$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: 0ZXQSDxRNUtTxVNOkIWXGahlnx22CxTrBNRVKPtWLko= Subject key identifier: 7D:A8:77:6C:FC:23:E0:A9:F9:4A:69:AF:C2:21:97:CF:A6:05:C4:7E Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 043F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 0436 Signing time: Sun 19 May 2024 01:59:50 +0000 Manifest this update: Sun 19 May 2024 01:59:49 +0000 Manifest next update: Sun 26 May 2024 01:59:49 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: z/mwj1WDNokuRr5lGHykFW3KEvmc3QDvH1NM/qBLUAE=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: ykDmLwlQ9q8+M9ivqFyPSgnnsWFLxmgd6EUKH+JYggc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: May 19 01:59:49 2024 GMT Not After : May 26 01:59:49 2024 GMT Subject: CN=66495d15-aab3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:75:40:95:f6:51:05:8c:09:14:11:49:7e:e4: b0:e6:06:3d:ea:85:1b:5c:0f:7f:e9:55:02:59:c0: 5e:b3:29:05:17:9d:12:31:66:89:be:59:c1:54:f7: 1b:f3:8e:83:49:ae:61:3a:06:df:87:9a:67:73:7c: e9:64:f9:48:5a:3f:ed:ff:02:47:b3:80:e1:ce:58: 00:76:37:0d:e3:35:5b:2f:b3:a8:e0:61:fe:f0:f8: 62:0f:86:15:13:cf:df:af:5b:7b:08:63:d6:25:0f: 62:c3:ee:2d:66:c4:24:23:69:12:58:ee:dc:08:3a: 31:11:46:88:aa:c7:d6:14:ac:4a:24:41:f5:80:7c: 05:fb:6d:9d:0d:b6:f8:db:2d:1e:f4:78:9f:3c:6e: 28:8a:79:45:7f:64:84:41:b5:73:9c:94:61:13:7e: f3:71:ea:07:28:0f:cd:d0:65:d5:90:ec:17:67:03: a4:07:d4:7a:99:b4:6d:1a:b8:73:df:68:28:e0:15: ff:21:e1:d6:1a:34:21:33:92:b3:f4:c5:85:b6:78: fd:15:db:a6:39:d6:cc:b8:b1:4c:b8:dc:76:1a:ab: 27:03:12:c1:b0:ea:dd:2b:f3:ff:e0:a6:ca:b3:af: 56:f5:32:b0:81:fc:41:a9:cb:f0:f1:2b:53:a7:6d: 32:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A8:77:6C:FC:23:E0:A9:F9:4A:69:AF:C2:21:97:CF:A6:05:C4:7E X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:b6:94:2a:19:88:0f:2b:0f:23:8c:c0:93:6b:87:a4:70:3f: 54:47:d9:fa:29:70:74:da:86:c8:11:10:81:c9:ee:cb:0c:0a: af:f4:b5:f1:9f:ef:a8:3a:31:80:26:c6:de:8a:e1:d8:9d:98: 8a:7e:b6:5d:19:07:12:5c:f9:c1:43:2c:1e:37:50:ff:32:eb: a8:b5:fe:69:cc:3e:05:78:52:58:3f:be:7a:bb:38:98:98:58: 5c:19:51:97:bf:25:5d:c5:fb:b6:77:f4:59:56:c8:e6:4e:97: 96:38:22:ac:0e:24:85:39:da:b3:22:e1:3f:d5:d8:a4:a8:14: 25:06:65:b7:8e:2a:d2:a7:db:b8:79:f4:68:20:90:fa:4a:01: 0a:17:c5:10:57:71:47:59:64:a6:bb:d1:4a:3e:f0:07:c4:d4: d7:f1:32:2f:15:09:34:89:6b:94:9c:9e:0b:88:b9:0c:93:73: c3:48:cf:56:cf:81:9b:9c:72:46:32:38:51:1f:96:20:11:56: 35:b9:34:46:9b:4d:ca:fe:e8:ae:09:fc:7b:69:8b:ef:a6:c5: 5b:f2:36:0d:03:f3:72:5d:4f:dc:eb:3a:80:da:d9:32:6a:d1: 0d:a0:ad:6d:c1:7c:d9:77:f2:6e:40:e5:63:0d:31:b8:60:6b: 8f:93:e8:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjQwNTE5MDE1OTQ5WhcNMjQwNTI2MDE1OTQ5WjAYMRYwFAYD VQQDEw02NjQ5NWQxNS1hYWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXVAlfZRBYwJFBFJfuSw5gY96oUbXA9/6VUCWcBesykFF50SMWaJvlnBVPcb 846DSa5hOgbfh5pnc3zpZPlIWj/t/wJHs4DhzlgAdjcN4zVbL7Oo4GH+8PhiD4YV E8/fr1t7CGPWJQ9iw+4tZsQkI2kSWO7cCDoxEUaIqsfWFKxKJEH1gHwF+22dDbb4 2y0e9HifPG4oinlFf2SEQbVznJRhE37zceoHKA/N0GXVkOwXZwOkB9R6mbRtGrhz 32go4BX/IeHWGjQhM5Kz9MWFtnj9FdumOdbMuLFMuNx2GqsnAxLBsOrdK/P/4KbK s69W9TKwgfxBqcvw8StTp20yBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2od2z8 I+Cp+Uppr8Ihl8+mBcR+MB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMtpQqGYgPKw8jjMCTa4ekcD9UR9n6KXB02obIERCBye7LDAqv9LXx n++oOjGAJsbeiuHYnZiKfrZdGQcSXPnBQyweN1D/Muuotf5pzD4FeFJYP756uziY mFhcGVGXvyVdxfu2d/RZVsjmTpeWOCKsDiSFOdqzIuE/1dikqBQlBmW3jirSp9u4 efRoIJD6SgEKF8UQV3FHWWSmu9FKPvAHxNTX8TIvFQk0iWuUnJ4LiLkMk3PDSM9W z4GbnHJGMjhRH5YgEVY1uTRGm03K/uiuCfx7aYvvpsVb8jYNA/NyXU/c6zqA2tky atENoK1twXzZd/JuQOVjDTG4YGuPk+gu -----END CERTIFICATE-----Generated at Sun May 19 02:59:16 2024 by rpki-client on console-ams.rpki-client.org