$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: yC/f/slsuKeOY3RMbKg2r8pjl2l4gWMICAF9Tqosw10= Subject key identifier: 63:F2:A0:15:52:2A:A4:7B:19:3B:C3:02:9C:01:AB:18:C9:D3:FF:60 Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0A1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0A18 Signing time: Sat 18 May 2024 20:35:47 +0000 Manifest this update: Sat 18 May 2024 20:35:47 +0000 Manifest next update: Sat 25 May 2024 20:35:47 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: ezdaly9ellfSV68x4LRHijfxHULSB1/sUAJvKXFCy+o=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: qooh24L+CNcRluTxL7VRcWW065uNodiUV24Xt7Erymc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2590 (0xa1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: May 18 20:35:47 2024 GMT Not After : May 25 20:35:47 2024 GMT Subject: CN=66491123-e66c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:d9:ee:72:de:3c:1c:f3:e1:0d:dc:56:09:93: 8d:fd:0c:f4:67:0e:05:f5:2c:fc:ec:4e:56:ea:e9: a2:73:93:df:19:93:ee:71:95:0f:a4:b9:ca:34:71: 7b:59:5d:73:c5:ed:ae:1a:c5:07:8f:9c:c2:5f:d5: 9a:52:53:62:8c:d5:86:ca:bb:57:e0:23:f8:62:9d: 0c:2e:85:a3:8d:b7:da:00:49:46:bc:74:46:97:53: cb:42:ce:aa:55:9a:fd:01:d3:fd:4c:b3:59:63:59: 96:93:07:0b:b5:7f:80:e8:17:7a:5b:47:21:67:61: b2:45:b7:f0:c8:04:cc:0b:99:24:ed:46:74:02:97: a9:0b:8d:b9:48:e9:26:5b:a6:e1:c2:ed:52:2f:9e: e4:36:85:60:67:f1:07:54:80:02:1e:9a:0f:12:51: 59:a5:13:0d:4d:66:e7:57:e1:ee:bf:6f:15:c8:ae: a5:b1:dc:3c:da:9f:8f:92:fb:73:b5:5d:a8:5b:64: ca:5d:80:5b:5b:70:5e:59:f8:89:0d:d6:31:b9:0c: 08:15:8c:8b:48:a4:b1:0b:42:4c:d0:99:21:09:24: 45:41:d1:57:44:5f:64:ea:a6:b0:d3:d3:ec:7e:8a: aa:bd:ce:1f:25:2b:da:7d:89:03:0e:02:7b:c6:bd: d3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F2:A0:15:52:2A:A4:7B:19:3B:C3:02:9C:01:AB:18:C9:D3:FF:60 X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:d5:a6:f4:0d:7f:1b:8c:99:3c:6d:90:da:f6:16:be:e5:f6: c8:7e:1a:45:9b:50:70:74:a5:37:c8:a3:6e:c2:74:61:e1:7e: 88:2a:23:bc:be:55:a5:e8:a2:c8:0c:f7:85:48:13:6d:a5:56: be:2c:35:c0:76:1c:f2:80:59:c8:46:01:de:d8:e4:59:2d:63: 79:1c:0d:07:f0:5c:7f:9f:38:c5:e3:03:b9:cd:3a:af:5b:54: c4:5a:6f:e4:15:17:98:fb:8c:ce:f3:05:f7:c5:25:d2:01:cb: 7b:c8:19:ae:b0:df:02:96:02:3b:47:d3:bd:bb:45:70:f0:09: 34:4d:a0:0f:42:b0:c3:0f:58:be:8e:f7:a4:c4:43:6f:d9:b2: 9d:60:a5:5c:71:c0:18:93:0f:e4:f7:dc:57:49:48:e7:6f:7e: 74:63:19:3f:55:5c:3e:83:15:d4:67:1d:b5:37:bd:1e:35:dc: e2:74:83:76:9f:01:57:9e:a3:e5:88:af:91:11:52:3f:cb:ce: ec:3f:c8:28:85:28:86:a8:37:07:9a:8f:0d:e1:33:20:98:af: a9:a9:63:47:6e:7b:44:bc:4f:70:cc:63:86:96:a3:3e:e1:00: 09:39:54:78:b2:aa:a3:8c:7d:98:e0:d0:50:0e:e6:74:95:b6: 25:a8:77:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjQwNTE4MjAzNTQ3WhcNMjQwNTI1MjAzNTQ3WjAYMRYwFAYD VQQDEw02NjQ5MTEyMy1lNjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7tnuct48HPPhDdxWCZON/Qz0Zw4F9Sz87E5W6umic5PfGZPucZUPpLnKNHF7 WV1zxe2uGsUHj5zCX9WaUlNijNWGyrtX4CP4Yp0MLoWjjbfaAElGvHRGl1PLQs6q VZr9AdP9TLNZY1mWkwcLtX+A6Bd6W0chZ2GyRbfwyATMC5kk7UZ0ApepC425SOkm W6bhwu1SL57kNoVgZ/EHVIACHpoPElFZpRMNTWbnV+Huv28VyK6lsdw82p+Pkvtz tV2oW2TKXYBbW3BeWfiJDdYxuQwIFYyLSKSxC0JM0JkhCSRFQdFXRF9k6qaw09Ps foqqvc4fJSvafYkDDgJ7xr3TxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPyoBVS KqR7GTvDApwBqxjJ0/9gMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDH1ab0DX8bjJk8bZDa9ha+5fbIfhpFm1BwdKU3yKNuwnRh4X6IKiO8 vlWl6KLIDPeFSBNtpVa+LDXAdhzygFnIRgHe2ORZLWN5HA0H8Fx/nzjF4wO5zTqv W1TEWm/kFReY+4zO8wX3xSXSAct7yBmusN8ClgI7R9O9u0Vw8Ak0TaAPQrDDD1i+ jvekxENv2bKdYKVcccAYkw/k99xXSUjnb350Yxk/VVw+gxXUZx21N70eNdzidIN2 nwFXnqPliK+REVI/y87sP8gohSiGqDcHmo8N4TMgmK+pqWNHbntEvE9wzGOGlqM+ 4QAJOVR4sqqjjH2Y4NBQDuZ0lbYlqHfh -----END CERTIFICATE-----Generated at Sat May 18 21:31:32 2024 by rpki-client on console-ams.rpki-client.org