$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft File: cFWB1AyVgaJlHlMlI42zvcs6fQU.mft (raw, json) Hash identifier: 9fP+MFFt3WwnW3Kpa9clEjgk/UQ3HLN51pr+/Zed0+I= Subject key identifier: 2E:20:70:5B:A3:2E:0B:3E:8F:E5:10:C0:2F:56:03:EE:A1:D3:30:59 Authority key identifier: 70:55:81:D4:0C:95:81:A2:65:1E:53:25:23:8D:B3:BD:CB:3A:7D:05 Certificate issuer: /CN=A91E1D91/serialNumber=705581D40C9581A2651E5325238DB3BDCB3A7D05 Certificate serial: 02DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft Manifest number: 02D3 Signing time: Sun 19 May 2024 03:27:26 +0000 Manifest this update: Sun 19 May 2024 03:27:26 +0000 Manifest next update: Sun 26 May 2024 03:27:26 +0000 Files and hashes: 1: cFWB1AyVgaJlHlMlI42zvcs6fQU.crl (hash: HeGl6eGmdHZY4ZhD/RC3LdKLd/BxDjrlprxd2tvj0S8=) 2: 6CDC639EA04411EC8A7E5E2CC4F9AE02.roa (hash: +UlPy7z92dYQIcsSzzcSjeqb3Mx+/Y9+WuEH5yBXIeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.crl rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 731 (0x2db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D91/serialNumber=705581D40C9581A2651E5325238DB3BDCB3A7D05 Validity Not Before: May 19 03:27:26 2024 GMT Not After : May 26 03:27:26 2024 GMT Subject: CN=6649719e-d9ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0e:7d:a6:2a:a3:6f:ce:05:f1:d8:1a:d6:dd: 76:b3:3d:b8:b4:7a:58:fc:5c:6b:15:f8:b1:cb:30: 2c:dc:6e:69:e7:e2:c0:14:c6:42:2e:57:2a:ed:a1: f6:f6:27:f3:80:91:dd:d4:6e:56:3e:e0:22:4b:10: 99:ab:02:5e:08:b4:8e:1d:c0:1f:68:31:f5:ce:60: e7:5f:8a:2d:71:59:bc:29:66:f4:15:df:7a:fc:01: 5a:03:5a:3a:7a:a8:b6:bd:76:a6:71:65:9a:66:10: 03:2b:56:c2:d2:40:df:a4:39:d6:7e:25:59:d0:e6: b5:91:09:a8:c7:91:05:62:12:6f:dc:c2:72:60:75: de:b9:3f:3c:ee:b4:59:ff:24:3a:10:fa:ad:ad:09: 71:e4:ba:5b:19:c6:aa:c9:c7:6d:65:d0:64:89:45: 15:d8:7f:bf:64:8c:9e:95:00:f6:35:29:57:f8:f1: 84:0e:45:cb:37:ae:d8:6e:b6:58:f0:24:df:e5:6e: 19:90:af:5d:6f:de:9d:8c:eb:36:75:7d:60:cf:c7: f6:3a:6e:dc:c8:c3:63:5b:e9:bc:6b:51:2b:4f:7a: cc:ec:de:2f:b2:1d:e2:50:5a:5e:53:8a:a4:39:43: e5:eb:ea:2d:06:fc:13:a9:fd:b0:36:0b:fa:cc:52: 25:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:20:70:5B:A3:2E:0B:3E:8F:E5:10:C0:2F:56:03:EE:A1:D3:30:59 X509v3 Authority Key Identifier: keyid:70:55:81:D4:0C:95:81:A2:65:1E:53:25:23:8D:B3:BD:CB:3A:7D:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:4a:21:82:e0:7f:0e:3b:dd:b8:dc:da:44:ee:b7:59:0f:3f: 7a:2e:1c:84:f4:09:4e:2d:a6:11:c4:74:43:74:ee:7d:33:25: 39:3f:82:99:1e:43:18:cc:c0:04:34:e0:cc:ed:5b:6e:e6:b5: cc:0f:49:22:d8:fc:2d:86:58:0f:65:e6:f9:d2:15:a5:66:6f: 46:4f:51:26:56:49:92:65:59:50:bb:93:68:8d:9e:81:1b:32: 33:09:3a:e6:bf:69:41:ac:f8:45:ef:70:bd:30:bc:d8:33:c2: 68:7a:7e:eb:fb:e1:44:11:e2:a6:42:8c:70:e0:57:b5:00:48: 7b:be:6c:7b:3b:47:07:85:78:d4:a1:f6:ee:db:6e:73:6a:a3: 50:e3:84:69:50:02:bc:25:d2:fe:a6:cf:47:68:f7:af:61:35: 4c:cf:0f:3f:3a:da:9f:96:f8:68:a2:3c:f2:29:c3:67:42:e9: 7c:fb:fd:c2:ba:8c:fa:96:0c:88:d3:a6:14:53:69:de:c0:05: 7a:77:9f:06:51:b6:db:33:1c:32:2f:24:4d:8d:6f:32:2a:f1: 76:00:5f:98:e3:b6:56:ab:31:b9:a4:fb:b3:76:6b:71:db:e3: 3d:57:2a:46:e2:bf:2f:fc:af:b5:d6:b9:30:c8:91:d8:3d:df: de:63:ef:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFEOTExMTAvBgNVBAUTKDcwNTU4MUQ0MEM5NTgxQTI2NTFFNTMyNTIzOERCM0JE Q0IzQTdEMDUwHhcNMjQwNTE5MDMyNzI2WhcNMjQwNTI2MDMyNzI2WjAYMRYwFAYD VQQDEw02NjQ5NzE5ZS1kOWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA59piqjb84F8dga1t12sz24tHpY/FxrFfixyzAs3G5p5+LAFMZCLlcq7aH2 9ifzgJHd1G5WPuAiSxCZqwJeCLSOHcAfaDH1zmDnX4otcVm8KWb0Fd96/AFaA1o6 eqi2vXamcWWaZhADK1bC0kDfpDnWfiVZ0Oa1kQmox5EFYhJv3MJyYHXeuT887rRZ /yQ6EPqtrQlx5LpbGcaqycdtZdBkiUUV2H+/ZIyelQD2NSlX+PGEDkXLN67YbrZY 8CTf5W4ZkK9db96djOs2dX1gz8f2Om7cyMNjW+m8a1ErT3rM7N4vsh3iUFpeU4qk OUPl6+otBvwTqf2wNgv6zFIl3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4gcFuj Lgs+j+UQwC9WA+6h0zBZMB8GA1UdIwQYMBaAFHBVgdQMlYGiZR5TJSONs73LOn0F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ5MS81RDhDMTcxMkEw NDAxMUVDODQ1QUU5MjZDNEY5QUUwMi9jRldCMUF5VmdhSmxIbE1sSTQyenZjczZm UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGV0IxQXlWZ2FKbEhsTWxJNDJ6dmNzNmZRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ5MS81RDhDMTcxMkEwNDAxMUVDODQ1QUU5MjZDNEY5QUUwMi9jRldCMUF5Vmdh SmxIbE1sSTQyenZjczZmUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZSiGC4H8OO9243NpE7rdZDz96LhyE9AlOLaYRxHRDdO59MyU5P4KZ HkMYzMAENODM7Vtu5rXMD0ki2PwthlgPZeb50hWlZm9GT1EmVkmSZVlQu5NojZ6B GzIzCTrmv2lBrPhF73C9MLzYM8Joen7r++FEEeKmQoxw4Fe1AEh7vmx7O0cHhXjU ofbu225zaqNQ44RpUAK8JdL+ps9HaPevYTVMzw8/OtqflvhoojzyKcNnQul8+/3C uoz6lgyI06YUU2newAV6d58GUbbbMxwyLyRNjW8yKvF2AF+Y47ZWqzG5pPuzdmtx 2+M9VypG4r8v/K+11rkwyJHYPd/eY++l -----END CERTIFICATE-----Generated at Sun May 19 04:20:44 2024 by rpki-client on console-ams.rpki-client.org