$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft File: x8kdlvp-jS2SIZUipkBEI3UR4FE.mft (raw, json) Hash identifier: MJPm+Z6DdZc1w28n3jGjRM1yXH0QJvNFmKtmS6sLkGE= Subject key identifier: 10:39:22:50:A4:44:EA:95:D0:34:35:1C:10:E3:D7:FE:7B:DA:1A:C1 Authority key identifier: C7:C9:1D:96:FA:7E:8D:2D:92:21:95:22:A6:40:44:23:75:11:E0:51 Certificate issuer: /CN=A91F52E8/serialNumber=C7C91D96FA7E8D2D92219522A64044237511E051 Certificate serial: 02B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft Manifest number: 02AF Signing time: Sun 19 May 2024 03:33:34 +0000 Manifest this update: Sun 19 May 2024 03:33:34 +0000 Manifest next update: Sun 26 May 2024 03:33:34 +0000 Files and hashes: 1: x8kdlvp-jS2SIZUipkBEI3UR4FE.crl (hash: TDz58g+JzGS1rPSwN7XfURambBabL9CFvp0OHeKiZEk=) 2: 89F6EEC4C82711EEBCC49737C4F9AE02.roa (hash: AArq8t/jhxU12JazlbbWzfn6Htlf8feOYH1MiOaqv2s=) 3: C0BBFCC003A911EF9DE2F919C4F9AE02.roa (hash: a3TV3Qr98YNHe55DJ7WbLvKYcURrK12GnbhFOXLtRjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.crl rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52E8/serialNumber=C7C91D96FA7E8D2D92219522A64044237511E051 Validity Not Before: May 19 03:33:34 2024 GMT Not After : May 26 03:33:34 2024 GMT Subject: CN=6649730e-481a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:58:47:8e:d7:f5:d0:a1:c9:9d:29:e7:74:24: 60:be:7a:87:f1:47:04:2d:34:9b:17:7f:63:cf:48: 31:3c:17:a4:ef:99:08:ee:34:9d:c2:ac:da:58:5a: f3:90:b3:98:11:5a:f1:d4:1f:07:56:b0:a7:72:a9: 25:df:b1:67:89:41:fc:b1:8f:9a:50:5f:7c:06:49: 16:e2:3c:50:a5:bd:bc:de:84:18:58:6e:c3:a3:ba: 3c:5a:22:49:a2:89:f2:a7:91:3c:9a:31:3e:5c:68: c5:d7:a0:8f:a6:28:4d:82:5e:95:d3:98:ae:68:2c: 47:82:4c:ff:41:d2:26:d4:b0:a3:02:a9:0f:15:e6: ac:ff:4f:36:15:2b:38:32:72:94:eb:a2:64:86:6c: 77:20:77:b4:32:ce:09:14:f9:c2:34:a7:de:ed:dd: e0:a9:a9:05:2d:c7:15:8f:c9:8d:d6:7f:a1:f9:29: 29:c4:0c:18:72:53:f5:5a:72:6b:18:2d:e2:6f:2d: 73:42:e4:a4:d9:27:45:73:89:c9:1c:38:7f:a9:18: 2f:a3:71:47:a1:2f:d5:1a:45:40:e6:77:b7:97:e2: a5:20:ac:76:43:99:2a:4f:03:b1:8d:e8:89:2b:29: 3a:ca:8b:50:9b:6a:8b:81:d3:48:2a:8c:91:63:e3: 42:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:39:22:50:A4:44:EA:95:D0:34:35:1C:10:E3:D7:FE:7B:DA:1A:C1 X509v3 Authority Key Identifier: keyid:C7:C9:1D:96:FA:7E:8D:2D:92:21:95:22:A6:40:44:23:75:11:E0:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:3b:09:af:3e:15:41:71:13:c3:c5:61:20:a5:78:89:49:20: 69:60:b0:d7:08:ae:86:c0:fe:ed:1c:0b:de:18:0f:28:9b:ea: dc:ac:9a:83:b7:c0:08:bf:dd:30:3d:ee:7a:78:37:ae:61:85: 87:cd:ce:a9:ac:bf:94:6d:9c:f3:81:b9:86:db:05:a9:12:b4: 33:e5:eb:3c:da:66:4e:7d:b1:f8:6d:02:d7:05:c1:1f:ac:d0: 12:18:97:3e:4a:bb:4c:80:0c:a0:67:e6:86:87:55:25:09:56: e0:d6:dd:c6:a9:9e:60:de:63:32:31:89:f5:e3:96:fe:24:66: 35:3a:cb:8f:93:d0:b3:0b:66:48:e5:30:59:6a:27:d2:ec:9d: fe:7f:fb:7c:86:bf:e3:a2:e8:c6:5e:f8:b3:c7:09:71:70:cb: e5:11:66:9d:37:25:bb:af:ca:71:83:8c:55:07:e7:bc:0b:41: 4a:02:ba:34:c7:bb:46:5e:10:59:84:e4:66:2a:a3:01:23:4b: cb:be:7a:8f:c3:d0:c7:dc:14:eb:55:c9:e6:22:1e:6c:30:8b: 0a:6f:2d:1a:86:e1:cc:0f:ba:c0:c4:28:f7:aa:ba:39:db:99: c3:62:83:d1:da:f4:0e:0c:e1:f8:76:fc:05:87:b2:46:3c:f3: ab:8d:c4:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRTgxMTAvBgNVBAUTKEM3QzkxRDk2RkE3RThEMkQ5MjIxOTUyMkE2NDA0NDIz NzUxMUUwNTEwHhcNMjQwNTE5MDMzMzM0WhcNMjQwNTI2MDMzMzM0WjAYMRYwFAYD VQQDEw02NjQ5NzMwZS00ODFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVhHjtf10KHJnSnndCRgvnqH8UcELTSbF39jz0gxPBek75kI7jSdwqzaWFrz kLOYEVrx1B8HVrCncqkl37FniUH8sY+aUF98BkkW4jxQpb283oQYWG7Do7o8WiJJ oonyp5E8mjE+XGjF16CPpihNgl6V05iuaCxHgkz/QdIm1LCjAqkPFeas/082FSs4 MnKU66Jkhmx3IHe0Ms4JFPnCNKfe7d3gqakFLccVj8mN1n+h+SkpxAwYclP1WnJr GC3iby1zQuSk2SdFc4nJHDh/qRgvo3FHoS/VGkVA5ne3l+KlIKx2Q5kqTwOxjeiJ Kyk6yotQm2qLgdNIKoyRY+NCxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBA5IlCk ROqV0DQ1HBDj1/572hrBMB8GA1UdIwQYMBaAFMfJHZb6fo0tkiGVIqZARCN1EeBR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJFOC8xMTI3Q0QzRUFF NjUxMUVDQkNGOEM2NENDNEY5QUUwMi94OGtkbHZwLWpTMlNJWlVpcGtCRUkzVVI0 RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g4a2RsdnAtalMyU0laVWlwa0JFSTNVUjRGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJFOC8xMTI3Q0QzRUFFNjUxMUVDQkNGOEM2NENDNEY5QUUwMi94OGtkbHZwLWpT MlNJWlVpcGtCRUkzVVI0RkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTOwmvPhVBcRPDxWEgpXiJSSBpYLDXCK6GwP7tHAveGA8om+rcrJqD t8AIv90wPe56eDeuYYWHzc6prL+UbZzzgbmG2wWpErQz5es82mZOfbH4bQLXBcEf rNASGJc+SrtMgAygZ+aGh1UlCVbg1t3GqZ5g3mMyMYn145b+JGY1OsuPk9CzC2ZI 5TBZaifS7J3+f/t8hr/joujGXvizxwlxcMvlEWadNyW7r8pxg4xVB+e8C0FKAro0 x7tGXhBZhORmKqMBI0vLvnqPw9DH3BTrVcnmIh5sMIsKby0ahuHMD7rAxCj3qro5 25nDYoPR2vQODOH4dvwFh7JGPPOrjcTg -----END CERTIFICATE-----Generated at Sun May 19 04:20:44 2024 by rpki-client on console-ams.rpki-client.org