$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft File: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft (raw, json) Hash identifier: AYHMqFIEBG5bwuu+vqzfJFShygvX4tNuRw1iQniOFzo= Subject key identifier: 75:03:BA:45:B8:AD:7C:E1:87:F8:2A:D2:AC:3D:C9:C6:6D:28:27:B3 Authority key identifier: 89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 Certificate issuer: /CN=A91F2046/serialNumber=894809630956924382CC39D460FA4764B0175934 Certificate serial: 0B3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft Manifest number: 0B36 Signing time: Thu 30 May 2024 20:11:13 +0000 Manifest this update: Thu 30 May 2024 20:11:12 +0000 Manifest next update: Thu 06 Jun 2024 20:11:12 +0000 Files and hashes: 1: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl (hash: yltGQ6Yd2hF3BZk0n6AUaIWzpz4eqMq0AOjSHzEqe1c=) 2: 0D2573FA173E11EA947B2976C4F9AE02.roa (hash: foQ7MYzea1etNTi1euY8wV1nkQBT/Wh0vzrFLlJCjYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 20:11:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2876 (0xb3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2046/serialNumber=894809630956924382CC39D460FA4764B0175934 Validity Not Before: May 30 20:11:12 2024 GMT Not After : Jun 6 20:11:12 2024 GMT Subject: CN=6658dd61-8440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:83:9c:72:56:95:fc:97:00:b4:88:f1:f6:8e: 1e:df:6f:47:61:37:a0:65:22:e7:6b:f9:d4:43:98: 81:e7:1f:a6:a2:7a:6f:6f:5b:9a:2e:91:73:c2:98: b8:41:9a:60:e3:7b:6d:a2:a0:3f:ad:26:d0:51:19: 66:3c:ed:62:d8:0b:bf:06:04:cb:6c:fb:a8:74:9d: 1e:19:00:a0:1f:82:29:65:38:17:8b:e9:93:44:ff: 82:6d:bf:5f:dd:45:d0:cd:6c:c6:dc:c4:dc:cc:8e: d8:d8:7e:c0:da:e0:c3:d0:83:35:f7:52:27:0a:04: 03:7a:18:05:f0:78:cc:f2:88:20:af:8d:a8:2c:8a: 20:85:d7:26:9e:aa:c1:a2:dd:8f:93:90:be:fb:dd: 5d:a1:e2:6d:f8:02:5d:7a:57:e2:30:94:40:85:43: 5e:40:75:1e:90:54:a3:14:27:13:83:74:99:ad:71: 0d:d1:82:5a:8c:b7:5d:b1:5b:86:cc:d5:d3:87:d5: 2c:da:b5:b1:47:88:4d:12:ea:c5:35:5e:43:0e:95: da:f9:cd:47:ab:65:2d:5c:49:84:9d:c4:a3:0a:9d: 47:bd:28:11:26:d5:d9:ea:0d:58:82:af:0d:3f:a5: ff:ce:43:91:75:5f:e2:be:ee:19:81:96:39:4e:27: 6d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:03:BA:45:B8:AD:7C:E1:87:F8:2A:D2:AC:3D:C9:C6:6D:28:27:B3 X509v3 Authority Key Identifier: keyid:89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:95:2d:f2:b8:ec:44:78:16:13:10:af:d8:c5:05:92:a9:05: c6:15:76:9c:fd:ce:cd:5d:d2:bc:8f:66:f5:e7:4d:cf:e8:45: 4a:63:0b:61:53:d2:ef:3e:fd:67:c4:d7:52:2f:ef:77:bf:27: f4:74:2a:9d:db:d4:ab:09:df:23:68:33:32:41:68:02:66:39: 2c:74:45:a5:91:4a:08:50:c6:fb:d0:09:51:ff:30:c7:f9:e3: 40:46:a3:83:a7:e1:38:ac:7c:05:ed:64:f4:8d:35:2f:69:5d: 63:b1:19:b9:c9:dd:9f:e2:59:ef:f7:83:20:6f:26:db:73:37: e3:4b:fb:b4:fb:c5:6d:20:11:ed:08:4d:7f:68:02:a6:19:45: 64:56:da:fc:ae:f4:be:0a:a5:dd:ba:31:5b:b3:11:45:10:56: 59:85:f2:68:e0:70:12:1f:41:d5:e4:f1:c5:98:61:45:b9:20: af:46:ff:6e:15:f2:4f:98:5d:49:72:7a:42:04:45:12:d2:83: 0c:57:0b:f4:43:95:ef:8b:2d:0a:82:d9:f2:52:78:19:d8:d5: 4e:c6:92:b0:bc:1c:90:a9:87:75:04:4b:d2:a7:f8:c2:f3:97: 4f:ae:c9:f3:02:3b:36:cd:09:31:4c:a6:97:72:87:62:13:c7: 70:c4:e7:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwNDYxMTAvBgNVBAUTKDg5NDgwOTYzMDk1NjkyNDM4MkNDMzlENDYwRkE0NzY0 QjAxNzU5MzQwHhcNMjQwNTMwMjAxMTEyWhcNMjQwNjA2MjAxMTEyWjAYMRYwFAYD VQQDEw02NjU4ZGQ2MS04NDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44OcclaV/JcAtIjx9o4e329HYTegZSLna/nUQ5iB5x+monpvb1uaLpFzwpi4 QZpg43ttoqA/rSbQURlmPO1i2Au/BgTLbPuodJ0eGQCgH4IpZTgXi+mTRP+Cbb9f 3UXQzWzG3MTczI7Y2H7A2uDD0IM191InCgQDehgF8HjM8oggr42oLIoghdcmnqrB ot2Pk5C++91doeJt+AJdelfiMJRAhUNeQHUekFSjFCcTg3SZrXEN0YJajLddsVuG zNXTh9Us2rWxR4hNEurFNV5DDpXa+c1Hq2UtXEmEncSjCp1HvSgRJtXZ6g1Ygq8N P6X/zkORdV/ivu4ZgZY5Tidt2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUDukW4 rXzhh/gq0qw9ycZtKCezMB8GA1UdIwQYMBaAFIlICWMJVpJDgsw51GD6R2SwF1k0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjA0Ni8zRkIwMkFFMjE0 RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2trT0N6RG5VWVBwSFpMQVhX VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVZ0pZd2xXa2tPQ3pEblVZUHBIWkxBWFdUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjA0Ni8zRkIwMkFFMjE0RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2tr T0N6RG5VWVBwSFpMQVhXVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQlS3yuOxEeBYTEK/YxQWSqQXGFXac/c7NXdK8j2b1503P6EVKYwth U9LvPv1nxNdSL+93vyf0dCqd29SrCd8jaDMyQWgCZjksdEWlkUoIUMb70AlR/zDH +eNARqODp+E4rHwF7WT0jTUvaV1jsRm5yd2f4lnv94MgbybbczfjS/u0+8VtIBHt CE1/aAKmGUVkVtr8rvS+CqXdujFbsxFFEFZZhfJo4HASH0HV5PHFmGFFuSCvRv9u FfJPmF1JcnpCBEUS0oMMVwv0Q5Xviy0KgtnyUngZ2NVOxpKwvByQqYd1BEvSp/jC 85dPrsnzAjs2zQkxTKaXcodiE8dwxOel -----END CERTIFICATE-----Generated at Thu May 30 21:49:46 2024 by rpki-client on console-ams.rpki-client.org