$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft File: 2S2tTXbh9aAmwn8tuRxE-62OSHw.mft (raw, json) Hash identifier: Rp/FCG4HKKjOwDTMonXA0pbOHrPWW86f0IwEIVlR8NY= Subject key identifier: AF:27:54:CE:5B:4B:59:59:0F:11:9D:CD:79:F8:A5:69:E2:B6:E5:76 Authority key identifier: D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C Certificate issuer: /CN=A91F5143/serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Certificate serial: 0D61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft Manifest number: 0D5A Signing time: Sat 18 May 2024 18:37:53 +0000 Manifest this update: Sat 18 May 2024 18:37:53 +0000 Manifest next update: Sat 25 May 2024 18:37:53 +0000 Files and hashes: 1: 2S2tTXbh9aAmwn8tuRxE-62OSHw.crl (hash: zhBM81njxpcI6MH0tMAlxYSGxu9CNdxkNbhV6UJ9O8s=) 2: FBBFC6D8A86B11E9A1385758C4F9AE02.roa (hash: 5buA2WeoUmdSEg8J7PUFYkUPJf1ClP5BXpGQ07CrsXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3425 (0xd61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5143/serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Validity Not Before: May 18 18:37:53 2024 GMT Not After : May 25 18:37:53 2024 GMT Subject: CN=6648f581-6bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:95:8f:9d:43:c6:13:bc:cc:a3:b3:b9:bb:38: 3a:0e:26:ce:40:75:f2:84:aa:2e:cd:36:da:e6:49: 7e:58:f9:e4:95:e9:a7:bc:25:53:2e:89:36:46:80: d7:93:30:3e:aa:94:ee:eb:62:60:01:4e:13:30:11: 38:06:0c:76:f4:7c:4e:e5:be:2a:0b:0f:78:ab:fa: 33:46:4d:dc:cc:85:77:da:8d:9d:0d:53:67:c3:ce: 60:75:2f:0e:09:a6:66:ad:bc:ac:cb:79:03:0c:33: 1c:70:9f:f1:4a:f5:9f:a7:4a:cf:42:d8:e7:b5:84: ef:29:b9:fe:33:0a:d1:97:96:23:9a:42:6f:3f:7b: b8:93:cd:0a:8c:cd:56:8c:4e:82:4a:e0:0b:fe:34: cc:e5:06:a1:ac:b8:9d:c7:5f:8b:a6:9a:04:71:65: 09:65:1d:17:c9:b9:c5:63:2d:f1:d2:33:3a:12:36: d9:b1:1b:a9:c5:2b:9f:2e:02:d7:9a:7e:e1:67:4c: 2c:ae:83:85:bd:19:1e:d0:aa:3b:4c:d8:c5:16:e2: e2:43:b8:50:c4:4a:36:bf:79:8a:a1:af:fe:b0:ee: 8a:87:54:db:9d:87:9c:0f:db:c6:1b:73:56:8f:81: 12:5c:74:45:3d:ed:8d:d2:82:dd:da:86:09:af:49: 55:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:27:54:CE:5B:4B:59:59:0F:11:9D:CD:79:F8:A5:69:E2:B6:E5:76 X509v3 Authority Key Identifier: keyid:D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:0f:08:f5:dd:59:4a:e6:c1:8b:87:9e:dd:e7:11:55:5d:0f: 83:80:a3:c5:87:ab:ad:35:35:cb:99:11:2d:bc:00:c1:45:5a: 44:9e:7b:42:4d:24:d4:14:48:1b:30:dc:08:d2:0e:98:65:e7: bc:f9:8b:28:97:8f:7e:e5:0f:cf:45:8d:42:47:6c:3a:67:7e: 72:73:4a:2e:fd:62:f8:86:99:f7:d0:27:db:50:50:90:ac:1d: cb:8f:a9:93:a3:df:28:05:23:b7:7a:ff:10:b2:5a:0e:94:9e: cb:5b:f9:bd:3b:69:27:d4:39:0a:c4:ff:d5:3d:8b:b2:38:76: fc:c0:f7:3e:ac:c1:46:8b:ce:49:76:46:25:d9:30:34:80:0f: 5f:48:65:6b:f3:64:2c:ec:84:4c:3c:03:c9:b1:5c:b1:86:f0: 89:98:83:e4:1a:7a:c7:a6:12:a2:d5:8b:d3:42:68:c4:fd:29: 2d:ae:90:ab:54:07:8e:8a:d4:ee:d2:c3:f4:6a:6c:2e:7c:b1: 4f:d0:0b:d9:ef:4a:dd:b7:6a:5a:88:c8:45:76:ce:47:88:0b: 17:2a:fb:0b:de:6a:0f:b9:d3:fa:1f:b5:4a:c0:3e:71:27:0a: 62:76:3a:e7:a2:a3:37:8d:13:7e:b1:09:9c:84:38:3a:2a:f4: a6:df:f0:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUxNDMxMTAvBgNVBAUTKEQ5MkRBRDRENzZFMUY1QTAyNkMyN0YyREI5MUM0NEZC QUQ4RTQ4N0MwHhcNMjQwNTE4MTgzNzUzWhcNMjQwNTI1MTgzNzUzWjAYMRYwFAYD VQQDEw02NjQ4ZjU4MS02YmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspWPnUPGE7zMo7O5uzg6DibOQHXyhKouzTba5kl+WPnklemnvCVTLok2RoDX kzA+qpTu62JgAU4TMBE4Bgx29HxO5b4qCw94q/ozRk3czIV32o2dDVNnw85gdS8O CaZmrbysy3kDDDMccJ/xSvWfp0rPQtjntYTvKbn+MwrRl5YjmkJvP3u4k80KjM1W jE6CSuAL/jTM5QahrLidx1+LppoEcWUJZR0XybnFYy3x0jM6EjbZsRupxSufLgLX mn7hZ0wsroOFvRke0Ko7TNjFFuLiQ7hQxEo2v3mKoa/+sO6Kh1TbnYecD9vGG3NW j4ESXHRFPe2N0oLd2oYJr0lVgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8nVM5b S1lZDxGdzXn4pWnituV2MB8GA1UdIwQYMBaAFNktrU124fWgJsJ/LbkcRPutjkh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTE0My8wREU5Rjc3NkE4 NkIxMUU5QTcwMUM4NTZDNEY5QUUwMi8yUzJ0VFhiaDlhQW13bjh0dVJ4RS02Mk9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJTMnRUWGJoOWFBbXduOHR1UnhFLTYyT1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTE0My8wREU5Rjc3NkE4NkIxMUU5QTcwMUM4NTZDNEY5QUUwMi8yUzJ0VFhiaDlh QW13bjh0dVJ4RS02Mk9TSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8Dwj13VlK5sGLh57d5xFVXQ+DgKPFh6utNTXLmREtvADBRVpEnntC TSTUFEgbMNwI0g6YZee8+Ysol49+5Q/PRY1CR2w6Z35yc0ou/WL4hpn30CfbUFCQ rB3Lj6mTo98oBSO3ev8QsloOlJ7LW/m9O2kn1DkKxP/VPYuyOHb8wPc+rMFGi85J dkYl2TA0gA9fSGVr82Qs7IRMPAPJsVyxhvCJmIPkGnrHphKi1YvTQmjE/SktrpCr VAeOitTu0sP0amwufLFP0AvZ70rdt2paiMhFds5HiAsXKvsL3moPudP6H7VKwD5x JwpidjrnoqM3jRN+sQmchDg6KvSm3/AC -----END CERTIFICATE-----Generated at Sat May 18 19:15:27 2024 by rpki-client on console-ams.rpki-client.org