$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft File: rC4NP0JyIX_vudMtzhozLelqOF4.mft (raw, json) Hash identifier: r1fwFlL+z2q73lz2oVJWq8eDTYc/REKDHvKl6gdS5QU= Subject key identifier: 8E:36:2A:98:C6:5A:DA:A3:EB:8F:89:3F:64:BF:EC:18:23:6F:82:52 Authority key identifier: AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E Certificate issuer: /CN=A91DD5E1/serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Certificate serial: 07DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft Manifest number: 07D8 Signing time: Sat 18 May 2024 22:00:01 +0000 Manifest this update: Sat 18 May 2024 22:00:01 +0000 Manifest next update: Sat 25 May 2024 22:00:01 +0000 Files and hashes: 1: rC4NP0JyIX_vudMtzhozLelqOF4.crl (hash: a43FCkST1nNsO7I4mwNHFf460xf4EbruMEWcWbKIBg4=) 2: E034D1A6BC6F11EA8FE53280C4F9AE02.roa (hash: RwQwosRhz2AHGPwLeWu416NxaFDqzVxgnklEup4iGUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2015 (0x7df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5E1/serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Validity Not Before: May 18 22:00:01 2024 GMT Not After : May 25 22:00:01 2024 GMT Subject: CN=664924e1-5f3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:06:bc:ee:8a:10:32:15:85:cc:ea:e8:10:b0: 7a:23:a0:0c:ba:f8:ce:b1:06:6f:45:ba:66:29:65: d0:5d:fe:32:58:4c:c6:69:90:79:2a:62:99:f5:e9: d8:a1:08:53:d4:62:85:e8:ee:f3:79:16:3a:93:a4: 99:8e:89:8e:70:81:8e:a1:79:86:ae:ce:52:84:cc: 0b:93:25:7e:a5:54:ee:ce:ee:5d:e5:97:1b:2b:e9: 8e:15:7b:33:1d:cc:84:33:03:82:c9:9b:5a:17:6a: 3e:eb:88:0f:88:4d:0f:c5:fa:6f:a5:b2:84:0a:e2: 6e:46:6b:6f:8e:e7:66:8b:1e:8c:a1:f9:a5:67:97: 7f:6e:4a:3c:42:31:f7:53:fd:15:b1:aa:88:e1:c3: 9a:61:cc:6d:4b:1e:ac:c2:8d:c1:b6:57:54:5e:17: 59:6f:c8:ba:f0:0a:8d:63:b1:df:9d:10:a2:10:b4: 3f:15:7a:a6:9a:64:e7:74:76:de:e5:95:6f:74:e0: fb:87:c0:1f:52:1a:06:ef:cb:3d:eb:d0:e8:2f:50: 0a:f8:2c:26:75:89:6d:7e:e5:79:e8:83:68:94:1b: c5:53:67:36:a0:6e:a0:75:41:db:2c:07:c3:c9:88: ec:13:56:4c:6b:56:60:ee:6a:22:6b:2f:c2:cd:8e: 2e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:36:2A:98:C6:5A:DA:A3:EB:8F:89:3F:64:BF:EC:18:23:6F:82:52 X509v3 Authority Key Identifier: keyid:AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:43:84:67:0f:b3:c5:3e:0a:af:0e:1c:56:06:df:6e:27:f7: f6:0e:ea:89:1b:63:8b:22:cd:b9:3d:32:57:cf:a5:b6:96:63: 42:54:aa:73:5d:a2:9d:7b:f1:51:80:d4:6e:6f:ec:31:ce:fb: cd:ea:3b:2f:1e:58:e0:32:0e:a3:ef:27:e3:72:54:83:21:72: 4c:9f:24:fe:36:c7:11:02:a8:df:00:8a:b2:70:4d:22:1a:b2: bb:f0:ce:c1:44:0b:87:7e:78:96:8a:cc:ee:7b:fe:24:03:9a: 02:8a:23:c3:80:2a:73:33:c5:01:3e:ef:b3:10:3f:41:a2:ea: 3b:19:a3:73:89:97:de:20:b2:1d:77:7e:9c:18:33:62:28:22: 18:e7:bf:c7:18:72:4e:3d:ec:42:76:9e:0f:66:02:3d:3d:a0: 7a:37:d3:52:f6:98:2c:0a:81:1f:93:a7:84:de:78:6b:eb:44: db:f7:97:e6:d6:a5:29:91:48:ed:3e:ee:5a:77:ec:6a:1d:cc: a6:ee:e9:9f:5f:8b:cd:f5:29:16:0e:ce:ee:4f:29:18:d6:da: bf:c5:9f:01:ad:71:9f:41:7f:88:30:ce:72:fb:7b:50:9e:af: 50:5e:a6:ce:22:01:4b:a7:d9:bd:8e:89:83:22:70:4d:fe:3c: 86:f9:80:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1RTExMTAvBgNVBAUTKEFDMkUwRDNGNDI3MjIxN0ZFRkI5RDMyRENFMUEzMzJE RTk2QTM4NUUwHhcNMjQwNTE4MjIwMDAxWhcNMjQwNTI1MjIwMDAxWjAYMRYwFAYD VQQDEw02NjQ5MjRlMS01ZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwa87ooQMhWFzOroELB6I6AMuvjOsQZvRbpmKWXQXf4yWEzGaZB5KmKZ9enY oQhT1GKF6O7zeRY6k6SZjomOcIGOoXmGrs5ShMwLkyV+pVTuzu5d5ZcbK+mOFXsz HcyEMwOCyZtaF2o+64gPiE0PxfpvpbKECuJuRmtvjudmix6MofmlZ5d/bko8QjH3 U/0VsaqI4cOaYcxtSx6swo3BtldUXhdZb8i68AqNY7HfnRCiELQ/FXqmmmTndHbe 5ZVvdOD7h8AfUhoG78s969DoL1AK+CwmdYltfuV56INolBvFU2c2oG6gdUHbLAfD yYjsE1ZMa1Zg7moiay/CzY4udQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI42KpjG Wtqj64+JP2S/7Bgjb4JSMB8GA1UdIwQYMBaAFKwuDT9CciF/77nTLc4aMy3pajhe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDVFMS8xNjVCN0JGNkJD NkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlYX3Z1ZE10emhvekxlbHFP RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDNE5QMEp5SVhfdnVkTXR6aG96TGVscU9GNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDVFMS8xNjVCN0JGNkJDNkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlY X3Z1ZE10emhvekxlbHFPRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxQ4RnD7PFPgqvDhxWBt9uJ/f2DuqJG2OLIs25PTJXz6W2lmNCVKpz XaKde/FRgNRub+wxzvvN6jsvHljgMg6j7yfjclSDIXJMnyT+NscRAqjfAIqycE0i GrK78M7BRAuHfniWiszue/4kA5oCiiPDgCpzM8UBPu+zED9Bouo7GaNziZfeILId d36cGDNiKCIY57/HGHJOPexCdp4PZgI9PaB6N9NS9pgsCoEfk6eE3nhr60Tb95fm 1qUpkUjtPu5ad+xqHcym7umfX4vN9SkWDs7uTykY1tq/xZ8BrXGfQX+IMM5y+3tQ nq9QXqbOIgFLp9m9jomDInBN/jyG+YCe -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org