$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.mft File: -5w6kNDNa5K-MWAyXafCbH9OWQA.mft (raw, json) Hash identifier: csNlvllwanb6MqWbQlAXiTprPrYxeO93ZmeVXwoOYKw= Subject key identifier: 1B:7D:86:20:29:40:C2:45:C6:33:01:8A:97:A6:BE:8D:10:30:B5:97 Authority key identifier: FB:9C:3A:90:D0:CD:6B:92:BE:31:60:32:5D:A7:C2:6C:7F:4E:59:00 Certificate issuer: /CN=A91DE1A3/serialNumber=FB9C3A90D0CD6B92BE3160325DA7C26C7F4E5900 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-5w6kNDNa5K-MWAyXafCbH9OWQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.mft Manifest number: 011E Signing time: Fri 31 May 2024 05:56:37 +0000 Manifest this update: Fri 31 May 2024 05:56:37 +0000 Manifest next update: Fri 07 Jun 2024 05:56:37 +0000 Files and hashes: 1: -5w6kNDNa5K-MWAyXafCbH9OWQA.crl (hash: ekEn/DKoiOBM3FP8J5U+QzJzifw4CXIevQCwkuPrWSE=) 2: F396DA1468A211ED9525A86CC4F9AE02.roa (hash: QiIvaonXjb3wzdaFfwl43VesH9Nn271EvkL3jzfou5Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.crl rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-5w6kNDNa5K-MWAyXafCbH9OWQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 05:56:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE1A3/serialNumber=FB9C3A90D0CD6B92BE3160325DA7C26C7F4E5900 Validity Not Before: May 31 05:56:37 2024 GMT Not After : Jun 7 05:56:37 2024 GMT Subject: CN=66596695-011d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1e:2f:fa:fc:40:70:da:fb:ac:47:b7:52:86: c7:03:5c:df:d8:43:37:8e:75:44:db:79:c5:e7:30: 33:2a:de:92:6c:4f:4e:f4:21:07:23:02:70:e8:48: 77:da:b4:c4:19:ac:5d:37:1a:91:ef:a3:f8:9b:d3: 2c:54:78:a3:a4:bd:57:11:ef:5e:fa:a0:58:07:ce: 1a:b6:ad:7a:72:82:b5:c7:1b:5f:fe:1d:79:ea:38: 8a:ea:65:7d:f5:67:54:31:f0:d5:86:ed:dd:f5:95: 71:c4:e2:ed:f9:55:63:25:a2:9b:ac:1d:57:53:82: 6d:47:15:42:70:51:46:86:c7:49:d6:04:74:c2:a1: 39:4e:74:f1:ba:b5:1d:ee:95:9b:a0:f2:b7:cc:38: dc:4f:9f:81:24:f2:b3:ac:da:60:79:15:4b:9e:16: f7:68:c5:0b:38:07:7b:03:d7:c0:a0:7f:41:6f:03: ec:10:53:02:05:4e:af:e9:f1:7f:88:85:4b:97:21: 39:fd:6c:18:c1:5a:b5:e3:52:a4:0e:98:54:83:43: 8c:5f:5f:5f:f3:ee:08:e5:73:6b:59:7a:a8:2b:a5: ee:93:6b:80:61:35:d5:91:c2:39:7d:f5:5e:f4:2b: a6:47:8e:1d:3f:91:f3:77:08:02:39:f6:73:67:72: 89:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:7D:86:20:29:40:C2:45:C6:33:01:8A:97:A6:BE:8D:10:30:B5:97 X509v3 Authority Key Identifier: keyid:FB:9C:3A:90:D0:CD:6B:92:BE:31:60:32:5D:A7:C2:6C:7F:4E:59:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-5w6kNDNa5K-MWAyXafCbH9OWQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:07:7e:ce:05:ae:99:04:00:1b:4a:a7:86:67:0b:da:60:7f: 6a:4b:cc:09:fd:2f:7d:54:93:78:27:49:33:4d:bf:42:6c:0f: 9a:97:14:8a:64:c0:af:a8:c9:ac:25:33:4c:6f:a0:3d:eb:f6: 8a:62:50:a3:cd:04:21:8a:c2:15:70:2b:3f:35:5f:16:3d:ce: 70:6d:bd:a9:43:1f:a0:fd:24:5d:55:c8:28:56:5a:c1:91:7b: b8:3e:e3:de:f3:d0:73:80:ba:fd:66:a9:f5:03:2f:f1:b1:00: da:08:6a:56:4f:f5:33:3e:2c:b3:40:1b:39:54:ad:36:ad:0b: 9f:f0:0c:7e:72:c1:8c:eb:8b:73:da:1a:fe:9c:c9:70:46:8f: 11:8c:51:00:93:e1:70:ce:94:93:99:e3:56:b0:cf:b0:13:8e: cd:17:dd:d8:a7:13:6d:6f:8d:ae:e6:5b:7d:95:17:bc:b7:45: 07:3f:15:a5:f0:1b:4f:d7:62:6a:57:0a:ee:05:8e:c0:c1:31: af:7f:87:92:18:e5:bc:8a:01:1b:a5:56:58:b1:83:40:85:9a: 49:a8:8b:1d:05:f8:54:9a:b3:4e:32:40:74:41:db:7a:2a:e8: a9:f4:1d:b3:30:cf:b8:0d:19:40:0b:d2:3d:b6:72:67:46:f5: f2:8e:e2:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUxQTMxMTAvBgNVBAUTKEZCOUMzQTkwRDBDRDZCOTJCRTMxNjAzMjVEQTdDMjZD N0Y0RTU5MDAwHhcNMjQwNTMxMDU1NjM3WhcNMjQwNjA3MDU1NjM3WjAYMRYwFAYD VQQDEw02NjU5NjY5NS0wMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApB4v+vxAcNr7rEe3UobHA1zf2EM3jnVE23nF5zAzKt6SbE9O9CEHIwJw6Eh3 2rTEGaxdNxqR76P4m9MsVHijpL1XEe9e+qBYB84atq16coK1xxtf/h156jiK6mV9 9WdUMfDVhu3d9ZVxxOLt+VVjJaKbrB1XU4JtRxVCcFFGhsdJ1gR0wqE5TnTxurUd 7pWboPK3zDjcT5+BJPKzrNpgeRVLnhb3aMULOAd7A9fAoH9BbwPsEFMCBU6v6fF/ iIVLlyE5/WwYwVq141KkDphUg0OMX19f8+4I5XNrWXqoK6Xuk2uAYTXVkcI5ffVe 9CumR44dP5HzdwgCOfZzZ3KJ8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBt9hiAp QMJFxjMBipemvo0QMLWXMB8GA1UdIwQYMBaAFPucOpDQzWuSvjFgMl2nwmx/TlkA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTFBMy84QjlEQkJDRTY4 OUYxMUVEQUQxNzc2NjdDNEY5QUUwMi8tNXc2a05ETmE1Sy1NV0F5WGFmQ2JIOU9X UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy01dzZrTkROYTVLLU1XQXlYYWZDYkg5T1dRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTFBMy84QjlEQkJDRTY4OUYxMUVEQUQxNzc2NjdDNEY5QUUwMi8tNXc2a05ETmE1 Sy1NV0F5WGFmQ2JIOU9XUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1B37OBa6ZBAAbSqeGZwvaYH9qS8wJ/S99VJN4J0kzTb9CbA+alxSK ZMCvqMmsJTNMb6A96/aKYlCjzQQhisIVcCs/NV8WPc5wbb2pQx+g/SRdVcgoVlrB kXu4PuPe89BzgLr9Zqn1Ay/xsQDaCGpWT/UzPiyzQBs5VK02rQuf8Ax+csGM64tz 2hr+nMlwRo8RjFEAk+FwzpSTmeNWsM+wE47NF93YpxNtb42u5lt9lRe8t0UHPxWl 8BtP12JqVwruBY7AwTGvf4eSGOW8igEbpVZYsYNAhZpJqIsdBfhUmrNOMkB0Qdt6 Kuip9B2zMM+4DRlAC9I9tnJnRvXyjuIc -----END CERTIFICATE-----Generated at Fri May 31 06:49:28 2024 by rpki-client on console-ams.rpki-client.org