$ rpki-client -vvf rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft File: JSBFeBemYmHoez5BhOhi2ka6nw0.mft (raw, json) Hash identifier: 8U6ZxMEBfmSk7PYNYksN2C3CYUCw2qkCGX4s7f684A0= Subject key identifier: 56:27:74:53:A7:F1:D0:FD:B4:59:40:9F:87:8F:32:98:DB:8A:E5:61 Authority key identifier: 25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D Certificate issuer: /CN=A9151EB5/serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Certificate serial: 059A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft Manifest number: 059A Signing time: Sun 05 May 2024 00:28:35 +0000 Manifest this update: Sun 05 May 2024 00:28:34 +0000 Manifest next update: Sun 12 May 2024 00:28:34 +0000 Files and hashes: 1: JSBFeBemYmHoez5BhOhi2ka6nw0.crl (hash: 8Avl9YXPa2EXL/5tFXLvPygMYd9tOY21l5R8axk1yHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1434 (0x59a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151EB5/serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Validity Not Before: May 5 00:28:34 2024 GMT Not After : May 12 00:28:34 2024 GMT Subject: CN=6636d2b3-6d52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:37:3d:5c:69:cc:cd:df:03:c1:30:ac:0e:c0: c2:f5:96:a1:79:78:91:81:e8:14:10:78:6c:c9:b5: a1:37:d7:e9:cd:25:be:0e:54:39:66:13:7f:46:02: cd:f2:f7:a7:19:c5:65:56:21:c3:23:7f:bf:37:a5: d9:90:d7:1b:72:ed:63:7d:de:45:1e:73:91:9f:97: f9:2f:63:e6:f2:f9:a2:77:58:4e:4c:24:ba:0a:3a: 66:e7:70:07:6e:93:3d:c1:bd:79:56:66:6d:58:97: 45:cc:c4:cf:12:41:eb:23:a8:b5:5f:1a:ca:ed:d1: 0d:20:d9:88:8e:21:67:99:7b:6d:ba:48:d9:17:d6: a7:df:b8:de:6b:19:44:37:eb:01:a0:a0:a2:a6:70: 51:dc:fa:10:29:c7:af:72:d5:57:32:b9:02:94:a2: 67:b7:7b:66:48:0e:5d:79:1f:bb:11:98:d3:9b:72: 4e:f4:91:2c:6b:19:98:9c:a1:a8:cd:9c:99:d6:f4: 3c:40:d5:40:3c:bd:4b:a7:b1:39:f7:0d:d0:4d:25: 43:4f:4a:a7:8f:4d:86:64:eb:08:ff:af:3e:dd:64: ce:48:a9:39:93:52:99:8f:0b:f7:4f:29:1b:f7:dc: b0:88:4d:9a:cb:fc:fe:bc:dd:cf:16:63:b2:fb:a5: b4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:27:74:53:A7:F1:D0:FD:B4:59:40:9F:87:8F:32:98:DB:8A:E5:61 X509v3 Authority Key Identifier: keyid:25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:c7:d1:73:f2:f4:3a:79:b9:fa:78:d1:07:ca:a7:66:1d:47: 1c:ae:38:d9:9e:d7:ea:72:4d:a0:51:68:f2:90:f6:4c:06:87: 07:9b:91:9c:e3:3e:c5:12:b1:9e:e6:cb:f3:95:58:d9:f2:71: 55:1a:19:1f:f4:06:e6:b4:da:54:ca:5d:df:5d:67:cc:3c:78: 94:4a:ae:91:70:1d:30:54:93:57:e5:74:08:7b:14:05:6c:21: 21:4f:aa:00:07:fa:c1:9a:89:7d:66:e5:90:0a:90:a5:d0:21: 22:77:ca:4d:72:95:75:6e:01:b1:16:3e:b3:18:53:40:1c:7c: 12:fe:dd:c6:17:68:c6:4c:35:36:ab:d5:57:15:7d:d6:61:59: ae:04:83:2a:d8:a9:12:a2:b0:8d:dc:81:d0:21:71:b2:37:46: 67:64:6e:b9:49:28:e4:0a:bb:96:ed:76:f9:ab:4a:e8:ee:02: 45:a0:66:0d:ed:5e:14:30:fb:ee:1e:09:ea:65:3f:61:0a:71: da:0a:e6:cc:f1:f3:85:8a:0f:33:c9:af:b3:7c:0a:37:cf:10: 71:3f:94:b1:32:8b:33:9e:21:7d:9e:a0:3a:f6:7c:99:19:4d: 65:d3:00:de:5b:82:82:db:4a:50:b6:a3:ce:71:1c:7e:77:1a: 3b:96:db:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFQjUxMTAvBgNVBAUTKDI1MjA0NTc4MTdBNjYyNjFFODdCM0U0MTg0RTg2MkRB NDZCQTlGMEQwHhcNMjQwNTA1MDAyODM0WhcNMjQwNTEyMDAyODM0WjAYMRYwFAYD VQQDEw02NjM2ZDJiMy02ZDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjc9XGnMzd8DwTCsDsDC9ZaheXiRgegUEHhsybWhN9fpzSW+DlQ5ZhN/RgLN 8venGcVlViHDI3+/N6XZkNcbcu1jfd5FHnORn5f5L2Pm8vmid1hOTCS6Cjpm53AH bpM9wb15VmZtWJdFzMTPEkHrI6i1XxrK7dENINmIjiFnmXttukjZF9an37jeaxlE N+sBoKCipnBR3PoQKcevctVXMrkClKJnt3tmSA5deR+7EZjTm3JO9JEsaxmYnKGo zZyZ1vQ8QNVAPL1Lp7E59w3QTSVDT0qnj02GZOsI/68+3WTOSKk5k1KZjwv3Tykb 99ywiE2ay/z+vN3PFmOy+6W0kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYndFOn 8dD9tFlAn4ePMpjbiuVhMB8GA1UdIwQYMBaAFCUgRXgXpmJh6Hs+QYToYtpGup8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUVCNS9DNTdFMzhGQzdG OUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVltSG9lejVCaE9oaTJrYTZu dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTQkZlQmVtWW1Ib2V6NUJoT2hpMmthNm53MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUVCNS9DNTdFMzhGQzdGOUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVlt SG9lejVCaE9oaTJrYTZudzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJx9Fz8vQ6ebn6eNEHyqdmHUccrjjZntfqck2gUWjykPZMBocHm5Gc 4z7FErGe5svzlVjZ8nFVGhkf9AbmtNpUyl3fXWfMPHiUSq6RcB0wVJNX5XQIexQF bCEhT6oAB/rBmol9ZuWQCpCl0CEid8pNcpV1bgGxFj6zGFNAHHwS/t3GF2jGTDU2 q9VXFX3WYVmuBIMq2KkSorCN3IHQIXGyN0ZnZG65SSjkCruW7Xb5q0ro7gJFoGYN 7V4UMPvuHgnqZT9hCnHaCubM8fOFig8zya+zfAo3zxBxP5SxMoszniF9nqA69nyZ GU1l0wDeW4KC20pQtqPOcRx+dxo7ltuF -----END CERTIFICATE-----Generated at Sun May 5 01:13:18 2024 by rpki-client on console-ams.rpki-client.org