$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft File: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft (raw, json) Hash identifier: hfonV6VglWsQUfNOS7TKNIf+VB1qLwZ5LuwID9CeLH0= Subject key identifier: DB:87:39:B2:70:63:6D:21:62:AC:69:F8:C6:49:8C:3A:BC:AA:22:3A Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft Manifest number: 8A Signing time: Sun 19 May 2024 07:12:09 +0000 Manifest this update: Sun 19 May 2024 07:12:08 +0000 Manifest next update: Sun 26 May 2024 07:12:08 +0000 Files and hashes: 1: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl (hash: RQ/HUBHUgwDGOs0WKsF4CKcnDRHRpBhki0Fc1eT2UiM=) 2: 3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa (hash: PYkBM0N8dnLCKVgIScQqnIsMIgIRaDaumK5APLy/Cew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Validity Not Before: May 19 07:12:08 2024 GMT Not After : May 26 07:12:08 2024 GMT Subject: CN=6649a649-c98b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e6:d7:16:b0:dc:f0:16:36:76:47:28:9b:78: 55:0a:6c:61:e5:61:87:83:1c:f8:6c:1a:ab:78:de: 91:fc:1f:df:2f:85:c5:9a:53:69:41:39:7b:21:a2: ae:a0:73:4d:27:7c:62:84:ca:a9:fa:fc:11:ae:83: be:f5:8c:7a:78:fc:c5:25:7c:9c:16:d7:63:81:ce: 3a:44:d6:a8:06:0f:c5:9d:99:03:07:16:ee:0d:5a: 3d:7d:87:04:38:9f:98:d6:6e:25:ac:a0:58:ec:87: b4:a3:2a:56:57:fd:b9:c8:10:9d:e8:4f:a6:c2:8a: 95:c1:86:e4:f3:17:f8:e1:0c:f1:a9:a9:28:6e:5c: 49:2e:a3:3b:e0:c3:c4:64:c5:9a:b4:9a:4e:94:eb: 2a:63:0b:be:56:72:2d:2c:ce:7c:0c:0b:cf:61:c4: b7:f3:cf:6e:4b:98:28:8a:8a:f7:ba:c4:e7:95:cb: 88:40:6c:2c:f3:57:8f:e6:67:da:ec:cc:df:b0:fb: 63:9f:34:c9:ba:76:e6:2d:20:c2:db:79:49:4d:95: 17:35:81:b6:4f:1d:72:81:8a:ca:b0:78:87:46:60: f9:b2:ac:96:98:70:b9:fe:80:c0:4c:b2:43:c9:0b: db:99:45:49:e3:07:1d:30:fd:73:d7:2a:5f:52:10: 04:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:87:39:B2:70:63:6D:21:62:AC:69:F8:C6:49:8C:3A:BC:AA:22:3A X509v3 Authority Key Identifier: keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:b4:4b:44:f2:5c:a8:4b:27:a2:08:5b:1c:54:33:79:b6:08: 96:49:ea:f4:8a:c5:3b:5e:bd:ff:2a:22:bf:67:c7:96:f6:75: c4:aa:74:ab:12:fb:32:b4:f5:86:0a:9e:14:b1:ae:d5:f2:6e: 7e:85:fc:79:36:37:95:86:db:0b:ca:c4:8a:de:17:f2:7f:21: 6c:cc:fc:a9:85:f8:43:40:c4:9f:9e:39:4c:ad:b5:e3:6d:a2: fb:11:b4:c1:84:18:0e:dc:f5:e9:82:2f:1c:8f:30:c3:c0:00: cc:31:bb:82:dd:70:19:91:ca:00:47:1a:ce:93:6c:57:1b:39: de:1d:fe:39:2c:e0:b2:03:db:8e:16:b0:f4:68:47:ed:13:21: 0a:51:7e:6d:b7:9b:e4:3d:c8:6b:2d:bc:25:9c:26:84:95:49: 44:5e:fc:12:90:f4:ea:e7:1d:0a:da:4b:67:b6:2a:da:ed:3f: 2f:3c:09:63:c3:f7:93:dd:23:44:8c:e2:27:f6:c2:fb:e6:eb: 4f:95:69:de:e1:70:06:69:44:b1:bf:00:50:a0:ea:5d:dc:80: 11:02:4d:02:f2:b8:b5:15:47:d9:da:95:d9:20:32:68:f8:8f: 1b:b9:25:e3:3f:f6:97:48:c8:65:c4:3d:54:65:a1:0d:da:d3: 91:4c:6a:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzMjMxMTAvBgNVBAUTKDkzMDQyMzRFNzM5MDQ5MTQzQTg1OTFBMzc0NUE1M0U0 QjkyQUQ4RDgwHhcNMjQwNTE5MDcxMjA4WhcNMjQwNTI2MDcxMjA4WjAYMRYwFAYD VQQDEw02NjQ5YTY0OS1jOThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+bXFrDc8BY2dkcom3hVCmxh5WGHgxz4bBqreN6R/B/fL4XFmlNpQTl7IaKu oHNNJ3xihMqp+vwRroO+9Yx6ePzFJXycFtdjgc46RNaoBg/FnZkDBxbuDVo9fYcE OJ+Y1m4lrKBY7Ie0oypWV/25yBCd6E+mwoqVwYbk8xf44QzxqakoblxJLqM74MPE ZMWatJpOlOsqYwu+VnItLM58DAvPYcS3889uS5goior3usTnlcuIQGws81eP5mfa 7MzfsPtjnzTJunbmLSDC23lJTZUXNYG2Tx1ygYrKsHiHRmD5sqyWmHC5/oDATLJD yQvbmUVJ4wcdMP1z1ypfUhAE5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNuHObJw Y20hYqxp+MZJjDq8qiI6MB8GA1UdIwQYMBaAFJMEI05zkEkUOoWRo3RaU+S5KtjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTMyMy85RTYxRTQyNDUy NUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNSUTZoWkdqZEZwVDVMa3Ey TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t3UWpUbk9RU1JRNmhaR2pkRnBUNUxrcTJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTMyMy85RTYxRTQyNDUyNUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNS UTZoWkdqZEZwVDVMa3EyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBctEtE8lyoSyeiCFscVDN5tgiWSer0isU7Xr3/KiK/Z8eW9nXEqnSr EvsytPWGCp4Usa7V8m5+hfx5NjeVhtsLysSK3hfyfyFszPyphfhDQMSfnjlMrbXj baL7EbTBhBgO3PXpgi8cjzDDwADMMbuC3XAZkcoARxrOk2xXGzneHf45LOCyA9uO FrD0aEftEyEKUX5tt5vkPchrLbwlnCaElUlEXvwSkPTq5x0K2ktntira7T8vPAlj w/eT3SNEjOIn9sL75utPlWne4XAGaUSxvwBQoOpd3IARAk0C8ri1FUfZ2pXZIDJo +I8buSXjP/aXSMhlxD1UZaEN2tORTGrk -----END CERTIFICATE-----Generated at Sun May 19 08:25:11 2024 by rpki-client on console-ams.rpki-client.org