$ rpki-client -vvf rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft File: MxjodUE2Qh4kSmxB3aXezBDaj4E.mft (raw, json) Hash identifier: hZvnvkzCHquurxdkWo9Mw8+Z+n2m+8GZrAhOHS14yI8= Subject key identifier: 4E:7E:22:A2:37:0C:F4:6C:38:A6:14:81:3C:E8:E5:12:F8:A6:76:14 Authority key identifier: 33:18:E8:75:41:36:42:1E:24:4A:6C:41:DD:A5:DE:CC:10:DA:8F:81 Certificate issuer: /CN=A91490C8/serialNumber=3318E8754136421E244A6C41DDA5DECC10DA8F81 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft Manifest number: 6C Signing time: Fri 17 May 2024 07:35:47 +0000 Manifest this update: Fri 17 May 2024 07:35:46 +0000 Manifest next update: Fri 24 May 2024 07:35:46 +0000 Files and hashes: 1: MxjodUE2Qh4kSmxB3aXezBDaj4E.crl (hash: yhSqf7faXas+t9MUc6q36c9SJL/AdhfldS5f4rw3cw8=) 2: 2201EFC86E5211EEB027A974C4F9AE02.roa (hash: lMkK8nXb5Yl5F9jOOdoaz3bU2vYTfy2+o+XXNd5XlBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.crl rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:35:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91490C8/serialNumber=3318E8754136421E244A6C41DDA5DECC10DA8F81 Validity Not Before: May 17 07:35:46 2024 GMT Not After : May 24 07:35:46 2024 GMT Subject: CN=664708d2-8c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:23:22:a3:ea:9a:8c:ae:a2:c2:01:5c:2f:b7: 32:d1:5e:84:47:53:eb:29:b7:0b:38:e1:9c:98:a3: 9e:30:4a:9d:c9:8e:86:fb:63:d2:c3:e9:c8:c9:1f: d1:79:a6:a2:91:ac:e3:ff:db:7c:f6:d9:35:40:f0: 08:39:58:d5:3f:83:28:14:0d:7c:2d:59:65:c7:c5: 50:dd:23:45:54:ea:37:21:17:15:1d:96:0d:3f:e8: 34:8f:5c:32:22:77:79:72:06:da:5e:06:1a:8e:51: 26:ad:1e:dd:4f:05:33:ab:64:d6:2e:ff:cb:3a:cd: 12:2c:13:6d:f2:b3:15:3d:1f:23:99:02:5b:4a:8a: e7:0b:cb:26:41:db:79:81:1c:11:55:58:3d:ee:40: 43:86:89:3a:46:86:46:f4:e3:c4:30:a2:47:04:d3: 10:da:bb:86:de:de:46:20:19:3f:c9:ce:f8:8e:8e: de:71:23:cf:12:f2:6a:8c:e1:2a:5d:6b:70:43:f0: e8:71:5f:68:50:9e:a5:26:5d:af:42:3d:cf:b0:4f: c4:3c:da:9d:2e:1a:05:f1:5b:5d:91:c0:4c:e3:68: 14:5f:21:0f:1a:a0:e6:6a:7c:ac:21:5f:d8:ec:19: 29:0a:9e:cf:09:b0:df:58:a9:38:e8:22:09:ef:74: b8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:7E:22:A2:37:0C:F4:6C:38:A6:14:81:3C:E8:E5:12:F8:A6:76:14 X509v3 Authority Key Identifier: keyid:33:18:E8:75:41:36:42:1E:24:4A:6C:41:DD:A5:DE:CC:10:DA:8F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:6b:f9:a3:e0:8e:79:1b:50:55:53:9b:0e:f1:68:85:51:cf: 00:e2:51:05:55:2b:20:2d:e2:86:42:9f:7a:7e:ec:e7:79:9b: 67:65:41:ce:9a:87:f8:d4:38:cb:e4:92:c6:57:c6:0a:08:b9: 3a:4e:78:59:9b:a3:21:a3:b8:d3:d5:b9:14:bd:02:4b:fc:83: 83:13:e3:d6:9d:21:4b:fa:a0:66:60:bd:ea:aa:15:c1:2c:c1: 20:94:19:66:4a:53:81:c7:66:95:b9:11:e8:6b:f3:00:0d:21: 64:d2:22:cb:0a:7d:96:38:f0:af:00:26:f6:dc:05:ae:7f:71: 60:e3:22:d7:fd:0e:a4:65:2a:26:7e:b4:8f:73:b1:de:9e:19: 9d:60:9f:9f:f8:96:da:8d:e5:6f:51:01:a1:a6:32:13:1d:56: 8a:da:0e:d0:14:62:ba:ad:88:7e:ef:e0:3b:b5:c0:e1:5b:26: 4d:6e:c1:ad:49:24:2c:1f:f6:c3:69:17:df:c2:22:9a:b6:f4: ef:9f:a3:08:fa:a8:12:3a:ec:8a:5c:21:98:1a:91:89:4f:38: c1:64:e1:d4:6a:eb:94:4e:ee:3c:2a:9a:76:eb:ed:d5:dc:c8: 9e:65:06:b4:bf:40:f4:64:4a:66:86:d8:61:65:af:bf:53:55: 15:8c:21:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OTBDODExMC8GA1UEBRMoMzMxOEU4NzU0MTM2NDIxRTI0NEE2QzQxRERBNURFQ0Mx MERBOEY4MTAeFw0yNDA1MTcwNzM1NDZaFw0yNDA1MjQwNzM1NDZaMBgxFjAUBgNV BAMTDTY2NDcwOGQyLThjNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzIyKj6pqMrqLCAVwvtzLRXoRHU+sptws44ZyYo54wSp3Jjob7Y9LD6cjJH9F5 pqKRrOP/23z22TVA8Ag5WNU/gygUDXwtWWXHxVDdI0VU6jchFxUdlg0/6DSPXDIi d3lyBtpeBhqOUSatHt1PBTOrZNYu/8s6zRIsE23ysxU9HyOZAltKiucLyyZB23mB HBFVWD3uQEOGiTpGhkb048QwokcE0xDau4be3kYgGT/JzviOjt5xI88S8mqM4Spd a3BD8OhxX2hQnqUmXa9CPc+wT8Q82p0uGgXxW12RwEzjaBRfIQ8aoOZqfKwhX9js GSkKns8JsN9YqTjoIgnvdLhDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTn4iojcM 9Gw4phSBPOjlEvimdhQwHwYDVR0jBBgwFoAUMxjodUE2Qh4kSmxB3aXezBDaj4Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5MEM4L0NDMjMzOERDNkU1 MTExRUVBNDdFMkI3NEM0RjlBRTAyL014am9kVUUyUWg0a1NteEIzYVhlekJEYWo0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTXhqb2RVRTJRaDRrU214QjNhWGV6QkRhajRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5 MEM4L0NDMjMzOERDNkU1MTExRUVBNDdFMkI3NEM0RjlBRTAyL014am9kVUUyUWg0 a1NteEIzYVhlekJEYWo0RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGZr+aPgjnkbUFVTmw7xaIVRzwDiUQVVKyAt4oZCn3p+7Od5m2dlQc6a h/jUOMvkksZXxgoIuTpOeFmboyGjuNPVuRS9Akv8g4MT49adIUv6oGZgveqqFcEs wSCUGWZKU4HHZpW5Eehr8wANIWTSIssKfZY48K8AJvbcBa5/cWDjItf9DqRlKiZ+ tI9zsd6eGZ1gn5/4ltqN5W9RAaGmMhMdVoraDtAUYrqtiH7v4Du1wOFbJk1uwa1J JCwf9sNpF9/CIpq29O+fowj6qBI67IpcIZgakYlPOMFk4dRq65RO7jwqmnbr7dXc yJ5lBrS/QPRkSmaG2GFlr79TVRWMIQw= -----END CERTIFICATE-----Generated at Fri May 17 08:52:47 2024 by rpki-client on console-ams.rpki-client.org