$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: XuJVBRWNrqN/qp9iUlwB2t7n0J9eepfPxgRL72W/3vE= Subject key identifier: 7B:3E:14:76:37:11:2A:F9:62:8C:30:B2:67:91:26:92:BE:29:5B:C0 Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: DC Signing time: Tue 07 May 2024 06:03:25 +0000 Manifest this update: Tue 07 May 2024 06:03:25 +0000 Manifest next update: Tue 14 May 2024 06:03:25 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: 08NvsuKqRR9W9Z1iiArFlcQiweifMhNUK5HKqpidgtY=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: sxdz9/OyOQYTo6p59vOkf0N1FGUmUNKIj7Hl/elMisQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 06:03:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: May 7 06:03:25 2024 GMT Not After : May 14 06:03:25 2024 GMT Subject: CN=6639c42d-6fe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c9:03:5b:08:42:13:9f:b4:4a:46:c7:e5:eb: cd:b0:f0:4d:f4:b9:da:b7:bb:77:cb:97:91:62:d2: f4:66:82:4b:8b:89:8f:54:74:5c:45:9d:6c:07:10: 98:4f:90:6b:8d:ca:fd:ff:57:b2:c2:63:ac:12:6c: db:d5:4d:3c:fc:e1:e9:75:9b:e7:76:70:e9:02:36: a5:df:f6:06:ed:ae:59:e3:f0:9c:a7:2f:a5:6f:45: 3c:4a:10:1e:77:08:83:09:26:b5:72:25:7f:ec:2a: a3:7c:cb:16:6c:5c:89:47:5b:6b:7e:fa:58:9f:8e: f4:4d:65:ac:48:d9:cf:35:3f:19:14:81:15:81:ba: 20:10:0f:e4:71:ef:cc:9c:d8:d3:1b:8e:14:26:11: 86:8b:c7:f2:81:2d:f7:26:e2:5e:64:15:84:93:ff: b3:b1:78:bd:6a:6e:33:6c:9f:1f:3d:da:4d:cd:12: 86:1f:a4:03:f8:25:aa:43:38:31:3d:11:c5:9a:f4: 45:bd:64:dd:3a:c7:24:b5:0d:15:64:7f:b1:8f:69: 44:71:13:68:c5:96:9c:4d:b2:48:89:1a:b0:e1:ee: e9:73:21:42:2a:a5:d9:a0:80:c3:98:88:0b:8c:0c: 75:46:8a:ac:54:ef:74:38:1b:85:47:2d:9b:2d:01: d1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3E:14:76:37:11:2A:F9:62:8C:30:B2:67:91:26:92:BE:29:5B:C0 X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:ae:ec:dd:b3:d0:9e:c7:9b:4b:f6:d7:5c:ae:73:77:74:7d: 8c:60:de:2b:e3:72:46:a7:4f:7b:a3:97:c5:76:27:ad:b0:c4: f8:d3:0e:4d:e2:93:80:eb:f2:a2:4f:52:8c:4b:5a:41:8f:c8: 00:9f:b2:75:dc:7d:f7:07:5a:8f:60:30:41:2c:30:e9:ae:4b: d2:66:30:0b:04:bb:46:2e:9d:2d:a4:6a:42:6e:5d:cf:5e:af: 7b:da:62:38:8a:77:17:13:35:58:70:69:ab:f6:63:13:a1:9c: 03:ab:cd:7e:7b:94:75:d4:7c:2a:9b:8b:30:2d:e8:02:22:5b: 94:f3:ea:02:df:cd:df:4b:e7:d5:0e:e8:3b:50:b7:03:96:be: a3:37:dd:5a:17:ba:41:80:8b:64:ea:1c:cd:1d:66:5a:dd:75: ee:f8:31:37:40:7c:86:a9:28:84:35:80:4f:a2:b4:28:30:84: 4f:fc:b1:09:10:94:0d:36:31:cd:1d:44:bd:95:74:ac:82:ca: 7d:43:1d:1b:3b:1f:5d:87:01:2d:e9:a3:66:b3:90:08:19:72: 70:a0:63:d9:04:18:59:23:ff:72:7f:0e:22:7c:e5:39:5f:ab: cb:28:9c:3e:f3:f0:75:f8:cf:03:ba:fd:ec:78:65:44:c3:5d: 36:5d:05:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjQwNTA3MDYwMzI1WhcNMjQwNTE0MDYwMzI1WjAYMRYwFAYD VQQDEw02NjM5YzQyZC02ZmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApckDWwhCE5+0SkbH5evNsPBN9Lnat7t3y5eRYtL0ZoJLi4mPVHRcRZ1sBxCY T5Brjcr9/1eywmOsEmzb1U08/OHpdZvndnDpAjal3/YG7a5Z4/Ccpy+lb0U8ShAe dwiDCSa1ciV/7CqjfMsWbFyJR1trfvpYn470TWWsSNnPNT8ZFIEVgbogEA/kce/M nNjTG44UJhGGi8fygS33JuJeZBWEk/+zsXi9am4zbJ8fPdpNzRKGH6QD+CWqQzgx PRHFmvRFvWTdOscktQ0VZH+xj2lEcRNoxZacTbJIiRqw4e7pcyFCKqXZoIDDmIgL jAx1RoqsVO90OBuFRy2bLQHRVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHs+FHY3 ESr5YowwsmeRJpK+KVvAMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALruzds9Cex5tL9tdcrnN3dH2MYN4r43JGp097o5fFdietsMT40w5N 4pOA6/KiT1KMS1pBj8gAn7J13H33B1qPYDBBLDDprkvSZjALBLtGLp0tpGpCbl3P Xq972mI4incXEzVYcGmr9mMToZwDq81+e5R11Hwqm4swLegCIluU8+oC383fS+fV Dug7ULcDlr6jN91aF7pBgItk6hzNHWZa3XXu+DE3QHyGqSiENYBPorQoMIRP/LEJ EJQNNjHNHUS9lXSsgsp9Qx0bOx9dhwEt6aNms5AIGXJwoGPZBBhZI/9yfw4ifOU5 X6vLKJw+8/B1+M8Duv3seGVEw102XQXf -----END CERTIFICATE-----Generated at Tue May 7 07:13:00 2024 by rpki-client on console-ams.rpki-client.org