$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft File: wQgOZhsN-mIOsJqrLerWA0uCjrw.mft (raw, json) Hash identifier: +3dyA5X+V0Z5H6i6B70xOXAL5jNcvjA9RPZ0N3PW8vs= Subject key identifier: C6:B6:F7:B8:AB:51:EB:C7:41:D8:B0:D0:C9:AC:47:B9:A5:DA:CA:B8 Authority key identifier: C1:08:0E:66:1B:0D:FA:62:0E:B0:9A:AB:2D:EA:D6:03:4B:82:8E:BC Certificate issuer: /CN=A91DB0C1/serialNumber=C1080E661B0DFA620EB09AAB2DEAD6034B828EBC Certificate serial: 1825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft Manifest number: 181E Signing time: Sat 18 May 2024 16:57:00 +0000 Manifest this update: Sat 18 May 2024 16:57:00 +0000 Manifest next update: Sat 25 May 2024 16:57:00 +0000 Files and hashes: 1: wQgOZhsN-mIOsJqrLerWA0uCjrw.crl (hash: h7eI53a4/b4LOR5i2tUK1J5f0dzVFAwLa8iUkIBTu5c=) 2: 35D9F1BE8A7C11E79774186BC4F9AE02.roa (hash: 1EJUO4DjT9jY9XfMKn0QnO76OngmdociHxy/agN9wXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.crl rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6181 (0x1825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C1/serialNumber=C1080E661B0DFA620EB09AAB2DEAD6034B828EBC Validity Not Before: May 18 16:57:00 2024 GMT Not After : May 25 16:57:00 2024 GMT Subject: CN=6648dddc-163b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c9:84:35:3b:b0:ef:73:04:f1:21:63:b1:a9: 65:f9:fc:be:af:61:f6:82:b0:23:11:1b:b3:a0:7d: ad:fc:ec:57:7f:ff:78:88:25:5b:a0:2c:fd:89:c7: d5:ad:fe:e1:fb:d0:5e:be:75:19:b2:f9:d6:a4:45: ec:bf:4d:fc:1b:40:17:c8:8e:4b:8e:74:f4:cb:b4: 78:13:6f:37:b9:5d:8b:5d:74:a3:36:9a:20:3a:bb: b2:d8:6b:6e:2e:19:b2:8f:8a:a1:ef:84:e5:c3:3e: 8d:ec:db:a8:f4:4b:d3:fb:e2:c1:8b:53:5c:a7:60: 6d:7e:0c:ba:50:db:97:e2:bf:5d:a9:a4:96:20:88: 4f:f7:09:53:2d:d3:78:62:af:33:de:ea:f4:d3:b0: e7:31:4f:51:ca:c8:e6:c7:91:89:60:06:96:94:ac: 8f:28:17:c1:94:cc:af:c6:e7:62:8b:aa:ad:c3:ea: ac:eb:6e:f8:20:a7:4c:88:ad:c1:33:f7:86:03:9b: 08:52:92:38:48:15:9b:fb:e5:2f:74:a2:8e:a6:22: df:11:73:a3:5c:2b:64:5b:33:c1:98:53:d1:f5:14: c8:39:6d:ff:d4:df:e1:53:3a:d4:96:b3:67:60:fc: cf:43:a6:73:57:bc:4f:27:bd:c8:4c:23:88:c7:51: 00:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B6:F7:B8:AB:51:EB:C7:41:D8:B0:D0:C9:AC:47:B9:A5:DA:CA:B8 X509v3 Authority Key Identifier: keyid:C1:08:0E:66:1B:0D:FA:62:0E:B0:9A:AB:2D:EA:D6:03:4B:82:8E:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:47:cf:c7:6c:c5:39:89:a9:78:a1:cc:59:97:1f:29:ea:83: f6:d4:dd:8d:8e:f8:de:ec:8f:7e:d7:22:82:aa:a6:42:95:3e: 6c:a7:bd:00:c0:61:65:a2:d9:29:f6:2b:f4:b9:66:86:46:02: 2f:66:02:40:9d:6d:19:95:95:c4:c4:46:ed:e0:d1:b9:46:c6: b7:9b:41:63:7f:2d:af:43:ee:3b:c2:bc:34:b8:cf:9b:cf:7c: 32:d0:96:d3:85:7f:ba:88:38:66:bb:6f:af:67:71:05:a1:85: 37:45:47:53:86:f7:f2:77:7d:2d:1e:5c:e8:9c:30:d1:66:ab: 3c:78:6e:9b:f4:21:c1:a5:04:1b:88:3f:27:55:cd:29:a6:be: 2d:b9:b8:6f:37:6c:e7:f0:17:f8:39:a8:0f:37:ed:88:af:cb: 0c:2b:cd:55:6d:7a:32:db:d0:f3:77:3a:20:2c:45:f0:a0:ac: 99:42:b0:32:3f:8d:6d:3f:24:56:63:e0:f5:f6:25:1b:85:63: 51:48:f3:1e:d8:0e:6f:db:88:91:95:bd:5a:a5:a9:3a:c5:21: 62:f2:55:e0:04:8f:bf:e6:50:45:99:9e:85:59:9a:fd:ad:6d: 56:84:68:f9:4c:56:48:e0:c5:33:4e:ad:2e:c6:58:0a:2f:dd: 64:79:1a:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzExMTAvBgNVBAUTKEMxMDgwRTY2MUIwREZBNjIwRUIwOUFBQjJERUFENjAz NEI4MjhFQkMwHhcNMjQwNTE4MTY1NzAwWhcNMjQwNTI1MTY1NzAwWjAYMRYwFAYD VQQDEw02NjQ4ZGRkYy0xNjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8mENTuw73ME8SFjsall+fy+r2H2grAjERuzoH2t/OxXf/94iCVboCz9icfV rf7h+9BevnUZsvnWpEXsv038G0AXyI5LjnT0y7R4E283uV2LXXSjNpogOruy2Gtu Lhmyj4qh74Tlwz6N7Nuo9EvT++LBi1Ncp2Btfgy6UNuX4r9dqaSWIIhP9wlTLdN4 Yq8z3ur007DnMU9Rysjmx5GJYAaWlKyPKBfBlMyvxudii6qtw+qs6274IKdMiK3B M/eGA5sIUpI4SBWb++UvdKKOpiLfEXOjXCtkWzPBmFPR9RTIOW3/1N/hUzrUlrNn YPzPQ6ZzV7xPJ73ITCOIx1EAAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMa297ir UevHQdiw0MmsR7ml2sq4MB8GA1UdIwQYMBaAFMEIDmYbDfpiDrCaqy3q1gNLgo68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMS84MDJDMjQzMjhB N0ExMUU3OTlFOUY3NjRDNEY5QUUwMi93UWdPWmhzTi1tSU9zSnFyTGVyV0EwdUNq cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dRZ09aaHNOLW1JT3NKcXJMZXJXQTB1Q2pydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMS84MDJDMjQzMjhBN0ExMUU3OTlFOUY3NjRDNEY5QUUwMi93UWdPWmhzTi1t SU9zSnFyTGVyV0EwdUNqcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjR8/HbMU5ial4ocxZlx8p6oP21N2Njvje7I9+1yKCqqZClT5sp70A wGFlotkp9iv0uWaGRgIvZgJAnW0ZlZXExEbt4NG5Rsa3m0Fjfy2vQ+47wrw0uM+b z3wy0JbThX+6iDhmu2+vZ3EFoYU3RUdThvfyd30tHlzonDDRZqs8eG6b9CHBpQQb iD8nVc0ppr4tubhvN2zn8Bf4OagPN+2Ir8sMK81VbXoy29DzdzogLEXwoKyZQrAy P41tPyRWY+D19iUbhWNRSPMe2A5v24iRlb1apak6xSFi8lXgBI+/5lBFmZ6FWZr9 rW1WhGj5TFZI4MUzTq0uxlgKL91keRof -----END CERTIFICATE-----Generated at Sat May 18 18:21:40 2024 by rpki-client on console-ams.rpki-client.org