$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft File: 1h14JILiVI0iXRvIiINjk97jmBI.mft (raw, json) Hash identifier: aqoGl6iU9NHoQg5dCC0dxIlNnQ/jasWZUEYNTgNsZdk= Subject key identifier: 1B:56:8F:4E:82:F8:10:4F:02:84:17:3A:D7:25:D2:84:00:F7:ED:CE Authority key identifier: D6:1D:78:24:82:E2:54:8D:22:5D:1B:C8:88:83:63:93:DE:E3:98:12 Certificate issuer: /CN=A91F0A98/serialNumber=D61D782482E2548D225D1BC888836393DEE39812 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft Manifest number: 93 Signing time: Sun 19 May 2024 06:57:17 +0000 Manifest this update: Sun 19 May 2024 06:57:16 +0000 Manifest next update: Sun 26 May 2024 06:57:16 +0000 Files and hashes: 1: 1h14JILiVI0iXRvIiINjk97jmBI.crl (hash: Kp1PVU68uwtQKBUkB9O14A8WmBIM88WGtYWPLKAmtxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.crl rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0A98/serialNumber=D61D782482E2548D225D1BC888836393DEE39812 Validity Not Before: May 19 06:57:16 2024 GMT Not After : May 26 06:57:16 2024 GMT Subject: CN=6649a2cd-971a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:44:36:61:a2:1a:26:67:24:a0:bd:b0:27:d4: fd:53:a7:92:4e:a0:34:01:bc:e2:8f:a1:6e:2d:5c: ea:f5:1a:04:f1:d9:a8:9e:b1:82:9a:92:0f:2a:51: 69:42:e0:df:df:53:12:8a:96:06:6d:29:77:a7:f5: 7e:78:f3:a4:75:47:b8:77:80:4e:45:81:72:cf:7d: 02:0c:e0:23:8e:02:84:00:f8:77:85:32:d5:00:a0: e9:95:be:66:fa:12:c6:b4:7b:09:eb:de:ba:dc:b1: 20:29:f2:c2:79:46:5e:62:27:5d:58:e2:7a:df:b4: 66:5c:cc:e2:6c:95:81:46:e6:55:36:55:f8:b9:98: 0f:a9:7e:eb:dd:35:12:1e:77:5b:97:54:41:65:e5: 5f:35:b9:40:19:57:da:1e:8b:47:4e:8f:f1:9c:e0: 47:ef:b6:1f:01:08:ed:11:65:41:e2:27:91:fe:93: f2:06:a8:39:1f:39:4b:f1:bd:12:60:07:11:42:84: 66:02:5b:db:bc:27:59:4d:28:9e:42:bf:15:86:06: 8a:5a:7f:12:83:60:15:0d:aa:65:68:f4:c4:3e:94: 4f:9f:b9:9d:72:83:13:a9:15:73:77:62:c5:b9:2e: ab:1a:b7:d1:4d:3e:73:95:ad:41:bf:ff:54:f5:36: b3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:56:8F:4E:82:F8:10:4F:02:84:17:3A:D7:25:D2:84:00:F7:ED:CE X509v3 Authority Key Identifier: keyid:D6:1D:78:24:82:E2:54:8D:22:5D:1B:C8:88:83:63:93:DE:E3:98:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:4b:59:04:c5:0c:7f:b1:0f:8f:57:e9:c0:39:12:c1:37:3a: 74:77:27:6b:c4:35:c8:ef:34:9b:83:47:1e:2d:33:f8:c6:4e: 8b:db:e5:65:cc:40:c4:9f:1a:ea:9a:3a:52:c1:a1:52:69:f8: 22:57:85:6e:5a:f3:cb:bf:b1:85:9e:fe:e5:74:2e:c2:dd:1c: 03:23:49:e0:f3:ab:70:52:94:84:00:1e:03:1c:f7:d0:81:64: 42:65:da:b6:8a:e8:3e:75:87:41:10:c9:d1:8e:84:dc:a2:e4: 97:5c:36:3b:01:47:6c:39:a6:d9:02:d4:d8:a7:88:3a:58:7a: b1:d8:9b:f0:5c:23:1f:a7:11:e3:fd:2a:71:8b:f7:be:6d:78: cb:a0:da:cf:0a:ee:d8:06:0f:18:ac:bc:63:e1:d0:e7:f1:e7: f7:7f:cf:98:c0:9e:19:5f:d7:b7:ab:c7:91:32:56:29:3b:1d: 9d:da:12:a4:60:22:6f:b2:18:55:d5:74:cb:f9:2f:d4:3a:f2: c5:d7:c0:70:53:08:80:b9:d2:41:25:f2:2a:0a:aa:20:fb:66: 7e:d7:58:f6:94:b4:78:84:35:16:5e:68:d6:20:66:ef:90:24: 40:d6:e4:39:dc:9d:ef:dd:ad:80:d4:e3:5d:d3:f4:95:57:73: e1:df:54:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBOTgxMTAvBgNVBAUTKEQ2MUQ3ODI0ODJFMjU0OEQyMjVEMUJDODg4ODM2Mzkz REVFMzk4MTIwHhcNMjQwNTE5MDY1NzE2WhcNMjQwNTI2MDY1NzE2WjAYMRYwFAYD VQQDEw02NjQ5YTJjZC05NzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0Q2YaIaJmckoL2wJ9T9U6eSTqA0Abzij6FuLVzq9RoE8dmonrGCmpIPKlFp QuDf31MSipYGbSl3p/V+ePOkdUe4d4BORYFyz30CDOAjjgKEAPh3hTLVAKDplb5m +hLGtHsJ69663LEgKfLCeUZeYiddWOJ637RmXMzibJWBRuZVNlX4uZgPqX7r3TUS Hndbl1RBZeVfNblAGVfaHotHTo/xnOBH77YfAQjtEWVB4ieR/pPyBqg5HzlL8b0S YAcRQoRmAlvbvCdZTSieQr8VhgaKWn8Sg2AVDaplaPTEPpRPn7mdcoMTqRVzd2LF uS6rGrfRTT5zla1Bv/9U9TazEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtWj06C +BBPAoQXOtcl0oQA9+3OMB8GA1UdIwQYMBaAFNYdeCSC4lSNIl0byIiDY5Pe45gS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEE5OC84RjQ4NjRFQTM1 RTAxMUVFODdDMkE2NzBDNEY5QUUwMi8xaDE0SklMaVZJMGlYUnZJaUlOams5N2pt QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoMTRKSUxpVkkwaVhSdklpSU5qazk3am1CSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEE5OC84RjQ4NjRFQTM1RTAxMUVFODdDMkE2NzBDNEY5QUUwMi8xaDE0SklMaVZJ MGlYUnZJaUlOams5N2ptQkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPS1kExQx/sQ+PV+nAORLBNzp0dydrxDXI7zSbg0ceLTP4xk6L2+Vl zEDEnxrqmjpSwaFSafgiV4VuWvPLv7GFnv7ldC7C3RwDI0ng86twUpSEAB4DHPfQ gWRCZdq2iug+dYdBEMnRjoTcouSXXDY7AUdsOabZAtTYp4g6WHqx2JvwXCMfpxHj /Spxi/e+bXjLoNrPCu7YBg8YrLxj4dDn8ef3f8+YwJ4ZX9e3q8eRMlYpOx2d2hKk YCJvshhV1XTL+S/UOvLF18BwUwiAudJBJfIqCqog+2Z+11j2lLR4hDUWXmjWIGbv kCRA1uQ53J3v3a2A1ONd0/SVV3Ph31Tm -----END CERTIFICATE-----Generated at Sun May 19 08:25:12 2024 by rpki-client on console-ams.rpki-client.org