$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft File: SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft (raw, json) Hash identifier: mbnF0lM6b+euyO7gVG0eMEysxaez7FcYgghG8mu789M= Subject key identifier: FD:B9:E4:1B:10:6F:B7:E8:4D:9C:77:52:79:E5:91:A2:4D:83:A0:C4 Authority key identifier: 4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7 Certificate issuer: /CN=A91FB0D0/serialNumber=4B3C6956B044900100858C0DE50EB9A462B08CC7 Certificate serial: 0236 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft Manifest number: 0234 Signing time: Sun 19 May 2024 04:00:17 +0000 Manifest this update: Sun 19 May 2024 04:00:16 +0000 Manifest next update: Sun 26 May 2024 04:00:16 +0000 Files and hashes: 1: SzxpVrBEkAEAhYwN5Q65pGKwjMc.crl (hash: D9SeS8iQ22yjnZhqOkH+SJs8lBp7Zpz+a85h75a/w1s=) 2: D9EEB222DBFC11EC82E85E69C4F9AE02.roa (hash: jHd8qJcQlJOSStuF+vj3hLpCyj/EjA+DE0KlXQP34pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.crl rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB0D0/serialNumber=4B3C6956B044900100858C0DE50EB9A462B08CC7 Validity Not Before: May 19 04:00:16 2024 GMT Not After : May 26 04:00:16 2024 GMT Subject: CN=66497950-6a70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:eb:0b:ec:d1:7c:23:35:e7:52:f1:63:37:a9: 2e:5c:df:1a:b6:69:29:93:c7:69:26:c3:90:ca:56: 31:1a:bf:36:f8:3e:3f:79:15:b6:cb:ab:f3:25:9e: 53:2e:87:90:db:36:5e:97:89:85:a6:7b:a5:bf:51: 11:ea:4f:90:25:c4:d1:cd:89:0f:26:2b:94:bb:f3: e0:16:a0:41:47:d0:0b:11:2a:76:18:71:09:39:b3: d1:2d:94:86:c9:23:7d:b6:e3:9b:0d:d7:43:62:50: 25:d3:98:2d:f1:58:25:f9:89:66:30:50:66:67:20: 22:9f:79:c2:79:ce:85:33:63:67:b7:d9:12:c9:fa: cb:40:7f:42:08:0a:f0:27:2b:96:8d:99:9b:99:76: 41:6f:cf:43:27:04:36:71:1b:d3:fd:43:0b:51:50: d5:8b:15:a6:04:71:a6:2d:28:5f:d2:72:14:ae:9f: 0f:2a:80:bd:29:08:d4:06:2d:28:87:2e:a0:5b:3a: 67:2b:60:af:bf:22:64:40:87:8a:fa:34:d9:8b:20: ba:37:fc:59:f2:36:3b:17:4d:16:db:73:cd:f1:d7: 09:f3:88:a7:b3:a1:fd:41:5b:36:27:5c:75:43:6b: b3:ad:bd:29:d6:44:39:15:e2:fb:37:58:03:4c:e9: f1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:B9:E4:1B:10:6F:B7:E8:4D:9C:77:52:79:E5:91:A2:4D:83:A0:C4 X509v3 Authority Key Identifier: keyid:4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:5d:bb:13:a4:3b:a8:d6:20:2c:a4:e1:40:58:5d:5f:dd:02: ba:c7:ec:6e:6e:eb:2f:8b:d4:f7:4a:ee:88:ac:9f:71:74:d6: 79:db:8e:e5:42:99:b6:a3:29:1e:87:33:ce:22:9f:b5:88:57: 26:1f:83:12:64:aa:e3:77:d3:83:44:81:ef:0a:21:34:76:d1: ee:cd:99:8e:ff:7c:3a:01:66:ef:a3:1b:06:cc:de:47:4c:78: 89:b3:63:6c:95:37:43:3c:e1:90:39:ae:62:8c:38:cf:b2:1e: 2a:10:84:6e:6e:a1:73:2e:e6:2f:38:11:3f:8d:f5:bc:f3:4a: 23:a6:e4:90:69:79:dc:e8:59:a2:ec:61:2e:f0:dc:db:66:1f: 8d:0b:db:f1:48:07:ad:cb:d1:5a:b6:ef:8a:20:2a:a6:60:e3: 98:03:9a:fb:32:c0:b8:40:7c:31:d1:e7:a4:8f:85:55:39:0d: 82:9d:94:95:35:19:90:7d:51:f3:dd:e8:b0:5f:5b:18:74:68: 0d:a4:f0:d5:ac:5c:a5:e3:ba:e5:db:b2:e7:15:6c:98:26:90: 9e:01:dc:0f:cd:e9:74:63:81:54:27:7a:b2:f0:42:cd:fd:de: 7c:3e:fa:1a:49:05:79:d8:22:dc:db:9c:8e:eb:75:6b:a3:8c: a4:15:9c:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwRDAxMTAvBgNVBAUTKDRCM0M2OTU2QjA0NDkwMDEwMDg1OEMwREU1MEVCOUE0 NjJCMDhDQzcwHhcNMjQwNTE5MDQwMDE2WhcNMjQwNTI2MDQwMDE2WjAYMRYwFAYD VQQDEw02NjQ5Nzk1MC02YTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsusL7NF8IzXnUvFjN6kuXN8atmkpk8dpJsOQylYxGr82+D4/eRW2y6vzJZ5T LoeQ2zZel4mFpnulv1ER6k+QJcTRzYkPJiuUu/PgFqBBR9ALESp2GHEJObPRLZSG ySN9tuObDddDYlAl05gt8Vgl+YlmMFBmZyAin3nCec6FM2Nnt9kSyfrLQH9CCArw JyuWjZmbmXZBb89DJwQ2cRvT/UMLUVDVixWmBHGmLShf0nIUrp8PKoC9KQjUBi0o hy6gWzpnK2CvvyJkQIeK+jTZiyC6N/xZ8jY7F00W23PN8dcJ84ins6H9QVs2J1x1 Q2uzrb0p1kQ5FeL7N1gDTOnxxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP255BsQ b7foTZx3UnnlkaJNg6DEMB8GA1UdIwQYMBaAFEs8aVawRJABAIWMDeUOuaRisIzH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjBEMC85M0ZCN0Y0RURC RjYxMUVDOEI0MkY0NzVDNEY5QUUwMi9TenhwVnJCRWtBRUFoWXdONVE2NXBHS3dq TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N6eHBWckJFa0FFQWhZd041UTY1cEdLd2pNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjBEMC85M0ZCN0Y0RURCRjYxMUVDOEI0MkY0NzVDNEY5QUUwMi9TenhwVnJCRWtB RUFoWXdONVE2NXBHS3dqTWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsXbsTpDuo1iAspOFAWF1f3QK6x+xubusvi9T3Su6IrJ9xdNZ5247l Qpm2oykehzPOIp+1iFcmH4MSZKrjd9ODRIHvCiE0dtHuzZmO/3w6AWbvoxsGzN5H THiJs2NslTdDPOGQOa5ijDjPsh4qEIRubqFzLuYvOBE/jfW880ojpuSQaXnc6Fmi 7GEu8NzbZh+NC9vxSAety9Fatu+KICqmYOOYA5r7MsC4QHwx0eekj4VVOQ2CnZSV NRmQfVHz3eiwX1sYdGgNpPDVrFyl47rl27LnFWyYJpCeAdwPzel0Y4FUJ3qy8ELN /d58PvoaSQV52CLc25yO63Vro4ykFZxD -----END CERTIFICATE-----Generated at Sun May 19 05:08:07 2024 by rpki-client on console-ams.rpki-client.org