$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9E49/04049D0841A211EA9F269587C4F9AE02/4JI7Cl99XGi66s5BQV9CpSDXSyo.mft File: 4JI7Cl99XGi66s5BQV9CpSDXSyo.mft (raw, json) Hash identifier: c0pKKwrhCXnf7lJmPav1DEHY46LU9cn8vzmPdkgd7vc= Subject key identifier: 12:89:02:52:9B:33:98:CF:FB:AB:B5:E6:8D:D4:6D:45:D1:3E:FD:ED Authority key identifier: E0:92:3B:0A:5F:7D:5C:68:BA:EA:CE:41:41:5F:42:A5:20:D7:4B:2A Certificate issuer: /CN=A91D9E49/serialNumber=E0923B0A5F7D5C68BAEACE41415F42A520D74B2A Certificate serial: 0A50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JI7Cl99XGi66s5BQV9CpSDXSyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9E49/04049D0841A211EA9F269587C4F9AE02/4JI7Cl99XGi66s5BQV9CpSDXSyo.mft Manifest number: 0A49 Signing time: Sat 18 May 2024 20:25:29 +0000 Manifest this update: Sat 18 May 2024 20:25:28 +0000 Manifest next update: Sat 25 May 2024 20:25:28 +0000 Files and hashes: 1: 4JI7Cl99XGi66s5BQV9CpSDXSyo.crl (hash: TjMS/QR3CpMt9z+L4OJaL0FzUII5HyGPpUDNkazBHcU=) 2: 4CC0341641A311EABAADCE0AC4F9AE02.roa (hash: 4gX6ptBwddfrFYLEAkZCoulGBfjSY3z6D4r2Ab8w1lI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9E49/04049D0841A211EA9F269587C4F9AE02/4JI7Cl99XGi66s5BQV9CpSDXSyo.crl rsync://rpki.apnic.net/member_repository/A91D9E49/04049D0841A211EA9F269587C4F9AE02/4JI7Cl99XGi66s5BQV9CpSDXSyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JI7Cl99XGi66s5BQV9CpSDXSyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2640 (0xa50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9E49/serialNumber=E0923B0A5F7D5C68BAEACE41415F42A520D74B2A Validity Not Before: May 18 20:25:28 2024 GMT Not After : May 25 20:25:28 2024 GMT Subject: CN=66490eb9-13b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:18:47:09:17:8d:a8:67:2a:e4:5b:18:b8:4a: 96:11:a0:12:0b:5e:0a:32:44:24:f1:60:dd:d5:71: a5:cf:1b:32:7c:f9:8a:97:91:d4:24:41:63:fc:fc: 1f:bf:cb:e2:fe:a3:00:05:5b:8c:3a:ed:83:cd:03: be:50:39:cd:bf:be:d2:6e:69:ad:75:08:cb:c7:a2: 7f:f6:bf:9e:2b:3b:29:91:a5:f3:94:55:c7:79:e3: 7a:ab:24:ce:8f:06:cc:fc:fc:96:2f:12:e8:aa:be: b1:a6:9c:bc:61:f4:16:da:6b:8f:cb:82:42:36:e2: e7:76:d9:96:95:50:c3:ad:99:16:e3:7c:67:cf:85: 92:06:36:d2:e7:8a:56:a4:9f:23:4f:5e:b9:6e:f8: b9:e3:88:97:a9:c9:8e:2f:a7:a0:a2:5f:41:2c:38: cb:2a:2b:16:10:17:bd:08:c9:b8:43:a1:1f:6f:97: 6f:5b:a4:43:0e:01:fe:82:e4:c7:e8:c4:db:7f:bd: 94:48:ed:de:d6:0a:e4:27:8d:18:f2:a0:b2:ea:b9: 3c:4c:98:0a:a0:ae:59:83:6d:d7:34:d1:f1:55:9d: 18:85:37:43:b6:d8:70:43:12:ca:92:da:73:87:5f: d3:aa:ba:f3:40:c9:22:47:4f:b5:a3:6e:ed:ad:92: 72:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:89:02:52:9B:33:98:CF:FB:AB:B5:E6:8D:D4:6D:45:D1:3E:FD:ED X509v3 Authority Key Identifier: keyid:E0:92:3B:0A:5F:7D:5C:68:BA:EA:CE:41:41:5F:42:A5:20:D7:4B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9E49/04049D0841A211EA9F269587C4F9AE02/4JI7Cl99XGi66s5BQV9CpSDXSyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JI7Cl99XGi66s5BQV9CpSDXSyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9E49/04049D0841A211EA9F269587C4F9AE02/4JI7Cl99XGi66s5BQV9CpSDXSyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:ee:22:c4:35:f4:2e:22:33:77:97:e7:88:df:c4:6a:91:7b: 89:02:f9:04:10:25:b4:54:35:f6:67:36:21:9d:34:31:ea:ae: ae:3b:37:e7:39:a1:b6:51:db:08:bf:88:16:6f:72:ae:47:40: 22:a1:82:45:ac:0b:be:e3:17:11:f2:ea:c6:e6:90:db:74:d1: 03:ed:f6:33:6a:5d:7f:74:5b:de:ab:b5:47:5d:d7:b4:99:12: 21:0f:9e:cf:ef:bd:ad:8c:e7:5e:7f:f9:6b:55:6f:c7:2f:56: 5e:99:e3:7a:d7:44:97:49:85:aa:1e:69:5a:17:76:13:9c:20: 9e:e4:06:70:68:f0:ea:a3:8d:e4:45:6b:a1:1b:58:47:fa:5e: 72:33:ea:83:38:9c:e9:00:ba:23:b4:7a:ec:31:8f:08:41:26: 1d:ae:18:af:3a:f2:3e:6a:d5:9b:91:4e:58:6c:9c:df:14:9f: b4:e8:bd:b5:04:91:06:09:4b:13:d0:ca:f8:cc:36:2a:d2:cd: 0e:34:e8:f2:b1:a6:89:f7:21:60:76:48:a3:57:2d:b3:bb:3e: ae:ed:7a:c9:a4:2e:b7:6f:1c:26:bb:d0:25:1e:b8:30:9d:bb: 23:be:52:11:c0:3c:4a:09:3d:eb:8c:d9:7e:3a:a6:59:11:23: 3f:3a:ac:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlFNDkxMTAvBgNVBAUTKEUwOTIzQjBBNUY3RDVDNjhCQUVBQ0U0MTQxNUY0MkE1 MjBENzRCMkEwHhcNMjQwNTE4MjAyNTI4WhcNMjQwNTI1MjAyNTI4WjAYMRYwFAYD VQQDEw02NjQ5MGViOS0xM2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRhHCReNqGcq5FsYuEqWEaASC14KMkQk8WDd1XGlzxsyfPmKl5HUJEFj/Pwf v8vi/qMABVuMOu2DzQO+UDnNv77SbmmtdQjLx6J/9r+eKzspkaXzlFXHeeN6qyTO jwbM/PyWLxLoqr6xppy8YfQW2muPy4JCNuLndtmWlVDDrZkW43xnz4WSBjbS54pW pJ8jT165bvi544iXqcmOL6egol9BLDjLKisWEBe9CMm4Q6Efb5dvW6RDDgH+guTH 6MTbf72USO3e1grkJ40Y8qCy6rk8TJgKoK5Zg23XNNHxVZ0YhTdDtthwQxLKktpz h1/TqrrzQMkiR0+1o27trZJyAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKJAlKb M5jP+6u15o3UbUXRPv3tMB8GA1UdIwQYMBaAFOCSOwpffVxouurOQUFfQqUg10sq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUU0OS8wNDA0OUQwODQx QTIxMUVBOUYyNjk1ODdDNEY5QUUwMi80Skk3Q2w5OVhHaTY2czVCUVY5Q3BTRFhT eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRKSTdDbDk5WEdpNjZzNUJRVjlDcFNEWFN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUU0OS8wNDA0OUQwODQxQTIxMUVBOUYyNjk1ODdDNEY5QUUwMi80Skk3Q2w5OVhH aTY2czVCUVY5Q3BTRFhTeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn7iLENfQuIjN3l+eI38RqkXuJAvkEECW0VDX2ZzYhnTQx6q6uOzfn OaG2UdsIv4gWb3KuR0AioYJFrAu+4xcR8urG5pDbdNED7fYzal1/dFveq7VHXde0 mRIhD57P772tjOdef/lrVW/HL1ZemeN610SXSYWqHmlaF3YTnCCe5AZwaPDqo43k RWuhG1hH+l5yM+qDOJzpALojtHrsMY8IQSYdrhivOvI+atWbkU5YbJzfFJ+06L21 BJEGCUsT0Mr4zDYq0s0ONOjysaaJ9yFgdkijVy2zuz6u7XrJpC63bxwmu9AlHrgw nbsjvlIRwDxKCT3rjNl+OqZZESM/OqzP -----END CERTIFICATE-----Generated at Sat May 18 21:31:32 2024 by rpki-client on console-ams.rpki-client.org