$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft File: iV-zzi-cLke5FLsqa2bHfVOXpAo.mft (raw, json) Hash identifier: AK1OHBtdLfqPb4p+XriUFq/LmbWGZ4WAxkGqAiuLXZo= Subject key identifier: B0:DD:31:C3:23:75:56:3D:FA:F3:04:11:9C:BC:F6:65:03:6F:BA:3D Authority key identifier: 89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A Certificate issuer: /CN=A91E6419/serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft Manifest number: 012A Signing time: Sun 19 May 2024 05:04:50 +0000 Manifest this update: Sun 19 May 2024 05:04:49 +0000 Manifest next update: Sun 26 May 2024 05:04:49 +0000 Files and hashes: 1: iV-zzi-cLke5FLsqa2bHfVOXpAo.crl (hash: Xoxna0YsYnIPSqWm+Z520rwv2DkbmPuEbaPYqiEsyeI=) 2: 38DEC3C04ED611ED84336740C4F9AE02.roa (hash: SYKjgHEXo5m2moa0ugIv9WzIl1i1pLYgcR5vMrtTYOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6419/serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Validity Not Before: May 19 05:04:49 2024 GMT Not After : May 26 05:04:49 2024 GMT Subject: CN=66498871-b0ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fa:33:a4:73:30:ce:66:82:a0:15:45:9c:e9: 27:c8:e3:8c:f5:5a:19:6c:c8:fe:e0:f5:53:3b:27: 51:82:b1:77:2f:36:54:ab:c2:67:b6:50:86:b0:51: b0:d7:fa:fa:7b:e3:42:23:2d:42:9f:2c:59:51:ab: 1e:a4:15:ff:20:dc:8c:b8:a9:58:c5:9e:f9:04:13: b0:2f:94:2b:2d:89:75:30:1c:1c:f9:57:fc:ef:3e: be:2a:2d:63:54:a0:3b:8a:db:d3:47:7e:04:6a:32: b0:74:04:fe:07:50:5f:e2:31:fe:4b:55:9f:4f:a4: 44:61:3d:df:9e:f5:a3:07:e9:d6:b9:b3:39:ff:ab: 7b:30:98:09:b4:c1:48:64:bd:b8:5a:65:60:96:63: 31:b1:cc:a1:33:46:1c:76:bf:4f:f2:2d:ed:0d:32: 32:63:ba:68:35:10:5a:e7:57:da:1a:ab:19:5c:60: 59:cf:07:fd:51:2a:33:95:70:9a:09:d7:1a:83:88: 29:aa:cf:6e:89:99:22:8e:45:1a:ad:71:b4:19:07: e5:bb:ce:a9:29:7d:8e:c3:47:73:cc:69:3f:e5:f4: bd:ba:4b:92:52:8b:7d:01:fc:73:0a:e4:fc:91:52: 2e:2b:be:21:e1:7c:7e:20:1f:dd:d1:b6:38:6a:04: 52:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:DD:31:C3:23:75:56:3D:FA:F3:04:11:9C:BC:F6:65:03:6F:BA:3D X509v3 Authority Key Identifier: keyid:89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:66:f4:2c:eb:df:93:bb:a6:6b:08:9f:78:47:53:5f:40:cb: 6f:a0:48:73:ab:30:75:ef:e9:5c:3f:0d:a4:60:3c:c0:ff:3a: 7e:46:16:18:29:a2:5a:ce:04:f7:6e:aa:6e:99:0b:6f:aa:2d: b9:51:c7:83:5b:a3:ba:6e:11:fd:8b:2e:31:26:a7:1f:21:68: cf:70:e4:f5:f2:7d:6b:da:d8:a3:1b:89:b3:15:92:40:71:12: 3e:b8:2a:a8:f8:9f:cd:65:fa:43:e6:e2:6e:e7:40:59:9a:23: c9:d2:57:37:d4:56:9e:c5:76:6f:00:b5:ee:bb:20:fc:c0:a7: 70:b3:71:1f:26:f0:18:d3:ca:64:50:38:b2:b8:e4:ae:5d:e6: c9:ba:5d:12:6f:7e:67:2f:de:71:e2:dc:2c:ed:ad:4a:4b:46: d0:23:0e:6d:c3:f5:d1:9d:55:66:dc:06:d2:a8:b9:d5:1d:bf: e6:36:36:42:63:21:24:f6:27:c7:72:0c:a9:61:83:5c:ca:e2: 6c:3a:0c:d9:2f:64:0d:01:ef:ed:4b:9a:07:6c:aa:6f:10:22: 79:28:58:fb:ea:6d:9a:75:9a:0f:64:02:f6:e0:f6:e7:52:c1: d2:8b:36:fa:a5:e2:13:00:3c:1a:45:a3:f5:d7:a3:a2:e9:7e: 41:de:3f:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY0MTkxMTAvBgNVBAUTKDg5NUZCM0NFMkY5QzJFNDdCOTE0QkIyQTZCNjZDNzdE NTM5N0E0MEEwHhcNMjQwNTE5MDUwNDQ5WhcNMjQwNTI2MDUwNDQ5WjAYMRYwFAYD VQQDEw02NjQ5ODg3MS1iMGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfozpHMwzmaCoBVFnOknyOOM9VoZbMj+4PVTOydRgrF3LzZUq8JntlCGsFGw 1/r6e+NCIy1CnyxZUasepBX/INyMuKlYxZ75BBOwL5QrLYl1MBwc+Vf87z6+Ki1j VKA7itvTR34EajKwdAT+B1Bf4jH+S1WfT6REYT3fnvWjB+nWubM5/6t7MJgJtMFI ZL24WmVglmMxscyhM0Ycdr9P8i3tDTIyY7poNRBa51faGqsZXGBZzwf9USozlXCa Cdcag4gpqs9uiZkijkUarXG0GQflu86pKX2Ow0dzzGk/5fS9ukuSUot9AfxzCuT8 kVIuK74h4Xx+IB/d0bY4agRSGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDdMcMj dVY9+vMEEZy89mUDb7o9MB8GA1UdIwQYMBaAFIlfs84vnC5HuRS7Kmtmx31Tl6QK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjQxOS9GQTZFMzZDQzRF RDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xrZTVGTHNxYTJiSGZWT1hw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWLXp6aS1jTGtlNUZMc3FhMmJIZlZPWHBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjQxOS9GQTZFMzZDQzRFRDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xr ZTVGTHNxYTJiSGZWT1hwQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArZvQs69+Tu6ZrCJ94R1NfQMtvoEhzqzB17+lcPw2kYDzA/zp+RhYY KaJazgT3bqpumQtvqi25UceDW6O6bhH9iy4xJqcfIWjPcOT18n1r2tijG4mzFZJA cRI+uCqo+J/NZfpD5uJu50BZmiPJ0lc31FaexXZvALXuuyD8wKdws3EfJvAY08pk UDiyuOSuXebJul0Sb35nL95x4tws7a1KS0bQIw5tw/XRnVVm3AbSqLnVHb/mNjZC YyEk9ifHcgypYYNcyuJsOgzZL2QNAe/tS5oHbKpvECJ5KFj76m2adZoPZAL24Pbn UsHSizb6peITADwaRaP116Oi6X5B3j+2 -----END CERTIFICATE-----Generated at Sun May 19 06:14:37 2024 by rpki-client on console-ams.rpki-client.org