$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft File: IAAAWsWhdEBL07_CmUMyPpYGJbk.mft (raw, json) Hash identifier: jf1RBR163hek6EMnEqgydtBIIegrMx/LwX7HvkyCYk4= Subject key identifier: B2:5E:11:F7:F5:27:E9:7A:62:07:B2:09:F1:68:6A:15:7D:9A:34:F2 Authority key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 Certificate issuer: /CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Certificate serial: 0289 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft Manifest number: 0284 Signing time: Fri 31 May 2024 04:18:13 +0000 Manifest this update: Fri 31 May 2024 04:18:12 +0000 Manifest next update: Fri 07 Jun 2024 04:18:12 +0000 Files and hashes: 1: IAAAWsWhdEBL07_CmUMyPpYGJbk.crl (hash: 6brR3FzJwCyLEcINhEqPeAyCPE+ByHKhbfh3irFvpKU=) 2: 09E46A74C07F11ECB0707F18C4F9AE02.roa (hash: NFHEfCpEER6CvkaGaVW8rkMzJ0zWJXrp5pmvd1v+A2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 04:18:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Validity Not Before: May 31 04:18:12 2024 GMT Not After : Jun 7 04:18:12 2024 GMT Subject: CN=66594f84-8f07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b3:96:7b:eb:96:b2:ed:b2:e8:9b:ce:3f:9c: f4:a1:14:50:bc:dc:25:da:b8:d5:ee:1a:fa:a3:28: 43:21:d1:ed:5c:dc:4f:23:65:74:a0:3b:da:3d:42: 61:c4:16:03:cf:81:e0:71:9d:f6:8b:b0:12:39:43: 4f:10:e5:2c:05:7c:b1:f1:38:47:b9:17:51:08:42: 47:75:ca:13:0e:21:f8:4e:80:76:bc:52:f3:ef:1f: 06:1f:9c:78:d5:70:eb:0e:20:d9:73:ba:69:26:e1: 9d:6a:3f:0d:45:18:41:64:be:66:1d:30:96:d8:7c: ad:27:2a:82:12:a5:60:cf:64:92:c4:09:3c:a6:a1: da:04:ac:b2:42:c6:b0:e0:92:8c:ca:ff:51:b9:6d: 18:d4:1b:b2:cb:a5:ef:52:b8:1c:9d:47:5e:b1:82: 77:e6:dd:dd:0c:94:9d:51:ff:79:82:81:be:9f:91: fb:6b:2d:df:0e:1a:9b:52:ef:3f:cb:01:59:e3:8f: d1:e9:18:57:cc:e5:02:34:b8:d8:79:71:4f:86:61: 60:cf:85:78:69:e9:30:c8:47:92:31:df:53:e4:ba: c7:8e:8e:e1:d5:7a:19:86:1a:c5:44:f6:0d:15:b0: e0:f5:6d:94:3e:5e:a7:46:91:8d:44:4d:8b:4a:99: fc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:5E:11:F7:F5:27:E9:7A:62:07:B2:09:F1:68:6A:15:7D:9A:34:F2 X509v3 Authority Key Identifier: keyid:20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:29:db:32:78:da:2e:fd:63:d4:67:b3:cd:60:2b:30:90:6e: e7:af:ca:34:1c:4b:8b:ac:b9:f5:b8:79:02:01:8e:45:e4:df: 65:64:e4:33:b4:1a:2d:a5:2c:77:d4:93:15:28:e2:f9:1e:f1: de:c3:df:d9:44:e9:75:c4:51:d9:17:0a:24:c4:cc:a3:2c:79: d2:26:70:aa:e7:0a:e0:c4:3e:4d:82:3f:2f:e5:be:cd:78:1c: e1:ff:f3:b0:31:ce:5f:3b:67:79:d5:6b:f2:ba:5c:41:22:f4: 27:16:27:74:6f:e3:68:22:96:be:35:8c:83:a9:0d:ff:c2:0b: ed:58:81:10:fa:5e:db:21:84:ab:f5:bc:77:f1:f2:0f:20:7a: 0e:51:53:7a:1d:1b:04:b0:91:26:38:fd:41:3f:7f:e4:73:35: 0f:98:4e:01:b2:1a:a0:3c:0f:52:6b:50:f0:85:05:40:8c:dd: 8e:a2:f5:9f:9a:de:56:c9:19:e7:9a:9f:c9:68:73:ed:af:9d: 7a:79:7e:a2:84:e6:27:43:ce:b3:7a:44:8c:90:5c:1a:c6:e5: 1b:79:27:34:db:83:7f:6d:9d:49:8e:21:6b:ae:6f:8b:3a:6f: f5:e9:c5:51:a3:6b:b3:34:53:90:07:76:ff:aa:0d:e2:2c:ae: e0:30:21:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1OTAxMTAvBgNVBAUTKDIwMDAwMDVBQzVBMTc0NDA0QkQzQkZDMjk5NDMzMjNF OTYwNjI1QjkwHhcNMjQwNTMxMDQxODEyWhcNMjQwNjA3MDQxODEyWjAYMRYwFAYD VQQDEw02NjU5NGY4NC04ZjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7OWe+uWsu2y6JvOP5z0oRRQvNwl2rjV7hr6oyhDIdHtXNxPI2V0oDvaPUJh xBYDz4HgcZ32i7ASOUNPEOUsBXyx8ThHuRdRCEJHdcoTDiH4ToB2vFLz7x8GH5x4 1XDrDiDZc7ppJuGdaj8NRRhBZL5mHTCW2HytJyqCEqVgz2SSxAk8pqHaBKyyQsaw 4JKMyv9RuW0Y1Buyy6XvUrgcnUdesYJ35t3dDJSdUf95goG+n5H7ay3fDhqbUu8/ ywFZ44/R6RhXzOUCNLjYeXFPhmFgz4V4aekwyEeSMd9T5LrHjo7h1XoZhhrFRPYN FbDg9W2UPl6nRpGNRE2LSpn8NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJeEff1 J+l6YgeyCfFoahV9mjTyMB8GA1UdIwQYMBaAFCAAAFrFoXRAS9O/wplDMj6WBiW5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTU5MC85NTEwRTg2QUMw N0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRFQkwwN19DbVVNeVBwWUdK YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBQUFXc1doZEVCTDA3X0NtVU15UHBZR0piay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTU5MC85NTEwRTg2QUMwN0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRF QkwwN19DbVVNeVBwWUdKYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANKdsyeNou/WPUZ7PNYCswkG7nr8o0HEuLrLn1uHkCAY5F5N9lZOQz tBotpSx31JMVKOL5HvHew9/ZROl1xFHZFwokxMyjLHnSJnCq5wrgxD5Ngj8v5b7N eBzh//OwMc5fO2d51WvyulxBIvQnFid0b+NoIpa+NYyDqQ3/wgvtWIEQ+l7bIYSr 9bx38fIPIHoOUVN6HRsEsJEmOP1BP3/kczUPmE4BshqgPA9Sa1DwhQVAjN2OovWf mt5WyRnnmp/JaHPtr516eX6ihOYnQ86zekSMkFwaxuUbeSc024N/bZ1JjiFrrm+L Om/16cVRo2uzNFOQB3b/qg3iLK7gMCGj -----END CERTIFICATE-----Generated at Fri May 31 06:49:27 2024 by rpki-client on console-ams.rpki-client.org