$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: BzG4o72RiIP6tSfpSE7dFAuwH/sAn+tzsCck5qL+WMQ= Subject key identifier: BC:E6:35:D8:D1:FD:59:87:50:1C:41:C9:6E:06:30:BE:9E:2D:C2:5A Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 0134 Signing time: Sun 19 May 2024 02:58:50 +0000 Manifest this update: Sun 19 May 2024 02:58:49 +0000 Manifest next update: Sun 26 May 2024 02:58:49 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: S5oWSDMatCl8nKGCURkiH+3d9YE0hyDm2UwHN5lbChU=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: 3rJgdxfYw3z0Qha7Cf2nWFVdNS9QkKvrwb2nEAGi284=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: May 19 02:58:49 2024 GMT Not After : May 26 02:58:49 2024 GMT Subject: CN=66496ae9-f025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bd:1f:dd:be:2b:2d:7f:45:11:58:b9:58:56: f3:61:31:67:ab:0e:88:a6:7f:88:77:bb:ba:65:e8: fd:7a:49:8c:ff:fe:40:90:3e:15:53:83:cb:4b:95: db:e4:75:27:26:c9:7b:df:79:09:36:5a:ce:28:43: 19:78:18:2b:6f:62:c6:40:51:4e:d1:d1:1e:cd:56: 56:fe:5c:f8:33:cb:f4:a7:74:1f:1b:15:0f:d6:d8: f7:2a:cb:f2:b2:4d:02:d9:8c:79:14:7f:09:69:07: 68:de:44:ec:f2:30:9f:89:b8:d7:ad:1f:af:a0:7b: 10:df:57:6e:1f:ad:9a:b4:05:92:ff:ab:71:9a:28: 8f:fd:38:d9:31:19:b5:bf:31:a7:a7:21:53:db:72: d3:93:0c:6c:39:c7:00:ac:c0:43:60:2c:84:1c:e9: 9a:2a:2f:47:66:5c:df:8c:aa:9f:8a:a5:d7:e0:cc: 22:22:ea:77:b1:fe:e6:70:77:96:88:a1:6e:bb:af: 27:4b:de:37:16:38:6c:93:3d:17:b3:c3:3b:db:b4: dc:7e:f6:a4:4f:f1:71:44:9d:93:0a:98:93:7f:56: 05:30:a0:eb:af:e1:94:1a:60:27:20:fc:7d:17:00: a9:cc:30:04:22:4a:b6:e7:82:c0:0c:09:ff:5c:68: fb:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E6:35:D8:D1:FD:59:87:50:1C:41:C9:6E:06:30:BE:9E:2D:C2:5A X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:f2:31:40:78:54:75:6d:d8:e0:45:77:d0:12:bc:4f:d3:de: 10:3b:16:41:48:7c:cc:94:dc:5b:d6:57:fb:7b:43:ff:c4:d1: 6d:a4:f2:7f:56:b8:3b:7f:8e:9d:0d:2a:04:05:f5:83:a9:98: 06:bd:28:9f:82:63:b3:db:bb:bb:fc:7c:0c:91:9c:7c:b9:6b: b7:4c:41:ac:ff:dc:bf:a4:59:46:c5:34:4f:ab:25:03:2a:f6: c0:45:65:07:ee:23:0c:b6:13:d4:eb:92:87:85:e1:a6:b7:1b: ea:39:21:2d:c0:d1:eb:3e:97:5b:44:e6:34:3d:cd:dd:65:bf: 09:62:c7:0b:cf:6f:57:81:50:05:98:b0:70:4d:1a:2e:d0:7e: 40:4c:75:b8:80:90:da:ff:f2:81:55:5c:e8:fb:25:1b:6b:80: b4:e0:b1:bf:8f:c8:ce:4a:15:0b:a7:b2:01:7a:cd:10:3d:31: 7d:1d:e5:c5:e1:ac:5a:0f:1c:8e:c4:45:1c:00:90:b3:06:26: 21:cf:8d:fc:f7:18:89:58:d3:41:35:69:4b:15:af:e0:82:31: f6:2c:1a:cf:52:0f:d2:68:a6:fc:a5:88:bd:de:cc:3a:8a:fa: 98:50:c0:65:c0:b1:95:d7:05:5e:e9:ff:8e:5a:29:10:c0:d9: bd:ec:a0:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjQwNTE5MDI1ODQ5WhcNMjQwNTI2MDI1ODQ5WjAYMRYwFAYD VQQDEw02NjQ5NmFlOS1mMDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyb0f3b4rLX9FEVi5WFbzYTFnqw6Ipn+Id7u6Zej9ekmM//5AkD4VU4PLS5Xb 5HUnJsl733kJNlrOKEMZeBgrb2LGQFFO0dEezVZW/lz4M8v0p3QfGxUP1tj3Ksvy sk0C2Yx5FH8JaQdo3kTs8jCfibjXrR+voHsQ31duH62atAWS/6txmiiP/TjZMRm1 vzGnpyFT23LTkwxsOccArMBDYCyEHOmaKi9HZlzfjKqfiqXX4MwiIup3sf7mcHeW iKFuu68nS943Fjhskz0Xs8M727TcfvakT/FxRJ2TCpiTf1YFMKDrr+GUGmAnIPx9 FwCpzDAEIkq254LADAn/XGj7+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzmNdjR /VmHUBxByW4GML6eLcJaMB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB8jFAeFR1bdjgRXfQErxP094QOxZBSHzMlNxb1lf7e0P/xNFtpPJ/ Vrg7f46dDSoEBfWDqZgGvSifgmOz27u7/HwMkZx8uWu3TEGs/9y/pFlGxTRPqyUD KvbARWUH7iMMthPU65KHheGmtxvqOSEtwNHrPpdbROY0Pc3dZb8JYscLz29XgVAF mLBwTRou0H5ATHW4gJDa//KBVVzo+yUba4C04LG/j8jOShULp7IBes0QPTF9HeXF 4axaDxyOxEUcAJCzBiYhz4389xiJWNNBNWlLFa/ggjH2LBrPUg/SaKb8pYi93sw6 ivqYUMBlwLGV1wVe6f+OWikQwNm97KBh -----END CERTIFICATE-----Generated at Sun May 19 03:38:17 2024 by rpki-client on console-ams.rpki-client.org