$ rpki-client -vvf rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft File: 2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft (raw, json) Hash identifier: vBNdjIIJOUYQvcEuMdLUuk2ekcUgCrbPkVLW/41ihPQ= Subject key identifier: 9D:E2:FC:B0:6E:0B:69:B0:A5:50:82:5F:05:C9:2A:F8:77:A1:B8:BF Authority key identifier: D9:6B:F5:6A:B6:3F:AE:F0:16:9C:0D:29:D6:4A:54:78:1C:06:B2:E4 Certificate issuer: /CN=A91487B2/serialNumber=D96BF56AB63FAEF0169C0D29D64A54781C06B2E4 Certificate serial: 036F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft Manifest number: 036E Signing time: Fri 03 May 2024 02:52:49 +0000 Manifest this update: Fri 03 May 2024 02:52:48 +0000 Manifest next update: Fri 10 May 2024 02:52:48 +0000 Files and hashes: 1: 2Wv1arY_rvAWnA0p1kpUeBwGsuQ.crl (hash: 0iE3Iab5AdMNzHJ+OV3c8TQxwWMxoB4PQsoaS2VxkSg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.crl rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:52:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 879 (0x36f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91487B2/serialNumber=D96BF56AB63FAEF0169C0D29D64A54781C06B2E4 Validity Not Before: May 3 02:52:48 2024 GMT Not After : May 10 02:52:48 2024 GMT Subject: CN=66345180-f2e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a5:14:4d:bb:86:b2:08:23:9c:6a:51:1f:aa: db:10:8f:d5:46:11:95:bb:6e:14:90:30:73:8c:52: 98:cd:ed:5d:0f:3f:27:6d:c9:ea:93:9f:1a:5d:db: 95:f4:af:0a:46:0d:ba:7f:13:48:9f:a5:5f:39:7d: 4c:22:36:12:06:42:2a:d1:28:a0:f3:9c:15:53:c6: f3:1b:6d:ab:60:d5:54:33:b1:f7:6f:98:6d:2f:7a: 86:76:6f:b5:92:a1:44:23:69:78:63:5d:20:a7:ca: 5f:41:7b:c6:05:af:b7:d4:e8:f7:91:0d:ca:9e:12: 85:37:7f:d9:b9:91:1c:ef:87:15:9d:e0:49:b3:12: 83:e6:09:d6:b2:e9:5f:32:45:ce:35:cb:d1:d2:12: 16:6a:d3:d0:08:0a:da:a0:f3:5b:d8:d7:05:2d:c7: de:e7:12:90:07:76:92:ae:cc:40:5a:72:0f:ce:de: 59:40:49:f0:06:f7:d0:68:54:de:e8:07:58:77:bf: e1:ec:45:2e:2c:2f:1e:0b:52:4d:d4:0c:7c:c8:98: 6d:20:fa:09:a6:31:25:d6:b2:b5:c9:c4:b6:8e:0a: dc:45:44:67:74:ee:d8:be:eb:5f:86:71:7f:f0:36: ba:e6:9b:06:cf:a6:da:02:63:4d:9d:36:34:7e:07: 28:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E2:FC:B0:6E:0B:69:B0:A5:50:82:5F:05:C9:2A:F8:77:A1:B8:BF X509v3 Authority Key Identifier: keyid:D9:6B:F5:6A:B6:3F:AE:F0:16:9C:0D:29:D6:4A:54:78:1C:06:B2:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:de:82:e4:2f:1c:15:f7:d9:46:e8:f6:53:f7:81:ad:b0:58: f9:e7:ba:7c:b8:ec:ca:9b:62:19:d6:a1:40:b2:2c:b7:cb:65: d3:95:7b:1f:ab:1b:22:a9:55:bf:e0:c8:c7:fb:75:2c:83:01: 32:d4:98:8a:e1:6c:b4:7a:7d:6e:4d:b4:90:6e:13:62:12:46: 89:3f:d4:ec:60:4e:e3:56:48:5f:ff:02:76:43:d4:a9:50:da: 7f:e9:e0:14:24:73:76:c3:30:89:f0:3c:50:d3:cb:d3:d7:73: 74:2e:91:96:9f:fc:2a:a2:b9:a4:bf:7d:d1:34:b8:da:54:a9: 70:80:5e:80:0c:53:12:98:c5:04:03:50:6e:6b:f9:c3:61:9a: 65:84:cc:a0:b6:ab:c7:11:2d:b5:8b:8f:f3:81:ae:2c:3c:ef: 34:3d:25:53:6c:1d:9f:64:e8:17:51:3e:52:8a:07:ea:1e:f6: 05:2b:eb:1e:ca:37:09:e3:9c:34:9d:f9:74:cf:01:80:cd:44: 7b:82:7f:a9:e4:c4:b1:ce:13:64:02:a6:ab:d1:3a:23:e7:55: 4b:90:e0:28:72:d1:a0:6b:2e:36:ad:85:e4:98:d7:5c:42:6f: 6e:44:a1:4e:82:f9:16:13:e4:33:8c:a2:42:20:5c:82:68:c6: ef:02:82:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3QjIxMTAvBgNVBAUTKEQ5NkJGNTZBQjYzRkFFRjAxNjlDMEQyOUQ2NEE1NDc4 MUMwNkIyRTQwHhcNMjQwNTAzMDI1MjQ4WhcNMjQwNTEwMDI1MjQ4WjAYMRYwFAYD VQQDEw02NjM0NTE4MC1mMmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqUUTbuGsggjnGpRH6rbEI/VRhGVu24UkDBzjFKYze1dDz8nbcnqk58aXduV 9K8KRg26fxNIn6VfOX1MIjYSBkIq0Sig85wVU8bzG22rYNVUM7H3b5htL3qGdm+1 kqFEI2l4Y10gp8pfQXvGBa+31Oj3kQ3KnhKFN3/ZuZEc74cVneBJsxKD5gnWsulf MkXONcvR0hIWatPQCAraoPNb2NcFLcfe5xKQB3aSrsxAWnIPzt5ZQEnwBvfQaFTe 6AdYd7/h7EUuLC8eC1JN1Ax8yJhtIPoJpjEl1rK1ycS2jgrcRURndO7YvutfhnF/ 8Da65psGz6baAmNNnTY0fgcoFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3i/LBu C2mwpVCCXwXJKvh3obi/MB8GA1UdIwQYMBaAFNlr9Wq2P67wFpwNKdZKVHgcBrLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODdCMi83NDZEQjZGMjVE NjUxMUVDQkI0MEQxMzVDNEY5QUUwMi8yV3YxYXJZX3J2QVduQTBwMWtwVWVCd0dz dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXdjFhcllfcnZBV25BMHAxa3BVZUJ3R3N1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODdCMi83NDZEQjZGMjVENjUxMUVDQkI0MEQxMzVDNEY5QUUwMi8yV3YxYXJZX3J2 QVduQTBwMWtwVWVCd0dzdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT3oLkLxwV99lG6PZT94GtsFj557p8uOzKm2IZ1qFAsiy3y2XTlXsf qxsiqVW/4MjH+3UsgwEy1JiK4Wy0en1uTbSQbhNiEkaJP9TsYE7jVkhf/wJ2Q9Sp UNp/6eAUJHN2wzCJ8DxQ08vT13N0LpGWn/wqormkv33RNLjaVKlwgF6ADFMSmMUE A1Bua/nDYZplhMygtqvHES21i4/zga4sPO80PSVTbB2fZOgXUT5SigfqHvYFK+se yjcJ45w0nfl0zwGAzUR7gn+p5MSxzhNkAqar0Toj51VLkOAoctGgay42rYXkmNdc Qm9uRKFOgvkWE+QzjKJCIFyCaMbvAoL8 -----END CERTIFICATE-----Generated at Fri May 3 04:36:46 2024 by rpki-client on console-ams.rpki-client.org