$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: ggttFn3WWlzqr88q+uGozARMlveqrUCR/oRRVfZediA= Subject key identifier: 68:4D:3E:20:B3:F8:B9:D2:47:FC:79:B3:43:AA:BA:06:8E:E1:79:C1 Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 0598 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 058E Signing time: Sun 05 May 2024 00:39:00 +0000 Manifest this update: Sun 05 May 2024 00:39:00 +0000 Manifest next update: Sun 12 May 2024 00:39:00 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: GPm90CvLSqbavpzthaslBdTGMmL6rgDli+iEwg+lJtk=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: 4Dre/bEv/9MXHZptiWcs0d1MjG6NBVyLsKGLvJlsHzo=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: Ll2R2qtdZvTHWKeQ0lGdmmY4Lx4LTWEpwY7q6SHN738=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1432 (0x598) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: May 5 00:39:00 2024 GMT Not After : May 12 00:39:00 2024 GMT Subject: CN=6636d524-32e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:4c:f8:3a:2d:50:a0:23:e8:1b:f5:73:45:fc: d8:15:f4:10:03:52:e1:f8:8d:10:51:db:15:13:80: 17:2a:23:1c:78:9a:06:16:6c:e1:cf:bf:47:f8:3d: 6c:d2:84:e5:bc:7f:7f:0b:e3:50:fb:f3:39:04:cd: c3:2d:68:31:2f:9a:ce:4c:dc:18:4b:9f:77:d1:45: 55:6a:bc:64:2d:39:83:1a:40:e5:f1:48:38:e5:b9: 26:6d:6c:6a:5e:85:da:6c:83:e0:de:d6:44:4b:fd: 21:52:1f:76:83:22:40:30:97:3b:b4:21:e9:30:50: 69:18:cf:66:93:11:0c:14:6d:ac:d3:3f:bb:79:e7: 91:1b:51:09:21:2c:21:8c:c6:4c:13:9e:a8:e3:55: a0:c9:34:f7:ea:23:f2:f4:46:60:d4:2e:e0:ca:fc: 6e:52:1b:87:0e:9d:94:d9:86:8e:93:f4:5e:af:15: b6:f3:55:e9:15:eb:52:05:77:82:8c:f1:0e:3f:81: 4a:c5:49:cd:dc:1c:a3:e9:e6:d1:96:4e:a3:39:a7: ee:0a:4e:e4:a6:af:77:bf:e5:b6:d4:d0:06:9b:1f: e6:43:43:50:57:1b:7a:53:0c:1f:97:67:a3:af:42: f1:87:8b:aa:e4:48:47:d3:af:62:de:7d:1a:df:c3: 26:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:4D:3E:20:B3:F8:B9:D2:47:FC:79:B3:43:AA:BA:06:8E:E1:79:C1 X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:a7:df:58:e3:d1:05:d2:38:f5:e4:6f:82:75:33:ec:50:1b: 9b:6d:0d:69:ac:b9:7b:9f:92:48:95:39:dc:c3:49:f5:40:af: e7:a9:d1:95:ea:78:bf:85:5f:1e:2f:eb:17:c3:88:f1:ee:d6: 66:8a:30:12:13:c2:21:39:d9:bf:7f:44:24:de:cc:74:eb:d0: e3:9b:7b:37:5d:59:5b:e4:87:5d:84:07:a7:d4:ab:31:cf:a8: 1c:f1:a3:33:85:0c:86:5b:28:da:7e:fe:d9:4d:0f:d8:c6:5b: 4a:6a:39:04:d7:ef:e3:bb:06:7c:a5:68:a5:96:ba:7e:24:b4: 6c:52:da:54:a4:1d:69:ff:49:f0:b2:34:90:1e:60:0f:44:b9: d3:a5:a5:4e:ce:f9:6f:bc:f4:20:d1:33:09:7c:bd:85:cb:30: c9:51:86:eb:bc:82:e3:ee:77:06:1c:9a:a1:9e:8b:16:09:19: 3e:99:00:8f:d5:b9:9f:55:13:bf:75:a6:14:00:44:43:76:29: 5b:b1:2a:8e:6f:7c:ce:b7:5c:66:11:55:98:2e:92:c1:96:ac: 99:fc:55:21:80:a8:8d:ba:7e:1b:05:3c:7c:bb:0d:72:ea:78: d3:79:ef:bb:4e:28:95:af:26:92:94:1e:ef:32:3c:a8:43:0f: 7c:e8:47:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjQwNTA1MDAzOTAwWhcNMjQwNTEyMDAzOTAwWjAYMRYwFAYD VQQDEw02NjM2ZDUyNC0zMmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA80z4Oi1QoCPoG/VzRfzYFfQQA1Lh+I0QUdsVE4AXKiMceJoGFmzhz79H+D1s 0oTlvH9/C+NQ+/M5BM3DLWgxL5rOTNwYS5930UVVarxkLTmDGkDl8Ug45bkmbWxq XoXabIPg3tZES/0hUh92gyJAMJc7tCHpMFBpGM9mkxEMFG2s0z+7eeeRG1EJISwh jMZME56o41WgyTT36iPy9EZg1C7gyvxuUhuHDp2U2YaOk/RerxW281XpFetSBXeC jPEOP4FKxUnN3Byj6ebRlk6jOafuCk7kpq93v+W21NAGmx/mQ0NQVxt6Uwwfl2ej r0Lxh4uq5EhH069i3n0a38MmcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhNPiCz +LnSR/x5s0OqugaO4XnBMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDgp99Y49EF0jj15G+CdTPsUBubbQ1prLl7n5JIlTncw0n1QK/nqdGV 6ni/hV8eL+sXw4jx7tZmijASE8IhOdm/f0Qk3sx069Djm3s3XVlb5IddhAen1Ksx z6gc8aMzhQyGWyjafv7ZTQ/YxltKajkE1+/juwZ8pWillrp+JLRsUtpUpB1p/0nw sjSQHmAPRLnTpaVOzvlvvPQg0TMJfL2FyzDJUYbrvILj7ncGHJqhnosWCRk+mQCP 1bmfVRO/daYUAERDdilbsSqOb3zOt1xmEVWYLpLBlqyZ/FUhgKiNun4bBTx8uw1y 6njTee+7TiiVryaSlB7vMjyoQw986Eee -----END CERTIFICATE-----Generated at Sun May 5 01:13:17 2024 by rpki-client on console-ams.rpki-client.org