$ rpki-client -vvf rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft File: 9US5wrG96hw7N0NIuNFeNn5qD0I.mft (raw, json) Hash identifier: YhEA0RYIESQuNQGcGTEFG9fdhAGu0mo3qM4+JtvvAi0= Subject key identifier: 17:06:C9:47:CD:6B:46:12:DA:95:64:1D:E4:70:4F:8A:68:50:1D:35 Authority key identifier: F5:44:B9:C2:B1:BD:EA:1C:3B:37:43:48:B8:D1:5E:36:7E:6A:0F:42 Certificate issuer: /CN=A91139AB/serialNumber=F544B9C2B1BDEA1C3B374348B8D15E367E6A0F42 Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft Manifest number: 06E1 Signing time: Tue 30 Apr 2024 23:42:07 +0000 Manifest this update: Tue 30 Apr 2024 23:42:07 +0000 Manifest next update: Tue 07 May 2024 23:42:07 +0000 Files and hashes: 1: 9US5wrG96hw7N0NIuNFeNn5qD0I.crl (hash: XS2dYlchxzFZCnC5b6A8TC2AheTLENwzemzrY+7H3AE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.crl rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91139AB/serialNumber=F544B9C2B1BDEA1C3B374348B8D15E367E6A0F42 Validity Not Before: Apr 30 23:42:07 2024 GMT Not After : May 7 23:42:07 2024 GMT Subject: CN=663181cf-2bee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:72:5c:45:cd:62:8d:61:1c:f1:37:d3:94:2e: b2:11:19:39:76:f9:e9:28:39:e8:22:b4:68:44:a5: ee:33:c2:32:40:8e:3d:9f:97:88:82:34:8f:a2:eb: 8d:7a:ff:78:2a:0e:e7:44:a4:e8:00:e3:28:57:cb: f7:5f:1c:6a:15:4d:9a:e7:72:98:0f:5a:6b:0d:6c: 47:09:82:27:de:14:85:d6:e6:b9:35:18:38:30:ed: 36:e2:08:cc:b4:af:de:71:a9:1a:cc:29:3d:6f:47: c9:f1:47:e6:c5:ac:93:30:67:d1:ba:c6:0e:d7:54: 24:a8:7c:b1:73:81:53:e2:7a:78:aa:07:53:0c:36: 5e:8f:9c:f9:fb:bf:a1:be:1a:a5:b2:1a:e2:8b:8a: 21:19:4b:ba:97:07:cb:d3:e0:54:f7:77:05:14:9f: 73:37:61:8d:cc:0f:e8:05:4f:20:d9:bf:dd:8e:c3: 2f:2f:42:6e:20:f2:34:43:0b:11:c8:16:22:90:02: 17:de:7b:ff:ea:7c:51:fb:1e:07:31:76:50:6f:cd: a3:f4:f1:74:0b:35:f8:9c:cd:47:d4:e6:69:d4:48: 8a:b4:18:50:2f:1a:58:76:30:39:28:4a:e2:f0:d2: c9:22:4d:33:93:01:31:4d:71:86:14:18:c9:44:01: a9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:06:C9:47:CD:6B:46:12:DA:95:64:1D:E4:70:4F:8A:68:50:1D:35 X509v3 Authority Key Identifier: keyid:F5:44:B9:C2:B1:BD:EA:1C:3B:37:43:48:B8:D1:5E:36:7E:6A:0F:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:9f:59:03:35:25:d0:67:99:4b:12:68:9c:af:31:b7:98:e5: d7:c7:52:a5:42:2b:2d:9c:83:15:80:2d:3b:d4:92:99:b3:cb: 97:49:0d:df:dc:43:1e:e0:af:1a:f1:a2:4d:50:4c:49:07:db: 2e:0d:a4:75:9b:65:27:7c:f6:ac:ef:e7:54:bc:09:01:f7:79: 5f:91:bd:16:e0:a3:98:04:e2:cb:91:07:a5:3f:0c:e8:c9:86: 37:59:58:77:95:ea:0c:f3:75:06:15:52:85:b4:3a:cc:33:86: df:1b:1d:9f:23:e6:3e:87:d9:32:c9:72:08:f2:a9:c3:48:4b: 73:15:99:76:e3:df:99:b6:11:bc:c0:66:99:a3:e0:13:28:11: 02:37:b7:15:94:b0:a4:18:e4:59:cb:da:30:b9:68:84:9b:a9: 69:85:69:66:85:4f:74:bf:86:72:4e:67:b8:bc:07:e9:f9:b3: 51:27:dc:e9:c9:17:44:b7:6a:77:64:47:e9:5a:06:b2:72:96: 28:3b:03:e7:b5:a3:e4:19:ef:d9:58:a9:94:43:44:ea:1f:8e: b8:d5:0d:e2:73:cc:c8:be:8b:52:9e:73:6d:02:78:a0:ae:a3: 63:64:b6:ed:eb:3d:61:2e:38:f0:3e:7a:0b:59:08:46:a3:8d: 65:31:b7:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5QUIxMTAvBgNVBAUTKEY1NDRCOUMyQjFCREVBMUMzQjM3NDM0OEI4RDE1RTM2 N0U2QTBGNDIwHhcNMjQwNDMwMjM0MjA3WhcNMjQwNTA3MjM0MjA3WjAYMRYwFAYD VQQDEw02NjMxODFjZi0yYmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3JcRc1ijWEc8TfTlC6yERk5dvnpKDnoIrRoRKXuM8IyQI49n5eIgjSPouuN ev94Kg7nRKToAOMoV8v3XxxqFU2a53KYD1prDWxHCYIn3hSF1ua5NRg4MO024gjM tK/ecakazCk9b0fJ8UfmxayTMGfRusYO11QkqHyxc4FT4np4qgdTDDZej5z5+7+h vhqlshrii4ohGUu6lwfL0+BU93cFFJ9zN2GNzA/oBU8g2b/djsMvL0JuIPI0QwsR yBYikAIX3nv/6nxR+x4HMXZQb82j9PF0CzX4nM1H1OZp1EiKtBhQLxpYdjA5KEri 8NLJIk0zkwExTXGGFBjJRAGpjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcGyUfN a0YS2pVkHeRwT4poUB01MB8GA1UdIwQYMBaAFPVEucKxveocOzdDSLjRXjZ+ag9C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzlBQi8xNThENDkwNjI1 NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi85VVM1d3JHOTZodzdOME5JdU5GZU5uNXFE MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlVUzV3ckc5Nmh3N04wTkl1TkZlTm41cUQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzlBQi8xNThENDkwNjI1NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi85VVM1d3JHOTZo dzdOME5JdU5GZU5uNXFEMEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7n1kDNSXQZ5lLEmicrzG3mOXXx1KlQistnIMVgC071JKZs8uXSQ3f 3EMe4K8a8aJNUExJB9suDaR1m2UnfPas7+dUvAkB93lfkb0W4KOYBOLLkQelPwzo yYY3WVh3leoM83UGFVKFtDrMM4bfGx2fI+Y+h9kyyXII8qnDSEtzFZl249+ZthG8 wGaZo+ATKBECN7cVlLCkGORZy9owuWiEm6lphWlmhU90v4ZyTme4vAfp+bNRJ9zp yRdEt2p3ZEfpWgaycpYoOwPntaPkGe/ZWKmUQ0TqH4641Q3ic8zIvotSnnNtAnig rqNjZLbt6z1hLjjwPnoLWQhGo41lMbeL -----END CERTIFICATE-----Generated at Wed May 1 00:35:48 2024 by rpki-client on console-ams.rpki-client.org