$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft File: IohtF2pzwL483ViJwqizI-O5QSw.mft (raw, json) Hash identifier: j90kUGd+DGSzGOhVNy6bcOXvPp0SJN5k3/7DXuIivUY= Subject key identifier: 7A:6E:AB:F4:2A:EF:55:3C:B3:53:2C:E8:F3:A2:44:DF:3F:14:C8:F7 Authority key identifier: 22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C Certificate issuer: /CN=A91658EF/serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Certificate serial: 1446 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft Manifest number: 2931 Signing time: Fri 10 May 2024 17:29:39 +0000 Manifest this update: Fri 10 May 2024 17:29:38 +0000 Manifest next update: Fri 17 May 2024 17:29:38 +0000 Files and hashes: 1: IohtF2pzwL483ViJwqizI-O5QSw.crl (hash: xgU3TI4bdTrGSA0myBo6SUS2onIM/Jt8pkUZWKt+xPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5190 (0x1446) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF/serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Validity Not Before: May 10 17:29:38 2024 GMT Not After : May 17 17:29:38 2024 GMT Subject: CN=663e5982-538e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:73:f3:6e:a6:49:af:36:82:98:ba:b2:2f:ff: 2a:e0:dd:f9:cc:8d:be:43:1f:05:ba:57:37:a2:7f: 61:25:c5:c6:99:f3:c0:22:97:7b:e1:fb:97:ac:dc: d6:21:e1:77:70:d2:d5:bc:9a:2f:27:2c:b5:c3:a6: f8:0b:be:9f:ce:9b:ac:d8:1c:c6:5e:d3:d7:ed:0b: 23:70:18:6a:0c:85:7e:95:8b:4a:4a:dc:30:3d:ab: f8:8b:32:49:f3:b7:b7:ce:1c:c9:37:ec:6d:8d:90: 06:8f:4a:a5:17:fc:e4:7d:22:79:a3:38:b6:77:71: fd:f1:75:c0:5a:6b:be:07:87:0a:f1:ca:a1:b6:56: 25:0f:33:21:15:b0:75:ab:6e:56:7c:ba:07:7b:31: c4:98:5a:fd:70:08:48:6b:38:74:7d:f3:25:0d:08: f8:0e:67:e2:1f:6f:d8:59:f6:c8:4b:e7:8e:f4:87: d4:ac:43:65:06:86:ad:dd:7c:66:22:1e:e3:e2:a3: 65:26:96:25:61:3f:2c:0f:c6:59:f8:88:81:32:c6: b9:8c:06:96:28:67:c0:17:13:0a:ea:11:8c:6e:d1: d4:c9:a2:4a:75:81:7f:e7:25:5e:f7:69:f0:55:99: 4e:b2:5d:48:fe:76:b8:8a:09:8b:a9:47:cb:c3:c1: 60:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:6E:AB:F4:2A:EF:55:3C:B3:53:2C:E8:F3:A2:44:DF:3F:14:C8:F7 X509v3 Authority Key Identifier: keyid:22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:6a:75:fe:4b:54:3b:bf:b8:e7:4d:34:2d:43:0e:9b:aa:5e: 60:0f:04:f1:b8:0e:9f:78:55:1a:90:a7:3f:0f:47:c1:44:97: b2:a1:26:78:86:10:ed:27:f8:99:85:02:72:fc:b5:e1:b8:0e: 2f:55:6c:9f:38:fd:5f:cb:1f:00:96:a9:50:b3:dd:84:35:34: f0:d2:fd:9a:b2:8a:6b:79:be:7d:27:68:cb:47:cc:b6:97:73: 8b:d7:bf:d3:c6:7a:08:9a:8a:c6:24:33:53:15:c9:9a:88:cd: 72:57:d9:8e:d7:6a:5a:90:2b:40:44:5a:54:46:89:4c:5c:ac: f0:27:25:6f:26:aa:7e:58:68:c0:1b:1f:e9:21:fc:08:d8:a8: ca:43:fb:b5:66:ac:32:9c:65:b8:f7:35:45:22:15:ed:7d:bb: 83:9f:01:c3:ea:4d:90:cc:18:fe:83:87:ce:27:e0:ca:08:8c: 2f:3d:1a:4f:1e:41:84:93:d3:0a:1a:0b:96:36:b5:54:32:db: ce:1a:36:bf:ec:a0:ad:9d:9a:c0:20:1d:51:87:6a:90:f3:4c: fb:a7:53:76:32:f6:c1:47:9b:6d:c2:e0:d0:87:ab:81:33:18: 7f:56:fc:f1:df:f8:02:37:59:3e:bb:7e:e4:6d:c2:97:3c:41: e2:60:2a:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKDIyODg2RDE3NkE3M0MwQkUzQ0RENTg4OUMyQThCMzIz RTNCOTQxMkMwHhcNMjQwNTEwMTcyOTM4WhcNMjQwNTE3MTcyOTM4WjAYMRYwFAYD VQQDEw02NjNlNTk4Mi01MzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3PzbqZJrzaCmLqyL/8q4N35zI2+Qx8Fulc3on9hJcXGmfPAIpd74fuXrNzW IeF3cNLVvJovJyy1w6b4C76fzpus2BzGXtPX7QsjcBhqDIV+lYtKStwwPav4izJJ 87e3zhzJN+xtjZAGj0qlF/zkfSJ5ozi2d3H98XXAWmu+B4cK8cqhtlYlDzMhFbB1 q25WfLoHezHEmFr9cAhIazh0ffMlDQj4DmfiH2/YWfbIS+eO9IfUrENlBoat3Xxm Ih7j4qNlJpYlYT8sD8ZZ+IiBMsa5jAaWKGfAFxMK6hGMbtHUyaJKdYF/5yVe92nw VZlOsl1I/na4igmLqUfLw8FgaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpuq/Qq 71U8s1Ms6POiRN8/FMj3MB8GA1UdIwQYMBaAFCKIbRdqc8C+PN1YicKosyPjuUEs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendMNDgzVmlKd3FpekktTzVR U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvaHRGMnB6d0w0ODNWaUp3cWl6SS1PNVFTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendM NDgzVmlKd3FpekktTzVRU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdanX+S1Q7v7jnTTQtQw6bql5gDwTxuA6feFUakKc/D0fBRJeyoSZ4 hhDtJ/iZhQJy/LXhuA4vVWyfOP1fyx8AlqlQs92ENTTw0v2asopreb59J2jLR8y2 l3OL17/TxnoImorGJDNTFcmaiM1yV9mO12pakCtARFpURolMXKzwJyVvJqp+WGjA Gx/pIfwI2KjKQ/u1ZqwynGW49zVFIhXtfbuDnwHD6k2QzBj+g4fOJ+DKCIwvPRpP HkGEk9MKGguWNrVUMtvOGja/7KCtnZrAIB1Rh2qQ80z7p1N2MvbBR5ttwuDQh6uB Mxh/Vvzx3/gCN1k+u37kbcKXPEHiYCpD -----END CERTIFICATE-----Generated at Fri May 10 19:18:35 2024 by rpki-client on console-ams.rpki-client.org