$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft File: 0S_1veXU0upxiMsALH_wFtyZTXI.mft (raw, json) Hash identifier: 8QGoWEpw2pHheMAfWZyXoVG3oD/v3nOFAJ6ovY2OBrE= Subject key identifier: 47:32:FD:06:3B:BA:86:33:8E:7D:AB:33:D8:DF:89:65:06:B1:47:3A Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 0451 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft Manifest number: 0451 Signing time: Sun 19 May 2024 01:52:47 +0000 Manifest this update: Sun 19 May 2024 01:52:46 +0000 Manifest next update: Sun 26 May 2024 01:52:46 +0000 Files and hashes: 1: 0S_1veXU0upxiMsALH_wFtyZTXI.crl (hash: 4KuRJmx5kd373qp6F4FgrUl5HgV23U/6jAGwtiEcU98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1105 (0x451) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: May 19 01:52:46 2024 GMT Not After : May 26 01:52:46 2024 GMT Subject: CN=66495b6e-f663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:01:59:23:0a:6a:bd:2e:5f:93:5c:ea:92:72: 38:8a:bc:8d:7a:8d:0b:73:9a:d8:7e:06:f5:fd:51: 85:b1:cd:5a:3a:48:3b:86:d5:d2:ee:4c:9c:f1:b3: c8:94:86:01:2c:02:ae:a1:cb:e8:3b:82:cf:a6:ea: 3f:c7:06:db:55:37:ec:00:0c:b9:6c:d2:72:15:3e: a4:4e:d2:5e:af:5a:f3:88:ff:3c:2e:07:a6:87:a4: e1:5e:46:51:ea:30:f4:6c:7c:f2:2c:d7:86:83:8e: 20:1f:60:37:6f:a1:95:df:ac:c8:66:05:a8:8e:97: f6:b5:e0:b8:86:96:10:c8:b0:18:ca:17:98:2c:96: 3e:cf:d8:5d:49:1c:1d:86:15:73:0a:99:c7:02:61: 3f:f6:6b:83:41:ab:2e:14:9d:6c:1d:9d:3f:90:6e: a5:da:cc:de:9d:b6:00:bd:08:dc:5b:2f:68:59:b7: 5e:3a:a3:92:8f:68:62:5b:09:e6:59:dd:8d:26:c1: 35:c0:97:1b:d3:ec:d2:c3:b9:ea:a3:48:c8:88:e3: 42:db:38:f6:8d:6b:46:ac:58:38:ce:c6:c5:d6:c6: 43:77:69:4b:18:5d:5a:51:61:30:dd:0c:e8:b7:59: 37:84:f9:ad:78:ee:57:38:5a:77:6c:84:11:9d:a3: 5d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:32:FD:06:3B:BA:86:33:8E:7D:AB:33:D8:DF:89:65:06:B1:47:3A X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:55:97:e5:23:1b:8c:f7:f5:4a:c5:b6:2a:7e:e2:17:76:83: 40:de:b6:ac:8d:b8:ce:98:19:0f:8f:ed:5d:30:44:b9:b3:dd: 9e:94:cf:6d:c4:72:34:b3:d5:ae:41:43:b0:bf:53:1f:97:1d: 84:b4:fa:a1:2f:a8:12:38:c9:0f:1a:a4:3a:86:9a:5a:5f:99: 8c:1c:f8:d0:42:ff:07:71:3a:d0:9a:fa:70:d7:7d:d1:94:4a: 4c:50:dc:e2:f0:9c:3c:66:14:cd:da:85:37:97:bf:82:63:05: bc:7f:b5:b7:29:be:13:c9:49:d1:3c:a0:51:ad:73:0f:77:1c: 3f:d6:b3:d1:54:83:dd:72:d6:8b:fc:32:21:20:59:96:4c:71: c9:65:26:00:06:99:1b:e6:c4:30:af:79:e9:74:92:cc:70:b6: 40:9c:c6:19:84:9f:51:c6:1c:b8:43:1f:fb:ff:16:19:d3:f9: c2:32:d8:d0:79:23:ed:af:70:d9:4b:b6:fb:1d:e5:6f:29:79: d6:15:38:bc:a2:d9:f1:e6:04:21:19:53:63:14:b2:49:a2:f9: b3:90:20:fc:65:f3:98:a8:c7:49:f8:95:f4:2d:a8:bb:3a:29: 78:42:5f:e4:47:ab:0a:14:46:0d:3b:24:5b:55:3a:68:2e:1a: 8d:1f:47:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjQwNTE5MDE1MjQ2WhcNMjQwNTI2MDE1MjQ2WjAYMRYwFAYD VQQDEw02NjQ5NWI2ZS1mNjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4gFZIwpqvS5fk1zqknI4iryNeo0Lc5rYfgb1/VGFsc1aOkg7htXS7kyc8bPI lIYBLAKuocvoO4LPpuo/xwbbVTfsAAy5bNJyFT6kTtJer1rziP88Lgemh6ThXkZR 6jD0bHzyLNeGg44gH2A3b6GV36zIZgWojpf2teC4hpYQyLAYyheYLJY+z9hdSRwd hhVzCpnHAmE/9muDQasuFJ1sHZ0/kG6l2szenbYAvQjcWy9oWbdeOqOSj2hiWwnm Wd2NJsE1wJcb0+zSw7nqo0jIiONC2zj2jWtGrFg4zsbF1sZDd2lLGF1aUWEw3Qzo t1k3hPmteO5XOFp3bIQRnaNdIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcy/QY7 uoYzjn2rM9jfiWUGsUc6MB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9EMzE2N0YwQTA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1 cHhpTXNBTEhfd0Z0eVpUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaVZflIxuM9/VKxbYqfuIXdoNA3rasjbjOmBkPj+1dMES5s92elM9t xHI0s9WuQUOwv1Mflx2EtPqhL6gSOMkPGqQ6hppaX5mMHPjQQv8HcTrQmvpw133R lEpMUNzi8Jw8ZhTN2oU3l7+CYwW8f7W3Kb4TyUnRPKBRrXMPdxw/1rPRVIPdctaL /DIhIFmWTHHJZSYABpkb5sQwr3npdJLMcLZAnMYZhJ9Rxhy4Qx/7/xYZ0/nCMtjQ eSPtr3DZS7b7HeVvKXnWFTi8otnx5gQhGVNjFLJJovmzkCD8ZfOYqMdJ+JX0Lai7 Oil4Ql/kR6sKFEYNOyRbVTpoLhqNH0cr -----END CERTIFICATE-----Generated at Sun May 19 02:39:38 2024 by rpki-client on console-fra.rpki-client.org