$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft File: mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft (raw, json) Hash identifier: YQGjRalAYUm+Os91jVVPDpCYY6HHAE1RNqV/2fmMvPg= Subject key identifier: 3F:6C:85:0E:58:D0:5C:F8:28:F0:B2:21:B1:27:B7:EF:79:C5:7E:5B Authority key identifier: 9B:09:E9:5F:E4:6A:BD:BC:9F:90:20:58:5F:9A:58:32:67:77:3F:C9 Certificate issuer: /CN=A91F3B6C/serialNumber=9B09E95FE46ABDBC9F9020585F9A583267773FC9 Certificate serial: 04B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft Manifest number: 04AF Signing time: Sun 19 May 2024 01:31:39 +0000 Manifest this update: Sun 19 May 2024 01:31:39 +0000 Manifest next update: Sun 26 May 2024 01:31:38 +0000 Files and hashes: 1: mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl (hash: xCDHiwA+LE81n98z3KqLAgumJVVYKnToFdG2g6cpQJg=) 2: C4CB04C4E2A911EBB4631960C4F9AE02.roa (hash: /IQosXeTs3yKI2PYcZx2uhrQ/iH7sT08Mb2D4+fQ4bg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1205 (0x4b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B6C/serialNumber=9B09E95FE46ABDBC9F9020585F9A583267773FC9 Validity Not Before: May 19 01:31:39 2024 GMT Not After : May 26 01:31:38 2024 GMT Subject: CN=6649567b-fde4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6d:33:01:45:93:32:05:ff:bb:af:77:73:0a: b2:ec:63:d8:d1:3c:03:79:5f:02:8a:94:e3:96:5a: 76:31:d3:d3:64:2f:1e:8b:3c:e2:27:2a:ad:41:cc: db:b4:cc:78:cf:8c:11:fa:51:d4:c6:77:48:6f:15: a3:68:b0:4f:15:20:0a:c1:eb:42:ef:2a:ff:17:04: ef:df:6a:b9:f4:b2:19:11:22:02:af:fd:7a:1d:2f: 29:5f:f9:e8:0c:d8:a5:8a:cc:3d:27:1a:5a:5b:05: b8:59:09:42:8a:83:f1:f0:9f:ac:6c:85:e5:79:8d: 6f:4d:e9:4b:e0:2a:6a:71:f1:7d:a7:b5:67:eb:4e: 9d:78:e1:2a:dd:54:5c:47:e4:29:3d:14:08:3d:47: 4d:45:6d:2e:c0:08:60:a7:18:6c:f1:3d:a4:22:38: e4:59:75:c3:08:b5:9b:58:2c:42:91:6a:ba:dd:4c: 19:62:0e:36:4d:f1:d4:ab:90:b4:86:e7:d6:bd:88: a5:85:55:b5:5d:a2:12:84:3a:c6:06:24:87:8a:81: 8e:fc:61:fd:2c:34:54:07:af:bf:fe:af:d3:55:27: 99:aa:6d:ce:04:d0:01:d5:84:10:4a:ad:8c:60:54: a8:0a:cb:bd:64:bf:91:01:79:a4:66:48:c0:d8:10: 98:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6C:85:0E:58:D0:5C:F8:28:F0:B2:21:B1:27:B7:EF:79:C5:7E:5B X509v3 Authority Key Identifier: keyid:9B:09:E9:5F:E4:6A:BD:BC:9F:90:20:58:5F:9A:58:32:67:77:3F:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:0e:db:32:e1:49:ed:fb:08:a9:b4:7b:3a:52:39:5c:98:85: 95:0f:52:07:e6:7f:ca:40:69:ae:64:ed:ad:cb:a8:cc:a8:16: 9c:80:06:3f:da:fb:3f:8b:db:97:f1:23:4c:d3:07:81:e3:13: 47:c4:73:3a:8a:f3:b6:1f:24:e9:3b:1f:02:c4:9f:89:24:46: 3b:58:67:02:f3:96:96:78:7f:ea:64:5e:0e:2e:b8:a9:24:8b: d6:96:4e:2f:51:49:ef:f6:2f:3d:12:34:9c:83:8a:b0:4c:4b: 45:a1:7f:f0:f5:79:0c:a1:07:f1:c2:85:34:8e:3d:39:49:37: c6:5a:1c:5e:46:d2:b0:d1:fa:4c:fb:cf:ea:dd:f1:6f:cf:77: 66:39:74:47:6d:a7:13:14:c6:13:03:b5:22:13:dc:c3:9e:06: a9:ae:ff:f3:d3:62:a9:26:96:45:d1:72:65:0f:ca:13:54:4a: 13:c8:2f:9e:4c:61:67:f4:70:7f:dc:b4:1f:b1:ef:34:4b:73: 62:9a:69:00:34:c0:8d:fb:d7:38:9d:e6:6d:54:1d:6c:90:03: f9:19:82:62:15:5d:78:c5:42:0f:4a:36:71:14:4d:ee:9a:ce: 92:cc:96:2f:52:85:ed:46:51:96:9f:37:a7:66:69:98:5e:5c: ea:32:5d:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNkMxMTAvBgNVBAUTKDlCMDlFOTVGRTQ2QUJEQkM5RjkwMjA1ODVGOUE1ODMy Njc3NzNGQzkwHhcNMjQwNTE5MDEzMTM5WhcNMjQwNTI2MDEzMTM4WjAYMRYwFAYD VQQDEw02NjQ5NTY3Yi1mZGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA020zAUWTMgX/u693cwqy7GPY0TwDeV8CipTjllp2MdPTZC8eizziJyqtQczb tMx4z4wR+lHUxndIbxWjaLBPFSAKwetC7yr/FwTv32q59LIZESICr/16HS8pX/no DNilisw9JxpaWwW4WQlCioPx8J+sbIXleY1vTelL4CpqcfF9p7Vn606deOEq3VRc R+QpPRQIPUdNRW0uwAhgpxhs8T2kIjjkWXXDCLWbWCxCkWq63UwZYg42TfHUq5C0 hufWvYilhVW1XaIShDrGBiSHioGO/GH9LDRUB6+//q/TVSeZqm3OBNAB1YQQSq2M YFSoCsu9ZL+RAXmkZkjA2BCYywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9shQ5Y 0Fz4KPCyIbEnt+95xX5bMB8GA1UdIwQYMBaAFJsJ6V/kar28n5AgWF+aWDJndz/J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I2Qy84QjA4OTIwQUUy QTUxMUVCQUQxM0NDMzVDNEY5QUUwMi9td25wWC1ScXZieWZrQ0JZWDVwWU1tZDNQ OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL213bnBYLVJxdmJ5ZmtDQllYNXBZTW1kM1A4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I2Qy84QjA4OTIwQUUyQTUxMUVCQUQxM0NDMzVDNEY5QUUwMi9td25wWC1ScXZi eWZrQ0JZWDVwWU1tZDNQOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKDtsy4Unt+wiptHs6UjlcmIWVD1IH5n/KQGmuZO2ty6jMqBacgAY/ 2vs/i9uX8SNM0weB4xNHxHM6ivO2HyTpOx8CxJ+JJEY7WGcC85aWeH/qZF4OLrip JIvWlk4vUUnv9i89EjScg4qwTEtFoX/w9XkMoQfxwoU0jj05STfGWhxeRtKw0fpM +8/q3fFvz3dmOXRHbacTFMYTA7UiE9zDngaprv/z02KpJpZF0XJlD8oTVEoTyC+e TGFn9HB/3LQfse80S3NimmkANMCN+9c4neZtVB1skAP5GYJiFV14xUIPSjZxFE3u ms6SzJYvUoXtRlGWnzenZmmYXlzqMl2S -----END CERTIFICATE-----Generated at Sun May 19 02:59:16 2024 by rpki-client on console-ams.rpki-client.org