$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft File: x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft (raw, json) Hash identifier: dECs7SMBvrUvtLNhNfcq/530Y06SVPwY7YoqhX/rro8= Subject key identifier: 4E:2B:74:21:88:C0:F8:F8:9B:54:FE:9D:76:F8:72:B9:70:C4:89:8C Authority key identifier: C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B Certificate issuer: /CN=A91E3377/serialNumber=C77C1309F4A1530EA395414528815F9C767C515B Certificate serial: 048C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft Manifest number: 0489 Signing time: Sun 19 May 2024 01:37:45 +0000 Manifest this update: Sun 19 May 2024 01:37:44 +0000 Manifest next update: Sun 26 May 2024 01:37:44 +0000 Files and hashes: 1: x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl (hash: xCMT2BjVklqz9i2DjNWW1B7iTbrawUgQV+IHtN/6Bng=) 2: 4756B350EF9011EBAAE0375AC4F9AE02.roa (hash: 4Not/cO1zAREq9ZRHJVRnD/iW74EdY0W0JSAaWm1ic0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1164 (0x48c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3377/serialNumber=C77C1309F4A1530EA395414528815F9C767C515B Validity Not Before: May 19 01:37:44 2024 GMT Not After : May 26 01:37:44 2024 GMT Subject: CN=664957e8-ed1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:06:2c:d4:a3:87:2b:02:36:25:7f:25:e4:9a: 0d:32:7c:a8:af:8e:89:e0:a6:84:b6:d5:89:8e:9d: b1:95:3e:69:38:c0:db:7e:d2:b5:74:24:42:af:b8: b9:f0:aa:74:ca:a2:ff:27:96:2a:26:69:0d:07:d2: f4:3d:f8:87:bf:33:c2:54:c6:27:ee:97:7a:4e:de: 54:f4:a9:75:8f:6e:d7:f0:1b:ce:54:88:42:ea:8b: 00:f2:f3:32:88:e9:4e:8f:9c:8e:cd:cf:33:d7:0c: de:5c:c1:b1:b7:f9:5d:bd:f2:d7:b9:d8:e6:ea:aa: b3:64:7b:c6:de:28:02:79:af:71:e6:69:51:f4:3a: e3:0d:fe:c2:c3:16:11:d4:7d:fa:1a:48:be:3c:d9: f0:a2:a1:a5:df:a5:da:e3:a4:3e:c9:dd:52:a4:c8: fb:9f:b2:16:7e:fb:25:4b:e6:22:23:f6:80:bd:29: 11:89:a8:bd:2a:41:9a:c1:ed:f5:91:48:eb:13:9e: c7:35:9d:f3:44:ce:61:c5:e0:49:42:f5:ae:d7:46: 38:92:81:75:8d:d2:a9:eb:17:a4:09:b5:41:d2:df: f6:f6:7f:ef:a5:bb:2c:aa:3e:62:e8:bc:ce:ad:4a: a4:e2:e7:09:60:3d:b8:c8:49:ea:59:d8:4c:0f:4c: 79:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2B:74:21:88:C0:F8:F8:9B:54:FE:9D:76:F8:72:B9:70:C4:89:8C X509v3 Authority Key Identifier: keyid:C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:ec:c2:37:14:e9:61:7a:aa:e2:03:76:27:b3:49:91:3b:23: 27:18:24:b4:5d:44:a9:43:91:6c:c3:6b:e0:30:52:e6:0c:bc: b8:e8:fd:a1:0b:02:23:e1:c9:e2:30:f4:1d:d9:6a:dd:aa:18: 47:35:89:d9:50:f8:d9:9d:48:f5:a9:f4:bc:77:c6:8e:2c:04: 61:b0:95:b6:91:b4:59:9a:55:77:94:45:ba:6e:02:d7:8e:33: f3:e4:00:d6:24:9a:4b:7f:0a:3e:27:fe:f9:4d:40:07:13:9b: 0b:a7:e2:49:78:92:4a:c9:89:6c:cb:7f:38:5d:ce:a8:9c:60: f5:c9:20:c4:9f:56:97:9e:00:07:28:f8:3f:9a:79:e9:ed:b1: 8e:2f:b7:d8:1e:56:67:83:c8:68:e5:f3:4a:44:f4:2b:52:f7: 7a:28:5a:9e:2e:3d:db:ed:1b:29:61:3b:cf:a8:a2:af:92:5f: c7:0e:7d:5e:bc:ef:81:d7:ef:63:52:c4:ea:53:2e:dd:d7:66: 49:5f:01:cd:2b:45:a5:00:01:83:c6:7a:1f:6e:09:d5:16:79: 82:b5:1a:27:50:42:ec:7b:a3:b7:65:21:7b:48:e3:2c:0a:d1: fc:5f:01:87:fc:25:31:ad:ac:50:bd:0f:41:89:cb:07:d0:93: ba:b2:82:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzNzcxMTAvBgNVBAUTKEM3N0MxMzA5RjRBMTUzMEVBMzk1NDE0NTI4ODE1RjlD NzY3QzUxNUIwHhcNMjQwNTE5MDEzNzQ0WhcNMjQwNTI2MDEzNzQ0WjAYMRYwFAYD VQQDEw02NjQ5NTdlOC1lZDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygYs1KOHKwI2JX8l5JoNMnyor46J4KaEttWJjp2xlT5pOMDbftK1dCRCr7i5 8Kp0yqL/J5YqJmkNB9L0PfiHvzPCVMYn7pd6Tt5U9Kl1j27X8BvOVIhC6osA8vMy iOlOj5yOzc8z1wzeXMGxt/ldvfLXudjm6qqzZHvG3igCea9x5mlR9DrjDf7CwxYR 1H36Gki+PNnwoqGl36Xa46Q+yd1SpMj7n7IWfvslS+YiI/aAvSkRiai9KkGawe31 kUjrE57HNZ3zRM5hxeBJQvWu10Y4koF1jdKp6xekCbVB0t/29n/vpbssqj5i6LzO rUqk4ucJYD24yEnqWdhMD0x5jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4rdCGI wPj4m1T+nXb4crlwxImMMB8GA1UdIwQYMBaAFMd8Ewn0oVMOo5VBRSiBX5x2fFFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzM3Ny82MEI3N0RBRUVG OEUxMUVCQjBEQTRFNTlDNEY5QUUwMi94M3dUQ2ZTaFV3NmpsVUZGS0lGZm5IWjhV VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gzd1RDZlNoVXc2amxVRkZLSUZmbkhaOFVWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzM3Ny82MEI3N0RBRUVGOEUxMUVCQjBEQTRFNTlDNEY5QUUwMi94M3dUQ2ZTaFV3 NmpsVUZGS0lGZm5IWjhVVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd7MI3FOlheqriA3Yns0mROyMnGCS0XUSpQ5Fsw2vgMFLmDLy46P2h CwIj4cniMPQd2WrdqhhHNYnZUPjZnUj1qfS8d8aOLARhsJW2kbRZmlV3lEW6bgLX jjPz5ADWJJpLfwo+J/75TUAHE5sLp+JJeJJKyYlsy384Xc6onGD1ySDEn1aXngAH KPg/mnnp7bGOL7fYHlZng8ho5fNKRPQrUvd6KFqeLj3b7RspYTvPqKKvkl/HDn1e vO+B1+9jUsTqUy7d12ZJXwHNK0WlAAGDxnofbgnVFnmCtRonUELse6O3ZSF7SOMs CtH8XwGH/CUxraxQvQ9BicsH0JO6soLA -----END CERTIFICATE-----Generated at Sun May 19 02:59:16 2024 by rpki-client on console-ams.rpki-client.org