$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: gV6I+PbuckIejA18+cEpIpVNLbx0lplrAxnLurh5uc8= Subject key identifier: 6B:49:53:98:E3:29:14:0F:B1:B7:AC:7B:07:12:28:BB:33:66:2E:BC Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 05C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 05A9 Signing time: Sun 19 May 2024 00:27:07 +0000 Manifest this update: Sun 19 May 2024 00:27:06 +0000 Manifest next update: Sun 26 May 2024 00:27:06 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: 0YczVeTIdFLIg1rB44BsfFHv7p9Qv8nlvFBQaL0t58Y=) 2: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: edKxCRC82bIyo5EFf2kYcOl9j2hTLw1gRejNr30iPhk=) 3: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: dBDKOqU2sajWacfQ0BLVilcWidRbbzdqZ6Zma/245tM=) 4: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: AFKfQ2LqcuOz5m0RPpKO2Pxqkn+0Wfo1ky/6p6LkQq8=) 5: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: G5bYJiqePpOmGDtq8quxrX1HjiA8qcQsVgI8GsANVnU=) 6: A08AFBB284F211EE89828225C4F9AE02.roa (hash: ejLLKPQiBLPobjQYaK5ge3652kCzWTCe2Dnf3ntxw6g=) 7: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: 7bsq0y8xLACboG/+7eKDhcGcKG8f3bKV27ZkTVvxZHo=) 8: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: SbB68Pc0GTsdMrmaHHB8Vqq1dHVSFzyvLPZXrJjL8BE=) 9: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: +OPstdbQDjnvrNZqt6rinWhQxArHX4RtsY6XZclmP7o=) 10: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: M0IFBBioOSyjSG/IxAiDqvM/2XgJwAnPlD1+a6sF4G0=) 11: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: GXV6fWmGsm1BQjxCSfjdAMRGqI6F1hfRH3GN1b8bDU8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: May 19 00:27:06 2024 GMT Not After : May 26 00:27:06 2024 GMT Subject: CN=6649475b-8a61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:60:8e:17:75:94:5c:e1:90:24:9a:f9:23:17: 85:18:4b:81:7b:0c:78:63:e6:f9:3e:18:bf:a9:d7: 68:6a:94:4f:4f:8c:d5:b9:38:0e:54:f5:58:6d:4f: b9:64:ab:4b:f4:3c:77:76:20:91:25:6a:fa:d8:66: 19:30:3e:62:71:27:51:07:bb:dc:17:1a:4c:93:76: 1f:8c:d1:69:1a:ee:a5:4e:fc:2f:71:16:5c:33:79: 5d:0d:ff:cc:6e:0f:31:fc:81:84:83:a9:0b:05:b1: 1e:10:b9:2f:3d:b3:48:e1:b5:18:92:be:de:54:83: d4:65:9a:62:46:3d:2c:3a:e2:ac:62:b4:73:45:78: 6d:85:04:90:55:5c:40:80:33:52:b9:1a:37:43:da: b3:ea:ff:ca:5f:d1:3e:32:f7:f6:c3:7c:c5:6e:03: e8:7f:61:7e:49:42:c2:8e:bf:ee:7e:4c:43:79:5c: fb:14:3c:fd:03:8e:77:f6:18:f9:b4:a3:c1:8b:0d: 93:c0:6e:63:71:26:27:a3:d3:97:0b:78:a0:20:1c: 09:bc:6b:97:2c:14:82:44:29:4c:3c:c7:fa:f6:ba: 03:51:6a:01:21:82:45:c0:6f:ef:ba:83:01:78:d9: 92:a9:8f:ad:ee:e1:56:6d:15:70:5c:44:be:22:83: dd:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:49:53:98:E3:29:14:0F:B1:B7:AC:7B:07:12:28:BB:33:66:2E:BC X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:48:82:c8:49:5b:1c:ae:6d:85:f0:f5:da:75:73:db:83:e6: 5a:50:a8:4b:76:71:10:39:be:0c:ab:6a:c1:06:88:f4:6c:e2: c5:a1:6e:f5:b0:8b:89:5c:86:89:35:5a:db:f3:24:49:13:28: 6f:3b:30:86:d1:61:98:bd:75:b5:10:45:e5:8b:56:49:04:ad: c6:e0:25:fd:1c:4c:9a:ca:f3:bc:af:5f:64:91:cc:83:63:6b: ed:a5:cd:ed:1e:af:97:11:7c:82:96:7c:4b:d7:4b:33:a2:ad: ad:87:84:5f:e8:43:88:6e:fc:24:89:29:67:3d:b2:a9:9f:0d: 69:e7:80:b6:f0:1b:08:21:63:04:62:84:31:17:a3:e7:9c:e8: 7e:ea:ee:48:47:1e:53:71:5b:37:18:5e:f7:be:42:ab:09:02: fd:3b:6e:a4:13:26:ec:fa:f6:0e:c9:d4:1f:cf:36:21:2a:a2: e0:aa:0f:8b:9f:eb:da:68:ed:1c:e2:55:71:67:72:6d:0e:5d: 80:c9:05:f4:81:26:cb:04:5e:aa:30:6f:8c:64:cb:c8:6f:94: bd:8b:9b:9b:74:6e:86:f0:c7:c3:08:dc:a4:70:da:60:c4:c4: dd:10:5e:2c:49:ab:b5:4c:6a:48:27:3e:c2:af:09:fc:b8:d1: 3e:11:79:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjQwNTE5MDAyNzA2WhcNMjQwNTI2MDAyNzA2WjAYMRYwFAYD VQQDEw02NjQ5NDc1Yi04YTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5WCOF3WUXOGQJJr5IxeFGEuBewx4Y+b5Phi/qddoapRPT4zVuTgOVPVYbU+5 ZKtL9Dx3diCRJWr62GYZMD5icSdRB7vcFxpMk3YfjNFpGu6lTvwvcRZcM3ldDf/M bg8x/IGEg6kLBbEeELkvPbNI4bUYkr7eVIPUZZpiRj0sOuKsYrRzRXhthQSQVVxA gDNSuRo3Q9qz6v/KX9E+Mvf2w3zFbgPof2F+SULCjr/ufkxDeVz7FDz9A4539hj5 tKPBiw2TwG5jcSYno9OXC3igIBwJvGuXLBSCRClMPMf69roDUWoBIYJFwG/vuoMB eNmSqY+t7uFWbRVwXES+IoPdaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtJU5jj KRQPsbesewcSKLszZi68MB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCySILISVscrm2F8PXadXPbg+ZaUKhLdnEQOb4Mq2rBBoj0bOLFoW71 sIuJXIaJNVrb8yRJEyhvOzCG0WGYvXW1EEXli1ZJBK3G4CX9HEyayvO8r19kkcyD Y2vtpc3tHq+XEXyClnxL10szoq2th4Rf6EOIbvwkiSlnPbKpnw1p54C28BsIIWME YoQxF6PnnOh+6u5IRx5TcVs3GF73vkKrCQL9O26kEybs+vYOydQfzzYhKqLgqg+L n+vaaO0c4lVxZ3JtDl2AyQX0gSbLBF6qMG+MZMvIb5S9i5ubdG6G8MfDCNykcNpg xMTdEF4sSau1TGpIJz7Crwn8uNE+EXkD -----END CERTIFICATE-----Generated at Sun May 19 00:59:41 2024 by rpki-client on console-fra.rpki-client.org