$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.mft File: WOkI0McaSfSCp8fZVSozVZyuJkM.mft (raw, json) Hash identifier: cdGklDPriK/KhvDV6k07aVWeq2sudbe/vSmNCIQKYEk= Subject key identifier: 91:1C:D7:A3:B9:3C:63:93:B6:91:34:D6:FE:A2:6F:F9:42:88:30:11 Authority key identifier: 58:E9:08:D0:C7:1A:49:F4:82:A7:C7:D9:55:2A:33:55:9C:AE:26:43 Certificate issuer: /CN=A91FB5CE/serialNumber=58E908D0C71A49F482A7C7D9552A33559CAE2643 Certificate serial: 04F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WOkI0McaSfSCp8fZVSozVZyuJkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.mft Manifest number: 04F0 Signing time: Sun 19 May 2024 01:14:44 +0000 Manifest this update: Sun 19 May 2024 01:14:43 +0000 Manifest next update: Sun 26 May 2024 01:14:43 +0000 Files and hashes: 1: WOkI0McaSfSCp8fZVSozVZyuJkM.crl (hash: Z4JWnh+JPLKYa0eANos6MPZiRR9zV7zxcxCGU2274/I=) 2: F189CB86C81D11EBA4C0E321C4F9AE02.roa (hash: Uz4HXvqGssuPE8rQ4AQM1SNspVzHLX+/sQbvg64mXw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.crl rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WOkI0McaSfSCp8fZVSozVZyuJkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:14:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1268 (0x4f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB5CE/serialNumber=58E908D0C71A49F482A7C7D9552A33559CAE2643 Validity Not Before: May 19 01:14:43 2024 GMT Not After : May 26 01:14:43 2024 GMT Subject: CN=66495283-23d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3a:d6:83:8d:90:e7:f0:6e:e3:1d:cd:e3:af: f6:3e:12:1c:41:42:99:4d:82:5d:e2:89:ba:2c:d7: 31:a4:8c:9d:d2:64:da:d9:68:d6:5b:38:82:2b:f7: 10:ac:a2:f9:4f:88:f4:2d:8f:4e:80:2f:53:aa:b8: 43:08:63:9e:67:77:7b:f5:b8:cc:08:5e:73:96:8a: 03:ae:1a:98:2f:50:e4:0d:ae:f0:6f:84:3f:63:36: e7:87:3b:e0:9a:4f:f3:68:c0:d5:b4:3e:13:23:58: d4:97:7b:22:84:6a:5a:67:4b:02:da:94:81:94:22: 1f:0e:75:ed:8c:a7:07:a0:1c:5a:5e:3c:12:e5:e1: f1:ae:91:64:51:83:73:a6:8e:fc:4c:95:4d:cc:54: 49:ae:e0:5b:71:54:f0:f7:31:ec:42:c1:26:11:ac: 5b:e5:9b:37:32:a5:1a:21:59:41:ce:bc:a9:b2:62: 22:a7:38:60:0c:77:81:45:fe:b9:9f:88:ca:1a:c4: e0:66:03:95:68:e6:e7:c3:63:b8:ad:ad:5c:3a:b0: 24:46:af:2c:97:e5:ed:47:0f:7c:ef:07:54:3e:31: ae:12:86:02:6e:30:c5:df:87:a6:71:e5:09:53:ec: 32:11:9c:7e:29:b0:cb:eb:58:49:52:00:2a:85:ee: d1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:1C:D7:A3:B9:3C:63:93:B6:91:34:D6:FE:A2:6F:F9:42:88:30:11 X509v3 Authority Key Identifier: keyid:58:E9:08:D0:C7:1A:49:F4:82:A7:C7:D9:55:2A:33:55:9C:AE:26:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WOkI0McaSfSCp8fZVSozVZyuJkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:d6:d3:71:f9:66:7b:b9:11:69:d4:48:b1:ae:41:32:cd:cc: 2b:cc:21:7e:87:33:54:3e:32:61:0c:58:5e:29:7e:5e:ff:10: f0:b0:a2:3c:2b:b7:9e:48:0b:6c:0f:db:7c:ef:8c:01:29:df: 83:5e:73:af:cc:0f:4f:59:0e:f8:4f:58:23:27:9f:02:68:96: f5:c3:f2:b4:63:34:53:18:09:2b:82:8a:28:3c:c3:bb:87:1d: b0:d1:19:cd:63:1b:1b:c1:8c:a6:70:32:d9:5a:de:42:d8:89: dd:32:8d:ac:1d:a2:06:ab:e3:d4:e8:68:c8:85:cc:c8:8a:57: 2d:e7:c3:a7:0b:b4:14:d7:1e:84:2c:c7:f1:5e:5b:2b:5a:35: 8d:2f:7b:7e:01:00:86:32:73:55:09:4f:5a:54:09:b0:eb:ef: d2:1b:6a:ac:ec:10:d8:b9:e5:c0:21:a5:8d:74:d0:b1:a3:9a: 20:0d:b1:80:96:ba:25:40:01:74:52:52:01:b5:28:7c:55:83: 50:cc:fa:16:4d:d0:74:ce:48:65:80:3e:7f:87:a2:17:7b:28: 94:9e:98:3e:dd:27:0a:f0:e3:46:69:95:9e:38:9f:d6:6d:ae: ea:7a:26:2b:8d:f0:d0:08:d9:f5:60:51:8c:06:5c:b2:02:0d: d9:c9:aa:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI1Q0UxMTAvBgNVBAUTKDU4RTkwOEQwQzcxQTQ5RjQ4MkE3QzdEOTU1MkEzMzU1 OUNBRTI2NDMwHhcNMjQwNTE5MDExNDQzWhcNMjQwNTI2MDExNDQzWjAYMRYwFAYD VQQDEw02NjQ5NTI4My0yM2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTrWg42Q5/Bu4x3N46/2PhIcQUKZTYJd4om6LNcxpIyd0mTa2WjWWziCK/cQ rKL5T4j0LY9OgC9TqrhDCGOeZ3d79bjMCF5zlooDrhqYL1DkDa7wb4Q/Yzbnhzvg mk/zaMDVtD4TI1jUl3sihGpaZ0sC2pSBlCIfDnXtjKcHoBxaXjwS5eHxrpFkUYNz po78TJVNzFRJruBbcVTw9zHsQsEmEaxb5Zs3MqUaIVlBzrypsmIipzhgDHeBRf65 n4jKGsTgZgOVaObnw2O4ra1cOrAkRq8sl+XtRw987wdUPjGuEoYCbjDF34emceUJ U+wyEZx+KbDL61hJUgAqhe7RvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEc16O5 PGOTtpE01v6ib/lCiDARMB8GA1UdIwQYMBaAFFjpCNDHGkn0gqfH2VUqM1WcriZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjVDRS9CMDk2QzUwMEM4 MUExMUVCQjEyNUE3M0VDNEY5QUUwMi9XT2tJME1jYVNmU0NwOGZaVlNvelZaeXVK a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dPa0kwTWNhU2ZTQ3A4ZlpWU296Vlp5dUprTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjVDRS9CMDk2QzUwMEM4MUExMUVCQjEyNUE3M0VDNEY5QUUwMi9XT2tJME1jYVNm U0NwOGZaVlNvelZaeXVKa00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB1tNx+WZ7uRFp1EixrkEyzcwrzCF+hzNUPjJhDFheKX5e/xDwsKI8 K7eeSAtsD9t874wBKd+DXnOvzA9PWQ74T1gjJ58CaJb1w/K0YzRTGAkrgoooPMO7 hx2w0RnNYxsbwYymcDLZWt5C2IndMo2sHaIGq+PU6GjIhczIilct58OnC7QU1x6E LMfxXlsrWjWNL3t+AQCGMnNVCU9aVAmw6+/SG2qs7BDYueXAIaWNdNCxo5ogDbGA lrolQAF0UlIBtSh8VYNQzPoWTdB0zkhlgD5/h6IXeyiUnpg+3ScK8ONGaZWeOJ/W ba7qeiYrjfDQCNn1YFGMBlyyAg3Zyapq -----END CERTIFICATE-----Generated at Sun May 19 02:59:17 2024 by rpki-client on console-ams.rpki-client.org