$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: j+TRZLsRBvxTIxRUjqPhpOzDwYu1Vjvg7My1GNtgmlw= Subject key identifier: 37:AC:BF:99:C2:42:C3:5B:4F:8F:E0:61:CF:DA:AC:2D:72:17:F6:35 Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 074C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 0745 Signing time: Sat 18 May 2024 22:22:55 +0000 Manifest this update: Sat 18 May 2024 22:22:54 +0000 Manifest next update: Sat 25 May 2024 22:22:54 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: OXxbrKmgXHL3f0wY2zgSBUD75KTy4YVYSnZYmB/GR80=) 2: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: OSbXh9zQxt7fc7/E4bJQI3cGElZpZOUkVqVOHwbtAvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1868 (0x74c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: May 18 22:22:54 2024 GMT Not After : May 25 22:22:54 2024 GMT Subject: CN=66492a3f-59da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a0:b8:c7:b8:e6:40:0f:97:dd:aa:27:ae:43: a7:d2:91:db:8e:de:7c:a2:9f:91:7e:30:02:e6:49: c5:9d:03:f4:70:4b:9e:0b:09:49:06:0b:b4:49:95: 4b:07:a6:bc:03:06:0e:c2:4e:5b:8d:f4:ec:f0:23: 71:68:8c:80:01:0a:24:40:1f:3f:dd:a1:de:2e:5e: d0:6e:e2:98:22:37:a7:dd:d2:fd:e3:65:ec:f3:4a: 13:40:58:ff:6e:55:93:4a:fa:9f:40:78:f4:94:fb: 9f:bc:3c:7d:33:c0:96:1d:7a:b5:68:1e:53:7d:47: 75:62:ec:2d:c4:3d:09:90:54:7b:62:d8:2e:8f:08: d5:e1:89:86:94:68:f1:0d:68:9a:9b:c4:00:71:a0: 6c:af:64:3b:30:c3:9d:54:b5:5d:8e:a7:26:a7:38: 61:6d:4f:16:a9:16:65:31:6e:b0:c2:21:57:68:29: d7:a5:b1:c7:55:11:7e:b4:e9:26:08:88:86:45:1a: d8:b8:07:a6:70:89:15:03:2a:95:b9:96:ec:b3:35: b4:d2:60:82:79:a6:ed:a2:98:be:16:be:5d:9a:c4: 1e:f6:0a:b1:eb:68:f5:7c:96:f0:e3:80:23:03:3f: 67:31:3c:d8:81:4b:5a:83:76:53:23:55:45:5e:55: 3b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:AC:BF:99:C2:42:C3:5B:4F:8F:E0:61:CF:DA:AC:2D:72:17:F6:35 X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:38:fc:a0:8a:d5:cd:c6:d7:ff:39:38:8b:64:28:7b:8e:2e: 87:94:b9:18:0f:95:a1:8f:55:9c:df:43:0c:d7:08:0b:e7:00: 2e:76:41:ff:48:a9:a6:c7:ae:37:94:d8:91:0b:8b:2e:1d:52: 55:64:13:49:05:3b:ef:41:d4:4b:ac:b1:df:df:e6:57:3a:7e: 18:cf:9e:94:c3:88:27:00:c0:30:44:e5:9e:f0:e7:cf:e8:2e: d6:02:b4:e8:5a:e8:66:be:9d:2c:62:85:07:7f:58:0f:0e:59: b6:62:0c:83:30:74:68:6f:1c:30:b7:8d:45:7e:25:e6:d5:bc: 04:de:8c:54:95:6c:94:5f:f9:45:24:2f:6d:65:02:9a:7d:f8: f0:42:fb:7c:e3:20:ff:ff:29:7d:ff:df:69:be:a6:ef:de:72: 0e:60:99:a7:cb:71:39:57:04:6e:9f:a0:77:56:fa:49:13:fa: da:f5:03:b0:4e:9e:d6:48:9f:a2:28:c9:7a:f5:c6:2b:d0:b9: 95:b2:11:53:27:e9:df:32:96:ee:d6:5e:c7:fa:fc:e6:4a:a5: 24:b0:f9:5b:c9:29:f7:6e:89:44:ca:5b:2d:fa:b7:ff:55:c7: 51:6e:59:b1:e7:16:36:39:72:d7:0d:02:38:48:86:13:3d:15: a2:9e:6d:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjQwNTE4MjIyMjU0WhcNMjQwNTI1MjIyMjU0WjAYMRYwFAYD VQQDEw02NjQ5MmEzZi01OWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqC4x7jmQA+X3aonrkOn0pHbjt58op+RfjAC5knFnQP0cEueCwlJBgu0SZVL B6a8AwYOwk5bjfTs8CNxaIyAAQokQB8/3aHeLl7QbuKYIjen3dL942Xs80oTQFj/ blWTSvqfQHj0lPufvDx9M8CWHXq1aB5TfUd1YuwtxD0JkFR7YtgujwjV4YmGlGjx DWiam8QAcaBsr2Q7MMOdVLVdjqcmpzhhbU8WqRZlMW6wwiFXaCnXpbHHVRF+tOkm CIiGRRrYuAemcIkVAyqVuZbsszW00mCCeabtopi+Fr5dmsQe9gqx62j1fJbw44Aj Az9nMTzYgUtag3ZTI1VFXlU7PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDesv5nC QsNbT4/gYc/arC1yF/Y1MB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDOPygitXNxtf/OTiLZCh7ji6HlLkYD5Whj1Wc30MM1wgL5wAudkH/ SKmmx643lNiRC4suHVJVZBNJBTvvQdRLrLHf3+ZXOn4Yz56Uw4gnAMAwROWe8OfP 6C7WArToWuhmvp0sYoUHf1gPDlm2YgyDMHRobxwwt41FfiXm1bwE3oxUlWyUX/lF JC9tZQKaffjwQvt84yD//yl9/99pvqbv3nIOYJmny3E5VwRun6B3VvpJE/ra9QOw Tp7WSJ+iKMl69cYr0LmVshFTJ+nfMpbu1l7H+vzmSqUksPlbySn3bolEylst+rf/ VcdRblmx5xY2OXLXDQI4SIYTPRWinm2Q -----END CERTIFICATE-----Generated at Sun May 19 00:30:23 2024 by rpki-client on console-ams.rpki-client.org