$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft File: A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft (raw, json) Hash identifier: 6xWpU0GzC+86uZPAkZ/bdyJAbLIxwlUTZINMc7msbHQ= Subject key identifier: E2:B7:26:F2:0C:F1:15:94:78:5F:9D:F3:FB:0B:F2:95:B6:43:CD:D1 Authority key identifier: 03:72:46:D5:14:B8:23:40:ED:E0:62:89:BF:1B:C8:C4:59:DB:FC:E5 Certificate issuer: /CN=A91E6DB3/serialNumber=037246D514B82340EDE06289BF1BC8C459DBFCE5 Certificate serial: 0273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft Manifest number: 026F Signing time: Sun 19 May 2024 03:47:27 +0000 Manifest this update: Sun 19 May 2024 03:47:26 +0000 Manifest next update: Sun 26 May 2024 03:47:26 +0000 Files and hashes: 1: A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl (hash: XtzYXwp0WZaNsMYfCOEJTw7JLJPexU6F4wFqaZwweSY=) 2: 671C31AAC6C811ECA5A9AB33C4F9AE02.roa (hash: /TI2F7MhQO30jGBDRivp/6wrla+2ORDXa1rFRJnY540=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6DB3/serialNumber=037246D514B82340EDE06289BF1BC8C459DBFCE5 Validity Not Before: May 19 03:47:26 2024 GMT Not After : May 26 03:47:26 2024 GMT Subject: CN=6649764f-f0e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:97:23:e9:4d:17:b1:60:07:3d:51:9c:5e:4a: 7f:31:89:2c:c1:8a:77:87:99:0d:e8:00:98:a7:c5: a8:9a:25:fa:6e:36:1d:bf:4e:9b:1a:4c:83:ec:91: 8d:d8:78:bf:17:63:a1:7c:22:37:7a:66:65:23:c5: 72:58:20:20:94:8e:c2:0b:16:d5:ae:16:4e:9c:da: 55:a5:20:ed:b0:4c:c9:55:ed:4d:df:84:b4:ff:ef: 1c:bc:e1:52:2d:ed:f4:9b:3e:5c:9c:5b:21:8c:52: cc:fe:7e:dd:1f:92:7e:b0:7a:39:d3:2f:ff:c7:c6: 49:a6:e1:1e:e0:b4:65:94:f0:e1:3e:ac:40:39:10: 91:77:d0:b9:98:eb:e8:ed:b3:00:18:14:c4:25:b0: 9f:96:e1:77:c2:f7:3f:46:aa:cb:c9:25:d3:29:32: bb:d6:dc:f1:08:fe:ca:64:86:a2:b1:45:13:d5:eb: ff:49:1b:4d:9d:f6:21:48:2c:e3:59:f5:e4:4b:7f: c4:46:df:cd:4e:4c:86:51:ed:e8:37:f5:0f:4a:b3: 7e:5f:fb:c3:04:ca:a1:5a:7c:8d:7d:ae:38:e7:c2: e1:cf:f6:fc:50:21:0a:ec:49:16:4b:0a:1b:ed:c1: 41:9a:30:9c:70:34:1e:50:1c:8c:67:24:c5:6f:f5: 52:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:B7:26:F2:0C:F1:15:94:78:5F:9D:F3:FB:0B:F2:95:B6:43:CD:D1 X509v3 Authority Key Identifier: keyid:03:72:46:D5:14:B8:23:40:ED:E0:62:89:BF:1B:C8:C4:59:DB:FC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:0d:b7:7b:87:81:a6:a1:73:a5:68:c6:8f:8c:cf:6b:9f:46: b4:8f:2f:51:44:28:54:ad:0a:dd:73:32:8f:39:e8:75:60:86: b0:3f:c1:18:db:d2:c1:8a:31:67:a8:89:c5:97:4a:a7:c9:9c: 82:b4:bd:c5:40:2c:84:ff:aa:4c:32:fa:f6:23:58:6c:ce:c6: 11:82:5b:0c:c6:bb:24:b2:25:64:48:83:0f:b2:9b:ad:0e:d4: 46:32:90:fa:31:86:d6:05:15:6f:c0:37:5d:3c:8e:ec:ea:ea: 06:b2:21:dc:f5:8b:7e:7d:3e:6a:ac:c6:5b:6e:63:ea:32:78: ab:c1:8c:de:25:ae:d3:f5:d7:73:60:3c:d7:cf:3a:68:b9:c6: 48:01:37:1b:ad:69:cd:d2:7e:e6:71:e0:ad:aa:08:0f:d3:9c: 3d:03:b0:5f:fe:6b:6e:af:f4:73:88:e7:8b:58:78:ec:74:75: f3:4c:89:36:b0:0e:cc:4e:26:8d:7e:4b:c3:95:a6:6d:66:1d: 6c:1f:4b:80:ef:6b:d1:9b:a9:02:20:b8:9e:81:e4:80:f6:e1: b0:82:10:25:7e:2a:fe:a7:3c:e8:8d:5a:b8:7c:5a:96:ba:42: cd:fa:c5:ae:4e:21:70:bd:92:64:a8:af:67:75:ea:02:f1:b4: a9:a5:92:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZEQjMxMTAvBgNVBAUTKDAzNzI0NkQ1MTRCODIzNDBFREUwNjI4OUJGMUJDOEM0 NTlEQkZDRTUwHhcNMjQwNTE5MDM0NzI2WhcNMjQwNTI2MDM0NzI2WjAYMRYwFAYD VQQDEw02NjQ5NzY0Zi1mMGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Jcj6U0XsWAHPVGcXkp/MYkswYp3h5kN6ACYp8WomiX6bjYdv06bGkyD7JGN 2Hi/F2OhfCI3emZlI8VyWCAglI7CCxbVrhZOnNpVpSDtsEzJVe1N34S0/+8cvOFS Le30mz5cnFshjFLM/n7dH5J+sHo50y//x8ZJpuEe4LRllPDhPqxAORCRd9C5mOvo 7bMAGBTEJbCfluF3wvc/RqrLySXTKTK71tzxCP7KZIaisUUT1ev/SRtNnfYhSCzj WfXkS3/ERt/NTkyGUe3oN/UPSrN+X/vDBMqhWnyNfa4458Lhz/b8UCEK7EkWSwob 7cFBmjCccDQeUByMZyTFb/VSqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOK3JvIM 8RWUeF+d8/sL8pW2Q83RMB8GA1UdIwQYMBaAFANyRtUUuCNA7eBiib8byMRZ2/zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkRCMy81M0FBMUJENEM2 MDgxMUVDOUIzMTQ0NkRDNEY5QUUwMi9BM0pHMVJTNEkwRHQ0R0tKdnh2SXhGbmJf T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzSkcxUlM0STBEdDRHS0p2eHZJeEZuYl9PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkRCMy81M0FBMUJENEM2MDgxMUVDOUIzMTQ0NkRDNEY5QUUwMi9BM0pHMVJTNEkw RHQ0R0tKdnh2SXhGbmJfT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATDbd7h4GmoXOlaMaPjM9rn0a0jy9RRChUrQrdczKPOeh1YIawP8EY 29LBijFnqInFl0qnyZyCtL3FQCyE/6pMMvr2I1hszsYRglsMxrsksiVkSIMPsput DtRGMpD6MYbWBRVvwDddPI7s6uoGsiHc9Yt+fT5qrMZbbmPqMnirwYzeJa7T9ddz YDzXzzpoucZIATcbrWnN0n7mceCtqggP05w9A7Bf/mtur/RziOeLWHjsdHXzTIk2 sA7MTiaNfkvDlaZtZh1sH0uA72vRm6kCILiegeSA9uGwghAlfir+pzzojVq4fFqW ukLN+sWuTiFwvZJkqK9ndeoC8bSppZKD -----END CERTIFICATE-----Generated at Sun May 19 04:20:44 2024 by rpki-client on console-ams.rpki-client.org