$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.mft File: SmzWcxMVojSw9JbFc8kOEjyflK4.mft (raw, json) Hash identifier: pZ1wvffjxyBez8yigjBrUX9aCmZ/ay4wEqdZIZliiXE= Subject key identifier: C4:AD:E7:3E:54:B6:22:39:29:CD:4E:8D:9A:18:BA:A5:6B:B0:44:26 Authority key identifier: 4A:6C:D6:73:13:15:A2:34:B0:F4:96:C5:73:C9:0E:12:3C:9F:94:AE Certificate issuer: /CN=A91DF0A8/serialNumber=4A6CD6731315A234B0F496C573C90E123C9F94AE Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SmzWcxMVojSw9JbFc8kOEjyflK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.mft Manifest number: D2 Signing time: Sun 19 May 2024 06:11:07 +0000 Manifest this update: Sun 19 May 2024 06:11:07 +0000 Manifest next update: Sun 26 May 2024 06:11:07 +0000 Files and hashes: 1: SmzWcxMVojSw9JbFc8kOEjyflK4.crl (hash: z6xzYpJw5h0gkd+sfiG3BwhxRgf8AVQQfnmMSE6DjTg=) 2: D831B39ED77311ED949D8419C4F9AE02.roa (hash: 9kQKFEDsx84E4CpywA7tSIWQG3TRzqIWi8CdC1zIoK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.crl rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SmzWcxMVojSw9JbFc8kOEjyflK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0A8/serialNumber=4A6CD6731315A234B0F496C573C90E123C9F94AE Validity Not Before: May 19 06:11:07 2024 GMT Not After : May 26 06:11:07 2024 GMT Subject: CN=664997fb-4305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b6:ad:10:41:a4:14:50:81:25:59:01:62:36: 15:13:50:0e:9a:47:25:0f:ab:3c:7e:9c:ee:58:db: 78:b2:f7:f6:e6:e3:cb:75:00:2e:4c:11:6f:32:8d: 20:d2:7e:d1:2f:f2:ed:2d:95:ce:0e:c5:e4:4e:ff: 8a:85:c8:c0:56:53:e2:de:57:e9:09:4f:c1:66:c3: a9:3e:e6:0d:36:ee:f7:b9:7f:34:00:dc:e6:61:5a: 09:38:62:5c:1d:3a:31:8c:f2:05:1c:8b:c5:2b:b6: 3e:3d:98:4d:ff:78:22:8c:83:8b:b7:88:97:80:03: ab:e1:91:bc:5e:10:72:09:e2:ff:97:63:1f:21:de: 3a:f4:25:54:3a:f2:ed:12:de:70:f1:63:3a:36:f8: 17:d1:92:5d:87:ab:46:0e:e5:de:f5:0c:ff:7b:33: a4:fe:95:61:37:c8:47:e8:c9:18:06:bc:c0:68:b5: a1:95:c4:03:e2:f0:b9:65:01:44:b9:7b:f9:e1:bb: 59:f2:6e:8c:bd:23:8f:d8:a0:bd:9a:6a:82:72:5f: b7:27:36:6f:c5:5e:96:5b:d7:83:39:87:57:31:4c: 4d:b9:af:8e:fc:bc:59:b3:d3:96:9a:b7:2e:a8:44: b4:ca:14:a9:b5:d0:d8:dd:7b:79:a6:54:ab:ab:fd: 56:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:AD:E7:3E:54:B6:22:39:29:CD:4E:8D:9A:18:BA:A5:6B:B0:44:26 X509v3 Authority Key Identifier: keyid:4A:6C:D6:73:13:15:A2:34:B0:F4:96:C5:73:C9:0E:12:3C:9F:94:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SmzWcxMVojSw9JbFc8kOEjyflK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:cf:83:c8:9f:16:6e:00:4b:7c:54:12:3b:23:69:73:62:7f: 66:91:ce:2b:c8:db:d5:21:01:ab:6d:26:4d:ad:5e:0c:5e:2b: 8a:fd:4b:8e:76:6e:90:d5:3e:eb:04:9c:58:b7:20:7c:3f:60: 72:62:ed:66:15:8d:32:41:fc:d2:d2:e9:5d:91:66:fd:e9:9c: 86:95:55:58:ff:3b:53:a2:64:da:2f:bf:da:ad:b4:3e:03:c0: 51:5f:30:8f:d8:fd:61:f9:35:6d:df:7e:b9:cf:51:72:bd:c1: 6d:cf:98:72:bc:04:a9:5c:8a:9f:ed:16:49:97:b9:13:e9:a2: 43:f0:ba:20:d8:70:ff:09:c5:27:e3:6d:84:dc:7d:4e:f9:7a: 7d:ca:23:d3:ef:26:e5:b4:0b:99:e1:0e:6c:54:fb:d8:50:36: d5:8f:17:ec:35:c4:af:3b:cf:ff:5f:e3:a8:aa:cf:6a:d5:18: a6:c8:dc:8a:6c:65:20:f3:f9:d4:c5:6f:e7:3c:a9:30:d3:14: 43:5f:01:44:96:5a:7d:4e:89:83:cb:5c:bb:0b:4c:22:c0:d4: d1:f6:4a:f5:01:e2:15:cd:42:d3:41:55:6c:88:93:d6:ad:04: e9:8b:c8:a7:fb:65:d9:a6:d6:c9:06:af:ac:80:3f:82:b1:b3: 7a:90:90:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwQTgxMTAvBgNVBAUTKDRBNkNENjczMTMxNUEyMzRCMEY0OTZDNTczQzkwRTEy M0M5Rjk0QUUwHhcNMjQwNTE5MDYxMTA3WhcNMjQwNTI2MDYxMTA3WjAYMRYwFAYD VQQDEw02NjQ5OTdmYi00MzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LatEEGkFFCBJVkBYjYVE1AOmkclD6s8fpzuWNt4svf25uPLdQAuTBFvMo0g 0n7RL/LtLZXODsXkTv+KhcjAVlPi3lfpCU/BZsOpPuYNNu73uX80ANzmYVoJOGJc HToxjPIFHIvFK7Y+PZhN/3gijIOLt4iXgAOr4ZG8XhByCeL/l2MfId469CVUOvLt Et5w8WM6NvgX0ZJdh6tGDuXe9Qz/ezOk/pVhN8hH6MkYBrzAaLWhlcQD4vC5ZQFE uXv54btZ8m6MvSOP2KC9mmqCcl+3JzZvxV6WW9eDOYdXMUxNua+O/LxZs9OWmrcu qES0yhSptdDY3Xt5plSrq/1WPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSt5z5U tiI5Kc1OjZoYuqVrsEQmMB8GA1UdIwQYMBaAFEps1nMTFaI0sPSWxXPJDhI8n5Su MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBBOC8wNUM5MjdFMkQ3 NkYxMUVEODg5RTM4MTJDNEY5QUUwMi9TbXpXY3hNVm9qU3c5SmJGYzhrT0VqeWZs SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NteldjeE1Wb2pTdzlKYkZjOGtPRWp5ZmxLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjBBOC8wNUM5MjdFMkQ3NkYxMUVEODg5RTM4MTJDNEY5QUUwMi9TbXpXY3hNVm9q U3c5SmJGYzhrT0VqeWZsSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGz4PInxZuAEt8VBI7I2lzYn9mkc4ryNvVIQGrbSZNrV4MXiuK/UuO dm6Q1T7rBJxYtyB8P2ByYu1mFY0yQfzS0uldkWb96ZyGlVVY/ztTomTaL7/arbQ+ A8BRXzCP2P1h+TVt3365z1FyvcFtz5hyvASpXIqf7RZJl7kT6aJD8Log2HD/CcUn 422E3H1O+Xp9yiPT7ybltAuZ4Q5sVPvYUDbVjxfsNcSvO8//X+Ooqs9q1RimyNyK bGUg8/nUxW/nPKkw0xRDXwFEllp9TomDy1y7C0wiwNTR9kr1AeIVzULTQVVsiJPW rQTpi8in+2XZptbJBq+sgD+CsbN6kJCf -----END CERTIFICATE-----Generated at Sun May 19 08:25:11 2024 by rpki-client on console-ams.rpki-client.org