$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft File: MoI4D1fWFw9Fz1IOeywaPNovyq0.mft (raw, json) Hash identifier: 3Dejq3x51XQBGK4C3I0y8Wtt6uBhZSFez0OyT47HEts= Subject key identifier: 36:44:DD:5C:75:3A:04:A7:91:53:94:FE:AA:2D:18:CC:AF:33:9C:11 Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD Certificate issuer: /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft Manifest number: 0205 Signing time: Fri 31 May 2024 04:47:05 +0000 Manifest this update: Fri 31 May 2024 04:47:05 +0000 Manifest next update: Fri 07 Jun 2024 04:47:05 +0000 Files and hashes: 1: MoI4D1fWFw9Fz1IOeywaPNovyq0.crl (hash: miVxIpsuW48+FQjMTZkqZIgPhhxB049uysZJKfJtBWo=) 2: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (hash: DTeUoGILmpR1cuWk4EONESxHDKOdUfVBGiNOOrF79fw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 04:47:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Validity Not Before: May 31 04:47:05 2024 GMT Not After : Jun 7 04:47:05 2024 GMT Subject: CN=66595649-ecab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f8:3a:54:b7:fe:49:af:cf:c4:35:cc:fb:d4: 89:e1:47:f8:c1:f1:75:38:de:b2:f1:ab:6e:71:7f: 11:7c:c9:83:3c:dc:d2:0a:43:71:bd:69:2b:69:47: 7e:3e:2a:9a:dd:fc:33:e2:01:26:ea:71:d4:31:e0: ee:36:62:9e:6b:d3:40:22:b7:60:3b:b4:9a:84:40: ea:aa:67:62:3e:5a:b9:8d:93:db:b6:02:d3:56:97: 37:56:56:62:ed:a9:ca:a0:4b:b5:98:71:c4:b1:b0: 4d:b3:cb:d1:ca:7e:51:7a:cd:96:f7:b2:dd:65:d7: cb:82:60:8c:48:89:24:48:f4:4d:8e:2a:4e:a4:24: cb:74:06:d8:e5:86:9b:20:a9:94:c1:11:df:f8:ec: 30:e0:cf:2b:b8:ea:9d:75:0c:7c:7d:b9:17:52:41: 9c:f6:09:a5:d2:db:40:a9:59:38:d0:8b:67:3e:ef: 08:a9:11:fd:d8:47:2a:fa:54:39:65:69:6f:ca:92: 93:6a:ce:aa:8e:7b:c7:59:34:4a:5b:5c:48:0f:15: cc:05:01:fb:50:2c:88:d9:37:e7:09:ea:56:f9:fe: c9:3c:9e:c6:14:c1:4c:68:c7:d7:f0:6e:23:b8:1d: 0f:76:18:74:da:d0:fb:2a:28:7c:f7:85:bb:80:c2: ef:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:44:DD:5C:75:3A:04:A7:91:53:94:FE:AA:2D:18:CC:AF:33:9C:11 X509v3 Authority Key Identifier: keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:05:c5:8b:2f:c4:44:76:7e:f6:5c:44:6d:57:ef:81:9a:da: e4:34:62:05:10:32:ea:99:71:30:39:7f:47:3a:b3:f4:6a:63: 25:33:26:1f:02:4d:86:b5:8d:a6:a5:fe:15:c3:ca:f3:0c:d4: f9:4e:19:25:c8:f7:c5:54:4f:84:dd:3a:e4:89:fe:d9:c6:e0: 5e:cf:cf:cf:05:25:47:46:c6:3b:8d:f9:24:12:82:53:c4:ad: 26:ec:37:82:c7:1e:2b:48:bc:31:94:f4:4a:d4:4e:29:20:0b: 89:98:a0:b5:88:14:29:f1:ad:ac:11:87:d4:27:f7:fa:f3:3b: 95:f8:99:91:6b:c7:ed:67:0f:ab:fd:a3:26:df:55:f2:68:6c: fb:dd:b2:32:c7:81:82:db:80:bb:9e:55:4b:e1:bd:4d:ed:f6: fc:41:a6:82:be:0e:04:a3:fa:25:da:e7:b8:b9:a6:bd:c3:6f: 37:3b:fe:cc:4a:09:34:62:f3:3f:c0:92:0f:14:7c:4f:56:44: da:02:02:e7:3d:84:d1:2a:d6:dc:8c:7d:38:9a:6e:62:c1:c5: d3:69:f7:c4:6b:22:fc:85:72:34:85:1a:95:14:88:a7:58:aa: 46:97:86:02:5e:e0:7e:96:b1:07:84:99:f7:2f:0a:86:a9:c0: 3c:f4:15:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxREQxMTAvBgNVBAUTKDMyODIzODBGNTdENjE3MEY0NUNGNTIwRTdCMkMxQTND REEyRkNBQUQwHhcNMjQwNTMxMDQ0NzA1WhcNMjQwNjA3MDQ0NzA1WjAYMRYwFAYD VQQDEw02NjU5NTY0OS1lY2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPg6VLf+Sa/PxDXM+9SJ4Uf4wfF1ON6y8atucX8RfMmDPNzSCkNxvWkraUd+ Piqa3fwz4gEm6nHUMeDuNmKea9NAIrdgO7SahEDqqmdiPlq5jZPbtgLTVpc3VlZi 7anKoEu1mHHEsbBNs8vRyn5Res2W97LdZdfLgmCMSIkkSPRNjipOpCTLdAbY5Yab IKmUwRHf+Oww4M8ruOqddQx8fbkXUkGc9gml0ttAqVk40ItnPu8IqRH92Ecq+lQ5 ZWlvypKTas6qjnvHWTRKW1xIDxXMBQH7UCyI2TfnCepW+f7JPJ7GFMFMaMfX8G4j uB0Pdhh02tD7Kih894W7gMLv6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZE3Vx1 OgSnkVOU/qotGMyvM5wRMB8GA1UdIwQYMBaAFDKCOA9X1hcPRc9SDnssGjzaL8qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFERC9GMTUwMDNDOEYx MTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3OUZ6MUlPZXl3YVBOb3Z5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vSTREMWZXRnc5RnoxSU9leXdhUE5vdnlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFERC9GMTUwMDNDOEYxMTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3 OUZ6MUlPZXl3YVBOb3Z5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3BcWLL8REdn72XERtV++BmtrkNGIFEDLqmXEwOX9HOrP0amMlMyYf Ak2GtY2mpf4Vw8rzDNT5ThklyPfFVE+E3Trkif7ZxuBez8/PBSVHRsY7jfkkEoJT xK0m7DeCxx4rSLwxlPRK1E4pIAuJmKC1iBQp8a2sEYfUJ/f68zuV+JmRa8ftZw+r /aMm31XyaGz73bIyx4GC24C7nlVL4b1N7fb8QaaCvg4Eo/ol2ue4uaa9w283O/7M Sgk0YvM/wJIPFHxPVkTaAgLnPYTRKtbcjH04mm5iwcXTaffEayL8hXI0hRqVFIin WKpGl4YCXuB+lrEHhJn3LwqGqcA89BWk -----END CERTIFICATE-----Generated at Fri May 31 06:49:29 2024 by rpki-client on console-ams.rpki-client.org