$ rpki-client -vvf rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.mft File: _IC0m1BzMv1MnJLdXiei38qAZNo.mft (raw, json) Hash identifier: 0VwgO3EJbj+O8c55cTw9Q2csO9DrS98cDBU1RNC6310= Subject key identifier: 95:69:30:00:03:61:A4:E1:AF:C0:B0:B1:85:C2:AF:02:D9:E1:A2:8F Authority key identifier: FC:80:B4:9B:50:73:32:FD:4C:9C:92:DD:5E:27:A2:DF:CA:80:64:DA Certificate issuer: /CN=A91E13D0/serialNumber=FC80B49B507332FD4C9C92DD5E27A2DFCA8064DA Certificate serial: 045F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IC0m1BzMv1MnJLdXiei38qAZNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.mft Manifest number: 045A Signing time: Sun 19 May 2024 01:51:36 +0000 Manifest this update: Sun 19 May 2024 01:51:36 +0000 Manifest next update: Sun 26 May 2024 01:51:36 +0000 Files and hashes: 1: _IC0m1BzMv1MnJLdXiei38qAZNo.crl (hash: mXgHQUad6kXepYh/nblU2l5UaNspkgIhWL7xc5HB/gI=) 2: E86C4B1E04AE11EC92C8D079C4F9AE02.roa (hash: saA04V/Dwpu6Fep2idzMymX2v03Eu/SKkVzn1J9xWt0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.crl rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IC0m1BzMv1MnJLdXiei38qAZNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E13D0/serialNumber=FC80B49B507332FD4C9C92DD5E27A2DFCA8064DA Validity Not Before: May 19 01:51:36 2024 GMT Not After : May 26 01:51:36 2024 GMT Subject: CN=66495b28-be47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b8:0a:c4:c0:58:4e:76:f9:f7:3d:22:17:ca: b7:2c:f9:34:16:a7:b1:18:9c:37:a4:de:14:9d:0b: 8a:b7:c7:1d:04:da:02:0f:c4:f7:0a:30:e4:47:b4: c9:b7:46:7d:d7:5c:63:7d:60:c6:3b:86:d9:e1:23: 93:71:8d:1b:b8:38:0b:6f:4e:c9:de:a8:ed:e5:ae: de:0d:45:04:c8:88:ec:7b:72:79:73:63:56:3b:a5: c0:5f:12:b1:3e:ea:84:c9:41:d5:bb:48:aa:0e:e8: 9b:7f:f5:7b:8e:dc:3d:60:b0:50:ad:9e:c2:ba:87: f7:bb:06:2c:c7:39:7f:fd:68:4a:5f:a0:45:e1:9b: 2e:54:bb:cb:67:65:01:d9:65:91:1f:ff:f4:a7:5f: fa:d7:aa:4d:17:66:40:53:4f:7e:d0:a1:6d:c3:fa: 83:ae:e1:dd:f2:45:9a:a0:25:f9:9e:ad:c4:f7:5f: a5:f5:b6:8d:b5:af:93:e7:05:65:eb:6e:e7:ef:7a: 21:5d:a1:a1:fe:e3:7d:c7:f1:51:ce:d0:b9:b4:e4: 3c:45:60:cd:75:17:ad:a7:a1:e7:4a:c2:1f:be:a2: 0b:06:bb:51:84:0f:2c:3a:b1:b7:83:b3:83:f7:f2: d6:71:f4:18:31:9a:8b:39:85:c7:cc:84:df:b2:53: 93:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:69:30:00:03:61:A4:E1:AF:C0:B0:B1:85:C2:AF:02:D9:E1:A2:8F X509v3 Authority Key Identifier: keyid:FC:80:B4:9B:50:73:32:FD:4C:9C:92:DD:5E:27:A2:DF:CA:80:64:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IC0m1BzMv1MnJLdXiei38qAZNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:c3:1b:bd:66:a0:f2:87:31:00:14:c6:c3:57:d8:b0:45:82: 4e:5c:a6:ed:0b:02:1f:09:5c:72:8f:ca:b6:f8:0d:5c:f3:1e: 8d:0c:bb:71:23:19:61:46:dc:b4:7c:5e:1e:e9:b5:91:6a:dd: e2:bd:57:5a:4b:7d:b4:c6:80:a0:9f:69:db:d8:39:47:23:42: e8:e7:52:59:9d:ba:3b:80:da:5b:94:ae:f1:01:b0:87:20:e9: 21:52:c3:79:77:6f:95:dc:e6:d3:ae:f7:36:78:74:26:1d:8a: 34:17:b4:2e:55:45:aa:05:61:dc:c9:30:1b:82:2f:71:62:83: f5:45:0b:35:91:c6:ca:f1:a3:c9:e2:6e:4d:08:6c:6c:fe:ec: ab:8a:00:2f:22:ba:84:b9:4f:ed:31:4d:8b:90:95:85:66:19: 35:a2:e2:df:c3:49:8c:1b:d6:e6:16:ec:70:d5:81:fc:96:29: 1a:2f:f1:57:fa:89:03:b0:52:fa:05:43:36:06:1a:13:2f:34: 9e:66:55:a7:6c:39:d4:65:0f:cc:93:b6:f5:42:f4:6e:a6:d6: 19:e3:69:39:96:41:a9:2f:b2:07:37:88:77:11:ba:99:e5:be: 3e:2d:eb:6b:d1:64:5e:e0:7f:d4:34:5f:1a:92:ac:22:13:64: 80:13:85:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEzRDAxMTAvBgNVBAUTKEZDODBCNDlCNTA3MzMyRkQ0QzlDOTJERDVFMjdBMkRG Q0E4MDY0REEwHhcNMjQwNTE5MDE1MTM2WhcNMjQwNTI2MDE1MTM2WjAYMRYwFAYD VQQDEw02NjQ5NWIyOC1iZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4bgKxMBYTnb59z0iF8q3LPk0FqexGJw3pN4UnQuKt8cdBNoCD8T3CjDkR7TJ t0Z911xjfWDGO4bZ4SOTcY0buDgLb07J3qjt5a7eDUUEyIjse3J5c2NWO6XAXxKx PuqEyUHVu0iqDuibf/V7jtw9YLBQrZ7Cuof3uwYsxzl//WhKX6BF4ZsuVLvLZ2UB 2WWRH//0p1/616pNF2ZAU09+0KFtw/qDruHd8kWaoCX5nq3E91+l9baNta+T5wVl 627n73ohXaGh/uN9x/FRztC5tOQ8RWDNdRetp6HnSsIfvqILBrtRhA8sOrG3g7OD 9/LWcfQYMZqLOYXHzITfslOTgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVpMAAD YaThr8CwsYXCrwLZ4aKPMB8GA1UdIwQYMBaAFPyAtJtQczL9TJyS3V4not/KgGTa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTNEMC9EN0E0QkI1NjA0 QUMxMUVDQkVCNTBDNzlDNEY5QUUwMi9fSUMwbTFCek12MU1uSkxkWGllaTM4cUFa Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JQzBtMUJ6TXYxTW5KTGRYaWVpMzhxQVpOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTNEMC9EN0E0QkI1NjA0QUMxMUVDQkVCNTBDNzlDNEY5QUUwMi9fSUMwbTFCek12 MU1uSkxkWGllaTM4cUFaTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnwxu9ZqDyhzEAFMbDV9iwRYJOXKbtCwIfCVxyj8q2+A1c8x6NDLtx IxlhRty0fF4e6bWRat3ivVdaS320xoCgn2nb2DlHI0Lo51JZnbo7gNpblK7xAbCH IOkhUsN5d2+V3ObTrvc2eHQmHYo0F7QuVUWqBWHcyTAbgi9xYoP1RQs1kcbK8aPJ 4m5NCGxs/uyrigAvIrqEuU/tMU2LkJWFZhk1ouLfw0mMG9bmFuxw1YH8likaL/FX +okDsFL6BUM2BhoTLzSeZlWnbDnUZQ/Mk7b1QvRuptYZ42k5lkGpL7IHN4h3EbqZ 5b4+Letr0WRe4H/UNF8akqwiE2SAE4XG -----END CERTIFICATE-----Generated at Sun May 19 02:59:15 2024 by rpki-client on console-ams.rpki-client.org