XwhMGx7hajlnDMLlqAyCKWZl098qZU84kV14euhBsv8wj2zpy z+VKpEb1TS/g7mM6yer7i7CiIchTVMbLnDfweuH0pZDdNW92dX7dVEj5kfIhwGld PgQiyGZWtXhZC0lnZJ7s7U4esT1JPYUQvHgTT/yzJ5vEB+tCnVGdb5CHgDejSsbr MDHeZTeAKLq5tCItC2VrFREbEr3lgRKpDzHknAAoAkNJzqCGBSZMUCkJkojF3ppX q3h1mE7Dxbd9WUfLXmMcfbzBooEM21gEi6+UVtrll6tn9uvoUAwVvWyD5uffK+oA WnejibWTeg9wJcrYdHHY8bq4QR+HzVy2 -----END CERTIFICATE-----Generated at Sat May 18 20:16:07 2024 by rpki-client on console-ams.rpki-client.org