$ rpki-client -vvf rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft File: MOI2HN2l66cF86ay--vl232vEPE.mft (raw, json) Hash identifier: pc5z7GcARF4kXdvkxXguq9UywWNElJ1VLhSHS23/5Ng= Subject key identifier: DA:1B:28:9E:09:AE:B0:AF:F4:2C:A0:E9:17:E3:DA:B5:F6:36:6C:3A Authority key identifier: 30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 Certificate issuer: /CN=A91386E8/serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Certificate serial: 0546 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft Manifest number: 053F Signing time: Sat 27 Apr 2024 00:56:14 +0000 Manifest this update: Sat 27 Apr 2024 00:56:13 +0000 Manifest next update: Sat 04 May 2024 00:56:13 +0000 Files and hashes: 1: MOI2HN2l66cF86ay--vl232vEPE.crl (hash: BN2iTP0bxs2f7kh/Moe4Wtbeuwe05su6FJnrrYNN/+8=) 2: 65C6DD42E15211EC8EEE9668C4F9AE02.roa (hash: /0N27QtNpmERTatd5yEHNmxTKHcoDqpjRAU9UqXWOH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 00:56:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1350 (0x546) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91386E8/serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Validity Not Before: Apr 27 00:56:13 2024 GMT Not After : May 4 00:56:13 2024 GMT Subject: CN=662c4d2d-3ecc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dd:a3:49:9f:bb:ce:a3:6f:23:a6:2a:a3:4d: be:80:4a:82:64:19:c7:81:84:39:26:d8:44:50:ab: d3:9e:98:55:24:2e:9e:30:3f:82:bb:5b:5d:b5:d8: 1b:f6:f2:81:15:b5:2a:46:44:8a:78:8f:c8:a3:ca: 1b:a3:da:0f:42:7c:8d:e7:41:ac:1c:c6:ed:44:d1: c2:68:16:e1:9b:dd:ee:61:46:7a:aa:5e:52:e1:40: 90:6e:c2:20:c8:fd:1d:d8:f8:69:47:f6:de:f8:12: be:85:93:76:32:5f:52:65:04:1e:1d:cb:6f:4e:ba: ac:a5:88:de:f9:02:12:56:6c:89:2b:89:7f:24:d1: f8:07:01:20:87:09:b9:06:bf:fa:bf:85:80:ad:18: 31:29:6f:13:63:54:ee:f9:32:c3:a5:12:3c:f8:11: cb:6f:de:25:bc:92:b9:da:ff:12:0c:67:68:63:e4: 4c:f1:12:5b:23:a5:fa:59:d9:a5:b5:d3:ea:57:75: f1:4f:34:bb:a8:19:c3:e8:d6:e3:61:80:67:67:03: d9:9d:28:85:a1:22:22:e9:d7:a5:08:5d:33:60:18: ac:0d:07:d2:0d:75:16:d0:ce:16:3a:ca:a9:7a:be: 21:b3:96:15:4b:62:32:62:9c:52:14:2c:8f:cb:da: fa:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:1B:28:9E:09:AE:B0:AF:F4:2C:A0:E9:17:E3:DA:B5:F6:36:6C:3A X509v3 Authority Key Identifier: keyid:30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:a4:0a:3c:ac:3c:ca:1d:b0:d8:2f:d2:c3:30:94:da:69:95: 8c:be:0b:5e:9f:31:01:11:7d:6c:be:88:93:4e:52:8b:27:86: a6:1c:d1:d6:f5:ac:8e:b9:94:be:2b:b5:68:c2:69:60:50:78: 45:0e:7e:d9:c8:c8:0a:9c:e8:4c:cf:50:b9:76:87:4f:52:58: 94:96:96:8f:95:85:cc:0b:fa:5d:d0:d6:d5:a3:a7:45:95:2b: 14:f6:b7:c6:08:2f:eb:58:c5:72:a2:fe:6a:7b:2c:db:64:f6: cf:fd:79:19:09:cd:87:7c:fa:5c:13:9f:e1:4f:74:73:a1:da: 5a:ff:7b:c7:f4:aa:88:1a:f9:8e:42:41:a3:85:cb:e6:ea:40: a0:fa:71:1c:32:ae:db:b0:53:96:2f:18:56:f4:f1:b1:67:0a: 1c:6d:eb:13:06:9b:84:a0:4c:ae:a6:be:99:61:d4:67:9c:9b: f8:48:e6:96:c9:e9:08:ac:41:e2:07:23:c0:c7:b3:a8:76:90: d0:96:91:4d:20:4c:24:b8:e1:fb:44:8b:73:9a:38:47:33:c9: 09:f2:40:13:9d:ac:79:9e:07:e7:bd:94:f5:28:ef:e3:ae:7f: 41:0a:8e:9f:40:3f:e6:36:9c:0c:9c:b4:7c:ef:21:07:2f:aa: bf:ce:5d:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2RTgxMTAvBgNVBAUTKDMwRTIzNjFDRERBNUVCQTcwNUYzQTZCMkZCRUJFNURC N0RBRjEwRjEwHhcNMjQwNDI3MDA1NjEzWhcNMjQwNTA0MDA1NjEzWjAYMRYwFAYD VQQDEw02NjJjNGQyZC0zZWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq92jSZ+7zqNvI6Yqo02+gEqCZBnHgYQ5JthEUKvTnphVJC6eMD+Cu1tdtdgb 9vKBFbUqRkSKeI/Io8obo9oPQnyN50GsHMbtRNHCaBbhm93uYUZ6ql5S4UCQbsIg yP0d2PhpR/be+BK+hZN2Ml9SZQQeHctvTrqspYje+QISVmyJK4l/JNH4BwEghwm5 Br/6v4WArRgxKW8TY1Tu+TLDpRI8+BHLb94lvJK52v8SDGdoY+RM8RJbI6X6Wdml tdPqV3XxTzS7qBnD6NbjYYBnZwPZnSiFoSIi6delCF0zYBisDQfSDXUW0M4WOsqp er4hs5YVS2IyYpxSFCyPy9r6jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNobKJ4J rrCv9Cyg6Rfj2rX2Nmw6MB8GA1UdIwQYMBaAFDDiNhzdpeunBfOmsvvr5dt9rxDx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODZFOC80ODg5NTk0RUE4 MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2Y0Y4NmF5LS12bDIzMnZF UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PSTJITjJsNjZjRjg2YXktLXZsMjMydkVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODZFOC80ODg5NTk0RUE4MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2 Y0Y4NmF5LS12bDIzMnZFUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvpAo8rDzKHbDYL9LDMJTaaZWMvgtenzEBEX1svoiTTlKLJ4amHNHW 9ayOuZS+K7VowmlgUHhFDn7ZyMgKnOhMz1C5dodPUliUlpaPlYXMC/pd0NbVo6dF lSsU9rfGCC/rWMVyov5qeyzbZPbP/XkZCc2HfPpcE5/hT3Rzodpa/3vH9KqIGvmO QkGjhcvm6kCg+nEcMq7bsFOWLxhW9PGxZwocbesTBpuEoEyupr6ZYdRnnJv4SOaW yekIrEHiByPAx7OodpDQlpFNIEwkuOH7RItzmjhHM8kJ8kATnax5ngfnvZT1KO/j rn9BCo6fQD/mNpwMnLR87yEHL6q/zl1S -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:41 2024 by rpki-client on console-ams.rpki-client.org