$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft File: 2MHMikY6MVDL7AhlTmF4ANZuU-k.mft (raw, json) Hash identifier: kpRALWnCjewRAMkRNSy/X9TwFVbukTov8GZin1u8Lnk= Subject key identifier: 35:7E:1C:14:D0:0F:75:D5:EC:12:9C:70:54:5B:57:F5:A7:B6:2F:AE Authority key identifier: D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 Certificate issuer: /CN=A91F89C1/serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Certificate serial: 05B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft Manifest number: 05AA Signing time: Sun 19 May 2024 00:19:44 +0000 Manifest this update: Sun 19 May 2024 00:19:44 +0000 Manifest next update: Sun 26 May 2024 00:19:44 +0000 Files and hashes: 1: 2MHMikY6MVDL7AhlTmF4ANZuU-k.crl (hash: MQi2XYfgfXnjqCSjVE4Qztv6eqKQqgjFa62tQcTwf9A=) 2: F00A66308A9C11EB9B2E044BC4F9AE02.roa (hash: Mk7D+ha2bIGqlsR5pWf130g9P7kg9STpwyKO56RYmvU=) 3: 88A31320809211EB938F4016C4F9AE02.roa (hash: CkmY6aTSblMTWjL3XN0ZCrZ152QBEwm/tP98rOerQ7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1460 (0x5b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89C1/serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Validity Not Before: May 19 00:19:44 2024 GMT Not After : May 26 00:19:44 2024 GMT Subject: CN=664945a0-6590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:06:a5:26:f5:9f:5e:61:a2:ba:f2:dd:e3:64: ff:cf:41:20:55:d1:21:f4:53:60:21:1b:53:3d:f9: 92:98:6c:e2:fa:b4:47:40:9c:ac:4d:a0:3a:16:1f: 12:09:d7:b6:f2:d1:7e:de:25:e6:09:6d:1b:06:4f: e1:29:6b:ea:18:ec:01:b5:43:e2:f4:c7:85:33:7d: 4b:cc:65:eb:fd:b1:59:88:f3:af:ef:b2:5c:00:a8: 35:c2:5f:c2:0f:3c:a2:49:91:a3:a5:50:8a:d4:00: 7d:36:c8:ac:c6:b3:ee:65:a3:1e:56:2d:1a:16:b8: 41:86:95:96:4b:a4:6b:53:ba:fd:97:d1:37:b9:1c: ec:01:92:83:c1:dd:44:bc:0c:04:82:87:63:a4:03: 15:65:49:33:a5:fa:44:09:84:10:c3:e0:b1:25:a5: e2:b2:50:38:29:a4:d4:06:8b:3b:af:75:74:f5:94: 48:a1:d1:93:0a:af:51:69:0c:32:96:d5:6c:b0:fe: 05:04:13:75:e4:2b:34:bf:86:0e:ba:c8:b6:17:95: a8:3b:c7:e8:7f:43:20:f9:0d:28:8c:62:ab:08:ba: ab:a6:ce:d4:fd:23:16:af:81:cd:81:92:63:31:76: ac:5b:7a:e5:0e:de:fa:19:32:d4:64:af:ba:c3:0e: 3b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:7E:1C:14:D0:0F:75:D5:EC:12:9C:70:54:5B:57:F5:A7:B6:2F:AE X509v3 Authority Key Identifier: keyid:D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:08:a2:d6:84:63:87:e3:0d:b7:34:60:53:24:44:aa:12:93: 7a:f7:38:15:86:c4:87:49:a5:b8:bc:b1:43:0b:27:b3:f7:1c: 9c:dd:ae:34:05:09:2e:4f:c1:0d:f5:25:e6:9d:b1:2c:9b:31: 16:92:c0:4d:fb:cd:ad:30:6c:70:be:5b:be:a9:2c:4f:ff:30: 8f:a6:9b:50:2d:cf:c3:50:b3:74:60:20:9d:c3:00:c0:99:8e: b8:26:ee:46:ff:3a:ca:6f:34:f5:4c:f0:be:fd:73:69:b5:53: 7f:ad:c5:7a:e3:bb:46:ee:92:62:39:41:8f:41:d1:9d:02:ab: b0:29:05:a4:47:9a:dc:e3:86:7a:16:fc:f1:05:74:32:24:89: 11:d8:d6:35:a9:70:ed:09:a8:fc:dc:36:07:a2:10:b4:1b:75: 3c:79:91:e6:20:11:0a:6e:7d:c9:b6:a9:40:24:02:7e:c4:99: bb:b9:aa:83:82:ea:79:45:3b:e6:0f:6c:40:18:c0:f5:c3:18: 07:cd:a0:64:f1:e0:a1:53:a4:9c:4d:c0:65:97:0f:10:e8:aa: 66:fe:15:38:56:4c:ca:91:83:67:49:58:ce:f9:a6:d8:dc:57: 85:95:14:36:03:42:48:c9:67:d6:e1:a0:31:28:16:be:db:7d: da:b3:72:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QzExMTAvBgNVBAUTKEQ4QzFDQzhBNDYzQTMxNTBDQkVDMDg2NTRFNjE3ODAw RDY2RTUzRTkwHhcNMjQwNTE5MDAxOTQ0WhcNMjQwNTI2MDAxOTQ0WjAYMRYwFAYD VQQDEw02NjQ5NDVhMC02NTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4galJvWfXmGiuvLd42T/z0EgVdEh9FNgIRtTPfmSmGzi+rRHQJysTaA6Fh8S Cde28tF+3iXmCW0bBk/hKWvqGOwBtUPi9MeFM31LzGXr/bFZiPOv77JcAKg1wl/C DzyiSZGjpVCK1AB9NsisxrPuZaMeVi0aFrhBhpWWS6RrU7r9l9E3uRzsAZKDwd1E vAwEgodjpAMVZUkzpfpECYQQw+CxJaXislA4KaTUBos7r3V09ZRIodGTCq9RaQwy ltVssP4FBBN15Cs0v4YOusi2F5WoO8fof0Mg+Q0ojGKrCLqrps7U/SMWr4HNgZJj MXasW3rlDt76GTLUZK+6ww47SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDV+HBTQ D3XV7BKccFRbV/Wnti+uMB8GA1UdIwQYMBaAFNjBzIpGOjFQy+wIZU5heADWblPp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlDMS8wQTNGMjY5Qzgw ODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1WREw3QWhsVG1GNEFOWnVV LWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJNSE1pa1k2TVZETDdBaGxUbUY0QU5adVUtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlDMS8wQTNGMjY5QzgwODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1W REw3QWhsVG1GNEFOWnVVLWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFCKLWhGOH4w23NGBTJESqEpN69zgVhsSHSaW4vLFDCyez9xyc3a40 BQkuT8EN9SXmnbEsmzEWksBN+82tMGxwvlu+qSxP/zCPpptQLc/DULN0YCCdwwDA mY64Ju5G/zrKbzT1TPC+/XNptVN/rcV647tG7pJiOUGPQdGdAquwKQWkR5rc44Z6 FvzxBXQyJIkR2NY1qXDtCaj83DYHohC0G3U8eZHmIBEKbn3JtqlAJAJ+xJm7uaqD gup5RTvmD2xAGMD1wxgHzaBk8eChU6ScTcBllw8Q6Kpm/hU4VkzKkYNnSVjO+abY 3FeFlRQ2A0JIyWfW4aAxKBa+233as3Kn -----END CERTIFICATE-----Generated at Sun May 19 01:47:19 2024 by rpki-client on console-ams.rpki-client.org