$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.mft File: 67tHPRcLa4MG0eFsi5UjNK3UDxA.mft (raw, json) Hash identifier: MBdqzwBpmnhFSUYvBsbO6DQ3iZ8GD1rJcrTLah/gAO4= Subject key identifier: 5F:66:A9:6F:21:ED:7C:00:68:7E:EA:ED:87:E2:07:5F:3B:8E:DC:6B Authority key identifier: EB:BB:47:3D:17:0B:6B:83:06:D1:E1:6C:8B:95:23:34:AD:D4:0F:10 Certificate issuer: /CN=A91D9F5A/serialNumber=EBBB473D170B6B8306D1E16C8B952334ADD40F10 Certificate serial: 06C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67tHPRcLa4MG0eFsi5UjNK3UDxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.mft Manifest number: 06BF Signing time: Sat 18 May 2024 23:03:39 +0000 Manifest this update: Sat 18 May 2024 23:03:39 +0000 Manifest next update: Sat 25 May 2024 23:03:39 +0000 Files and hashes: 1: 67tHPRcLa4MG0eFsi5UjNK3UDxA.crl (hash: wV7xxjA/SqEke3pYb4gV74DUbf/HY0wluQQCzs6Kezk=) 2: 1ACA9A7011BC11EBA0759F52C4F9AE02.roa (hash: 1/WmY9YBhKiu5MIvT1vmw+1SrQM0aVWoRuNlt6WnK0s=) 3: 1A0FD01411BC11EBA0759F52C4F9AE02.roa (hash: 0XN9EZ4o4OF/LsbCrndQVN6EKGwIuwGsOPBGXuiVcqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.crl rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67tHPRcLa4MG0eFsi5UjNK3UDxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F5A/serialNumber=EBBB473D170B6B8306D1E16C8B952334ADD40F10 Validity Not Before: May 18 23:03:39 2024 GMT Not After : May 25 23:03:39 2024 GMT Subject: CN=664933cb-88bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a4:ba:99:56:83:ad:b9:a9:3a:96:44:31:f6: 6f:55:52:8d:63:8d:72:db:1d:2e:6d:71:cd:fd:24: 49:fa:63:26:2b:0b:fc:16:dc:ff:0c:50:f2:78:b0: 24:85:86:d7:f8:a8:d2:3f:1b:70:8f:08:ac:a3:ed: bf:c9:33:df:fa:ad:ae:8d:0a:bd:19:34:15:33:fe: 31:c8:a2:e9:74:ab:3e:e5:9c:6d:dd:e4:8a:f3:24: 18:a7:c3:43:59:46:ad:73:d1:92:72:d3:05:25:86: d0:b1:73:35:d1:07:a2:16:0f:44:f9:32:ed:77:95: c4:1c:5b:00:da:ac:4b:55:ab:40:6c:63:94:0d:9d: dd:36:d8:15:c3:d0:71:64:dd:2c:15:dc:d1:21:9b: 32:d5:db:c2:57:0d:c8:a2:bb:e6:61:67:62:54:e4: 45:3d:65:fc:19:86:33:c7:69:d4:78:ca:c8:65:50: 35:11:2e:84:af:35:f0:b5:da:1f:cb:30:ca:a7:12: 5e:85:48:30:b4:d0:5b:c4:80:82:b2:29:ad:79:34: a6:a6:dd:bf:b6:aa:3a:d0:ca:b5:98:fb:be:ef:2d: 01:c2:cf:30:74:22:59:69:70:0c:8c:1d:b3:ac:5e: d9:8b:db:82:1c:8f:73:5f:cf:dc:d1:19:fa:dc:72: f8:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:66:A9:6F:21:ED:7C:00:68:7E:EA:ED:87:E2:07:5F:3B:8E:DC:6B X509v3 Authority Key Identifier: keyid:EB:BB:47:3D:17:0B:6B:83:06:D1:E1:6C:8B:95:23:34:AD:D4:0F:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67tHPRcLa4MG0eFsi5UjNK3UDxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:90:4b:75:3b:35:51:0d:96:03:8c:22:e9:6e:d0:4d:cb:6e: bd:6a:f7:f9:5d:19:f6:c9:e8:45:5f:7e:ae:6b:11:a3:c0:32: cc:04:8c:26:a9:df:99:c3:cb:5f:06:5b:b4:0c:2b:23:10:da: 10:2a:2b:d6:89:f1:61:25:2b:00:81:3f:e8:b6:c7:e3:b9:72: 65:f2:ea:25:13:35:58:be:89:d0:90:94:27:11:89:4f:af:74: 47:09:cd:96:a2:56:fe:8c:2b:ce:d0:f6:f1:4a:9e:f8:0b:b9: 5d:48:56:8e:02:0d:ce:66:8a:32:73:23:d9:85:8e:1d:4e:98: 7f:53:ed:e0:17:fb:18:0c:98:da:75:f6:fd:ac:eb:34:fa:67: 9a:1f:e7:5d:c4:d9:21:65:6e:f4:37:23:87:27:fb:f8:b3:e4: fc:ea:ec:a5:a7:34:37:f5:15:10:7c:96:f8:1d:ac:05:54:f4: 18:26:0e:6e:3c:40:79:ca:33:eb:36:b4:4b:9a:66:07:2f:e2: 66:fa:6c:93:1b:82:e8:2d:92:18:63:2b:bb:2f:1b:36:c5:ad: b3:98:44:f2:42:db:4e:c1:3f:b7:79:88:b1:da:f7:5c:bc:1c: 23:28:99:eb:0c:ec:ed:81:0a:6f:6f:b2:6a:55:00:77:90:3c: 0e:85:47:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlGNUExMTAvBgNVBAUTKEVCQkI0NzNEMTcwQjZCODMwNkQxRTE2QzhCOTUyMzM0 QURENDBGMTAwHhcNMjQwNTE4MjMwMzM5WhcNMjQwNTI1MjMwMzM5WjAYMRYwFAYD VQQDEw02NjQ5MzNjYi04OGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KS6mVaDrbmpOpZEMfZvVVKNY41y2x0ubXHN/SRJ+mMmKwv8Ftz/DFDyeLAk hYbX+KjSPxtwjwiso+2/yTPf+q2ujQq9GTQVM/4xyKLpdKs+5Zxt3eSK8yQYp8ND WUatc9GSctMFJYbQsXM10QeiFg9E+TLtd5XEHFsA2qxLVatAbGOUDZ3dNtgVw9Bx ZN0sFdzRIZsy1dvCVw3IorvmYWdiVORFPWX8GYYzx2nUeMrIZVA1ES6ErzXwtdof yzDKpxJehUgwtNBbxICCsimteTSmpt2/tqo60Mq1mPu+7y0Bws8wdCJZaXAMjB2z rF7Zi9uCHI9zX8/c0Rn63HL4JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9mqW8h 7XwAaH7q7YfiB187jtxrMB8GA1UdIwQYMBaAFOu7Rz0XC2uDBtHhbIuVIzSt1A8Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUY1QS8wODk4QjIzQTEx QkExMUVCQkMxQTU4NENDNEY5QUUwMi82N3RIUFJjTGE0TUcwZUZzaTVVak5LM1VE eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3dEhQUmNMYTRNRzBlRnNpNVVqTkszVUR4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUY1QS8wODk4QjIzQTExQkExMUVCQkMxQTU4NENDNEY5QUUwMi82N3RIUFJjTGE0 TUcwZUZzaTVVak5LM1VEeEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAckEt1OzVRDZYDjCLpbtBNy269avf5XRn2yehFX36uaxGjwDLMBIwm qd+Zw8tfBlu0DCsjENoQKivWifFhJSsAgT/otsfjuXJl8uolEzVYvonQkJQnEYlP r3RHCc2Wolb+jCvO0PbxSp74C7ldSFaOAg3OZooycyPZhY4dTph/U+3gF/sYDJja dfb9rOs0+meaH+ddxNkhZW70NyOHJ/v4s+T86uylpzQ39RUQfJb4HawFVPQYJg5u PEB5yjPrNrRLmmYHL+Jm+myTG4LoLZIYYyu7Lxs2xa2zmETyQttOwT+3eYix2vdc vBwjKJnrDOztgQpvb7JqVQB3kDwOhUcW -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org