$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft File: dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft (raw, json) Hash identifier: sNXVmgm50UCOtwhUo17BmzCv9HSR7kF3vjtPHGU0TDU= Subject key identifier: 01:3C:78:A6:C7:BC:2B:1A:C4:4D:C3:54:1E:9D:7F:FD:25:08:CA:48 Authority key identifier: 75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 Certificate issuer: /CN=A91FC705/serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Certificate serial: 0475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft Manifest number: 0475 Signing time: Sun 19 May 2024 01:40:56 +0000 Manifest this update: Sun 19 May 2024 01:40:56 +0000 Manifest next update: Sun 26 May 2024 01:40:56 +0000 Files and hashes: 1: dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl (hash: GT2VeU5CoM7rX7D8jaScEVGk3uiGJ+lTmirfbRTMmL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1141 (0x475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC705/serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Validity Not Before: May 19 01:40:56 2024 GMT Not After : May 26 01:40:56 2024 GMT Subject: CN=664958a8-f632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2c:ae:30:1c:1b:5c:ec:99:76:a4:6c:9a:eb: 09:dd:7a:4b:33:2b:f3:b9:6b:31:d1:2a:e9:eb:98: 46:b6:cb:64:a1:a1:1f:73:a8:98:d9:9e:a7:45:02: 5c:6e:4e:c6:2e:43:e9:5a:2e:9e:2d:d4:66:b9:c0: 45:53:5e:b6:9a:ec:c3:e2:55:ab:da:da:02:21:b4: 46:6f:9b:15:dd:2a:01:c7:6b:22:e7:9b:0f:31:72: 42:58:a7:bb:6c:f3:d6:30:b2:46:7a:66:4f:be:24: a3:5c:2b:94:8b:4b:8f:ec:9c:e5:48:69:0d:8e:40: 0d:9b:6b:80:88:ee:04:89:38:02:a9:b2:99:78:ac: 76:fe:75:87:0f:79:95:95:b2:a7:96:1a:a1:42:52: 8f:5c:9d:c9:ce:40:c6:17:71:35:56:a1:9c:1b:67: 4a:bb:57:66:c3:f9:ad:0d:be:57:da:f5:5c:20:9e: 86:44:f2:c5:26:d8:64:2a:46:63:0b:79:de:a0:e0: fb:82:73:60:8f:24:a2:f8:c0:93:aa:ba:14:78:81: 73:58:27:0f:fe:9b:3f:55:e7:92:fc:00:31:8f:f5: 29:1f:49:76:09:fc:4f:24:c1:d6:f0:bf:d2:79:32: 46:82:df:01:76:6c:e1:37:3d:18:ce:e2:cb:2e:b5: 47:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:3C:78:A6:C7:BC:2B:1A:C4:4D:C3:54:1E:9D:7F:FD:25:08:CA:48 X509v3 Authority Key Identifier: keyid:75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:bc:b7:e7:a8:8a:2e:c7:4b:3f:3d:7c:b3:ea:ea:8d:ac:e2: 74:63:73:44:b7:16:dd:ec:64:22:a9:62:d8:6a:b2:12:da:f9: 20:fc:c5:e5:46:53:45:97:43:1e:5a:9e:b2:7c:e6:7d:c9:df: 40:c3:03:64:2c:66:62:21:c2:5f:2b:a1:55:6c:6a:74:94:e0: df:4f:0a:df:e7:79:ad:a0:8b:45:d1:92:da:6b:e4:b5:fd:08: 9c:1f:da:02:82:b2:eb:d3:bd:d0:83:18:e1:bd:49:43:d7:cb: ed:52:34:03:d4:7d:99:a0:70:45:31:c9:de:46:4a:e3:ff:2f: 34:d4:68:30:08:73:6c:69:94:9e:01:fe:53:7d:7e:68:38:2a: af:68:50:9a:a7:e4:d4:98:ec:15:cd:34:6d:6a:03:79:45:19: 81:0e:a2:59:04:67:a5:52:5a:61:3e:77:59:5f:1e:55:c8:24: 45:cd:95:a0:5a:41:05:cd:f1:9f:87:bb:4c:e2:85:60:27:3f: 70:aa:4e:9d:d9:b0:a2:14:96:3b:b5:bb:84:7b:a4:f2:d8:48: 4a:22:ce:1b:84:74:8e:01:c1:c5:c7:d7:fe:72:3a:14:ff:4d: 9b:de:60:82:9b:f7:e6:5a:d0:37:fc:8a:a2:ac:c0:fa:80:c6: 00:73:82:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3MDUxMTAvBgNVBAUTKDc1Rjc3MkU0MDZDNUY0NkQzRThCRjI3QUMxRjI1RkNG NjRFOTc5OTcwHhcNMjQwNTE5MDE0MDU2WhcNMjQwNTI2MDE0MDU2WjAYMRYwFAYD VQQDEw02NjQ5NThhOC1mNjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCyuMBwbXOyZdqRsmusJ3XpLMyvzuWsx0Srp65hGtstkoaEfc6iY2Z6nRQJc bk7GLkPpWi6eLdRmucBFU162muzD4lWr2toCIbRGb5sV3SoBx2si55sPMXJCWKe7 bPPWMLJGemZPviSjXCuUi0uP7JzlSGkNjkANm2uAiO4EiTgCqbKZeKx2/nWHD3mV lbKnlhqhQlKPXJ3JzkDGF3E1VqGcG2dKu1dmw/mtDb5X2vVcIJ6GRPLFJthkKkZj C3neoOD7gnNgjySi+MCTqroUeIFzWCcP/ps/VeeS/AAxj/UpH0l2CfxPJMHW8L/S eTJGgt8BdmzhNz0YzuLLLrVHQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAE8eKbH vCsaxE3DVB6df/0lCMpIMB8GA1UdIwQYMBaAFHX3cuQGxfRtPovyesHyX89k6XmX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzcwNS82RTI3N0JCMkY1 QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlHMC1pX0o2d2ZKZnoyVHBl WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmZHk1QWJGOUcwLWlfSjZ3ZkpmejJUcGVaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzcwNS82RTI3N0JCMkY1QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlH MC1pX0o2d2ZKZnoyVHBlWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2vLfnqIoux0s/PXyz6uqNrOJ0Y3NEtxbd7GQiqWLYarIS2vkg/MXl RlNFl0MeWp6yfOZ9yd9AwwNkLGZiIcJfK6FVbGp0lODfTwrf53mtoItF0ZLaa+S1 /QicH9oCgrLr073QgxjhvUlD18vtUjQD1H2ZoHBFMcneRkrj/y801GgwCHNsaZSe Af5TfX5oOCqvaFCap+TUmOwVzTRtagN5RRmBDqJZBGelUlphPndZXx5VyCRFzZWg WkEFzfGfh7tM4oVgJz9wqk6d2bCiFJY7tbuEe6Ty2EhKIs4bhHSOAcHFx9f+cjoU /02b3mCCm/fmWtA3/IqirMD6gMYAc4Ko -----END CERTIFICATE-----Generated at Sun May 19 02:59:17 2024 by rpki-client on console-ams.rpki-client.org