$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft File: We3oFpsKLDIUaf8RsWKL3gwfLEE.mft (raw, json) Hash identifier: PR4wuaZRsK6Kpt2W1CQmBklkop8Kb2ZYg4bP5Kf6Eis= Subject key identifier: B2:B3:F4:9F:83:CE:F4:C2:24:6D:5E:17:D0:04:5A:49:A9:C5:62:17 Authority key identifier: 59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 Certificate issuer: /CN=A91DEFAF/serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Certificate serial: 063F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft Manifest number: 0639 Signing time: Sat 18 May 2024 23:44:11 +0000 Manifest this update: Sat 18 May 2024 23:44:10 +0000 Manifest next update: Sat 25 May 2024 23:44:10 +0000 Files and hashes: 1: We3oFpsKLDIUaf8RsWKL3gwfLEE.crl (hash: ewV54Ju3XKwUBpR3Oahcrn2YQuMhYabbCn0bMQDGqHI=) 2: A793BA7E492D11EB8BE07D54C4F9AE02.roa (hash: Ga579nkZkyq4VIkIts7tLIJDFgKUxKlr6pMOp8y3MlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1599 (0x63f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEFAF/serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Validity Not Before: May 18 23:44:10 2024 GMT Not After : May 25 23:44:10 2024 GMT Subject: CN=66493d4b-3b45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:06:05:d1:c1:94:86:19:49:14:09:a7:62:1e: 6e:00:f8:3d:d2:f9:14:a3:f2:98:68:57:04:e5:fe: e7:33:75:f3:50:9d:57:63:bf:0a:fe:4e:d7:79:4e: f6:c7:ab:9b:20:95:8a:cd:9b:e9:6e:e0:3a:35:ae: 48:66:67:cf:6d:75:76:f7:61:f1:5e:6a:bf:3f:05: ad:25:19:98:07:1e:51:29:38:0f:93:9e:9f:48:60: cf:e4:38:12:39:de:5b:e0:8d:d5:e0:da:cf:10:ba: 39:10:3d:95:52:2a:24:91:fc:91:47:c4:46:90:ee: 28:a0:7d:93:00:ee:05:79:08:9f:71:88:9e:80:c0: 35:75:2f:2e:4c:19:75:7c:90:bd:da:6d:20:49:c1: d3:07:88:63:05:76:46:d7:83:a7:5d:e1:f7:e3:92: 1a:3e:03:88:b0:c7:ff:5c:3f:24:0d:cf:05:1f:34: 56:53:eb:e5:8f:6b:09:b0:0b:c8:9c:39:f4:d7:eb: e0:8f:f4:43:80:ee:ea:f9:bc:aa:44:2d:4d:d4:c7: 58:7e:0c:fb:d5:e5:3e:be:c6:b0:5e:9b:5a:16:ae: f1:50:89:d2:f6:4f:fc:cb:67:7c:34:33:b6:74:9d: a9:00:a3:c1:84:35:f9:0e:60:04:16:10:72:a3:1f: b5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:B3:F4:9F:83:CE:F4:C2:24:6D:5E:17:D0:04:5A:49:A9:C5:62:17 X509v3 Authority Key Identifier: keyid:59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:b4:55:dc:39:29:11:eb:29:7e:21:65:9c:72:7b:11:44:1d: 1a:0a:ea:f5:eb:72:27:c9:f8:c0:1a:ee:57:0b:98:31:af:e8: e0:a8:29:8e:5f:86:3e:b0:6c:60:6f:53:81:fb:21:d0:60:76: f8:6d:f2:46:9b:03:2d:da:8e:1f:81:4f:d1:fa:c3:79:e7:9f: ba:fb:e3:96:71:0f:93:50:0b:5c:f3:e4:3d:1b:71:a0:59:68: be:c8:9c:2a:53:47:a0:64:92:95:0c:cf:62:27:4a:bd:ec:b7: fc:49:fe:67:19:f4:60:4d:5a:7c:62:a1:95:c0:53:29:ff:f2: 8f:bd:d8:81:07:0c:78:08:49:e5:ac:3d:88:6b:e6:2e:ef:12: 12:87:95:d4:05:9c:4b:64:9a:19:58:23:03:e1:b9:5f:81:77: 27:af:60:3b:43:f4:58:3d:cd:18:59:da:87:ff:2b:a3:b7:e5: 12:48:ad:5c:e9:53:e5:78:b0:72:00:36:4c:eb:55:99:96:d6: b8:d7:7a:a9:b1:0e:5c:67:6d:64:29:44:ed:b0:30:bd:3d:ce: 95:47:d0:7d:72:c2:95:ba:2f:56:ae:1e:f0:8b:d0:64:79:3d: 6f:55:c3:64:da:79:fd:9a:e0:ac:17:4f:2d:90:f6:73:5c:85: 0f:01:0f:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGQUYxMTAvBgNVBAUTKDU5RURFODE2OUIwQTJDMzIxNDY5RkYxMUIxNjI4QkRF MEMxRjJDNDEwHhcNMjQwNTE4MjM0NDEwWhcNMjQwNTI1MjM0NDEwWjAYMRYwFAYD VQQDEw02NjQ5M2Q0Yi0zYjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAYF0cGUhhlJFAmnYh5uAPg90vkUo/KYaFcE5f7nM3XzUJ1XY78K/k7XeU72 x6ubIJWKzZvpbuA6Na5IZmfPbXV292HxXmq/PwWtJRmYBx5RKTgPk56fSGDP5DgS Od5b4I3V4NrPELo5ED2VUiokkfyRR8RGkO4ooH2TAO4FeQifcYiegMA1dS8uTBl1 fJC92m0gScHTB4hjBXZG14OnXeH345IaPgOIsMf/XD8kDc8FHzRWU+vlj2sJsAvI nDn01+vgj/RDgO7q+byqRC1N1MdYfgz71eU+vsawXptaFq7xUInS9k/8y2d8NDO2 dJ2pAKPBhDX5DmAEFhByox+1nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKz9J+D zvTCJG1eF9AEWkmpxWIXMB8GA1UdIwQYMBaAFFnt6BabCiwyFGn/EbFii94MHyxB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUZBRi8wNzE3NjI0MDQ5 MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xESVVhZjhSc1dLTDNnd2ZM RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dlM29GcHNLTERJVWFmOFJzV0tMM2d3ZkxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUZBRi8wNzE3NjI0MDQ5MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xE SVVhZjhSc1dLTDNnd2ZMRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8tFXcOSkR6yl+IWWccnsRRB0aCur163InyfjAGu5XC5gxr+jgqCmO X4Y+sGxgb1OB+yHQYHb4bfJGmwMt2o4fgU/R+sN555+6++OWcQ+TUAtc8+Q9G3Gg WWi+yJwqU0egZJKVDM9iJ0q97Lf8Sf5nGfRgTVp8YqGVwFMp//KPvdiBBwx4CEnl rD2Ia+Yu7xISh5XUBZxLZJoZWCMD4blfgXcnr2A7Q/RYPc0YWdqH/yujt+USSK1c 6VPleLByADZM61WZlta413qpsQ5cZ21kKUTtsDC9Pc6VR9B9csKVui9Wrh7wi9Bk eT1vVcNk2nn9muCsF08tkPZzXIUPAQ8X -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org