$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft File: _0Md-OE71_7FHntTUHtFOan5ZWY.mft (raw, json) Hash identifier: A6P2XPJl9ZgLP41qWokVAHh9E96eElmZpRVxBA0MbYw= Subject key identifier: 8A:5D:E8:EC:B6:C7:55:78:7D:4D:42:3D:40:7E:CF:CB:D5:4C:82:18 Authority key identifier: FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 Certificate issuer: /CN=A91E6C4E/serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Certificate serial: 2044 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft Manifest number: 2039 Signing time: Sat 18 May 2024 16:18:52 +0000 Manifest this update: Sat 18 May 2024 16:18:52 +0000 Manifest next update: Sat 25 May 2024 16:18:52 +0000 Files and hashes: 1: _0Md-OE71_7FHntTUHtFOan5ZWY.crl (hash: tQiS9P4SgC6JLnehEzPFjAqYEZTSsj1W2YkUme/izyg=) 2: 5F0B20081CBF11EAA5FCAC86C4F9AE02.roa (hash: A0Wle0bhJAdQOvif+bzDwubbrA+KDjTDCFRXLiqYDos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8260 (0x2044) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6C4E/serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Validity Not Before: May 18 16:18:52 2024 GMT Not After : May 25 16:18:52 2024 GMT Subject: CN=6648d4ec-ebb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:72:99:65:c4:24:a3:63:f6:05:78:aa:6f:57: ae:79:9c:b2:9e:a2:9b:16:a3:03:ce:c2:3a:32:db: b0:a4:26:e5:0e:6d:08:9f:0a:69:f7:9a:ba:8c:f7: b8:04:62:1e:a1:db:ad:17:b7:68:1d:10:18:fa:c8: b1:dd:93:5e:6b:ba:67:4d:fa:ee:08:26:7f:17:b4: 50:ee:e5:80:04:fc:db:73:dd:16:6f:c0:8b:8d:0c: 93:55:1f:ff:70:1d:41:dc:49:63:a8:1b:e4:19:d9: 1e:b8:86:35:41:6e:58:d4:33:29:bf:d9:fd:2f:3e: 65:48:89:e9:96:11:2a:62:8a:cb:76:a5:9d:f4:7d: ea:68:65:74:22:38:35:ad:fc:49:35:40:6a:c1:2b: b0:a9:ce:61:0a:1a:93:02:4e:ba:2a:82:0b:ad:76: b7:1b:7b:07:e6:2c:f9:2e:a8:b5:38:22:ca:1c:69: 90:e3:03:70:51:c5:23:be:e3:da:81:8a:7a:10:66: 59:bb:49:5b:60:bc:79:05:f6:5e:a6:63:fa:cd:38: 9c:68:15:d6:ad:70:eb:3d:0e:b4:85:30:9f:c9:8c: f6:7f:2d:a4:30:5e:08:c9:87:7c:63:08:c9:eb:f3: 7b:a1:d1:6d:61:b9:54:f1:50:b3:28:30:17:62:63: 04:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:5D:E8:EC:B6:C7:55:78:7D:4D:42:3D:40:7E:CF:CB:D5:4C:82:18 X509v3 Authority Key Identifier: keyid:FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:ac:05:67:6f:f0:28:ef:66:83:44:16:34:84:b4:41:e6:f7: 59:1d:5d:13:80:5c:e2:27:17:5c:0b:3e:f3:af:fc:e1:c8:e3: a0:6b:57:d5:5d:46:d2:67:70:5e:bd:3d:5d:49:bd:1d:69:4f: b7:ee:3f:7a:3c:94:94:6f:98:2c:5e:87:58:89:d9:27:0f:9b: a8:d1:5a:df:db:48:d5:11:a3:70:81:31:e5:cf:bb:cf:20:b0: ff:3c:ef:b1:4a:0b:e4:78:d3:e4:ec:c0:6a:07:13:b1:61:7c: 3e:d8:2b:6c:1c:6f:0b:ba:11:b3:b5:7b:d0:01:f8:7f:11:35: fe:43:65:e8:cb:f5:3c:14:ab:0f:8b:d9:57:f8:c9:ff:0f:1c: 27:b3:cd:8f:50:c8:f9:4e:47:9f:61:2b:7a:c8:c3:48:90:a2: 58:7c:f5:ff:e0:b3:8e:68:46:66:e5:73:6f:73:fc:0f:fa:37: 02:b1:6e:ab:17:52:03:22:6f:2d:33:45:b2:02:b4:31:e2:40: d8:76:6e:04:d3:1d:84:70:3c:c4:28:9c:2b:70:8b:dd:51:40: 9a:bd:c7:80:47:49:54:20:20:fa:2f:cb:6b:8d:cb:d6:56:3a: 8f:9d:67:00:90:69:2b:07:8e:a3:08:aa:1d:a8:fd:86:d1:bb: 36:bf:75:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZDNEUxMTAvBgNVBAUTKEZGNDMxREY4RTEzQkQ3RkVDNTFFN0I1MzUwN0I0NTM5 QTlGOTY1NjYwHhcNMjQwNTE4MTYxODUyWhcNMjQwNTI1MTYxODUyWjAYMRYwFAYD VQQDEw02NjQ4ZDRlYy1lYmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2HKZZcQko2P2BXiqb1eueZyynqKbFqMDzsI6MtuwpCblDm0Inwpp95q6jPe4 BGIeodutF7doHRAY+six3ZNea7pnTfruCCZ/F7RQ7uWABPzbc90Wb8CLjQyTVR// cB1B3EljqBvkGdkeuIY1QW5Y1DMpv9n9Lz5lSInplhEqYorLdqWd9H3qaGV0Ijg1 rfxJNUBqwSuwqc5hChqTAk66KoILrXa3G3sH5iz5Lqi1OCLKHGmQ4wNwUcUjvuPa gYp6EGZZu0lbYLx5BfZepmP6zTicaBXWrXDrPQ60hTCfyYz2fy2kMF4IyYd8YwjJ 6/N7odFtYblU8VCzKDAXYmMEoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpd6Oy2 x1V4fU1CPUB+z8vVTIIYMB8GA1UdIwQYMBaAFP9DHfjhO9f+xR57U1B7RTmp+WVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkM0RS8zNDQ4NjUyQ0Yz Q0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFfN0ZIbnRUVUh0Rk9hbjVa V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wTWQtT0U3MV83RkhudFRVSHRGT2FuNVpXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkM0RS8zNDQ4NjUyQ0YzQ0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFf N0ZIbnRUVUh0Rk9hbjVaV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPrAVnb/Ao72aDRBY0hLRB5vdZHV0TgFziJxdcCz7zr/zhyOOga1fV XUbSZ3BevT1dSb0daU+37j96PJSUb5gsXodYidknD5uo0Vrf20jVEaNwgTHlz7vP ILD/PO+xSgvkeNPk7MBqBxOxYXw+2CtsHG8LuhGztXvQAfh/ETX+Q2Xoy/U8FKsP i9lX+Mn/Dxwns82PUMj5TkefYSt6yMNIkKJYfPX/4LOOaEZm5XNvc/wP+jcCsW6r F1IDIm8tM0WyArQx4kDYdm4E0x2EcDzEKJwrcIvdUUCavceAR0lUICD6L8trjcvW VjqPnWcAkGkrB46jCKodqP2G0bs2v3X4 -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org