$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft File: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft (raw, json) Hash identifier: S8xl83F1cob3DU1KwsL5GvfkgjZqb25TMtLHDr9bhNk= Subject key identifier: C2:15:24:ED:DA:DD:33:8A:ED:D1:2A:DE:9B:07:A5:D8:2F:19:F4:F4 Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft Manifest number: FC Signing time: Sun 19 May 2024 05:38:31 +0000 Manifest this update: Sun 19 May 2024 05:38:31 +0000 Manifest next update: Sun 26 May 2024 05:38:30 +0000 Files and hashes: 1: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl (hash: nYk4MFKpck30h7FyegZ1IL3p5OXaFMAtrhxnIHKuBoE=) 2: F41B795490C511EDA07C3025C4F9AE02.roa (hash: dNEoEyeAi95Co85zt2kwlrsirilS9aclVux/GGaj3ZU=) 3: F4D5EBF490C511EDA07C3025C4F9AE02.roa (hash: 1rgt0+rQ3Dub709HW/O/W4oJXJYJkQ3NKVM+Csjy/RQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Validity Not Before: May 19 05:38:31 2024 GMT Not After : May 26 05:38:30 2024 GMT Subject: CN=66499057-98b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:73:44:56:90:02:f8:2e:b4:1a:50:a3:24:bd: 0a:88:c8:d8:b7:1b:59:7f:c9:4a:8b:9b:70:74:df: b8:f5:75:af:08:18:2b:07:9c:41:ad:6a:42:3d:e6: ec:5c:3d:74:6f:ef:5e:48:23:77:e4:36:32:9d:b7: ba:1c:64:1c:13:64:0b:7d:6c:7e:e5:e8:0f:ee:01: 51:5d:36:e4:76:23:09:e5:35:b2:f8:b8:65:e2:75: 42:ab:27:6e:52:a5:d0:61:15:72:f0:e1:bb:72:17: ff:6f:35:dc:32:c2:f7:fc:38:cb:6f:e4:89:d2:c1: 79:8b:92:98:1e:03:18:42:b9:a8:3e:11:ec:68:b3: 20:b4:da:73:8f:63:c6:07:8b:d0:8d:1e:1f:0b:b2: df:28:b4:e7:e6:cc:88:c3:0a:ad:5c:6d:e3:d1:eb: 2a:9a:42:c9:a8:bb:fb:a4:2e:c2:1d:d1:d8:f0:bb: 87:d6:f1:4a:35:02:0e:a6:67:c3:25:3d:aa:6f:af: b8:1e:a3:7d:07:d5:65:2e:ea:72:0e:c1:5d:75:6e: 16:af:0b:c8:bf:1b:e0:48:12:94:da:ae:34:71:48: e5:7d:16:1c:f9:ed:95:5b:1a:39:20:ae:81:08:c1: ab:e4:d1:81:f7:93:39:7f:04:21:ad:1b:28:e4:eb: a1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:15:24:ED:DA:DD:33:8A:ED:D1:2A:DE:9B:07:A5:D8:2F:19:F4:F4 X509v3 Authority Key Identifier: keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:fe:26:ea:10:98:1e:52:a0:f0:ca:23:4b:96:6d:89:eb:81: 19:bf:22:d1:0a:ca:62:fc:75:cf:28:13:c2:02:bc:e2:cd:05: fe:c2:aa:b0:4b:bc:f8:3b:cd:d0:c9:74:6b:fe:51:20:0b:05: 52:28:b2:f6:9b:7d:0e:98:c9:62:4b:3c:4c:59:20:ff:08:1d: fe:5a:ff:4c:83:fb:3c:59:47:25:b7:69:97:22:4f:1d:e9:4a: fa:b9:6c:4c:45:20:9e:6c:62:c8:60:02:7b:77:e0:30:64:96: 8c:c3:db:36:37:a2:4c:5a:40:f0:7f:d6:99:32:e2:89:ac:4a: 32:58:41:32:02:92:45:c5:f4:c3:32:0f:0e:5e:2c:35:7a:8a: 7e:25:69:34:16:05:a8:cd:a4:41:40:0f:49:20:b7:63:d5:e5: eb:44:38:cc:6d:66:b3:8f:ad:d0:3c:cd:6c:04:6a:e2:78:28: d9:b8:f9:1e:42:93:6c:16:54:f4:17:ed:76:0a:c8:1e:19:48: 4f:33:94:30:9f:6a:5b:df:b5:d0:4a:0c:83:b0:e8:ad:70:1c: 57:74:05:ce:45:99:37:c9:bd:d9:da:f7:09:12:13:d3:b1:e7: 39:25:e9:76:fc:d7:45:97:db:03:86:da:c1:c8:ed:f4:6e:32: 31:5f:4a:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE QjczNzA5QkIwHhcNMjQwNTE5MDUzODMxWhcNMjQwNTI2MDUzODMwWjAYMRYwFAYD VQQDEw02NjQ5OTA1Ny05OGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXNEVpAC+C60GlCjJL0KiMjYtxtZf8lKi5twdN+49XWvCBgrB5xBrWpCPebs XD10b+9eSCN35DYynbe6HGQcE2QLfWx+5egP7gFRXTbkdiMJ5TWy+Lhl4nVCqydu UqXQYRVy8OG7chf/bzXcMsL3/DjLb+SJ0sF5i5KYHgMYQrmoPhHsaLMgtNpzj2PG B4vQjR4fC7LfKLTn5syIwwqtXG3j0esqmkLJqLv7pC7CHdHY8LuH1vFKNQIOpmfD JT2qb6+4HqN9B9VlLupyDsFddW4WrwvIvxvgSBKU2q40cUjlfRYc+e2VWxo5IK6B CMGr5NGB95M5fwQhrRso5OuhgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIVJO3a 3TOK7dEq3psHpdgvGfT0MB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAxNy8xMDVBQzhGQzkwQzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNP SjZXQjJKUkdXOXpiYzNDYnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH/ibqEJgeUqDwyiNLlm2J64EZvyLRCspi/HXPKBPCArzizQX+wqqw S7z4O83QyXRr/lEgCwVSKLL2m30OmMliSzxMWSD/CB3+Wv9Mg/s8WUclt2mXIk8d 6Ur6uWxMRSCebGLIYAJ7d+AwZJaMw9s2N6JMWkDwf9aZMuKJrEoyWEEyApJFxfTD Mg8OXiw1eop+JWk0FgWozaRBQA9JILdj1eXrRDjMbWazj63QPM1sBGrieCjZuPke QpNsFlT0F+12CsgeGUhPM5Qwn2pb37XQSgyDsOitcBxXdAXORZk3yb3Z2vcJEhPT sec5Jel2/NdFl9sDhtrByO30bjIxX0ot -----END CERTIFICATE-----Generated at Sun May 19 06:14:36 2024 by rpki-client on console-ams.rpki-client.org