$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft File: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft (raw, json) Hash identifier: 9Lq2Wu4iipgo5u9aQDFeN3FAOt92ufTx/4O83KqwkHk= Subject key identifier: 91:C4:35:CD:77:4F:12:46:5B:C6:07:64:25:8A:BD:BC:AE:BD:32:26 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 037C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft Manifest number: 035D Signing time: Sun 19 May 2024 02:55:43 +0000 Manifest this update: Sun 19 May 2024 02:55:42 +0000 Manifest next update: Sun 26 May 2024 02:55:42 +0000 Files and hashes: 1: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl (hash: FgXCWvQvy1jeZdK55deiDDUQygEkSyzly3io03aUWOU=) 2: 216DB034DE9711EC9289256FC4F9AE02.roa (hash: hTxACudFmaxhiuRlVpfSZ+VLRwh/VJm74WXND1tMFVQ=) 3: E184C6F48F2C11EEA361B22FC4F9AE02.roa (hash: I+R2Z6C5YKl1I0wcACmRXbnf5UAoHuc3xb2D4JHIgVw=) 4: 204E25DADE9711EC9289256FC4F9AE02.roa (hash: Rj1v7wlqioMBJUojDmjxMBf/lmlDkFFa4y0CfMRlHMw=) 5: 1FBEA1EEDE9711EC9289256FC4F9AE02.roa (hash: 0gEYccIBYOr+zuyign/+C00HzqYzr+UjJcZXD9KjzOg=) 6: E0C5B7148F2C11EEA361B22FC4F9AE02.roa (hash: aB1vZOko5LuCPFaMLMMYKE7YXbi5h8lQp7z82oAmSsI=) 7: A471289AEFC911EEA00D5753C4F9AE02.roa (hash: n/5DPIix0RybAVp2yqh6kceUDttY/mTN7qKSstDiHeg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 892 (0x37c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: May 19 02:55:42 2024 GMT Not After : May 26 02:55:42 2024 GMT Subject: CN=66496a2f-3295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a2:b6:d4:08:a4:d5:d2:86:7a:85:05:dc:46: 23:fa:df:22:6f:9a:46:9d:1c:60:c0:68:40:19:24: a7:7d:de:92:a2:26:7e:cd:d4:f9:03:0c:a8:6c:d6: 80:a4:1d:9c:10:94:65:56:da:77:e5:8b:c2:e3:04: 93:7c:27:1f:ff:ec:70:7e:9c:9a:7f:f7:c9:9b:d8: bc:ee:f3:e5:15:e4:f7:1f:80:3d:e1:b4:d8:cc:cf: 6d:54:ef:1e:5b:0e:81:e6:ad:36:e3:99:61:19:f9: a8:e4:a6:b5:1a:15:e2:a6:71:8d:b4:37:8c:cf:d0: 47:60:91:9a:ed:05:4c:05:8d:28:27:ec:b3:93:6b: f9:af:e5:91:78:1e:b2:a2:a5:9a:91:68:75:5e:5e: 02:ec:07:89:88:81:dc:c3:63:0e:65:1a:ec:a2:8b: f6:08:71:c5:48:dc:97:0e:84:23:94:6c:66:82:da: 58:55:ad:d2:eb:2a:bd:0f:08:eb:39:e8:d0:57:f4: f2:74:95:f3:12:a9:b4:e3:aa:6b:cb:28:03:49:a0: fa:f7:a1:64:10:6d:52:6b:29:9e:a8:64:c0:d2:7d: a4:99:84:cf:6f:cb:af:fb:50:6c:62:12:92:69:ee: 66:db:83:7e:57:ef:be:9f:e9:3e:79:d2:4e:a4:d0: d2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C4:35:CD:77:4F:12:46:5B:C6:07:64:25:8A:BD:BC:AE:BD:32:26 X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:11:b9:ca:c0:89:ec:21:e8:3d:37:97:42:d9:bb:e4:b8:35: 30:3a:0f:21:7c:4b:fe:bf:b1:0e:3e:fe:41:e0:6c:10:a6:d4: 80:4b:51:c9:59:1d:63:57:26:50:66:96:40:86:d6:cc:c0:02: f8:21:c4:98:4d:cc:db:83:b6:ba:a9:f9:b2:b9:ca:b8:79:7c: 63:98:5b:49:31:de:42:76:af:41:7d:d4:88:25:65:e2:e6:0f: 2d:e1:de:37:d7:be:5a:aa:85:b1:f0:91:68:34:30:48:58:5a: 3c:e7:8d:26:40:15:14:ad:7d:8d:43:72:eb:72:bd:67:0d:a7: 9e:12:62:fb:ed:8c:07:f6:ba:6b:05:fc:f8:df:ea:80:0b:b5: 13:e1:a5:10:3c:69:49:29:08:43:98:eb:2a:80:31:3c:31:d3: 7c:1f:0b:74:dc:a2:1c:99:54:b2:71:89:10:c0:5f:f7:3f:84: 45:42:c2:1e:46:9f:95:58:a6:28:43:d2:4a:53:c9:9c:0c:cc: de:8e:a0:55:e7:45:0e:11:cf:f2:0b:be:10:11:d5:95:1f:af: 2f:59:be:00:07:13:d6:06:83:01:03:ba:c8:e9:45:d2:57:17: 9e:4f:31:25:93:c9:53:88:ed:f6:94:62:8e:b7:71:c7:96:bc: 38:60:00:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjQwNTE5MDI1NTQyWhcNMjQwNTI2MDI1NTQyWjAYMRYwFAYD VQQDEw02NjQ5NmEyZi0zMjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaK21Aik1dKGeoUF3EYj+t8ib5pGnRxgwGhAGSSnfd6SoiZ+zdT5AwyobNaA pB2cEJRlVtp35YvC4wSTfCcf/+xwfpyaf/fJm9i87vPlFeT3H4A94bTYzM9tVO8e Ww6B5q0245lhGfmo5Ka1GhXipnGNtDeMz9BHYJGa7QVMBY0oJ+yzk2v5r+WReB6y oqWakWh1Xl4C7AeJiIHcw2MOZRrsoov2CHHFSNyXDoQjlGxmgtpYVa3S6yq9Dwjr OejQV/TydJXzEqm046pryygDSaD696FkEG1SaymeqGTA0n2kmYTPb8uv+1BsYhKS ae5m24N+V+++n+k+edJOpNDSDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHENc13 TxJGW8YHZCWKvbyuvTImMB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUI4MS9DRjk2NjNDNjcwRjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xR cG11UEUyZ0xNRmktMWRtSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpEbnKwInsIeg9N5dC2bvkuDUwOg8hfEv+v7EOPv5B4GwQptSAS1HJ WR1jVyZQZpZAhtbMwAL4IcSYTczbg7a6qfmyucq4eXxjmFtJMd5Cdq9BfdSIJWXi 5g8t4d43175aqoWx8JFoNDBIWFo8540mQBUUrX2NQ3Lrcr1nDaeeEmL77YwH9rpr Bfz43+qAC7UT4aUQPGlJKQhDmOsqgDE8MdN8Hwt03KIcmVSycYkQwF/3P4RFQsIe Rp+VWKYoQ9JKU8mcDMzejqBV50UOEc/yC74QEdWVH68vWb4ABxPWBoMBA7rI6UXS VxeeTzElk8lTiO32lGKOt3HHlrw4YAAJ -----END CERTIFICATE-----Generated at Sun May 19 03:38:16 2024 by rpki-client on console-ams.rpki-client.org