$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: QnJdSr9kwgs57urR4ShhRrCYJrTfA4uBtY/sfHntCqg= Subject key identifier: CD:BF:F2:45:B0:1A:E2:E0:B6:55:F2:38:A7:0E:BC:48:84:88:92:4A Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 0519 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 0515 Signing time: Sun 19 May 2024 01:04:41 +0000 Manifest this update: Sun 19 May 2024 01:04:41 +0000 Manifest next update: Sun 26 May 2024 01:04:41 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: VBf6dEAoezvYPx3FmwvbeSl1br0Az7Q8EfwTYU95gv0=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: qJ0j3BEtvoKonhv9iV5ZjKTQCrlGnl70ygABsp5AhIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1305 (0x519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: May 19 01:04:41 2024 GMT Not After : May 26 01:04:41 2024 GMT Subject: CN=66495029-1176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:03:b4:ca:dd:18:8d:89:c1:c2:78:c5:0a:4c: 55:99:39:70:52:6a:f9:29:98:21:50:3b:9a:3b:a7: 81:bb:39:83:7c:3b:d8:26:32:3e:08:18:7e:35:a0: 5f:db:8f:22:af:c5:7f:e6:7f:ac:78:6f:38:1c:64: 94:ff:f4:09:3e:03:ae:b1:1c:d6:fd:ab:b4:62:91: ae:30:a8:49:79:47:78:7e:69:1e:9c:cb:70:e9:a9: e0:55:06:5a:c2:1d:84:a5:4f:57:d6:93:db:2b:44: 0a:4c:b7:be:7e:93:a3:97:54:03:92:67:d0:f4:52: 1e:33:46:92:05:ef:90:1b:e7:6a:0e:df:f7:5b:74: 32:46:04:6e:f6:5f:bd:70:39:69:de:17:da:0a:71: d5:23:7b:2e:fa:9e:fd:9b:8e:6b:de:8e:00:aa:7e: 3d:e7:69:75:b2:f1:20:84:11:05:87:ee:c0:44:cb: 79:4d:f4:48:09:8c:05:3c:33:d8:26:b3:cc:ff:dd: 1a:1a:66:ae:c0:cf:bf:25:8c:d6:4e:22:2e:86:5c: 36:65:9b:aa:c6:fd:59:4a:9a:37:20:76:16:24:a2: ad:6c:54:60:52:9e:7a:73:4e:15:68:d5:68:44:90: 35:c7:60:85:e5:25:4a:b0:41:94:b9:d2:04:05:54: 3c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:BF:F2:45:B0:1A:E2:E0:B6:55:F2:38:A7:0E:BC:48:84:88:92:4A X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:db:a7:3d:f5:91:c8:ba:5b:41:da:2c:e6:57:05:bd:88:7f: b2:ce:c7:d3:ea:31:7c:c6:34:d5:9a:7a:bd:c6:3f:ca:ae:15: a6:e0:1c:8e:12:b0:3d:44:71:80:1f:c7:ad:b7:92:12:6e:fd: 1b:6f:bf:d3:d3:1a:55:5a:c2:d6:c3:ed:ca:91:55:c6:d8:dd: 43:8f:6d:16:77:ac:5e:e7:cd:97:7e:e6:dc:00:e7:67:c3:14: ea:a0:e1:5b:e0:ec:7b:cb:04:97:aa:20:29:67:0a:c6:fc:56: 43:b9:be:fb:51:a3:76:9a:1d:27:a6:2b:36:32:73:49:9f:ed: b9:cb:39:d7:29:76:12:70:89:3a:4e:9b:11:dd:be:a6:61:26: ee:25:30:88:9c:1e:4f:d7:e0:28:12:a9:8f:6f:0f:e4:b6:d8: 1f:b8:af:94:ff:86:94:f0:bc:e3:e1:52:ae:fe:ac:e0:e6:aa: 65:d3:93:b7:d3:a0:bc:70:58:14:06:61:3f:2d:07:e7:42:d8: e3:45:e0:54:3e:f1:3c:06:1d:05:60:c3:2f:11:e1:d3:ad:09: 45:44:21:c8:ff:00:bb:d3:4f:e9:a4:f2:4c:3a:8d:d9:a8:af: dc:ad:03:97:f8:df:c2:4a:de:e0:da:1f:b7:8f:30:0d:06:72: f6:6b:24:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjQwNTE5MDEwNDQxWhcNMjQwNTI2MDEwNDQxWjAYMRYwFAYD VQQDEw02NjQ5NTAyOS0xMTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQO0yt0YjYnBwnjFCkxVmTlwUmr5KZghUDuaO6eBuzmDfDvYJjI+CBh+NaBf 248ir8V/5n+seG84HGSU//QJPgOusRzW/au0YpGuMKhJeUd4fmkenMtw6angVQZa wh2EpU9X1pPbK0QKTLe+fpOjl1QDkmfQ9FIeM0aSBe+QG+dqDt/3W3QyRgRu9l+9 cDlp3hfaCnHVI3su+p79m45r3o4Aqn4952l1svEghBEFh+7ARMt5TfRICYwFPDPY JrPM/90aGmauwM+/JYzWTiIuhlw2ZZuqxv1ZSpo3IHYWJKKtbFRgUp56c04VaNVo RJA1x2CF5SVKsEGUudIEBVQ8xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2/8kWw GuLgtlXyOKcOvEiEiJJKMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDM26c99ZHIultB2izmVwW9iH+yzsfT6jF8xjTVmnq9xj/KrhWm4ByO ErA9RHGAH8ett5ISbv0bb7/T0xpVWsLWw+3KkVXG2N1Dj20Wd6xe582XfubcAOdn wxTqoOFb4Ox7ywSXqiApZwrG/FZDub77UaN2mh0npis2MnNJn+25yznXKXYScIk6 TpsR3b6mYSbuJTCInB5P1+AoEqmPbw/kttgfuK+U/4aU8Lzj4VKu/qzg5qpl05O3 06C8cFgUBmE/LQfnQtjjReBUPvE8Bh0FYMMvEeHTrQlFRCHI/wC700/ppPJMOo3Z qK/crQOX+N/CSt7g2h+3jzANBnL2ayTh -----END CERTIFICATE-----Generated at Sun May 19 01:47:19 2024 by rpki-client on console-ams.rpki-client.org