$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft File: g86FOnpm6rnh8jNGcR09yX1XWXg.mft (raw, json) Hash identifier: +u7qtXNjJi9WQ89j0d3Gp1FYrUqb627HA+ieQehBLyg= Subject key identifier: B9:97:66:31:63:B6:3A:26:A7:84:8D:5B:C8:66:AC:50:08:9E:ED:89 Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0D74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft Manifest number: 0D6B Signing time: Sat 18 May 2024 18:36:34 +0000 Manifest this update: Sat 18 May 2024 18:36:33 +0000 Manifest next update: Sat 25 May 2024 18:36:33 +0000 Files and hashes: 1: g86FOnpm6rnh8jNGcR09yX1XWXg.crl (hash: ibvqg8slZvGTrcL/UbRaOuiCpJDS6Q05L/VIw4bzWoI=) 2: 3B495FFCA46211E9B730310FC4F9AE02.roa (hash: 9CcirKqxpdNHPxtXI8/MHTjJYP2t94IiPdFAh8Rx4sE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3444 (0xd74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: May 18 18:36:33 2024 GMT Not After : May 25 18:36:33 2024 GMT Subject: CN=6648f532-5a35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fd:85:60:f8:03:14:f5:5d:01:d0:9b:6e:e6: 3e:6f:a7:0c:94:57:4e:8b:c7:19:ea:19:cc:db:1d: 55:14:f0:68:73:6a:c8:9f:23:19:11:bd:3d:1f:39: 98:f9:79:9e:52:45:df:56:54:23:d9:09:ab:aa:c7: 55:48:e3:ca:b1:4a:89:a5:44:f8:7e:85:d0:f8:4d: 90:6b:2a:d1:c6:9e:2f:c6:b3:cd:de:cb:db:fc:e2: 01:51:10:c0:20:78:b8:44:fd:e2:56:68:44:49:72: bb:b6:68:e4:f3:35:8b:15:1b:53:60:83:1d:a4:29: c7:28:51:c9:49:d1:3d:1a:8c:7f:d4:f5:d2:ce:73: 2d:77:f3:fe:ed:75:62:df:74:5e:83:cd:bb:87:9e: cf:23:61:2e:92:f0:e2:93:b9:97:0c:41:b4:2c:f9: 6d:03:5d:2e:73:14:81:82:c6:ff:78:a2:b8:50:c8: 32:97:c2:b0:ab:77:e4:c7:9a:a4:d5:00:12:f5:85: 80:89:0e:c5:eb:82:55:bd:5a:99:53:4c:ec:f5:14: 41:f1:4e:da:5c:c9:44:85:5d:7f:0c:e4:70:90:01: 7e:1c:4e:4f:48:78:6e:32:19:49:15:71:d0:ed:cc: a0:39:7b:3f:0d:c6:80:51:43:a2:b8:f0:12:19:6a: e3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:97:66:31:63:B6:3A:26:A7:84:8D:5B:C8:66:AC:50:08:9E:ED:89 X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:f0:c9:c8:ff:3e:d5:49:aa:9e:9a:9e:50:34:f5:60:18:9c: 1d:f9:ed:f8:26:db:3a:da:d5:6a:20:ed:22:88:dc:b2:1d:ce: c7:a7:41:3b:01:52:95:66:b3:38:82:a1:b1:25:59:02:30:7f: 8b:70:80:31:63:c7:c6:54:62:a2:c3:0e:15:60:e0:39:8f:41: 00:17:a6:f1:7b:09:df:7c:1f:b9:75:39:91:8c:6c:0a:6a:83: 1e:96:e0:02:f3:df:ce:0d:bb:93:07:a5:9c:7e:88:29:fc:1a: 39:02:d1:cc:bd:e7:6d:bf:99:2d:25:ea:64:47:23:d1:6d:c3: 32:21:89:a2:12:8a:a9:e0:80:d4:29:8f:4a:f7:53:01:85:6d: d6:6a:c3:05:05:39:f9:fc:f3:53:70:c4:f7:ca:24:36:6b:99: 42:20:c5:a4:b7:a3:56:fa:50:b0:be:b1:97:8f:4d:58:92:77: 5e:cb:1d:c7:e0:ee:fe:03:ea:8e:b4:cc:ad:21:ca:c3:c0:48: ac:4c:ed:af:3c:47:98:39:de:79:07:c8:bb:b3:23:f2:6b:3f: f1:11:42:5e:2b:6c:dd:58:86:5e:d4:10:bb:7d:02:05:1b:31: 46:64:92:83:e4:0d:15:21:ef:08:7f:33:c5:63:ee:55:8b:cf: b8:8a:32:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjQwNTE4MTgzNjMzWhcNMjQwNTI1MTgzNjMzWjAYMRYwFAYD VQQDEw02NjQ4ZjUzMi01YTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwf2FYPgDFPVdAdCbbuY+b6cMlFdOi8cZ6hnM2x1VFPBoc2rInyMZEb09HzmY +XmeUkXfVlQj2QmrqsdVSOPKsUqJpUT4foXQ+E2QayrRxp4vxrPN3svb/OIBURDA IHi4RP3iVmhESXK7tmjk8zWLFRtTYIMdpCnHKFHJSdE9Gox/1PXSznMtd/P+7XVi 33Reg827h57PI2EukvDik7mXDEG0LPltA10ucxSBgsb/eKK4UMgyl8Kwq3fkx5qk 1QAS9YWAiQ7F64JVvVqZU0zs9RRB8U7aXMlEhV1/DORwkAF+HE5PSHhuMhlJFXHQ 7cygOXs/DcaAUUOiuPASGWrjjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmXZjFj tjomp4SNW8hmrFAInu2JMB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUJDNC85MkU4MjFGMEE0NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZy bmg4ak5HY1IwOXlYMVhXWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP8MnI/z7VSaqemp5QNPVgGJwd+e34Jts62tVqIO0iiNyyHc7Hp0E7 AVKVZrM4gqGxJVkCMH+LcIAxY8fGVGKiww4VYOA5j0EAF6bxewnffB+5dTmRjGwK aoMeluAC89/ODbuTB6Wcfogp/Bo5AtHMvedtv5ktJepkRyPRbcMyIYmiEoqp4IDU KY9K91MBhW3WasMFBTn5/PNTcMT3yiQ2a5lCIMWkt6NW+lCwvrGXj01Ykndeyx3H 4O7+A+qOtMytIcrDwEisTO2vPEeYOd55B8i7syPyaz/xEUJeK2zdWIZe1BC7fQIF GzFGZJKD5A0VIe8IfzPFY+5Vi8+4ijKU -----END CERTIFICATE-----Generated at Sat May 18 19:15:26 2024 by rpki-client on console-ams.rpki-client.org